$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft File: YB71rSfD3A1NmC22u0dsBsvHAKA.mft (raw, json) Hash identifier: CQBgcW++rvmj1HzS6BhdHiKxnt/g+IS/TXg7Blei0rQ= Subject key identifier: A6:B3:7C:B6:88:2F:5B:24:F7:E2:B5:48:C3:74:3F:84:D7:BB:2A:1C Authority key identifier: 60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 Certificate issuer: /CN=A91BFE4E/serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft Manifest number: 011F Signing time: Sun 05 Apr 2026 05:08:28 +0000 Manifest this update: Sun 05 Apr 2026 05:08:27 +0000 Manifest next update: Sun 12 Apr 2026 05:08:27 +0000 Files and hashes: 1: YB71rSfD3A1NmC22u0dsBsvHAKA.crl (hash: pVSbAYK1jdWNzUDP8AmQaMWdMlo1GMd4qH+EWSjWcu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE4E, serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Validity Not Before: Apr 5 05:08:27 2026 GMT Not After : Apr 12 05:08:27 2026 GMT Subject: CN=69d1ee4b-fc6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:07:ad:94:00:cb:31:f3:e0:66:b2:96:ca:aa: 48:bb:9a:0b:f9:2b:03:af:cb:29:51:96:87:11:73: c4:dc:3d:89:f1:17:14:a9:4d:ad:bf:e0:d3:1c:2b: eb:26:10:4e:04:76:e4:c7:c0:44:15:45:db:a5:ea: b5:15:39:d5:b6:54:77:3d:d7:d1:1a:b0:5a:8c:e7: 04:d8:e1:c5:e2:e9:91:4a:aa:7d:49:4c:8f:7c:ef: 6c:66:9b:c8:eb:0e:40:d4:01:86:83:39:c0:7b:e7: 84:f5:5b:7e:42:84:9f:78:ac:88:50:2e:1b:0f:70: 87:6f:df:a7:97:d8:a0:4d:c2:ba:6e:3b:3b:43:05: 32:ed:13:0e:95:f5:47:7c:04:8a:ed:6b:ed:e3:a4: 3b:12:c9:27:cd:ce:55:b2:fd:74:46:f9:81:10:e7: e2:29:f6:ea:66:cf:f7:61:02:87:e1:fc:b5:14:4e: 01:20:34:e1:4f:0e:5a:e6:de:e4:13:79:ae:a0:64: 08:a2:39:47:b2:e0:df:f5:2b:bb:ba:8a:a5:26:17: 4e:48:84:ed:94:e7:37:40:8d:1f:e1:e5:a7:76:bb: b5:52:85:fb:8b:4b:ce:43:87:4e:fa:88:7e:bf:88: f2:f8:31:b2:1f:b5:d3:b3:cc:9c:77:b5:f2:dd:46: dc:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B3:7C:B6:88:2F:5B:24:F7:E2:B5:48:C3:74:3F:84:D7:BB:2A:1C X509v3 Authority Key Identifier: keyid:60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:ce:e3:95:41:c5:b5:ff:a5:28:ac:b1:02:df:ea:d8:1c:79: 5a:5d:cd:76:dd:30:d8:87:ec:ae:ba:d8:68:db:0d:ce:e5:25: 66:c2:e5:bd:ff:72:ef:01:81:d1:01:bb:a8:be:ba:d1:2e:aa: b1:e0:e9:87:05:dd:6c:a6:88:5d:55:23:50:42:6c:3b:a2:75: 18:7a:4e:c4:ff:1b:cf:5c:7f:7c:01:91:b9:ed:53:cf:bd:fe: 41:d5:5c:95:5e:5b:cd:53:4f:68:9d:44:69:cb:8a:78:b2:9f: 6a:6f:d4:fb:1f:ff:c0:29:84:70:25:7c:8c:f3:ec:79:03:7d: 4b:da:cb:86:ba:9a:7e:00:c1:47:ca:b5:5b:5f:2b:86:bc:66: 24:8a:df:41:c5:d0:10:eb:03:d8:95:58:d3:5e:36:f1:0b:71: 7c:e7:e7:4f:5e:4a:c3:50:4d:a6:34:49:81:31:d0:67:25:22: 6e:a0:96:90:52:eb:24:40:37:ec:21:f3:71:3f:7e:44:40:4e: c5:34:68:4b:37:9b:3f:46:7f:34:93:73:90:2b:0e:43:9b:03: 01:7a:6c:4e:46:eb:56:f0:0a:77:30:5d:4d:c4:c5:15:39:80: 14:7c:9d:eb:b4:17:40:3d:ef:6c:fd:ff:71:88:31:fb:d7:18: 94:c6:46:e9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNEUxMTAvBgNVBAUTKDYwMUVGNUFEMjdDM0RDMEQ0RDk4MkRCNkJCNDc2QzA2 Q0JDNzAwQTAwHhcNMjYwNDA1MDUwODI3WhcNMjYwNDEyMDUwODI3WjAYMRYwFAYD VQQDEw02OWQxZWU0Yi1mYzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowetlADLMfPgZrKWyqpIu5oL+SsDr8spUZaHEXPE3D2J8RcUqU2tv+DTHCvr JhBOBHbkx8BEFUXbpeq1FTnVtlR3PdfRGrBajOcE2OHF4umRSqp9SUyPfO9sZpvI 6w5A1AGGgznAe+eE9Vt+QoSfeKyIUC4bD3CHb9+nl9igTcK6bjs7QwUy7RMOlfVH fASK7Wvt46Q7Esknzc5Vsv10RvmBEOfiKfbqZs/3YQKH4fy1FE4BIDThTw5a5t7k E3muoGQIojlHsuDf9Su7uoqlJhdOSITtlOc3QI0f4eWndru1UoX7i0vOQ4dO+oh+ v4jy+DGyH7XTs8ycd7Xy3UbcWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKazfLaI L1sk9+K1SMN0P4TXuyocMB8GA1UdIwQYMBaAFGAe9a0nw9wNTZgttrtHbAbLxwCg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU0RS9EQTNENzFBODdC RTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNBMU5tQzIydTBkc0JzdkhB S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCNzFyU2ZEM0ExTm1DMjJ1MGRzQnN2SEFLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU0RS9EQTNENzFBODdCRTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNB MU5tQzIydTBkc0JzdkhBS0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuM7jlUHFtf+lKKyxAt/q2Bx5Wl3Ndt0w2IfsrrrYaNsNzuUlZsLlvf9y7wGB 0QG7qL660S6qseDphwXdbKaIXVUjUEJsO6J1GHpOxP8bz1x/fAGRue1Tz73+QdVc lV5bzVNPaJ1EacuKeLKfam/U+x//wCmEcCV8jPPseQN9S9rLhrqafgDBR8q1W18r hrxmJIrfQcXQEOsD2JVY01428QtxfOfnT15Kw1BNpjRJgTHQZyUibqCWkFLrJEA3 7CHzcT9+REBOxTRoSzebP0Z/NJNzkCsOQ5sDAXpsTkbrVvAKdzBdTcTFFTmAFHyd 67QXQD3vbP3/cYgx+9cYlMZG6Q== -----END CERTIFICATE-----Generated at Mon Apr 6 08:51:06 2026 by rpki-client