$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft File: Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft (raw, json) Hash identifier: LJeY9IMY61MyELMX+lrC68fhzEfN2mEFe3PK3kUmrxM= Subject key identifier: 2A:69:7E:29:F2:03:63:73:B9:DC:3E:C9:46:73:B4:2D:1A:99:93:BD Authority key identifier: 63:FA:F4:D2:3E:68:3E:93:F6:07:63:0D:DF:FD:4B:1A:F6:33:3F:00 Certificate issuer: /CN=A91AB238/serialNumber=63FAF4D23E683E93F607630DDFFD4B1AF6333F00 Certificate serial: 0865 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_r00j5oPpP2B2MN3_1LGvYzPwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft Manifest number: 085A Signing time: Sat 04 Apr 2026 20:34:11 +0000 Manifest this update: Sat 04 Apr 2026 20:34:10 +0000 Manifest next update: Sat 11 Apr 2026 20:34:10 +0000 Files and hashes: 1: Y_r00j5oPpP2B2MN3_1LGvYzPwA.crl (hash: Bnz6OhWhCqc0V6ynsB+BNDyrCxKWPRWrGjckBiV+tJA=) 2: 7634D328351411EBBF864670C4F9AE02.roa (hash: e9rRepgEUQCp9vSJIwP7DAt7IRy8y+BxF4pfmKiepf8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.crl rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_r00j5oPpP2B2MN3_1LGvYzPwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:34:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2149 (0x865) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB238, serialNumber=63FAF4D23E683E93F607630DDFFD4B1AF6333F00 Validity Not Before: Apr 4 20:34:10 2026 GMT Not After : Apr 11 20:34:10 2026 GMT Subject: CN=69d175c2-46b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c7:a0:9b:8a:5c:06:a9:63:e1:b4:72:e5:51: f1:9e:8b:c9:ef:4d:2a:2e:7c:fd:4d:2f:5d:d0:9c: bb:66:6e:99:35:02:7b:38:03:9c:91:0c:cc:af:74: f8:41:e5:d7:c9:28:97:a7:7f:6a:b5:e9:de:3e:8f: d1:3d:4e:3a:3c:88:32:ff:d6:5d:63:48:ff:9d:16: 77:4b:1a:b4:06:28:90:d2:b6:92:56:9b:e0:e3:02: e6:ef:6f:f0:5a:de:1e:ef:84:83:a2:86:1c:af:50: 96:74:75:94:dc:00:a0:f6:80:b6:87:8e:40:1c:29: 2f:b1:da:cf:69:e6:78:04:46:7a:c4:cf:f6:c4:a5: 58:59:8b:45:42:2a:e5:17:7e:d0:d9:a1:bd:0d:d5: 83:07:df:5c:f3:bb:d6:68:74:18:b9:8c:b1:48:e5: 86:f7:6c:41:b7:fd:57:fa:c0:74:70:41:54:53:d6: e1:69:5f:d3:f0:e7:76:82:de:e0:7e:11:f6:dd:a6: ac:75:d9:ea:ec:55:47:67:8d:b2:bf:73:32:a0:f0: ef:47:37:3e:44:b3:44:2f:6a:cb:89:f5:45:47:7b: 0d:e3:ca:96:6c:90:c7:97:05:2b:87:19:63:f4:6b: 55:4a:f5:9f:a9:32:74:e3:d2:e1:49:75:d3:83:51: 04:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:69:7E:29:F2:03:63:73:B9:DC:3E:C9:46:73:B4:2D:1A:99:93:BD X509v3 Authority Key Identifier: keyid:63:FA:F4:D2:3E:68:3E:93:F6:07:63:0D:DF:FD:4B:1A:F6:33:3F:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_r00j5oPpP2B2MN3_1LGvYzPwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:c5:cc:d5:6d:02:e3:a5:91:e5:e6:d7:b6:40:bd:ba:8e:48: 1e:d6:87:c2:9a:cf:7d:36:93:a6:ed:db:e4:80:42:47:71:ed: b8:05:ce:6a:6a:6d:af:76:1e:bc:d5:f3:94:23:a4:e8:93:84: 24:38:6a:c1:32:70:99:90:3e:ea:fd:55:16:6e:fb:74:d5:5d: 64:af:dc:2b:52:3f:d2:97:1a:8c:82:a2:d5:84:e7:3a:b4:a0: 5f:e7:4a:7e:8a:61:80:70:f3:e6:87:60:b2:a3:f5:c7:a2:9b: ce:13:5f:3c:29:4a:9a:e1:e4:d0:6e:4a:a7:ad:80:4d:88:38: 39:68:c3:6f:25:88:0a:a4:f1:95:d8:98:a4:10:8c:a3:23:ac: 1f:5c:94:a4:e2:a1:16:45:46:35:47:d7:33:c9:17:d1:1f:25: 75:c8:1c:f8:b8:ac:ce:94:56:15:0b:2d:54:6b:54:08:50:83: 80:40:62:c8:49:db:60:16:75:ba:fd:ce:01:2c:49:a3:5c:1f: e9:91:f5:ea:61:ec:a8:6e:75:d6:eb:d6:15:63:e5:b9:4f:52: d1:ef:79:c1:a7:13:73:d7:2d:77:e9:9a:55:7b:66:36:aa:f9: 13:b6:b1:61:be:78:2f:2b:35:52:14:bc:9e:70:11:23:4e:26: c1:4d:72:42 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyMzgxMTAvBgNVBAUTKDYzRkFGNEQyM0U2ODNFOTNGNjA3NjMwRERGRkQ0QjFB RjYzMzNGMDAwHhcNMjYwNDA0MjAzNDEwWhcNMjYwNDExMjAzNDEwWjAYMRYwFAYD VQQDEw02OWQxNzVjMi00NmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8egm4pcBqlj4bRy5VHxnovJ700qLnz9TS9d0Jy7Zm6ZNQJ7OAOckQzMr3T4 QeXXySiXp39qtenePo/RPU46PIgy/9ZdY0j/nRZ3Sxq0BiiQ0raSVpvg4wLm72/w Wt4e74SDooYcr1CWdHWU3ACg9oC2h45AHCkvsdrPaeZ4BEZ6xM/2xKVYWYtFQirl F37Q2aG9DdWDB99c87vWaHQYuYyxSOWG92xBt/1X+sB0cEFUU9bhaV/T8Od2gt7g fhH23aasddnq7FVHZ42yv3MyoPDvRzc+RLNEL2rLifVFR3sN48qWbJDHlwUrhxlj 9GtVSvWfqTJ049LhSXXTg1EE4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCppfiny A2Nzudw+yUZztC0amZO9MB8GA1UdIwQYMBaAFGP69NI+aD6T9gdjDd/9Sxr2Mz8A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjIzOC84QzdBMzM2OEZE RkExMUVBOTNBQUZGMEFDNEY5QUUwMi9ZX3IwMGo1b1BwUDJCMk1OM18xTEd2WXpQ d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lfcjAwajVvUHBQMkIyTU4zXzFMR3ZZelB3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjIzOC84QzdBMzM2OEZERkExMUVBOTNBQUZGMEFDNEY5QUUwMi9ZX3IwMGo1b1Bw UDJCMk1OM18xTEd2WXpQd0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWcXM1W0C46WR5ebXtkC9uo5IHtaHwprPfTaTpu3b5IBCR3HtuAXOamptr3Ye vNXzlCOk6JOEJDhqwTJwmZA+6v1VFm77dNVdZK/cK1I/0pcajIKi1YTnOrSgX+dK fophgHDz5odgsqP1x6KbzhNfPClKmuHk0G5Kp62ATYg4OWjDbyWICqTxldiYpBCM oyOsH1yUpOKhFkVGNUfXM8kX0R8ldcgc+LiszpRWFQstVGtUCFCDgEBiyEnbYBZ1 uv3OASxJo1wf6ZH16mHsqG511uvWFWPluU9S0e95wacTc9ctd+maVXtmNqr5E7ax Yb54Lys1UhS8nnARI04mwU1yQg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:50:24 2026 by rpki-client