$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft File: yoXhM8HiOWFMnFd4ARi9swlSjnY.mft (raw, json) Hash identifier: xmDizRpgcJLjTrhN/hijhf9Zs6osFv8CL+ZipSxuvZE= Subject key identifier: F5:9F:91:C4:78:0D:EF:7F:C9:A0:76:13:99:AA:D8:6A:5D:91:6F:4C Authority key identifier: CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 Certificate issuer: /CN=A91DC42E/serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Certificate serial: 0837 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft Manifest number: 082E Signing time: Sat 04 Apr 2026 20:45:07 +0000 Manifest this update: Sat 04 Apr 2026 20:45:06 +0000 Manifest next update: Sat 11 Apr 2026 20:45:06 +0000 Files and hashes: 1: yoXhM8HiOWFMnFd4ARi9swlSjnY.crl (hash: Foe9cgLFQqhF8WKRmS1vBc3upAv+Ec4BMQJfNO7e8YU=) 2: 4AAD8CFE0D1E11EB83C9B637C4F9AE02.roa (hash: 1FYTa+b4b7Loa31EgzeXR7TOb6YS6HpedmRkzfbLWn0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:45:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2103 (0x837) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC42E, serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Validity Not Before: Apr 4 20:45:06 2026 GMT Not After : Apr 11 20:45:06 2026 GMT Subject: CN=69d17853-9928 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:79:b6:18:ca:18:57:7a:2b:38:d1:4e:9c:b1: 8a:78:0b:dd:16:11:8a:47:c8:29:ac:02:a2:ed:a7: 40:2f:3b:e4:ec:1a:d8:d5:20:a2:07:9f:f2:3d:13: 88:04:0b:5e:75:9a:8a:02:3a:c5:ef:57:99:74:56: 77:4e:38:08:b5:c2:92:66:6a:b8:99:2c:cb:32:e9: 83:0d:85:b3:e3:14:01:b5:f4:24:ce:9f:3a:64:30: ea:26:1d:dd:e0:22:6c:c1:a9:05:5d:cc:f4:4e:3a: f0:16:58:d4:61:0e:2f:f7:a7:44:a4:d8:41:78:da: 23:cb:3c:a9:a0:35:f7:0a:28:c2:48:2e:8e:ea:75: 85:9b:a5:11:ff:0c:81:1e:89:26:5a:3b:a7:47:8b: 2e:f3:37:09:5d:b3:06:38:79:da:6b:4a:cd:c2:97: 90:e0:3b:fa:06:03:55:ee:f8:e1:d8:90:94:ca:e0: 3b:58:05:2b:10:36:b4:e7:0b:e6:a4:b7:4c:2e:56: 55:68:0b:46:97:a2:16:ff:a5:7c:dd:dc:20:a8:d3: 04:c0:73:7c:d0:e2:2b:ae:ec:fc:dc:88:32:cf:bd: 0c:2e:f0:9f:85:b7:8e:b1:3d:2f:63:fc:d7:7b:97: 02:50:fd:82:f8:38:3a:45:86:d7:fb:15:19:bb:b5: fc:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:9F:91:C4:78:0D:EF:7F:C9:A0:76:13:99:AA:D8:6A:5D:91:6F:4C X509v3 Authority Key Identifier: keyid:CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:60:eb:70:d8:34:62:02:97:d9:c3:79:11:4b:48:96:a2:89: eb:4d:d5:c1:5b:7a:93:31:cb:1e:26:41:97:48:e7:b0:7e:c1: 7e:c6:cf:8c:52:fe:38:90:6e:74:98:be:2d:2a:ef:ca:b3:72: 80:82:ee:ce:1b:99:4d:60:22:41:9d:69:fe:94:4d:d3:ea:93: d8:db:41:34:47:1c:55:85:2d:d8:72:48:35:df:18:6a:3e:96: 2a:16:5b:68:ce:6d:00:2e:94:48:78:e6:47:26:de:32:37:86: 65:7c:f1:6d:4a:fc:f8:bb:33:94:92:0e:9a:81:ce:27:3a:f3: a3:44:45:cb:81:2b:94:82:7c:5e:ce:e2:e2:e0:cd:0c:f7:9c: d1:f4:5d:68:8a:10:62:34:c6:8d:56:1e:b1:8f:9c:82:71:db: 82:53:5f:53:b5:75:ff:3f:29:08:61:64:c9:85:46:e9:2d:f7: d6:fd:14:f3:61:83:b2:66:0c:32:8a:35:f7:fe:95:fc:4c:77: 73:86:96:3c:b2:17:f8:0f:ef:12:b9:58:c5:8c:16:6a:42:b8: 93:ed:33:c9:7c:aa:f1:5c:cf:07:9f:3a:f0:64:69:dc:e1:ae: 8f:dd:4c:f1:ed:30:30:95:2b:0e:ee:ef:10:5a:25:52:db:2f: c1:21:74:0d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0MkUxMTAvBgNVBAUTKENBODVFMTMzQzFFMjM5NjE0QzlDNTc3ODAxMThCREIz MDk1MjhFNzYwHhcNMjYwNDA0MjA0NTA2WhcNMjYwNDExMjA0NTA2WjAYMRYwFAYD VQQDEw02OWQxNzg1My05OTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3m2GMoYV3orONFOnLGKeAvdFhGKR8gprAKi7adALzvk7BrY1SCiB5/yPROI BAtedZqKAjrF71eZdFZ3TjgItcKSZmq4mSzLMumDDYWz4xQBtfQkzp86ZDDqJh3d 4CJswakFXcz0TjrwFljUYQ4v96dEpNhBeNojyzypoDX3CijCSC6O6nWFm6UR/wyB HokmWjunR4su8zcJXbMGOHnaa0rNwpeQ4Dv6BgNV7vjh2JCUyuA7WAUrEDa05wvm pLdMLlZVaAtGl6IW/6V83dwgqNMEwHN80OIrruz83Igyz70MLvCfhbeOsT0vY/zX e5cCUP2C+Dg6RYbX+xUZu7X8mQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPWfkcR4 De9/yaB2E5mq2GpdkW9MMB8GA1UdIwQYMBaAFMqF4TPB4jlhTJxXeAEYvbMJUo52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQyRS9ENkE3RkY0ODBE MTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9XRk1uRmQ0QVJpOXN3bFNq blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvWGhNOEhpT1dGTW5GZDRBUmk5c3dsU2puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQyRS9ENkE3RkY0ODBEMTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9X Rk1uRmQ0QVJpOXN3bFNqblkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAu2DrcNg0YgKX2cN5EUtIlqKJ603VwVt6kzHLHiZBl0jnsH7BfsbPjFL+OJBu dJi+LSrvyrNygILuzhuZTWAiQZ1p/pRN0+qT2NtBNEccVYUt2HJINd8Yaj6WKhZb aM5tAC6USHjmRybeMjeGZXzxbUr8+LszlJIOmoHOJzrzo0RFy4ErlIJ8Xs7i4uDN DPec0fRdaIoQYjTGjVYesY+cgnHbglNfU7V1/z8pCGFkyYVG6S331v0U82GDsmYM Moo19/6V/Ex3c4aWPLIX+A/vErlYxYwWakK4k+0zyXyq8VzPB5868GRp3OGuj91M 8e0wMJUrDu7vEFolUtsvwSF0DQ== -----END CERTIFICATE-----Generated at Mon Apr 6 09:54:17 2026 by rpki-client