$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft File: yOujNL19pukuZ8QIvQN4e66uDK0.mft (raw, json) Hash identifier: e5KbeymQemg1plvJqaBikwM921f7YZChljeWP5iUp50= Subject key identifier: B5:7C:33:AD:5A:C3:44:2B:15:21:D1:B9:EA:07:C2:4C:64:9D:7D:34 Authority key identifier: C8:EB:A3:34:BD:7D:A6:E9:2E:67:C4:08:BD:03:78:7B:AE:AE:0C:AD Certificate issuer: /CN=A91CFE07/serialNumber=C8EBA334BD7DA6E92E67C408BD03787BAEAE0CAD Certificate serial: 0E0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft Manifest number: 0DF3 Signing time: Sat 04 Apr 2026 17:43:24 +0000 Manifest this update: Sat 04 Apr 2026 17:43:24 +0000 Manifest next update: Sat 11 Apr 2026 17:43:24 +0000 Files and hashes: 1: yOujNL19pukuZ8QIvQN4e66uDK0.crl (hash: vpQmuj22vwI/egr2TzAGKRRH18S0lh32u+bETw4HxJM=) 2: A82C70A4C9FA11EBB7F2E749C4F9AE02.roa (hash: YHt1SbNsyMG4Q62rnhZuMa3T8SKHY5G8WGqZLcUa22M=) 3: 226B7BC2AAC611EE9F22785DC4F9AE02.roa (hash: nT2sh7uqTi1U5cwmoFpAbizu4Ra0Y+5JbyS+sH+1hZc=) 4: A95EC0B2C9FA11EBB7F2E749C4F9AE02.roa (hash: Ohuq5/ilpYlHFnVFw/Xqzd7tdftLWWcaPxQsLzbu1bE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.crl rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:43:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3598 (0xe0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFE07, serialNumber=C8EBA334BD7DA6E92E67C408BD03787BAEAE0CAD Validity Not Before: Apr 4 17:43:24 2026 GMT Not After : Apr 11 17:43:24 2026 GMT Subject: CN=69d14dbc-4b8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:19:b6:5a:97:7c:d0:30:83:a5:0a:bb:25:58: fe:d4:78:21:7f:4f:a9:d8:8e:76:38:0e:12:d5:44: ce:2c:94:61:59:0e:de:6e:4f:0d:9d:7d:19:f6:58: 75:60:3a:c3:b6:f1:60:73:eb:7b:60:f7:97:fe:00: f4:29:82:8d:cc:69:99:05:59:47:10:81:b0:7c:03: 62:80:f6:d7:a9:52:c3:73:91:86:23:58:de:51:cd: 89:06:de:6d:66:f3:fa:39:78:6d:73:c9:59:ac:1e: e1:af:72:ea:df:12:71:72:cb:1e:8c:4a:a3:ad:3f: dc:3c:a8:7e:27:b6:14:4f:0b:6d:90:d2:d4:67:7b: cd:27:05:5a:04:cc:eb:56:67:3b:6e:d5:dc:0b:36: 71:11:20:af:42:6b:11:4c:d2:21:20:3c:52:c5:f5: a8:3f:58:b7:19:89:51:31:76:eb:c1:8c:60:da:61: 81:32:12:17:a7:94:e9:ca:c5:2d:5a:18:40:35:3f: d6:ae:ce:e4:b2:ee:d7:03:47:fe:01:da:66:88:58: 37:44:bc:de:de:e7:37:ad:dc:82:6b:a3:2f:98:85: b5:77:ab:78:4f:5c:34:73:54:e8:36:69:41:65:ef: ea:62:eb:31:3f:70:c0:67:19:26:2d:33:9f:9c:1f: 9b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:7C:33:AD:5A:C3:44:2B:15:21:D1:B9:EA:07:C2:4C:64:9D:7D:34 X509v3 Authority Key Identifier: keyid:C8:EB:A3:34:BD:7D:A6:E9:2E:67:C4:08:BD:03:78:7B:AE:AE:0C:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:53:48:8c:61:d3:e0:0a:5f:4d:94:d0:fa:df:71:01:ab:4e: ed:6b:d4:81:94:45:ef:19:f0:e3:18:77:8d:1d:82:29:c8:88: ef:ca:fb:a7:f8:6f:80:93:29:70:c7:fc:8e:bc:1b:c5:06:78: 63:ad:0f:f6:e4:39:11:bc:ab:ab:fc:9f:47:4c:f4:d2:8c:5e: 1a:e1:bb:39:e2:6e:9c:c2:db:02:61:ac:01:76:27:93:28:80: dc:1e:02:18:9e:61:4e:56:10:ed:16:aa:da:db:30:9b:66:de: c8:40:68:b6:45:93:7f:1a:54:4f:2b:50:23:ee:55:8f:75:89: 42:6a:cc:0e:18:06:82:99:02:cd:e5:2f:7d:f3:c7:18:0f:72: be:5b:03:73:44:b6:0c:1b:1e:02:73:20:51:22:07:27:6e:e0: 8e:44:42:68:3a:bd:e4:37:69:5a:42:8e:4b:8d:a4:32:1c:84: 4e:a9:65:14:c4:a1:52:9b:57:6c:50:bc:ed:c8:96:e1:ab:88: b4:5b:1d:e0:13:21:bc:8a:58:50:3b:2d:b0:a6:58:bf:4b:05: a1:cc:5c:8f:99:f0:54:d9:26:9d:ce:f2:73:1e:21:0f:22:68: 48:14:d8:21:bb:15:ae:f5:f0:8f:b9:e4:70:f6:59:5d:fe:b5: 40:91:fe:5d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZFMDcxMTAvBgNVBAUTKEM4RUJBMzM0QkQ3REE2RTkyRTY3QzQwOEJEMDM3ODdC QUVBRTBDQUQwHhcNMjYwNDA0MTc0MzI0WhcNMjYwNDExMTc0MzI0WjAYMRYwFAYD VQQDEw02OWQxNGRiYy00YjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphm2Wpd80DCDpQq7JVj+1Hghf0+p2I52OA4S1UTOLJRhWQ7ebk8NnX0Z9lh1 YDrDtvFgc+t7YPeX/gD0KYKNzGmZBVlHEIGwfANigPbXqVLDc5GGI1jeUc2JBt5t ZvP6OXhtc8lZrB7hr3Lq3xJxcssejEqjrT/cPKh+J7YUTwttkNLUZ3vNJwVaBMzr Vmc7btXcCzZxESCvQmsRTNIhIDxSxfWoP1i3GYlRMXbrwYxg2mGBMhIXp5TpysUt WhhANT/Wrs7ksu7XA0f+AdpmiFg3RLze3uc3rdyCa6MvmIW1d6t4T1w0c1ToNmlB Ze/qYusxP3DAZxkmLTOfnB+btwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLV8M61a w0QrFSHRueoHwkxknX00MB8GA1UdIwQYMBaAFMjrozS9fabpLmfECL0DeHuurgyt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkUwNy85NjJDNEI3RUQy QkYxMUU5QTg0RDY2MjJDNEY5QUUwMi95T3VqTkwxOXB1a3VaOFFJdlFONGU2NnVE SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPdWpOTDE5cHVrdVo4UUl2UU40ZTY2dURLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkUwNy85NjJDNEI3RUQyQkYxMUU5QTg0RDY2MjJDNEY5QUUwMi95T3VqTkwxOXB1 a3VaOFFJdlFONGU2NnVESzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxVNIjGHT4ApfTZTQ+t9xAatO7WvUgZRF7xnw4xh3jR2CKciI78r7p/hvgJMp cMf8jrwbxQZ4Y60P9uQ5Ebyrq/yfR0z00oxeGuG7OeJunMLbAmGsAXYnkyiA3B4C GJ5hTlYQ7Raq2tswm2beyEBotkWTfxpUTytQI+5Vj3WJQmrMDhgGgpkCzeUvffPH GA9yvlsDc0S2DBseAnMgUSIHJ27gjkRCaDq95DdpWkKOS42kMhyETqllFMShUptX bFC87ciW4auItFsd4BMhvIpYUDstsKZYv0sFocxcj5nwVNkmnc7ycx4hDyJoSBTY IbsVrvXwj7nkcPZZXf61QJH+XQ== -----END CERTIFICATE-----Generated at Mon Apr 6 09:02:35 2026 by rpki-client