$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft File: yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft (raw, json) Hash identifier: 9MVYnh/JJPbndunfMAFRSYKNiZW1SWVs2ylrlyf3vbE= Subject key identifier: 9F:38:CE:C0:FC:28:BC:34:13:8E:C1:C1:36:52:5E:BA:1E:2B:03:CC Authority key identifier: C9:12:B0:54:CA:43:A9:34:C1:77:57:33:D8:4B:F1:6E:48:56:BE:F0 Certificate issuer: /CN=A917E1FA/serialNumber=C912B054CA43A934C1775733D84BF16E4856BEF0 Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRKwVMpDqTTBd1cz2EvxbkhWvvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft Manifest number: A1 Signing time: Sun 05 Apr 2026 06:44:25 +0000 Manifest this update: Sun 05 Apr 2026 06:44:24 +0000 Manifest next update: Sun 12 Apr 2026 06:44:24 +0000 Files and hashes: 1: yRKwVMpDqTTBd1cz2EvxbkhWvvA.crl (hash: GvM9QwExQ1IqQsokz0XmXU/fuC64AHJfQyhuaD1O6M4=) 2: 7354ACC0472811F0ADE2D44BC4F9AE02.roa (hash: znoNuAslfVcaeYT9Qtb9J+D936zhsxuFnvCQ4z32+wE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.crl rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRKwVMpDqTTBd1cz2EvxbkhWvvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1FA, serialNumber=C912B054CA43A934C1775733D84BF16E4856BEF0 Validity Not Before: Apr 5 06:44:24 2026 GMT Not After : Apr 12 06:44:24 2026 GMT Subject: CN=69d204c8-1c7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d7:de:94:59:a6:48:6c:47:66:61:f8:df:9f: 95:13:41:13:3d:04:97:e2:30:ed:d9:40:1c:12:a9: 8b:5c:ab:08:ef:9d:44:c2:50:8f:ef:51:9e:df:0d: 29:a4:6c:0e:fb:c4:7e:7f:03:02:38:14:47:37:1e: c1:64:b1:2a:c2:c7:d6:49:42:f3:34:d6:64:be:31: df:25:82:04:85:fa:76:41:b6:a7:de:90:f5:51:31: ae:fd:be:7f:56:b2:e8:f9:02:9b:19:73:2c:2e:21: 0b:7b:3b:5d:db:0d:ae:39:c1:90:2b:07:2f:d5:e2: 7b:d8:a1:31:e0:6f:07:4a:25:69:c3:9f:df:64:be: 6c:54:3c:e6:3e:d5:a3:08:eb:d2:c5:1c:a0:ff:62: a5:a1:58:fe:86:a3:b4:37:fd:d9:c2:e8:e3:7b:d1: 80:fc:8c:fa:41:8c:64:cb:45:0f:3e:4b:59:97:a9: 42:1d:78:f8:f6:cc:24:a2:0c:00:c3:5c:ac:6f:d1: 53:e3:a2:cc:b6:1c:d4:80:db:9c:d9:8f:19:53:99: 60:f9:6b:c3:76:24:43:03:8b:df:c9:d4:8c:2c:8e: 22:5d:c5:ac:04:f7:c0:85:ef:15:64:54:2d:41:a9: 04:a9:81:50:f4:bf:80:25:82:c7:ff:ec:9f:e8:05: a6:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:38:CE:C0:FC:28:BC:34:13:8E:C1:C1:36:52:5E:BA:1E:2B:03:CC X509v3 Authority Key Identifier: keyid:C9:12:B0:54:CA:43:A9:34:C1:77:57:33:D8:4B:F1:6E:48:56:BE:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRKwVMpDqTTBd1cz2EvxbkhWvvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:3c:b0:c6:b3:8b:a3:a7:48:34:9c:3b:49:ba:b1:ce:25:47: 89:dd:5a:42:34:51:7c:5f:ec:8a:b7:f4:8f:59:a0:89:a7:1e: 8e:cb:aa:64:d8:28:de:61:71:86:4d:a1:65:b0:5e:65:8d:cb: 0c:f3:b0:19:3c:43:44:bc:d6:76:0a:ec:3f:84:53:1f:e4:fe: 30:10:9d:2a:34:cb:9a:03:0e:56:95:55:50:ba:81:d0:a8:32: 8c:f7:e1:47:e8:37:c0:84:cf:91:dd:90:e6:ba:53:81:98:a7: 8b:97:9b:47:69:41:ae:85:8c:4d:a2:51:5d:6b:02:cf:bf:fb: d9:ba:0a:bf:78:f3:f0:15:a4:5d:f5:12:72:db:c6:a1:95:a9: e6:56:d2:2d:7c:a4:51:51:bf:f8:1a:cb:ea:e3:26:30:f3:b6: c6:c9:3d:76:21:d8:8a:32:b1:c2:9b:bf:15:42:99:2f:50:44: 93:b5:0d:0e:18:12:ff:a5:39:14:f3:09:d8:79:78:5a:d1:46: 21:c6:61:31:01:d1:ba:44:80:3c:8b:8e:c0:95:98:4b:d8:86: 55:e8:d3:f5:d7:c5:1c:54:70:72:50:fe:31:44:2b:99:e6:91: 2b:e6:2a:4a:ff:9f:ce:cb:06:75:ae:e6:9f:26:da:b7:ef:b7: 1f:fa:6c:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxRkExMTAvBgNVBAUTKEM5MTJCMDU0Q0E0M0E5MzRDMTc3NTczM0Q4NEJGMTZF NDg1NkJFRjAwHhcNMjYwNDA1MDY0NDI0WhcNMjYwNDEyMDY0NDI0WjAYMRYwFAYD VQQDEw02OWQyMDRjOC0xYzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdfelFmmSGxHZmH435+VE0ETPQSX4jDt2UAcEqmLXKsI751EwlCP71Ge3w0p pGwO+8R+fwMCOBRHNx7BZLEqwsfWSULzNNZkvjHfJYIEhfp2Qban3pD1UTGu/b5/ VrLo+QKbGXMsLiELeztd2w2uOcGQKwcv1eJ72KEx4G8HSiVpw5/fZL5sVDzmPtWj COvSxRyg/2KloVj+hqO0N/3Zwujje9GA/Iz6QYxky0UPPktZl6lCHXj49swkogwA w1ysb9FT46LMthzUgNuc2Y8ZU5lg+WvDdiRDA4vfydSMLI4iXcWsBPfAhe8VZFQt QakEqYFQ9L+AJYLH/+yf6AWmHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ84zsD8 KLw0E47BwTZSXroeKwPMMB8GA1UdIwQYMBaAFMkSsFTKQ6k0wXdXM9hL8W5IVr7w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTFGQS9BMkQ1RUU1RTQ1 QTMxMUYwOTVFRkZENDhDNEY5QUUwMi95Ukt3Vk1wRHFUVEJkMWN6MkV2eGJraFd2 dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lSS3dWTXBEcVRUQmQxY3oyRXZ4YmtoV3Z2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTFGQS9BMkQ1RUU1RTQ1QTMxMUYwOTVFRkZENDhDNEY5QUUwMi95Ukt3Vk1wRHFU VEJkMWN6MkV2eGJraFd2dkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnDywxrOLo6dINJw7SbqxziVHid1aQjRRfF/sirf0j1mgiacejsuqZNgo3mFx hk2hZbBeZY3LDPOwGTxDRLzWdgrsP4RTH+T+MBCdKjTLmgMOVpVVULqB0KgyjPfh R+g3wITPkd2Q5rpTgZini5ebR2lBroWMTaJRXWsCz7/72boKv3jz8BWkXfUSctvG oZWp5lbSLXykUVG/+BrL6uMmMPO2xsk9diHYijKxwpu/FUKZL1BEk7UNDhgS/6U5 FPMJ2Hl4WtFGIcZhMQHRukSAPIuOwJWYS9iGVejT9dfFHFRwclD+MUQrmeaRK+Yq Sv+fzssGda7mnybat++3H/pslw== -----END CERTIFICATE-----Generated at Mon Apr 6 10:11:11 2026 by rpki-client