$ rpki-client -vvf rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft File: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft (raw, json) Hash identifier: NDmeiWvxe9AOJwn1kIBz8FNxzHSieBS18v9mKe7Uzpo= Subject key identifier: 02:65:77:D3:11:4D:2C:CA:80:97:1A:E7:A9:DD:13:25:2F:1E:D3:A9 Authority key identifier: CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E Certificate issuer: /CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Certificate serial: 0BA9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft Manifest number: 0B88 Signing time: Sat 30 May 2026 19:03:31 +0000 Manifest this update: Sat 30 May 2026 19:03:30 +0000 Manifest next update: Sat 06 Jun 2026 19:03:30 +0000 Files and hashes: 1: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl (hash: dn/ewfCmEaW+wMOgZpRpBhH7rYq5HehhOOJK/s1QXfI=) 2: BA7B024C04D811EDBE98F982C4F9AE02.roa (hash: Qrs9ea1Ryt4mplsCkDhjHp70Ezhx/br174uLvjICktg=) 3: EF29C95E69C311EF82BCE77AC4F9AE02.roa (hash: wATgHFFEBhvghT6gMqTJTC0PonsBt+Ml1sqdhxwQAPg=) 4: A2AF0622853711EFA09C892EC4F9AE02.roa (hash: OLS2n2bCipeK2cJAKKmNcGHacmpb1F1CGfou3xcKoRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Jun 2026 19:03:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2985 (0xba9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168BA2, serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Validity Not Before: May 30 19:03:30 2026 GMT Not After : Jun 6 19:03:30 2026 GMT Subject: CN=6a1b3483-2445 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:98:62:80:26:0f:3d:89:b2:a4:40:7b:7b:b7: 09:10:40:35:85:49:6b:ed:2f:f5:d5:ff:12:da:e1: c4:4c:56:f1:58:0f:db:78:ae:4c:87:48:8c:dc:be: 4a:1e:52:56:fd:5e:a2:71:a2:1f:c7:67:a5:dc:56: b8:eb:dd:f1:f7:2e:c4:60:2a:74:03:03:df:d1:d5: de:c0:d8:ff:95:79:31:db:93:91:92:0a:b1:9e:f4: 38:c4:49:76:63:08:57:e0:d9:cf:af:8d:ea:0b:bf: 1a:50:88:76:40:9e:05:77:b9:34:f8:a1:cc:e6:20: 8c:12:b9:5d:7b:1b:24:fe:53:95:19:49:5a:02:64: ce:28:9e:ee:2c:a5:31:e4:3d:4d:2e:4e:41:a0:4a: a4:b7:78:f3:36:d7:f3:9f:8d:f9:20:1a:d9:d6:69: bc:25:7f:0c:4f:6f:c1:4d:91:c0:7d:b6:03:c6:37: e4:e8:01:d1:be:77:43:9d:f1:eb:e2:82:90:43:c0: da:a9:89:cb:43:74:e8:eb:2e:ae:56:8b:c4:92:1f: fa:d3:be:37:d8:d4:a3:0a:9e:bd:8d:4f:c2:c0:35: aa:f9:ab:93:d3:b6:14:d8:19:b8:ea:5e:b9:3d:f6: 78:14:d6:36:ff:31:c0:5f:d9:4d:89:ab:65:ee:58: c6:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:65:77:D3:11:4D:2C:CA:80:97:1A:E7:A9:DD:13:25:2F:1E:D3:A9 X509v3 Authority Key Identifier: keyid:CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:21:7e:3b:20:6a:ca:c9:d7:ae:e9:68:ff:cb:59:ce:bd:8f: 65:cc:4c:03:57:29:02:af:02:07:b8:a3:5e:61:5b:f1:99:15: ad:94:d9:ce:1f:c7:61:b0:9e:7c:59:b2:97:eb:38:06:6b:62: fe:d2:5a:ca:d7:a2:12:3d:34:83:ad:fa:52:7d:9a:9a:e4:43: b1:12:5d:9f:94:db:d8:6a:8d:77:44:02:33:fa:1b:75:62:62: 0a:8d:20:29:70:29:19:4c:a0:1a:16:8e:e4:38:26:09:ea:ea: 78:bf:42:f5:76:1d:71:7c:ad:74:81:4a:4a:e6:16:e9:dd:8f: 02:1e:0f:d0:48:6c:6a:b7:9a:78:97:81:34:ae:45:1e:03:3c: 4d:53:bb:d9:cf:2c:d6:2d:1a:06:0b:6a:e8:0f:86:65:41:ea: 04:c9:23:c4:6e:89:08:dc:0d:b0:4d:b3:4a:ea:d1:8a:e1:21: b8:97:e2:0b:54:d0:c0:52:74:10:d7:8e:b9:8b:36:10:fb:51: a2:bd:ba:03:21:f0:d7:59:38:04:06:e5:18:13:d4:19:bf:a1: 69:70:a9:3b:09:8b:6a:85:c1:49:8f:93:cb:72:19:37:aa:dc: da:2c:f3:bd:0a:1c:16:a4:30:f0:10:05:fb:0d:ff:16:99:1e: 86:8e:52:06 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCQTIxMTAvBgNVBAUTKENBNjJFNDM4Rjk4RDg1MThEMkYyQTVEOUY2NzY1NjUx RTVBREE2MEUwHhcNMjYwNTMwMTkwMzMwWhcNMjYwNjA2MTkwMzMwWjAYMRYwFAYD VQQDEw02YTFiMzQ4My0yNDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkZhigCYPPYmypEB7e7cJEEA1hUlr7S/11f8S2uHETFbxWA/beK5Mh0iM3L5K HlJW/V6icaIfx2el3Fa4693x9y7EYCp0AwPf0dXewNj/lXkx25ORkgqxnvQ4xEl2 YwhX4NnPr43qC78aUIh2QJ4Fd7k0+KHM5iCMErldexsk/lOVGUlaAmTOKJ7uLKUx 5D1NLk5BoEqkt3jzNtfzn435IBrZ1mm8JX8MT2/BTZHAfbYDxjfk6AHRvndDnfHr 4oKQQ8DaqYnLQ3To6y6uVovEkh/607432NSjCp69jU/CwDWq+auT07YU2Bm46l65 PfZ4FNY2/zHAX9lNiatl7ljGSwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAJld9MR TSzKgJca56ndEyUvHtOpMB8GA1UdIwQYMBaAFMpi5Dj5jYUY0vKl2fZ2VlHlraYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEJBMi85OURGMzg2MjU0 QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhSalM4cVhaOW5aV1VlV3Rw ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltTGtPUG1OaFJqUzhxWFo5blpXVWVXdHBnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEJBMi85OURGMzg2MjU0QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhS alM4cVhaOW5aV1VlV3RwZzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUyF+OyBqysnXrulo/8tZzr2PZcxMA1cpAq8CB7ijXmFb8ZkVrZTZzh/HYbCe fFmyl+s4Bmti/tJayteiEj00g636Un2amuRDsRJdn5Tb2GqNd0QCM/obdWJiCo0g KXApGUygGhaO5DgmCerqeL9C9XYdcXytdIFKSuYW6d2PAh4P0EhsareaeJeBNK5F HgM8TVO72c8s1i0aBgtq6A+GZUHqBMkjxG6JCNwNsE2zSurRiuEhuJfiC1TQwFJ0 ENeOuYs2EPtRor26AyHw11k4BAblGBPUGb+haXCpOwmLaoXBSY+Ty3IZN6rc2izz vQocFqQw8BAF+w3/Fpkeho5SBg== -----END CERTIFICATE-----Generated at Sun May 31 14:21:10 2026 by rpki-client