$ rpki-client -vvf rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft File: Ys-2EOllD-PIACvGF7cFck0qAt0.mft (raw, json) Hash identifier: vwAtTCx9mMREpGmOvDtsm8LZJ9Wd187hwN4flzGYuaE= Subject key identifier: E0:2E:E5:AE:DC:F1:F4:17:60:E8:4F:4B:D0:D5:8D:87:AF:2A:93:0C Authority key identifier: 62:CF:B6:10:E9:65:0F:E3:C8:00:2B:C6:17:B7:05:72:4D:2A:02:DD Certificate issuer: /CN=A917B1B1/serialNumber=62CFB610E9650FE3C8002BC617B705724D2A02DD Certificate serial: 18CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft Manifest number: 18BB Signing time: Sat 04 Apr 2026 16:22:43 +0000 Manifest this update: Sat 04 Apr 2026 16:22:42 +0000 Manifest next update: Sat 11 Apr 2026 16:22:42 +0000 Files and hashes: 1: Ys-2EOllD-PIACvGF7cFck0qAt0.crl (hash: T9J/HgycLXNg4XommSPn8bE/ydIsThPXh0a6xRgtquc=) 2: C1C12662CFC811EB9A5C5879C4F9AE02.roa (hash: dwc6e0VZe8kImW/u7x+c+fHQZoxulC4UHHkO0IPYi7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.crl rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 16:22:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6347 (0x18cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B1B1, serialNumber=62CFB610E9650FE3C8002BC617B705724D2A02DD Validity Not Before: Apr 4 16:22:42 2026 GMT Not After : Apr 11 16:22:42 2026 GMT Subject: CN=69d13ad2-df65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:34:06:e8:92:32:b8:14:56:3d:b8:fa:28:d5: 0b:74:cf:93:b1:4e:c2:1e:39:b1:e8:36:0a:b5:14: 21:78:63:a8:36:ec:48:46:f4:c2:c5:4d:aa:b1:d2: 09:c6:36:8c:40:3a:88:14:a1:7e:ac:b8:8f:35:c5: 16:cb:25:8c:f8:45:55:e5:3f:54:cc:b7:1b:6c:2d: 58:38:1e:3a:a3:22:8a:24:8c:30:b2:c8:77:b1:b8: 45:68:b3:fb:52:93:f3:4f:2a:6f:db:4c:10:ed:f8: 71:3e:7d:fe:26:d7:5b:d6:b7:6f:cb:8a:f7:2f:7c: 33:ef:59:95:92:85:8e:c0:ef:c8:d8:e6:93:70:2a: 29:88:2f:08:56:ac:4d:04:e7:06:c3:b4:bd:9a:8a: da:92:9e:bb:d0:4e:ab:82:f0:bd:6d:58:d2:fc:ab: 57:1b:94:ea:05:3a:1b:ce:c9:78:95:60:0b:87:3f: af:61:2c:ce:4e:17:02:c0:7d:7d:f8:ca:52:7f:b3: 8e:30:dc:6e:76:c5:50:52:b2:3a:bd:e2:89:3c:8e: fd:ac:a3:61:a3:2f:4d:f8:91:d5:85:71:fd:5e:78: 22:d6:66:c9:a9:3f:d7:b8:53:ec:c7:50:d0:bd:b4: 65:10:fc:30:88:de:99:e5:43:c6:95:7d:03:a1:87: 5d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:2E:E5:AE:DC:F1:F4:17:60:E8:4F:4B:D0:D5:8D:87:AF:2A:93:0C X509v3 Authority Key Identifier: keyid:62:CF:B6:10:E9:65:0F:E3:C8:00:2B:C6:17:B7:05:72:4D:2A:02:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:b0:b2:dd:72:e1:b4:52:3b:6c:7a:ce:43:43:dd:04:bb:ac: 32:1d:78:b2:9e:8e:b2:9c:f1:e1:66:be:48:87:98:df:68:70: 29:45:f1:25:5a:27:ce:c6:ee:01:b4:37:21:e5:f1:22:0b:74: 1a:c9:18:9e:a1:3f:c6:fc:4d:3c:a8:4c:87:88:fc:95:39:14: 07:1d:7f:40:ee:a9:76:77:d6:51:cd:7b:d9:b4:7c:fd:f5:91: a3:f2:ac:2b:57:42:45:36:9a:3d:61:8c:30:e6:d8:a7:97:a7: 52:58:8d:44:88:e8:33:a9:72:ee:7f:c8:77:15:0b:2d:80:66: 07:e5:af:1b:1a:12:d7:4f:d7:f2:07:d6:30:03:e8:ca:97:04: 16:a3:6a:45:04:b0:a7:3e:44:08:0f:6d:1e:d7:5d:00:ce:da: 93:0c:36:a0:64:95:09:aa:17:1f:3f:2f:2b:e9:42:83:4c:e2: 2e:9e:20:ba:13:62:5a:e3:21:93:5c:f9:4d:eb:6e:e3:10:e1: 8f:8e:85:37:ca:c5:10:6e:19:fa:dc:f9:e4:69:58:16:f6:97: dc:6a:4a:fc:44:69:43:11:8e:b3:8a:a9:ac:0c:c9:af:f5:3d: 3c:8b:46:80:dd:b9:b8:ef:9e:c5:48:8f:0c:85:59:d4:dd:01: 56:d0:e8:0f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IxQjExMTAvBgNVBAUTKDYyQ0ZCNjEwRTk2NTBGRTNDODAwMkJDNjE3QjcwNTcy NEQyQTAyREQwHhcNMjYwNDA0MTYyMjQyWhcNMjYwNDExMTYyMjQyWjAYMRYwFAYD VQQDEw02OWQxM2FkMi1kZjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTQG6JIyuBRWPbj6KNULdM+TsU7CHjmx6DYKtRQheGOoNuxIRvTCxU2qsdIJ xjaMQDqIFKF+rLiPNcUWyyWM+EVV5T9UzLcbbC1YOB46oyKKJIwwssh3sbhFaLP7 UpPzTypv20wQ7fhxPn3+Jtdb1rdvy4r3L3wz71mVkoWOwO/I2OaTcCopiC8IVqxN BOcGw7S9morakp670E6rgvC9bVjS/KtXG5TqBTobzsl4lWALhz+vYSzOThcCwH19 +MpSf7OOMNxudsVQUrI6veKJPI79rKNhoy9N+JHVhXH9Xngi1mbJqT/XuFPsx1DQ vbRlEPwwiN6Z5UPGlX0DoYddpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOAu5a7c 8fQXYOhPS9DVjYevKpMMMB8GA1UdIwQYMBaAFGLPthDpZQ/jyAArxhe3BXJNKgLd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjFCMS9BMEYwQURGMEIy NTIxMUU3OEI1MEZGNjBDNEY5QUUwMi9Zcy0yRU9sbEQtUElBQ3ZHRjdjRmNrMHFB dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzLTJFT2xsRC1QSUFDdkdGN2NGY2swcUF0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjFCMS9BMEYwQURGMEIyNTIxMUU3OEI1MEZGNjBDNEY5QUUwMi9Zcy0yRU9sbEQt UElBQ3ZHRjdjRmNrMHFBdDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAC7Cy3XLhtFI7bHrOQ0PdBLusMh14sp6Ospzx4Wa+SIeY32hwKUXxJVonzsbu AbQ3IeXxIgt0GskYnqE/xvxNPKhMh4j8lTkUBx1/QO6pdnfWUc172bR8/fWRo/Ks K1dCRTaaPWGMMObYp5enUliNRIjoM6ly7n/IdxULLYBmB+WvGxoS10/X8gfWMAPo ypcEFqNqRQSwpz5ECA9tHtddAM7akww2oGSVCaoXHz8vK+lCg0ziLp4guhNiWuMh k1z5Tetu4xDhj46FN8rFEG4Z+tz55GlYFvaX3GpK/ERpQxGOs4qprAzJr/U9PItG gN25uO+exUiPDIVZ1N0BVtDoDw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:25:58 2026 by rpki-client