$ rpki-client -vvf rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.mft File: YpYWXDbflgVmse01DqfefzOLOpk.mft (raw, json) Hash identifier: /gvSFAsmmCgZkyoW/WPiaWMMJG2SrAXhsu8nfDUGcmI= Subject key identifier: A4:F5:87:12:C0:E6:63:B3:66:B1:25:EC:42:75:5D:30:6C:02:BA:D3 Authority key identifier: 62:96:16:5C:36:DF:96:05:66:B1:ED:35:0E:A7:DE:7F:33:8B:3A:99 Certificate issuer: /CN=A91456CD/serialNumber=6296165C36DF960566B1ED350EA7DE7F338B3A99 Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YpYWXDbflgVmse01DqfefzOLOpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.mft Manifest number: 11 Signing time: Tue 19 May 2026 08:56:14 +0000 Manifest this update: Tue 19 May 2026 08:56:13 +0000 Manifest next update: Tue 26 May 2026 08:56:13 +0000 Files and hashes: 1: YpYWXDbflgVmse01DqfefzOLOpk.crl (hash: tzFa8Oi5+si2f/Lc4nvUtFSES6dQXF+3R8550ZmQuD0=) 2: BBFF83183E1311F1A75FAD3AAF833773.roa (hash: tVkmnNetZiuk3U9n5t1OgMJioxU81CU8IuCEcNguLvc=) 3: E70D393E3E1211F1B8544D87AE833773.roa (hash: QKtJAkqUtPB3mTAjjBY4LLg9Wgtws5WpGtADkwoN/hg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.crl rsync://rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YpYWXDbflgVmse01DqfefzOLOpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 May 2026 08:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91456CD, serialNumber=6296165C36DF960566B1ED350EA7DE7F338B3A99 Validity Not Before: May 19 08:56:13 2026 GMT Not After : May 26 08:56:13 2026 GMT Subject: CN=6a0c25ae-529e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:85:bb:bd:32:5b:c6:aa:cc:f2:2d:c4:16:95: b7:d8:5f:f7:8f:a7:32:d1:c9:51:0c:be:72:e2:44: 35:6d:83:79:63:93:a2:8d:18:40:41:25:db:91:d3: 6b:de:75:75:bb:2a:b6:3f:95:09:b7:06:ed:f7:9b: 1c:9a:bc:18:b1:d2:ba:d4:bd:b1:13:da:fd:a0:55: 0f:40:c1:c5:83:df:34:01:3d:8f:da:b3:cf:f2:be: de:e6:04:19:77:72:ef:ce:af:84:96:b0:f0:30:4f: 52:71:81:79:0b:61:df:20:19:0a:f2:53:57:b4:10: b2:5e:53:15:d5:d2:a8:db:35:8b:e7:28:86:e9:7e: 42:27:68:1f:a9:87:5b:d9:f8:17:47:17:85:ab:8b: df:a7:1f:3b:87:6d:88:8a:b1:3a:c2:44:97:e3:47: 15:a9:93:18:4b:4c:99:86:91:1e:80:63:7f:d9:e4: a1:6c:00:79:6d:0f:44:d1:1f:87:99:60:12:df:e7: c1:0e:28:cb:54:7a:ce:3f:4c:2b:78:29:4c:1b:40: d3:5f:c8:dd:ff:aa:54:72:cf:17:8b:49:b0:ad:33: 30:44:07:ae:d4:99:1e:f6:0e:3b:b6:46:44:26:a7: 38:ee:e5:8f:01:05:10:1f:bb:6e:06:7d:a5:7a:8f: 1f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:F5:87:12:C0:E6:63:B3:66:B1:25:EC:42:75:5D:30:6C:02:BA:D3 X509v3 Authority Key Identifier: keyid:62:96:16:5C:36:DF:96:05:66:B1:ED:35:0E:A7:DE:7F:33:8B:3A:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YpYWXDbflgVmse01DqfefzOLOpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:bb:e9:a5:7f:4c:66:65:1f:27:0e:1c:c3:ed:66:8a:df:f2: ed:60:e0:de:fa:94:4d:13:6e:48:d6:72:71:44:54:2e:a0:49: 2f:c6:85:28:c2:e4:ef:18:d8:c6:25:06:b8:43:07:96:6f:22: 07:40:54:13:6a:56:71:d6:d7:2d:f9:37:bd:0d:f3:a7:de:42: e4:4a:2c:db:b5:7a:9a:99:61:71:35:0d:72:ed:eb:52:d7:6d: 19:6c:a0:ad:07:7b:49:24:bc:99:62:9f:33:94:b3:68:ee:5a: c2:36:03:12:b0:e7:1d:f5:ae:73:b8:84:2b:17:3a:56:d6:61: 44:d4:b6:3a:3c:cf:c3:03:f4:d0:81:60:6d:c7:c8:df:28:ab: 38:3a:cb:52:1e:14:16:28:63:ee:9e:1d:36:43:81:1b:14:57: 9a:16:4c:30:dd:cc:b7:33:3d:c1:0b:ef:fb:e7:66:c0:c9:0a: 84:30:b1:8f:de:f1:af:aa:6c:04:df:51:d8:c3:af:85:9d:e9: ea:4e:38:aa:f3:29:c6:f6:7a:b8:a2:31:53:e6:a5:a6:e1:94: 2b:b5:db:9e:83:2c:44:c4:03:1a:be:fa:f0:e5:40:61:3e:96: bf:dd:39:80:4c:7b:72:83:30:0b:bb:06:88:6f:02:d8:a1:4e: fa:df:b3:2f -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NTZDRDExMC8GA1UEBRMoNjI5NjE2NUMzNkRGOTYwNTY2QjFFRDM1MEVBN0RFN0Yz MzhCM0E5OTAeFw0yNjA1MTkwODU2MTNaFw0yNjA1MjYwODU2MTNaMBgxFjAUBgNV BAMTDTZhMGMyNWFlLTUyOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDyhbu9MlvGqszyLcQWlbfYX/ePpzLRyVEMvnLiRDVtg3ljk6KNGEBBJduR02ve dXW7KrY/lQm3Bu33mxyavBix0rrUvbET2v2gVQ9AwcWD3zQBPY/as8/yvt7mBBl3 cu/Or4SWsPAwT1JxgXkLYd8gGQryU1e0ELJeUxXV0qjbNYvnKIbpfkInaB+ph1vZ +BdHF4Wri9+nHzuHbYiKsTrCRJfjRxWpkxhLTJmGkR6AY3/Z5KFsAHltD0TRH4eZ YBLf58EOKMtUes4/TCt4KUwbQNNfyN3/qlRyzxeLSbCtMzBEB67UmR72Dju2RkQm pzju5Y8BBRAfu24GfaV6jx+BAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUpPWHEsDm Y7NmsSXsQnVdMGwCutMwHwYDVR0jBBgwFoAUYpYWXDbflgVmse01DqfefzOLOpkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1NkNEL0FDNEE4ODQwM0Uw RjExRjFBQTE1OEQ1NkFBODMzNzczL1lwWVdYRGJmbGdWbXNlMDFEcWZlZnpPTE9w ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWXBZV1hEYmZsZ1Ztc2UwMURxZmVmek9MT3BrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 NkNEL0FDNEE4ODQwM0UwRjExRjFBQTE1OEQ1NkFBODMzNzczL1lwWVdYRGJmbGdW bXNlMDFEcWZlZnpPTE9way5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAGu+mlf0xmZR8nDhzD7WaK3/LtYODe+pRNE25I1nJxRFQuoEkvxoUowuTvGNjG JQa4QweWbyIHQFQTalZx1tct+Te9DfOn3kLkSizbtXqamWFxNQ1y7etS120ZbKCt B3tJJLyZYp8zlLNo7lrCNgMSsOcd9a5zuIQrFzpW1mFE1LY6PM/DA/TQgWBtx8jf KKs4OstSHhQWKGPunh02Q4EbFFeaFkww3cy3Mz3BC+/752bAyQqEMLGP3vGvqmwE 31HYw6+FnenqTjiq8ynG9nq4ojFT5qWm4ZQrtduegyxExAMavvrw5UBhPpa/3TmA THtygzALuwaIbwLYoU7637Mv -----END CERTIFICATE-----Generated at Thu May 21 09:34:22 2026 by rpki-client