$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft File: RyCit4x4I5km_e5zRKNoDaDYBx0.mft (raw, json) Hash identifier: 2wnD4db0I4sxRsGL61XY3GO8oZ3DF+bTiuNVmHt2aho= Subject key identifier: 9D:54:18:0A:0B:44:50:D4:1C:9B:34:BD:72:7F:70:9D:03:55:34:FF Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft Manifest number: 0136 Signing time: Mon 01 Jun 2026 06:09:12 +0000 Manifest this update: Mon 01 Jun 2026 06:09:11 +0000 Manifest next update: Mon 08 Jun 2026 06:09:11 +0000 Files and hashes: 1: RyCit4x4I5km_e5zRKNoDaDYBx0.crl (hash: g3Tk0WGhuDPvzzeIRPX0Sq0bWugnxW/C8tGhNWFUykE=) 2: D2D7B762995611EFADA5D754C4F9AE02.roa (hash: uC7UgU3WUyp6lo8+x5BnzjYje46EFX3E65V33NxoTHM=) 3: 003589503F8311F0AA4DF254C4F9AE02.roa (hash: DKnLp31Pt39zKxYHan0L0UpjSQtw5gIheDfF7NmRFzQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 06:09:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: Jun 1 06:09:11 2026 GMT Not After : Jun 8 06:09:11 2026 GMT Subject: CN=6a1d2208-823c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5c:dd:06:60:f6:9f:84:78:d8:39:a4:dc:90: 55:42:75:00:5b:a9:c2:14:65:90:4d:87:f7:f3:8c: 4a:83:10:5d:1a:dc:f9:53:23:f8:e9:76:cf:cb:a1: 1b:b0:b8:9b:a0:30:a2:3b:c8:98:91:8f:0b:37:90: b1:bf:47:bd:d3:d5:33:00:1f:33:5a:c1:9d:8f:34: 66:de:68:16:13:aa:d4:94:28:97:f3:af:39:f2:fe: a6:08:90:7c:5e:dd:c1:ad:85:fd:5e:3a:7b:9f:c5: d2:48:b3:21:eb:17:7e:43:6a:6d:2d:0f:f3:26:c5: 26:61:9b:7e:f9:be:4a:12:c3:9a:08:10:d3:42:f8: 82:6d:7e:c7:a5:b6:85:63:bd:a5:97:ef:d6:81:65: 02:1c:e4:25:69:ee:c5:57:3f:ce:9e:6f:fe:25:a9: 1f:10:e2:ee:31:d9:9f:1b:d0:c3:fa:b6:8d:97:d1: 1e:1d:63:c8:a5:89:49:93:b7:14:b3:54:04:aa:3d: ca:85:c3:65:ab:e7:a5:47:78:99:09:a2:93:4b:ca: fd:d1:1e:e6:43:bd:34:8d:f3:2c:98:25:21:c2:98: 51:63:f4:d6:98:ce:49:d2:cf:0c:90:11:f9:49:e9: ef:34:b0:f5:50:0d:ea:39:80:5b:8b:43:1a:20:a9: 25:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:54:18:0A:0B:44:50:D4:1C:9B:34:BD:72:7F:70:9D:03:55:34:FF X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:af:df:e2:19:61:d8:89:92:ed:94:21:08:67:01:51:af:49: 26:1d:cc:d5:7b:5c:0e:1c:a7:fa:30:67:82:89:8d:3a:42:9a: 03:3d:01:d7:9d:97:32:32:26:de:a7:50:cc:c4:16:3a:9d:11: d4:61:b6:86:f8:8a:68:73:b4:4b:ea:df:60:f6:2e:18:98:39: f1:96:66:1e:12:91:c0:51:4b:25:b5:ac:7d:94:cb:a1:53:69: 0c:f2:dc:1e:f0:97:45:57:27:d0:5c:c5:be:df:45:c3:f6:8a: 7a:c0:cc:15:26:99:bf:7d:4a:45:9d:62:ad:18:41:30:20:aa: c6:56:6a:94:eb:6b:cd:fe:18:e5:34:a5:e7:2b:72:86:61:43: 6e:dd:57:79:09:de:f9:f7:45:5e:ee:35:0d:9f:19:87:a5:af: ed:c0:48:6b:bf:d1:15:4e:e4:66:4d:fc:c2:93:01:9b:44:f1: 4d:93:19:53:92:ae:e7:73:94:58:30:32:04:a0:01:80:ae:0b: 4b:52:d1:59:8a:71:e6:79:d2:f4:df:53:57:4b:fc:df:16:63: f0:b0:f1:6c:68:be:72:40:e0:82:71:46:1b:a1:aa:9a:d3:15: 4d:c3:ab:75:84:f5:2f:da:fb:f9:75:cd:b7:34:de:2e:02:22: 45:d0:38:91 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDQ3MjBBMkI3OEM3ODIzOTkyNkZERUU3MzQ0QTM2ODBE QTBEODA3MUQwHhcNMjYwNjAxMDYwOTExWhcNMjYwNjA4MDYwOTExWjAYMRYwFAYD VQQDEw02YTFkMjIwOC04MjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArlzdBmD2n4R42Dmk3JBVQnUAW6nCFGWQTYf384xKgxBdGtz5UyP46XbPy6Eb sLiboDCiO8iYkY8LN5Cxv0e909UzAB8zWsGdjzRm3mgWE6rUlCiX86858v6mCJB8 Xt3BrYX9Xjp7n8XSSLMh6xd+Q2ptLQ/zJsUmYZt++b5KEsOaCBDTQviCbX7HpbaF Y72ll+/WgWUCHOQlae7FVz/Onm/+JakfEOLuMdmfG9DD+raNl9EeHWPIpYlJk7cU s1QEqj3KhcNlq+elR3iZCaKTS8r90R7mQ700jfMsmCUhwphRY/TWmM5J0s8MkBH5 SenvNLD1UA3qOYBbi0MaIKklzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ1UGAoL RFDUHJs0vXJ/cJ0DVTT/MB8GA1UdIwQYMBaAFEcgoreMeCOZJv3uc0SjaA2g2Acd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi8yN0UzRURBNDk4 MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1a21fZTV6UktOb0RhRFlC eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJERi8yN0UzRURBNDk4MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1 a21fZTV6UktOb0RhRFlCeDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZ6/f4hlh2ImS7ZQhCGcBUa9JJh3M1XtcDhyn+jBngomNOkKaAz0B152XMjIm 3qdQzMQWOp0R1GG2hviKaHO0S+rfYPYuGJg58ZZmHhKRwFFLJbWsfZTLoVNpDPLc HvCXRVcn0FzFvt9Fw/aKesDMFSaZv31KRZ1irRhBMCCqxlZqlOtrzf4Y5TSl5yty hmFDbt1XeQne+fdFXu41DZ8Zh6Wv7cBIa7/RFU7kZk38wpMBm0TxTZMZU5Ku53OU WDAyBKABgK4LS1LRWYpx5nnS9N9TV0v83xZj8LDxbGi+ckDggnFGG6GqmtMVTcOr dYT1L9r7+XXNtzTeLgIiRdA4kQ== -----END CERTIFICATE-----Generated at Tue Jun 2 21:19:45 2026 by rpki-client