$ rpki-client -vvf rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft File: YsQYLAA-_Po43a9O-QT7BP5bVko.mft (raw, json) Hash identifier: IkmYB5cNXIJdd0OXpAilBRWlotGUI9+PSEY/8rui164= Subject key identifier: F4:FF:3A:31:BD:52:F9:AE:24:85:BC:34:BA:65:52:E9:8E:5C:5B:37 Authority key identifier: 62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A Certificate issuer: /CN=A917CE22/serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Certificate serial: 0871 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft Manifest number: 0846 Signing time: Sat 30 May 2026 20:53:41 +0000 Manifest this update: Sat 30 May 2026 20:53:41 +0000 Manifest next update: Sat 06 Jun 2026 20:53:41 +0000 Files and hashes: 1: YsQYLAA-_Po43a9O-QT7BP5bVko.crl (hash: ZWJnydGACObYjfWrTa5KEkRueubaf9o+9myF2Epd/uU=) 2: CDA6F2D0111611EFAD808A81C4F9AE02.roa (hash: mOiKBb1fBKJiEZ/Q4F6SgNQ8FYEX0pSib9+RjzLS4+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Jun 2026 20:53:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2161 (0x871) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CE22, serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Validity Not Before: May 30 20:53:41 2026 GMT Not After : Jun 6 20:53:41 2026 GMT Subject: CN=6a1b4e55-b50b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:01:7e:8d:77:00:a6:6f:f4:da:9c:68:54:ab: 5b:62:bb:12:9f:2c:9c:25:00:42:e4:5d:48:c2:21: 3f:9b:62:63:d8:b0:e7:8f:bf:b2:25:1c:85:41:5b: aa:37:aa:42:8e:2c:7d:96:75:2b:0a:4f:60:2f:8b: 9b:f0:99:f6:41:ba:61:39:c6:5a:43:ee:80:e7:b8: 05:8e:aa:e2:fa:72:84:43:1e:f1:13:ac:6d:e2:a8: 19:6c:a1:18:9d:77:e6:1e:9c:3d:9e:67:1c:38:14: 82:7b:83:f9:7b:55:7d:db:d9:77:9e:b6:ca:15:cf: 07:36:a5:54:7e:64:0f:49:dc:db:f9:28:bc:9f:47: ef:e8:ff:0e:4d:a0:2e:3c:95:b4:75:18:f3:c0:bf: c5:7f:f3:00:e8:a2:62:14:d2:a3:71:f8:a3:96:8e: 00:6c:47:fb:46:1a:ac:d6:2e:5e:e7:0b:5b:f3:2c: 78:b4:cf:73:d1:de:ef:39:6e:e0:e8:45:28:3b:03: b2:bf:3a:63:3c:40:e4:dc:71:da:92:98:f1:47:8a: 9b:d9:d3:a8:e8:58:ca:6b:1f:b7:74:be:0c:7a:6a: 6f:bb:94:3f:09:34:34:05:f2:2d:29:92:a0:3d:3b: e4:60:01:0e:2d:3a:ce:12:5b:98:88:94:90:f4:45: bf:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:FF:3A:31:BD:52:F9:AE:24:85:BC:34:BA:65:52:E9:8E:5C:5B:37 X509v3 Authority Key Identifier: keyid:62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:c4:f5:f2:0f:4d:dd:62:be:0c:0a:fc:97:5e:b3:52:f5:57: 54:22:fe:9a:58:8e:10:79:e7:92:2e:9c:7a:55:3e:0f:01:53: 3f:7e:5d:6b:12:2d:8f:aa:04:06:e5:8c:14:d7:d0:e5:a1:06: 90:b5:23:39:71:ba:15:4c:1c:45:02:70:c3:65:22:2a:09:6a: fa:b3:6a:2a:a8:49:49:c5:6f:01:eb:d7:ce:48:17:21:b8:da: 8c:85:b9:d5:76:1e:12:a6:ef:13:33:f8:7c:93:63:89:35:af: ad:2a:ef:48:de:90:74:89:50:f3:87:ce:76:53:f7:52:2e:0a: 49:ec:b3:dc:d1:17:f5:25:2c:70:74:3c:bc:be:ea:e7:42:5d: 63:32:5f:a1:d3:15:1c:26:6b:aa:18:60:e4:c6:41:c1:2d:f0: 4c:26:f5:ca:91:3c:8c:cc:1c:ad:61:72:61:f8:89:1e:e5:21: 66:3e:e2:79:1e:39:aa:e4:30:dc:58:e8:7c:a5:c1:e3:11:39: f1:7a:ed:ca:6c:04:49:56:bf:e7:b0:78:09:b5:07:fd:ed:4f: ca:ec:f9:82:24:38:c7:d4:2e:0a:4d:30:aa:6e:c5:af:70:f4: 80:4a:45:7d:65:22:02:fa:6a:ff:a4:37:58:d9:37:9e:37:30: 1e:86:a4:49 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NFMjIxMTAvBgNVBAUTKDYyQzQxODJDMDAzRUZDRkEzOEREQUY0RUY5MDRGQjA0 RkU1QjU2NEEwHhcNMjYwNTMwMjA1MzQxWhcNMjYwNjA2MjA1MzQxWjAYMRYwFAYD VQQDEw02YTFiNGU1NS1iNTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnQF+jXcApm/02pxoVKtbYrsSnyycJQBC5F1IwiE/m2Jj2LDnj7+yJRyFQVuq N6pCjix9lnUrCk9gL4ub8Jn2QbphOcZaQ+6A57gFjqri+nKEQx7xE6xt4qgZbKEY nXfmHpw9nmccOBSCe4P5e1V929l3nrbKFc8HNqVUfmQPSdzb+Si8n0fv6P8OTaAu PJW0dRjzwL/Ff/MA6KJiFNKjcfijlo4AbEf7Rhqs1i5e5wtb8yx4tM9z0d7vOW7g 6EUoOwOyvzpjPEDk3HHakpjxR4qb2dOo6FjKax+3dL4Mempvu5Q/CTQ0BfItKZKg PTvkYAEOLTrOEluYiJSQ9EW/wQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPT/OjG9 UvmuJIW8NLplUumOXFs3MB8GA1UdIwQYMBaAFGLEGCwAPvz6ON2vTvkE+wT+W1ZK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0UyMi8xMkZBODExQTE3 N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9QbzQzYTlPLVFUN0JQNWJW a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzUVlMQUEtX1BvNDNhOU8tUVQ3QlA1YlZrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0UyMi8xMkZBODExQTE3N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9Q bzQzYTlPLVFUN0JQNWJWa28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAl8T18g9N3WK+DAr8l16zUvVXVCL+mliOEHnnki6celU+DwFTP35daxItj6oE BuWMFNfQ5aEGkLUjOXG6FUwcRQJww2UiKglq+rNqKqhJScVvAevXzkgXIbjajIW5 1XYeEqbvEzP4fJNjiTWvrSrvSN6QdIlQ84fOdlP3Ui4KSeyz3NEX9SUscHQ8vL7q 50JdYzJfodMVHCZrqhhg5MZBwS3wTCb1ypE8jMwcrWFyYfiJHuUhZj7ieR45quQw 3FjofKXB4xE58XrtymwESVa/57B4CbUH/e1Pyuz5giQ4x9QuCk0wqm7Fr3D0gEpF fWUiAvpq/6Q3WNk3njcwHoakSQ== -----END CERTIFICATE-----Generated at Sun May 31 12:49:43 2026 by rpki-client