$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft File: YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft (raw, json) Hash identifier: oZbSvc/UcbnYxeOmmRIKu8oaZ5TNgCIZMArlQQPeYxM= Subject key identifier: 28:3E:EA:D8:D1:1C:7E:D0:50:44:50:71:DF:2A:D9:89:F5:14:C6:4C Authority key identifier: 60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 Certificate issuer: /CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Certificate serial: 0231 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft Manifest number: 022B Signing time: Sun 05 Apr 2026 02:14:15 +0000 Manifest this update: Sun 05 Apr 2026 02:14:14 +0000 Manifest next update: Sun 12 Apr 2026 02:14:14 +0000 Files and hashes: 1: YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl (hash: +oSj8IuV4FBYXgMlzOi5Iy8snpsX242HIoW2357A9ws=) 2: EC9A7C9EE26811EDBB19B85EC4F9AE02.roa (hash: kXMMTzpfUp5tzsj3ErSeWyi6kiUv6/A6nv/Z2vTJWmA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 561 (0x231) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A08, serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Validity Not Before: Apr 5 02:14:14 2026 GMT Not After : Apr 12 02:14:14 2026 GMT Subject: CN=69d1c576-4772 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:cc:d7:55:ab:8f:f5:3c:aa:86:9b:7c:22:87: 32:6c:32:72:a2:ce:28:dd:83:8f:a8:82:44:94:ba: ad:3e:f5:8c:81:5f:3f:23:dc:f4:00:c4:4a:68:d9: e8:4c:cf:4a:61:f0:4a:9e:1d:4c:af:13:fd:51:57: 1f:c6:80:7f:86:86:87:8b:64:7d:5e:50:0f:08:88: 98:4c:c3:8c:31:0a:3b:92:30:cd:fb:81:ab:6e:bb: 3c:37:69:8d:53:3b:b4:cd:c7:ff:03:4f:28:91:76: 15:f9:72:d5:4b:b5:67:b6:af:91:e9:a4:3d:98:ae: 43:15:d4:cb:a7:1a:4e:5d:30:e8:c5:b8:b1:3e:07: d3:c8:fb:54:2e:28:85:02:de:ec:45:fe:2d:64:f4: ec:53:8a:7f:66:3f:3e:61:7f:37:4b:c4:e8:32:8d: 28:32:4d:28:5a:1f:9b:0d:7a:c3:fa:44:a8:e3:4e: a9:8a:af:15:66:b3:6f:90:85:11:06:e1:a2:37:4a: b7:08:d6:da:c9:df:1c:08:78:48:82:8d:ee:43:8f: 98:ce:d4:be:95:8f:89:31:f0:63:8f:df:93:5a:0e: b3:92:85:79:ea:4d:de:66:1c:81:73:13:0b:a5:d5: a3:c6:09:dc:27:0e:42:a0:88:67:c6:98:7f:dd:28: e0:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:3E:EA:D8:D1:1C:7E:D0:50:44:50:71:DF:2A:D9:89:F5:14:C6:4C X509v3 Authority Key Identifier: keyid:60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:10:02:77:48:7c:4a:02:85:40:48:d4:d8:ef:35:9b:21:23: cb:ac:25:30:f3:d5:94:a5:05:a1:51:9c:87:c3:c1:da:b1:f6: 8d:5f:c3:24:79:32:12:db:1f:36:69:87:1d:a5:f4:69:5d:9d: 68:df:21:2b:f4:ba:9e:a8:b9:0e:36:a6:c8:dd:02:3b:99:19: 8e:86:45:28:67:1b:50:98:9f:24:db:20:9c:13:8a:b5:93:1a: 40:04:74:1a:e0:80:4d:c1:7e:d8:dd:bf:4b:c3:b9:ad:f1:be: 24:31:c4:6a:b2:f9:3e:af:9f:2b:c2:60:8a:89:67:27:9d:13: 92:26:b8:da:0c:aa:ff:53:3e:a2:a0:5e:58:73:62:52:19:c4: fb:a0:3f:4c:3f:c6:33:5c:02:de:4b:8f:9e:8b:f8:53:7c:64: 8a:1e:ef:fd:52:aa:62:05:ba:42:b9:e3:09:73:dc:4f:86:45: e6:73:91:62:7b:b0:f1:32:3e:fb:50:39:35:8d:71:aa:cd:79: 73:53:0b:fe:54:a9:b2:cf:f9:8c:89:f0:88:c9:53:0b:58:89: 0f:cb:25:a3:c5:a9:06:60:28:46:0b:d2:f1:c1:4b:e5:24:72: 64:d4:f8:55:96:f6:d8:b6:f2:82:1e:48:4d:58:5c:a9:b0:86: 06:a2:5a:07 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBMDgxMTAvBgNVBAUTKDYwMDZCOTY1ODMxM0Q4NjQ5OTE2MTlENjk3OUIwRjdF MDFFNEI2NjgwHhcNMjYwNDA1MDIxNDE0WhcNMjYwNDEyMDIxNDE0WjAYMRYwFAYD VQQDEw02OWQxYzU3Ni00NzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA28zXVauP9Tyqhpt8IocybDJyos4o3YOPqIJElLqtPvWMgV8/I9z0AMRKaNno TM9KYfBKnh1MrxP9UVcfxoB/hoaHi2R9XlAPCIiYTMOMMQo7kjDN+4Grbrs8N2mN Uzu0zcf/A08okXYV+XLVS7Vntq+R6aQ9mK5DFdTLpxpOXTDoxbixPgfTyPtULiiF At7sRf4tZPTsU4p/Zj8+YX83S8ToMo0oMk0oWh+bDXrD+kSo406piq8VZrNvkIUR BuGiN0q3CNbayd8cCHhIgo3uQ4+YztS+lY+JMfBjj9+TWg6zkoV56k3eZhyBcxML pdWjxgncJw5CoIhnxph/3SjguQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCg+6tjR HH7QUERQcd8q2Yn1FMZMMB8GA1UdIwQYMBaAFGAGuWWDE9hkmRYZ1pebD34B5LZo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUEwOC9CMDYwQ0M1NEUy NjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJHU1pGaG5XbDVzUGZnSGt0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lBYTVaWU1UMkdTWkZobldsNXNQZmdIa3RtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUEwOC9CMDYwQ0M1NEUyNjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJH U1pGaG5XbDVzUGZnSGt0bWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHBACd0h8SgKFQEjU2O81myEjy6wlMPPVlKUFoVGch8PB2rH2jV/DJHkyEtsf NmmHHaX0aV2daN8hK/S6nqi5DjamyN0CO5kZjoZFKGcbUJifJNsgnBOKtZMaQAR0 GuCATcF+2N2/S8O5rfG+JDHEarL5Pq+fK8JgiolnJ50Tkia42gyq/1M+oqBeWHNi UhnE+6A/TD/GM1wC3kuPnov4U3xkih7v/VKqYgW6QrnjCXPcT4ZF5nORYnuw8TI+ +1A5NY1xqs15c1ML/lSpss/5jInwiMlTC1iJD8slo8WpBmAoRgvS8cFL5SRyZNT4 VZb22Lbygh5ITVhcqbCGBqJaBw== -----END CERTIFICATE-----Generated at Mon Apr 6 09:56:37 2026 by rpki-client