$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft File: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft (raw, json) Hash identifier: zM3PJV3/vEaM/nq62hMKjl9O1qtE8xR4smF4Cin7z+s= Subject key identifier: 1D:58:81:6C:52:E0:D4:7E:2A:6A:4F:D5:98:80:DE:BB:9D:9A:69:B2 Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 0AD0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft Manifest number: 0ABA Signing time: Sun 26 Apr 2026 19:22:48 +0000 Manifest this update: Sun 26 Apr 2026 19:22:47 +0000 Manifest next update: Sun 03 May 2026 19:22:47 +0000 Files and hashes: 1: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl (hash: hQqWCaSL+nGKzt2W2RHw2/mupwzDD0t/f9GA0dBtsIw=) 2: 3A851EE273E411EA9572F76EC4F9AE02.roa (hash: B7PIpT06o5yz5X0ICfGhNE1RjQ8ofk6sdiEjNK1EArU=) 3: 55D7D802475A11F0B3C02112C4F9AE02.roa (hash: 1ct6ERLfD4y94EVh8sazQBKiN2tsb/2UaNvWuVl4I30=) 4: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (hash: 9jHgiW6B1sqLvSJnd17xl6prg5mUxXRdfL0P2w6JRHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 19:22:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2768 (0xad0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF, serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: Apr 26 19:22:47 2026 GMT Not After : May 3 19:22:47 2026 GMT Subject: CN=69ee6608-94fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:dc:fe:b8:fc:2e:cb:59:97:0b:a6:50:b1:0a: 0c:3d:ac:b1:84:54:b0:ce:ca:9f:15:34:54:7c:16: 4b:31:0e:34:04:0c:b3:24:9a:3e:8f:61:1e:b5:45: 9e:57:c5:43:6a:95:3e:bb:f4:7a:71:d7:df:be:80: 40:93:db:81:fe:16:83:b1:37:eb:4c:0f:00:b4:3c: a0:3e:a0:31:f2:5b:c6:f8:29:85:0f:be:11:d6:2f: b9:79:77:92:23:78:3b:03:2b:11:6b:1a:ff:cb:b6: d0:ad:f2:a4:0a:38:58:15:ad:dd:e0:52:e9:04:07: cd:c0:a2:8b:3d:d5:9a:6b:bc:e2:eb:fc:7b:02:15: ad:8e:34:02:58:3f:08:29:eb:49:17:f7:3f:60:e7: a6:43:46:f0:89:7e:e3:48:11:87:d8:0e:66:d2:8d: a8:0d:fa:64:b2:d3:ca:a2:0f:9a:0b:7c:fe:9e:47: 5c:e5:5b:80:c3:82:ea:36:b7:d0:63:ec:86:d4:84: c4:15:cd:e7:c0:ed:c0:ee:5c:8e:9f:35:71:dc:48: 84:eb:ae:c9:2e:2d:2d:69:05:41:62:41:0f:7a:43: 01:9a:e5:78:11:dd:75:d5:73:fa:73:1a:ab:c4:da: ab:9a:c2:15:86:35:94:b9:67:1b:e1:42:0e:34:5c: 6f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:58:81:6C:52:E0:D4:7E:2A:6A:4F:D5:98:80:DE:BB:9D:9A:69:B2 X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:6e:30:e1:80:6f:97:b3:3f:6a:80:9b:1f:38:fb:67:e8:b9: bb:5f:2b:1f:d7:46:b1:12:5a:b0:24:49:36:58:98:58:ea:77: 85:3f:89:1a:d3:1e:8e:37:a1:fe:b0:4a:0b:d3:ee:ad:da:c5: 9c:4f:c0:bf:74:7b:94:f6:2f:ba:75:5f:7a:c8:ac:4b:e7:6e: e5:fb:59:f6:d3:45:12:16:53:2b:97:33:3b:16:25:34:5d:24: d1:d4:12:aa:6b:12:b0:7d:77:03:f0:35:17:04:97:d2:18:ce: b2:3f:91:ab:83:c7:62:d2:9e:f6:40:ad:05:a7:61:18:a0:01: 4d:48:60:4b:0c:75:c7:67:d7:96:21:94:12:8a:e7:a9:33:8c: 75:ad:c0:91:e8:bf:5b:d2:c5:98:56:4b:e1:4d:bc:b2:f3:6d: 45:5b:4b:f9:ef:9e:79:80:f2:c1:df:4f:b9:f9:e9:6d:df:6f: 06:a2:6b:75:33:cd:ea:e0:89:fc:d4:7c:6b:2d:98:c8:fb:bf: 8b:df:87:95:1e:ab:26:fa:08:f8:80:7f:83:7f:1d:5b:00:62: 21:b9:bb:0c:e3:cb:da:71:a5:c8:aa:4a:0f:5d:31:38:2b:25: e9:bb:40:2b:f4:1a:0f:bd:92:92:a8:f0:5f:02:db:50:0a:da: 61:1f:89:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjYwNDI2MTkyMjQ3WhcNMjYwNTAzMTkyMjQ3WjAYMRYwFAYD VQQDEw02OWVlNjYwOC05NGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqtz+uPwuy1mXC6ZQsQoMPayxhFSwzsqfFTRUfBZLMQ40BAyzJJo+j2EetUWe V8VDapU+u/R6cdffvoBAk9uB/haDsTfrTA8AtDygPqAx8lvG+CmFD74R1i+5eXeS I3g7AysRaxr/y7bQrfKkCjhYFa3d4FLpBAfNwKKLPdWaa7zi6/x7AhWtjjQCWD8I KetJF/c/YOemQ0bwiX7jSBGH2A5m0o2oDfpkstPKog+aC3z+nkdc5VuAw4LqNrfQ Y+yG1ITEFc3nwO3A7lyOnzVx3EiE667JLi0taQVBYkEPekMBmuV4Ed111XP6cxqr xNqrmsIVhjWUuWcb4UIONFxvyQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB1YgWxS 4NR+KmpP1ZiA3rudmmmyMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkFDRi81QUM2MkIyQTczRTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlh V3gtS2FnM1g0aUcyUGxOS3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbW4w4YBvl7M/aoCbHzj7Z+i5u18rH9dGsRJasCRJNliYWOp3hT+JGtMejjeh /rBKC9PurdrFnE/Av3R7lPYvunVfesisS+du5ftZ9tNFEhZTK5czOxYlNF0k0dQS qmsSsH13A/A1FwSX0hjOsj+Rq4PHYtKe9kCtBadhGKABTUhgSwx1x2fXliGUEorn qTOMda3Akei/W9LFmFZL4U28svNtRVtL+e+eeYDywd9Pufnpbd9vBqJrdTPN6uCJ /NR8ay2YyPu/i9+HlR6rJvoI+IB/g38dWwBiIbm7DOPL2nGlyKpKD10xOCsl6btA K/QaD72SkqjwXwLbUAraYR+J0Q== -----END CERTIFICATE-----Generated at Mon Apr 27 04:16:11 2026 by rpki-client