$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft File: Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft (raw, json) Hash identifier: Pnkvj3W1VMxUoY/J+cPuU63R+I2IrKJt6tMfXfmYyJA= Subject key identifier: 9B:7E:E0:E4:B9:51:79:D8:0A:13:82:A8:38:C7:E0:58:63:F3:CF:68 Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 Certificate issuer: /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft Manifest number: 0147 Signing time: Sun 05 Apr 2026 04:43:07 +0000 Manifest this update: Sun 05 Apr 2026 04:43:07 +0000 Manifest next update: Sun 12 Apr 2026 04:43:07 +0000 Files and hashes: 1: Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl (hash: Bj2O9rr7efrJvKTrf4vKV/NKYqpX3KfSybxf5rM70Ck=) 2: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (hash: y32dMEUN6YUCKolUe/uVA0r0aXZ6vWR2Ez2nh841QQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:43:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB629, serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Validity Not Before: Apr 5 04:43:07 2026 GMT Not After : Apr 12 04:43:07 2026 GMT Subject: CN=69d1e85b-f191 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:42:f5:17:a2:13:cd:5a:e8:87:0a:e2:8c:a2: b7:c4:d4:ac:e2:b7:57:30:25:c5:18:f8:5d:fb:30: 10:54:93:48:fd:a1:df:08:c2:c9:a0:3e:9f:70:b4: 59:0d:f6:62:c3:16:b8:cb:3b:ff:ae:ad:f0:dc:ff: 71:74:46:14:be:64:24:94:0c:f6:24:43:be:39:02: 70:44:52:89:3b:d5:8b:ab:46:e3:fa:91:46:db:d2: 05:9b:7a:55:96:b9:d0:5d:c9:97:19:46:16:96:6a: dd:77:65:95:4d:7c:32:ac:3d:23:95:1b:9e:6b:c2: 21:62:6f:01:1e:a6:cf:00:70:b9:2f:0e:db:2c:d3: 65:83:6a:5f:1e:ad:56:ad:ff:0d:4e:8a:10:40:c9: 75:f4:d2:7e:df:c8:16:22:75:91:3d:3f:24:83:78: e2:71:a1:f1:bf:ae:33:bc:97:30:a5:21:ca:fa:cb: 2a:a8:92:6f:49:e3:4e:46:76:a9:c5:a9:34:d1:78: 2d:6c:6d:df:54:47:0c:e5:62:26:3f:e1:85:23:36: e0:5b:5f:b8:b7:66:60:fa:b6:47:63:e8:54:0d:ac: 8e:f9:8c:d3:90:96:63:46:bc:04:5b:95:39:71:33: 67:52:25:a3:0a:e8:3e:2b:ee:d7:6e:f3:93:30:1e: ad:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:7E:E0:E4:B9:51:79:D8:0A:13:82:A8:38:C7:E0:58:63:F3:CF:68 X509v3 Authority Key Identifier: keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:7e:cd:93:66:fa:8a:86:f7:cd:4b:f6:a9:18:32:ca:f0:34: 93:51:0a:a4:28:26:b0:07:81:bc:7f:c5:2f:47:64:cc:a0:52: d3:3e:fb:fa:b8:36:e7:72:b2:27:82:ad:df:6d:9f:97:ad:53: 00:e1:b9:5f:46:55:b1:ce:fc:d7:72:ae:59:31:fc:48:1f:32: 79:b1:ce:e9:dc:53:31:61:44:13:b3:34:2e:78:51:d9:72:69: 88:6b:08:d2:7c:d8:64:21:53:ba:93:36:ad:a2:3c:07:dd:cb: dc:ba:0e:9d:1a:d3:95:f6:03:67:b7:60:b3:ea:cd:a1:3a:d4: 72:2f:6f:bc:01:15:36:56:81:52:9a:9d:0f:e6:18:c4:e5:ff: c4:09:c0:e4:8c:0c:67:e5:51:0d:af:d5:97:bd:22:65:fc:63: 31:a7:54:d3:c2:20:51:81:df:91:40:28:d0:aa:c8:a8:3c:51: 05:68:1e:3a:f7:0a:25:56:d9:22:da:e0:e4:57:b3:3c:29:bc: 9f:05:12:ee:fc:b2:49:78:36:f1:d2:31:cf:19:d8:66:ca:77: f5:e3:dc:da:10:ae:aa:a6:49:b1:c6:23:e8:84:af:0c:df:2a: b8:57:15:19:ea:63:38:e2:e0:1f:00:06:cf:3a:21:c7:9c:c4: 75:b0:56:df -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2MjkxMTAvBgNVBAUTKDYzMEVGQzhCQzgyNDdGOTlBMDEyODA3NDFFNEExQTBE QjdGMTQ3QjAwHhcNMjYwNDA1MDQ0MzA3WhcNMjYwNDEyMDQ0MzA3WjAYMRYwFAYD VQQDEw02OWQxZTg1Yi1mMTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEL1F6ITzVrohwrijKK3xNSs4rdXMCXFGPhd+zAQVJNI/aHfCMLJoD6fcLRZ DfZiwxa4yzv/rq3w3P9xdEYUvmQklAz2JEO+OQJwRFKJO9WLq0bj+pFG29IFm3pV lrnQXcmXGUYWlmrdd2WVTXwyrD0jlRuea8IhYm8BHqbPAHC5Lw7bLNNlg2pfHq1W rf8NTooQQMl19NJ+38gWInWRPT8kg3jicaHxv64zvJcwpSHK+ssqqJJvSeNORnap xak00XgtbG3fVEcM5WImP+GFIzbgW1+4t2Zg+rZHY+hUDayO+YzTkJZjRrwEW5U5 cTNnUiWjCug+K+7XbvOTMB6tzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJt+4OS5 UXnYChOCqDjH4Fhj889oMB8GA1UdIwQYMBaAFGMO/IvIJH+ZoBKAdB5KGg238Uew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjYyOS9FMkNGOTQwQTQ1 QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1bWdFb0IwSGtvYURiZnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l3NzhpOGdrZjVtZ0VvQjBIa29hRGJmeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjYyOS9FMkNGOTQwQTQ1QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1 bWdFb0IwSGtvYURiZnhSN0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsX7Nk2b6iob3zUv2qRgyyvA0k1EKpCgmsAeBvH/FL0dkzKBS0z77+rg253Ky J4Kt322fl61TAOG5X0ZVsc7813KuWTH8SB8yebHO6dxTMWFEE7M0LnhR2XJpiGsI 0nzYZCFTupM2raI8B93L3LoOnRrTlfYDZ7dgs+rNoTrUci9vvAEVNlaBUpqdD+YY xOX/xAnA5IwMZ+VRDa/Vl70iZfxjMadU08IgUYHfkUAo0KrIqDxRBWgeOvcKJVbZ Itrg5FezPCm8nwUS7vyySXg28dIxzxnYZsp39ePc2hCuqqZJscYj6ISvDN8quFcV GepjOOLgHwAGzzohx5zEdbBW3w== -----END CERTIFICATE-----Generated at Mon Apr 6 16:36:54 2026 by rpki-client