$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft File: yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft (raw, json) Hash identifier: HgTiUrp3jclr2ozksTSpM5BpmcyFItRRdkaRvH2FbSI= Subject key identifier: 4E:B7:5F:12:7D:CF:82:F1:26:A3:65:56:8F:A3:07:7F:A3:37:6A:82 Authority key identifier: C8:7F:CA:E9:07:BD:20:5A:08:E5:4C:67:A6:33:56:D9:21:C5:91:3B Certificate issuer: /CN=A91CC8B1/serialNumber=C87FCAE907BD205A08E54C67A63356D921C5913B Certificate serial: 0CD1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft Manifest number: 0CC7 Signing time: Sat 04 Apr 2026 18:13:59 +0000 Manifest this update: Sat 04 Apr 2026 18:13:59 +0000 Manifest next update: Sat 11 Apr 2026 18:13:59 +0000 Files and hashes: 1: yH_K6Qe9IFoI5UxnpjNW2SHFkTs.crl (hash: gcJmTHD9aeRTQmUhLmCsc6sA2JeQM4TfE9jwUFU330w=) 2: 69308C200A9611EABF034172C4F9AE02.roa (hash: Og8kggLWLgVMfPp3OlQnblKMTWi+r7xJXzXK2YD03aI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.crl rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:13:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3281 (0xcd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC8B1, serialNumber=C87FCAE907BD205A08E54C67A63356D921C5913B Validity Not Before: Apr 4 18:13:59 2026 GMT Not After : Apr 11 18:13:59 2026 GMT Subject: CN=69d154e7-ed7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1e:37:98:35:a5:71:68:ac:f8:72:97:0b:95: 11:00:b6:b2:dc:e7:35:39:75:79:97:c2:5d:97:da: f8:25:54:5b:ae:5d:b6:64:bd:14:28:20:07:05:b3: a7:9c:39:49:cc:12:e3:b9:d3:6d:47:8f:f5:0c:89: b0:03:0e:24:55:bb:c1:da:17:99:83:4b:18:85:e8: 9e:82:b3:91:0a:7c:03:37:ac:eb:c9:b4:ec:ae:2c: bf:4d:4f:ac:79:38:92:93:09:c7:34:6c:47:ff:b8: 3c:dc:16:0d:33:d9:3e:02:66:0d:79:10:77:2e:87: 52:0c:17:c3:a6:ad:a2:fa:25:9a:4d:f8:29:25:9a: 71:40:28:1b:03:b8:5f:9d:40:68:71:d1:ec:d7:3b: 0b:b5:85:30:f3:f4:eb:61:17:21:24:8c:f7:81:1b: b3:a3:ef:68:f1:e7:78:1a:99:32:cf:46:89:bf:a0: c9:8b:a9:d2:a7:2d:15:fc:6a:d9:c1:bb:eb:ce:29: e1:1b:8e:b7:a1:05:51:bd:f2:ef:db:33:16:e2:10: e6:92:9e:d0:69:06:fc:cd:3d:d3:5d:79:b9:4e:4a: f0:18:cd:5c:0b:62:19:31:fb:0a:fe:d8:ab:10:96: 67:f3:43:19:d1:49:fa:3a:11:08:1d:78:22:73:a3: c9:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:B7:5F:12:7D:CF:82:F1:26:A3:65:56:8F:A3:07:7F:A3:37:6A:82 X509v3 Authority Key Identifier: keyid:C8:7F:CA:E9:07:BD:20:5A:08:E5:4C:67:A6:33:56:D9:21:C5:91:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:c1:23:fc:69:ae:d5:dc:ff:51:8b:56:76:e5:bf:ce:d0:71: ed:4a:61:a7:e0:37:f2:0e:c7:bf:0b:f9:c8:00:24:5d:25:01: 9c:02:72:79:e2:1b:97:d6:fa:1a:dd:cc:22:4b:af:f3:1c:5c: 07:4e:5c:eb:d5:bb:97:97:c5:51:fa:97:54:56:88:46:1b:b6: 90:1f:20:72:39:b0:8b:5c:9a:fd:08:01:91:e9:1b:3b:c2:1c: aa:ee:8a:da:1f:50:f0:21:1b:81:11:c4:b8:68:9f:bc:a5:40: 78:8e:bc:7d:73:ee:cf:78:c9:8c:90:77:bf:8a:f1:6b:5c:bd: e9:89:5d:cb:6c:69:6e:d5:f3:26:f5:03:e3:42:9b:37:de:a8: 75:7f:a0:80:f1:2b:85:48:4b:38:4d:77:6d:ee:d0:b3:b3:61: 9f:47:3d:7f:a6:76:2a:2a:79:5d:d8:fd:97:8d:47:4d:7d:e0: 19:a6:84:77:26:f6:d4:0a:d5:80:76:23:72:28:1d:2b:f5:83: 85:d2:88:04:f6:3b:37:d1:0d:1d:dd:bf:3a:ca:02:49:bb:ed: e4:e0:ec:17:ea:c5:03:31:50:99:ec:ba:73:d4:65:f5:fa:29: 35:ef:85:37:0d:f1:08:20:54:cb:a2:04:a9:dd:1e:8b:70:5e: 8c:46:01:8c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M4QjExMTAvBgNVBAUTKEM4N0ZDQUU5MDdCRDIwNUEwOEU1NEM2N0E2MzM1NkQ5 MjFDNTkxM0IwHhcNMjYwNDA0MTgxMzU5WhcNMjYwNDExMTgxMzU5WjAYMRYwFAYD VQQDEw02OWQxNTRlNy1lZDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwx43mDWlcWis+HKXC5URALay3Oc1OXV5l8Jdl9r4JVRbrl22ZL0UKCAHBbOn nDlJzBLjudNtR4/1DImwAw4kVbvB2heZg0sYheiegrORCnwDN6zrybTsriy/TU+s eTiSkwnHNGxH/7g83BYNM9k+AmYNeRB3LodSDBfDpq2i+iWaTfgpJZpxQCgbA7hf nUBocdHs1zsLtYUw8/TrYRchJIz3gRuzo+9o8ed4Gpkyz0aJv6DJi6nSpy0V/GrZ wbvrzinhG463oQVRvfLv2zMW4hDmkp7QaQb8zT3TXXm5TkrwGM1cC2IZMfsK/tir EJZn80MZ0Un6OhEIHXgic6PJkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE63XxJ9 z4LxJqNlVo+jB3+jN2qCMB8GA1UdIwQYMBaAFMh/yukHvSBaCOVMZ6YzVtkhxZE7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzhCMS9DRTg1MUE1NjBB OTUxMUVBODVGRkFBNzFDNEY5QUUwMi95SF9LNlFlOUlGb0k1VXhucGpOVzJTSEZr VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lIX0s2UWU5SUZvSTVVeG5wak5XMlNIRmtUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzhCMS9DRTg1MUE1NjBBOTUxMUVBODVGRkFBNzFDNEY5QUUwMi95SF9LNlFlOUlG b0k1VXhucGpOVzJTSEZrVHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAb8Ej/Gmu1dz/UYtWduW/ztBx7Uphp+A38g7Hvwv5yAAkXSUBnAJyeeIbl9b6 Gt3MIkuv8xxcB05c69W7l5fFUfqXVFaIRhu2kB8gcjmwi1ya/QgBkekbO8Icqu6K 2h9Q8CEbgRHEuGifvKVAeI68fXPuz3jJjJB3v4rxa1y96Yldy2xpbtXzJvUD40Kb N96odX+ggPErhUhLOE13be7Qs7Nhn0c9f6Z2Kip5Xdj9l41HTX3gGaaEdyb21ArV gHYjcigdK/WDhdKIBPY7N9ENHd2/OsoCSbvt5ODsF+rFAzFQmey6c9Rl9fopNe+F Nw3xCCBUy6IEqd0ei3BejEYBjA== -----END CERTIFICATE-----Generated at Mon Apr 6 11:22:46 2026 by rpki-client