$ rpki-client -vvf rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft File: yZ1gB81HfYmzWcM8k8qptbsQYBo.mft (raw, json) Hash identifier: QbTmVSigssZoSghmHr9T597Jbf1HLZasVnGCKLCfm5c= Subject key identifier: 0E:05:6A:D8:7C:24:5F:DF:7D:6D:19:54:7F:A1:FA:A7:A0:C4:3F:49 Authority key identifier: C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A Certificate issuer: /CN=A9173F03/serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Certificate serial: 0CD6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft Manifest number: 0CC2 Signing time: Sat 04 Apr 2026 18:17:44 +0000 Manifest this update: Sat 04 Apr 2026 18:17:43 +0000 Manifest next update: Sat 11 Apr 2026 18:17:43 +0000 Files and hashes: 1: yZ1gB81HfYmzWcM8k8qptbsQYBo.crl (hash: 9i6Xv/xUwukVkdWrLNVDOmeu6GeNegxBjjOC9ZeUGAQ=) 2: 7D16D03C861A11EF99D32B66C4F9AE02.roa (hash: KI0wtfrpzzeldL0TKgebNaTut7M4MCF1WK3HZwTSHVM=) 3: 1F3C6E3C6E6811EF93F0A64EC4F9AE02.roa (hash: c63Et1Ir/YnB7K8uol85rXXmz9MoXTQl05iq46Egj80=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:17:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3286 (0xcd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173F03, serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Validity Not Before: Apr 4 18:17:43 2026 GMT Not After : Apr 11 18:17:43 2026 GMT Subject: CN=69d155c7-1ce2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:05:c0:e7:5e:52:1d:47:41:aa:e9:c8:46:a8: 46:fd:04:1e:d0:32:72:b9:c4:80:b9:c1:d9:14:75: a0:f6:3e:db:51:c0:fb:b5:bb:f6:76:ed:71:0d:bd: b4:c1:4c:34:39:14:40:45:a9:32:c2:45:b6:f2:ce: c0:c9:cc:fc:ca:95:01:1b:39:0f:3b:28:03:9f:c6: e9:c2:91:db:4b:ed:6b:cb:fc:a9:fd:d3:d3:f5:75: 77:54:f6:df:e6:8d:5e:28:c0:dc:0a:a4:43:11:92: 90:48:d0:08:01:94:b2:14:38:cf:81:6c:7b:f4:23: 2d:3a:b9:47:85:f4:bf:78:05:b3:03:e8:3c:e3:e9: 29:fc:92:c0:30:2c:94:34:f1:38:cd:a1:9c:eb:76: e5:d7:ea:08:07:37:f1:21:b1:9e:02:34:b7:8b:6f: 32:0e:9f:98:63:d9:e0:50:fa:b0:50:0e:ae:9a:93: e7:93:76:d9:87:af:17:25:ba:65:af:13:e8:1e:22: bd:4e:8d:c6:30:51:a4:1a:30:ba:8e:02:f0:86:fe: 4a:f7:89:05:7e:f9:54:c7:71:99:0b:92:28:c5:90: 78:b0:2c:21:d4:90:d7:a8:59:3f:88:53:3f:ac:c6: 65:0c:f9:d4:df:3b:8f:a1:e9:57:df:92:cd:03:fe: 26:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:05:6A:D8:7C:24:5F:DF:7D:6D:19:54:7F:A1:FA:A7:A0:C4:3F:49 X509v3 Authority Key Identifier: keyid:C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:fd:cf:c0:b0:1f:db:28:6d:bc:7a:7c:e0:c2:c2:13:ae:10: 69:e4:56:8e:50:c7:77:95:8f:46:55:9a:30:15:86:58:5e:f7: e3:82:ba:cd:78:24:52:d1:92:4f:9b:ca:19:cf:04:b2:49:9e: c0:06:cc:94:91:ac:cd:7d:c4:22:b8:d2:9b:68:42:67:19:52: 6b:4f:14:a5:1b:b5:ce:8a:1e:9a:b1:90:a9:99:4d:64:1e:f6: 00:7f:23:4d:1b:c7:57:2a:19:c1:dc:58:b4:e5:63:60:77:ab: 00:bb:c0:d6:1d:42:f0:3b:86:d1:c9:67:0b:af:bc:ad:a8:73: ea:b0:c0:71:18:29:4c:07:69:d8:62:5f:a2:6b:af:53:d1:38: c7:28:13:f2:d3:16:50:83:e1:a2:e8:fa:7d:4a:1d:79:60:cb: 1a:93:b0:a5:2e:e2:62:f1:e5:bc:12:22:d8:b6:de:2c:2a:17: 1a:45:7b:89:84:b4:16:84:eb:28:66:fc:99:da:6c:65:7e:29: 1c:b8:b6:3a:bf:f3:5f:b9:e1:6d:c8:1f:52:0d:af:57:ee:59: f7:94:64:64:eb:63:ea:bd:8d:9a:00:c3:4a:27:85:e3:d3:b9: d1:8f:6c:7a:60:c0:05:5e:e8:28:6c:a3:b7:34:f0:22:40:ba: 92:65:77:05 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNGMDMxMTAvBgNVBAUTKEM5OUQ2MDA3Q0Q0NzdEODlCMzU5QzMzQzkzQ0FBOUI1 QkIxMDYwMUEwHhcNMjYwNDA0MTgxNzQzWhcNMjYwNDExMTgxNzQzWjAYMRYwFAYD VQQDEw02OWQxNTVjNy0xY2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArAXA515SHUdBqunIRqhG/QQe0DJyucSAucHZFHWg9j7bUcD7tbv2du1xDb20 wUw0ORRARakywkW28s7Aycz8ypUBGzkPOygDn8bpwpHbS+1ry/yp/dPT9XV3VPbf 5o1eKMDcCqRDEZKQSNAIAZSyFDjPgWx79CMtOrlHhfS/eAWzA+g84+kp/JLAMCyU NPE4zaGc63bl1+oIBzfxIbGeAjS3i28yDp+YY9ngUPqwUA6umpPnk3bZh68XJbpl rxPoHiK9To3GMFGkGjC6jgLwhv5K94kFfvlUx3GZC5IoxZB4sCwh1JDXqFk/iFM/ rMZlDPnU3zuPoelX35LNA/4msQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA4Fath8 JF/ffW0ZVH+h+qegxD9JMB8GA1UdIwQYMBaAFMmdYAfNR32Js1nDPJPKqbW7EGAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0YwMy82NEY2QzI4RTBE RTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZbXpXY004azhxcHRic1FZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laMWdCODFIZllteldjTThrOHFwdGJzUVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0YwMy82NEY2QzI4RTBERTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZ bXpXY004azhxcHRic1FZQm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASP3PwLAf2yhtvHp84MLCE64QaeRWjlDHd5WPRlWaMBWGWF7344K6zXgkUtGS T5vKGc8EskmewAbMlJGszX3EIrjSm2hCZxlSa08UpRu1zooemrGQqZlNZB72AH8j TRvHVyoZwdxYtOVjYHerALvA1h1C8DuG0clnC6+8rahz6rDAcRgpTAdp2GJfomuv U9E4xygT8tMWUIPhouj6fUodeWDLGpOwpS7iYvHlvBIi2LbeLCoXGkV7iYS0FoTr KGb8mdpsZX4pHLi2Or/zX7nhbcgfUg2vV+5Z95RkZOtj6r2NmgDDSieF49O50Y9s emDABV7oKGyjtzTwIkC6kmV3BQ== -----END CERTIFICATE-----Generated at Mon Apr 6 13:59:57 2026 by rpki-client