$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft File: kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json) Hash identifier: 9uDqy+HhhkNs6pRy6gnVa8zpVic1Z4dsDyDMKRDWFVQ= Subject key identifier: FE:2F:0B:83:BF:8F:F8:BA:92:7C:62:76:8A:0D:75:5F:4F:01:F5:F6 Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Certificate serial: 0D4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft Manifest number: 0D38 Signing time: Tue 31 Mar 2026 18:04:56 +0000 Manifest this update: Tue 31 Mar 2026 18:04:55 +0000 Manifest next update: Tue 07 Apr 2026 18:04:55 +0000 Files and hashes: 1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: noKBIKWuWlcJ33lkMjkxJHYWontc0P5qlvlKYjr8C+I=) 2: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: X8sSkThLSb4fvyIS1pC23KDUjsj3Bu29OZPUHsBaV1A=) 3: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: Aw64/YmY/GSEcpV9lRNLIVB3nggqqcAVaMWqQLrAoig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3402 (0xd4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B1A, serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Validity Not Before: Mar 31 18:04:55 2026 GMT Not After : Apr 7 18:04:55 2026 GMT Subject: CN=69cc0cc7-2b67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6b:36:fc:78:6c:d1:e4:55:14:94:9d:b9:08: 10:21:62:ad:47:9d:b9:2b:63:59:cf:bd:b2:96:5a: 81:77:bd:18:31:8f:b3:9a:7e:5b:38:5e:94:b4:3f: 0e:4b:26:94:af:21:d9:6d:7e:e6:3d:7f:08:76:cb: 85:cc:f6:e6:de:65:3b:aa:fa:fd:08:f8:a8:67:11: 99:9e:c2:e7:b9:38:b6:27:6e:d6:c5:17:ff:46:03: b6:5f:70:40:93:be:11:db:87:5b:db:c8:b9:ff:c6: f5:8b:9d:75:5e:d0:11:8f:a8:6e:81:f3:db:1b:26: 20:95:40:8a:53:ce:1e:1d:25:6a:c9:3e:d4:2f:3c: 0e:86:1d:21:a5:f0:71:a2:6b:3d:d7:90:47:53:64: 89:58:7d:bc:64:bc:7c:cf:ec:d0:05:34:d4:3d:ea: b1:a0:c4:1f:c0:48:e9:cd:f9:f5:4b:38:7b:21:08: 64:fc:a6:ce:5f:47:b5:09:a3:64:f2:a5:ea:3d:90: 61:ac:af:be:5d:b0:69:89:9a:a3:7f:70:e5:02:b2: a8:8f:82:65:e6:15:42:b1:81:77:3b:96:de:ab:04: b5:9a:24:69:2a:df:e7:76:70:45:9f:46:08:2e:fc: 25:f7:04:8b:ba:b4:0f:9d:16:f4:fa:55:e9:89:48: 41:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:2F:0B:83:BF:8F:F8:BA:92:7C:62:76:8A:0D:75:5F:4F:01:F5:F6 X509v3 Authority Key Identifier: keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:6f:cb:73:ba:08:c8:b6:3e:78:2b:4b:db:1a:8d:81:09:22: 84:57:e5:5e:dd:fc:3c:bd:e0:d1:4f:8a:7f:7b:0d:bb:50:94: 81:f3:46:7d:33:38:58:bf:8e:dc:e2:08:69:55:ee:14:a7:18: 5d:00:19:4d:26:0f:19:12:8a:a9:48:5d:ca:4b:54:41:1d:f1: 2f:81:21:b3:e7:f3:f1:5a:99:2e:2f:cb:1d:4f:ce:d5:56:0b: 8b:e7:d1:6b:b9:c9:f1:fb:b9:ea:85:14:5b:43:e2:9a:14:b6: 18:51:49:e6:92:b8:c7:75:86:bf:6f:3e:ef:6a:16:a7:fe:0d: 27:06:e9:c0:36:c9:54:2c:1c:af:65:85:42:3a:d8:e3:6d:5d: 87:86:4a:38:ad:f7:a6:7e:9a:70:4b:00:42:44:77:c1:2b:b3: f6:71:e2:2b:8b:49:a8:4e:11:5a:2f:b5:09:16:f2:89:08:9b: 3a:33:65:a2:e3:ff:d8:51:ba:1d:d5:7a:79:6f:ff:bb:3d:c6: 36:5e:5e:20:99:19:73:9f:e5:9c:2d:77:3d:f4:6d:6a:ec:6f: 97:2e:a2:16:64:e5:65:45:f5:2e:91:9c:52:e1:ff:68:3f:0c: 29:7f:5c:9a:48:56:0e:03:c1:1b:83:61:dc:5d:d3:17:a9:0a: 1f:e2:aa:d2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCMUExMTAvBgNVBAUTKDkxOEU3Mjg5RTI4QzFBNDkyMkEyM0NCNTY1QkQ4MjFC N0UyMEE2MTEwHhcNMjYwMzMxMTgwNDU1WhcNMjYwNDA3MTgwNDU1WjAYMRYwFAYD VQQDEw02OWNjMGNjNy0yYjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Gs2/Hhs0eRVFJSduQgQIWKtR525K2NZz72yllqBd70YMY+zmn5bOF6UtD8O SyaUryHZbX7mPX8IdsuFzPbm3mU7qvr9CPioZxGZnsLnuTi2J27WxRf/RgO2X3BA k74R24db28i5/8b1i511XtARj6hugfPbGyYglUCKU84eHSVqyT7ULzwOhh0hpfBx oms915BHU2SJWH28ZLx8z+zQBTTUPeqxoMQfwEjpzfn1Szh7IQhk/KbOX0e1CaNk 8qXqPZBhrK++XbBpiZqjf3DlArKoj4Jl5hVCsYF3O5beqwS1miRpKt/ndnBFn0YI Lvwl9wSLurQPnRb0+lXpiUhB1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP4vC4O/ j/i6knxidooNdV9PAfX2MB8GA1UdIwQYMBaAFJGOconijBpJIqI8tWW9ght+IKYR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUIxQS81MUZGQzRFNEY0 MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdra2lvankxWmIyQ0czNGdw aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZNXlpZUtNR2traW9qeTFaYjJDRzM0Z3BoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUIxQS81MUZGQzRFNEY0MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdr a2lvankxWmIyQ0czNGdwaEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqG/Lc7oIyLY+eCtL2xqNgQkihFflXt38PL3g0U+Kf3sNu1CUgfNGfTM4WL+O 3OIIaVXuFKcYXQAZTSYPGRKKqUhdyktUQR3xL4Ehs+fz8VqZLi/LHU/O1VYLi+fR a7nJ8fu56oUUW0PimhS2GFFJ5pK4x3WGv28+72oWp/4NJwbpwDbJVCwcr2WFQjrY 421dh4ZKOK33pn6acEsAQkR3wSuz9nHiK4tJqE4RWi+1CRbyiQibOjNlouP/2FG6 HdV6eW//uz3GNl5eIJkZc5/lnC13PfRtauxvly6iFmTlZUX1LpGcUuH/aD8MKX9c mkhWDgPBG4Nh3F3TF6kKH+Kq0g== -----END CERTIFICATE-----Generated at Thu Apr 2 08:24:44 2026 by rpki-client