$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft File: 0ypa3AVCwugXwgK-a3KB6GnReJc.mft (raw, json) Hash identifier: ik4vnjPsdTlGiSBCBi2kuP+hKN0mQuyGAfVBcrs++O4= Subject key identifier: 6B:0A:CA:7E:56:93:F1:CD:E6:FB:C9:DF:85:38:B9:CD:F6:AF:FD:B1 Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft Manifest number: 0150 Signing time: Sun 05 Apr 2026 04:41:01 +0000 Manifest this update: Sun 05 Apr 2026 04:41:01 +0000 Manifest next update: Sun 12 Apr 2026 04:41:01 +0000 Files and hashes: 1: 0ypa3AVCwugXwgK-a3KB6GnReJc.crl (hash: R3JQckLvp1G/xTsoHLhsGBb37J3G9L4802x3Bb1GGTw=) 2: 77D3D4A0FEDA11F0AB7A7279726F56BC.roa (hash: FHfqmVc0DH5T6GrvyUSWpVxXHt1ddRfHNNOxDC51WEY=) 3: 6F723CC0830B11F0B82E836DC4F9AE02.roa (hash: kic2dalBDWVuSnTSKRWGlC83NcfnCjH4W7+pZUZCDAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:41:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Apr 5 04:41:01 2026 GMT Not After : Apr 12 04:41:01 2026 GMT Subject: CN=69d1e7dd-3cd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3f:9a:4e:0c:b9:9e:d1:41:33:88:7c:dd:82: e0:78:60:32:2d:2d:41:a8:df:2c:38:97:ff:24:72: 14:e0:84:7f:e1:29:5b:c7:38:de:52:9c:c1:bb:22: f3:2b:fe:36:20:27:38:b3:05:d3:ad:f1:2d:8d:00: 95:d9:9a:58:b0:5f:73:bf:0e:cd:8f:c4:70:ae:65: 3b:e9:85:8a:9c:95:16:de:78:4b:e0:ec:da:a1:d6: 9a:d7:6c:5a:44:4c:67:dd:90:1b:0b:65:78:58:3d: 39:fe:9f:6c:17:f7:e5:25:b7:e2:92:21:97:26:37: 3d:ea:2c:6b:64:4b:d8:a2:bf:3d:6c:9e:a6:68:25: 0e:c0:70:37:d7:9f:06:a3:17:c1:24:e9:2a:1a:0f: 9c:4d:92:aa:f3:39:b4:c3:a7:45:de:e3:00:2e:90: 22:89:8c:eb:32:a7:93:cd:44:3c:93:6c:7c:0b:23: 1d:e8:0b:91:36:8f:1a:72:50:70:2f:96:9f:d3:1e: ae:e5:9b:14:e2:f1:69:c6:1c:cd:61:38:36:72:1f: 59:8f:81:ed:18:80:df:a6:76:c0:b2:77:b4:4f:02: 30:e1:40:da:01:0c:22:b9:f6:f4:b7:5a:d9:7b:c4: 82:d2:c9:b1:d8:63:7e:15:4b:e3:47:d7:c9:62:94: 79:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:0A:CA:7E:56:93:F1:CD:E6:FB:C9:DF:85:38:B9:CD:F6:AF:FD:B1 X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:62:89:f0:23:36:62:cb:cf:67:de:e6:16:cb:84:a6:89:8a: ff:a2:d8:a7:c7:08:9a:1a:f6:db:1b:d1:cd:e9:d6:cc:5a:03: 02:81:99:ae:3c:6d:d1:06:0b:90:70:d9:5f:01:95:06:04:70: c8:ae:ee:14:b8:91:4c:92:4f:39:90:a2:9b:2d:e9:53:ea:fa: 19:d2:5b:da:e3:d8:a6:0b:c4:29:b9:90:43:c8:fb:82:6b:a9: 39:10:55:cb:5f:b4:5f:30:1c:28:67:ef:f0:82:7d:f8:b2:e0: 13:6e:83:e0:d9:eb:c0:26:a5:9e:33:f4:f3:e7:82:87:25:dc: f0:21:7f:50:66:2a:9a:63:0c:f4:aa:39:99:70:7b:73:1e:e3: 78:38:3d:36:4a:74:0b:ca:63:c3:ba:52:05:fa:59:a8:82:7f: 66:9d:8b:c4:82:27:59:1c:a4:1d:1e:46:3f:01:a7:0a:d4:db: 64:c7:bf:f5:81:e3:fd:64:6f:c4:61:a5:5a:97:29:4f:cd:06: 2d:72:ea:e3:93:c5:92:68:c6:73:41:76:74:a6:97:45:6e:78: 0e:c4:01:5d:7a:eb:ea:ea:ff:a1:24:86:8f:8b:8c:2f:17:df: b9:44:0c:dd:cc:a4:c9:9c:7c:fb:c9:1c:72:0c:2d:e9:34:39: be:56:89:ed -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA4NTUxMTAvBgNVBAUTKEQzMkE1QURDMDU0MkMyRTgxN0MyMDJCRTZCNzI4MUU4 NjlEMTc4OTcwHhcNMjYwNDA1MDQ0MTAxWhcNMjYwNDEyMDQ0MTAxWjAYMRYwFAYD VQQDEw02OWQxZTdkZC0zY2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtT+aTgy5ntFBM4h83YLgeGAyLS1BqN8sOJf/JHIU4IR/4SlbxzjeUpzBuyLz K/42ICc4swXTrfEtjQCV2ZpYsF9zvw7Nj8RwrmU76YWKnJUW3nhL4Ozaodaa12xa RExn3ZAbC2V4WD05/p9sF/flJbfikiGXJjc96ixrZEvYor89bJ6maCUOwHA3158G oxfBJOkqGg+cTZKq8zm0w6dF3uMALpAiiYzrMqeTzUQ8k2x8CyMd6AuRNo8aclBw L5af0x6u5ZsU4vFpxhzNYTg2ch9Zj4HtGIDfpnbAsne0TwIw4UDaAQwiufb0t1rZ e8SC0smx2GN+FUvjR9fJYpR5iwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGsKyn5W k/HN5vvJ34U4uc32r/2xMB8GA1UdIwQYMBaAFNMqWtwFQsLoF8ICvmtygehp0XiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDg1NS81MDRDRkZFMjQ0 OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1Z1h3Z0stYTNLQjZHblJl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDg1NS81MDRDRkZFMjQ0OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1 Z1h3Z0stYTNLQjZHblJlSmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABmKJ8CM2YsvPZ97mFsuEpomK/6LYp8cImhr22xvRzenWzFoDAoGZrjxt0QYL kHDZXwGVBgRwyK7uFLiRTJJPOZCimy3pU+r6GdJb2uPYpgvEKbmQQ8j7gmupORBV y1+0XzAcKGfv8IJ9+LLgE26D4NnrwCalnjP08+eChyXc8CF/UGYqmmMM9Ko5mXB7 cx7jeDg9Nkp0C8pjw7pSBfpZqIJ/Zp2LxIInWRykHR5GPwGnCtTbZMe/9YHj/WRv xGGlWpcpT80GLXLq45PFkmjGc0F2dKaXRW54DsQBXXrr6ur/oSSGj4uMLxffuUQM 3cykyZx8+8kccgwt6TQ5vlaJ7Q== -----END CERTIFICATE-----Generated at Mon Apr 6 13:35:20 2026 by rpki-client