$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft File: y1McHsaSJfDcrkTOyl41mAzpwPI.mft (raw, json) Hash identifier: WTsZX1TFT3EeHITsOpUiUoBWUhyxm1SAjdzwqTgDDsI= Subject key identifier: F8:98:FC:69:05:66:8D:39:81:E4:9C:19:2F:C3:F8:C8:D4:F4:F8:55 Authority key identifier: CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2 Certificate issuer: /CN=A91CFFCB/serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2 Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft Manifest number: A1 Signing time: Sun 05 Apr 2026 06:43:23 +0000 Manifest this update: Sun 05 Apr 2026 06:43:22 +0000 Manifest next update: Sun 12 Apr 2026 06:43:22 +0000 Files and hashes: 1: y1McHsaSJfDcrkTOyl41mAzpwPI.crl (hash: pT/BKrTewxJhhpy64xWnaiTMhFw+t+kWJuOtMzlyLE0=) 2: BB8F3118497B11F096DCA14EC4F9AE02.roa (hash: oQWD1xCgvEBo74MYI/v+krw85igCsnWcu6Q2lw2VOEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:43:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFCB, serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2 Validity Not Before: Apr 5 06:43:22 2026 GMT Not After : Apr 12 06:43:22 2026 GMT Subject: CN=69d2048a-64b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3a:ce:b1:8f:eb:4b:99:9b:7a:7e:7f:1c:28: cb:38:73:bc:ee:d7:61:a8:0d:34:d5:b3:1f:8f:c9: fb:07:48:09:d2:09:3a:7a:82:4b:ca:58:db:ac:22: 00:89:da:8d:21:58:22:e3:31:48:3d:5f:e7:86:e7: fd:2a:95:22:03:4e:53:66:65:cf:66:5a:9a:f5:4c: 98:f1:98:39:ff:30:d3:98:ca:c2:eb:d6:27:25:cc: 6b:48:55:1a:cb:4b:65:a6:79:69:e2:0d:51:2e:8a: d8:fd:24:03:be:84:17:0b:9e:42:3d:95:12:01:06: bc:0e:bf:74:08:58:26:aa:4c:d9:d2:27:7f:a4:ec: aa:27:f3:b2:6e:d1:68:02:67:a7:78:0d:38:6a:3e: 4f:83:21:e4:b5:13:d5:ed:37:f8:8e:4d:c3:34:a8: c5:c2:6b:c9:18:79:a2:49:54:59:3e:9f:72:b3:b7: d1:76:e4:c1:9e:9c:74:4d:99:0f:6a:3e:1e:f2:19: 22:93:1b:6a:4f:ff:61:86:f8:f3:1b:78:4a:79:0e: 14:6b:78:8d:d9:2d:48:48:45:15:17:a8:57:c0:8a: 10:f6:24:e6:6d:aa:4a:3f:f1:ef:3e:76:94:4b:73: 18:38:44:bd:b2:37:ee:89:a9:73:d7:8f:36:70:92: 70:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:98:FC:69:05:66:8D:39:81:E4:9C:19:2F:C3:F8:C8:D4:F4:F8:55 X509v3 Authority Key Identifier: keyid:CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:a8:b0:7f:d5:30:2b:2e:0b:d7:aa:0d:00:40:89:68:72:f4: 3f:23:97:c0:c0:d9:51:9a:34:d5:82:c1:1d:89:e5:e7:27:c6: 24:53:42:f8:4a:6b:71:99:e4:ea:99:64:e7:09:9b:35:2e:9f: a6:93:ad:f6:a5:14:af:49:7e:9f:f8:4b:c9:12:77:59:8e:7d: 4e:a8:a7:e8:37:ba:8f:02:da:70:7f:88:c5:73:14:22:84:d8: 37:82:de:b8:77:0c:af:90:3e:c7:d5:e3:f5:39:24:c3:42:9a: f3:2b:83:0e:de:3e:e6:b3:d7:83:23:6a:aa:df:c5:9e:36:e5: 31:28:45:6b:24:11:2d:be:0b:11:02:48:aa:b3:7d:aa:69:40: f1:a2:17:9b:14:9c:6d:d7:31:e2:b0:c2:80:a8:59:0b:be:4b: 25:3b:60:30:5a:62:fd:57:86:af:f6:d5:be:7b:f4:61:5e:a4: 3a:42:9f:4e:51:8c:15:7b:47:2a:f2:ea:ab:e8:a4:b1:5a:a6: c5:ff:bb:f4:f3:10:6d:cb:b3:9c:f3:72:91:9d:e5:7b:46:2c: a3:0d:a7:ed:ea:79:5b:c2:9f:0a:c8:e4:8f:98:07:a3:cb:74: 79:c8:87:3f:80:95:45:71:cf:b2:37:07:5d:93:53:d6:ad:1d: c2:15:51:2f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQ0IxMTAvBgNVBAUTKENCNTMxQzFFQzY5MjI1RjBEQ0FFNDRDRUNBNUUzNTk4 MENFOUMwRjIwHhcNMjYwNDA1MDY0MzIyWhcNMjYwNDEyMDY0MzIyWjAYMRYwFAYD VQQDEw02OWQyMDQ4YS02NGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyjrOsY/rS5mben5/HCjLOHO87tdhqA001bMfj8n7B0gJ0gk6eoJLyljbrCIA idqNIVgi4zFIPV/nhuf9KpUiA05TZmXPZlqa9UyY8Zg5/zDTmMrC69YnJcxrSFUa y0tlpnlp4g1RLorY/SQDvoQXC55CPZUSAQa8Dr90CFgmqkzZ0id/pOyqJ/OybtFo AmeneA04aj5PgyHktRPV7Tf4jk3DNKjFwmvJGHmiSVRZPp9ys7fRduTBnpx0TZkP aj4e8hkikxtqT/9hhvjzG3hKeQ4Ua3iN2S1ISEUVF6hXwIoQ9iTmbapKP/HvPnaU S3MYOES9sjfuialz1482cJJwjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPiY/GkF Zo05geScGS/D+MjU9PhVMB8GA1UdIwQYMBaAFMtTHB7GkiXw3K5EzspeNZgM6cDy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZDQi9GNURCN0ExNjQy MDUxMUYwQkY3QTg3MTFDNEY5QUUwMi95MU1jSHNhU0pmRGNya1RPeWw0MW1BenB3 UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxTWNIc2FTSmZEY3JrVE95bDQxbUF6cHdQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZDQi9GNURCN0ExNjQyMDUxMUYwQkY3QTg3MTFDNEY5QUUwMi95MU1jSHNhU0pm RGNya1RPeWw0MW1BenB3UEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHKiwf9UwKy4L16oNAECJaHL0PyOXwMDZUZo01YLBHYnl5yfGJFNC+EprcZnk 6plk5wmbNS6fppOt9qUUr0l+n/hLyRJ3WY59Tqin6De6jwLacH+IxXMUIoTYN4Le uHcMr5A+x9Xj9Tkkw0Ka8yuDDt4+5rPXgyNqqt/FnjblMShFayQRLb4LEQJIqrN9 qmlA8aIXmxScbdcx4rDCgKhZC75LJTtgMFpi/VeGr/bVvnv0YV6kOkKfTlGMFXtH KvLqq+iksVqmxf+79PMQbcuznPNykZ3le0Ysow2n7ep5W8KfCsjkj5gHo8t0eciH P4CVRXHPsjcHXZNT1q0dwhVRLw== -----END CERTIFICATE-----Generated at Mon Apr 6 14:50:48 2026 by rpki-client