$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft File: RyCit4x4I5km_e5zRKNoDaDYBx0.mft (raw, json) Hash identifier: tWX0arA8FSzeNKhb2aPf1YKvLUSbe74ihnU+co9G6dQ= Subject key identifier: 75:36:B1:09:F6:2C:D2:1A:75:1D:12:58:B7:FA:64:7D:DF:35:EF:76 Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft Manifest number: 0119 Signing time: Sun 05 Apr 2026 05:09:04 +0000 Manifest this update: Sun 05 Apr 2026 05:09:03 +0000 Manifest next update: Sun 12 Apr 2026 05:09:03 +0000 Files and hashes: 1: RyCit4x4I5km_e5zRKNoDaDYBx0.crl (hash: M4qFOgMJ4/nAFFvqSvRNJTTZwn+gu4J+VDxP5BVrInQ=) 2: 003589503F8311F0AA4DF254C4F9AE02.roa (hash: DKnLp31Pt39zKxYHan0L0UpjSQtw5gIheDfF7NmRFzQ=) 3: D2D7B762995611EFADA5D754C4F9AE02.roa (hash: uC7UgU3WUyp6lo8+x5BnzjYje46EFX3E65V33NxoTHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:09:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: Apr 5 05:09:03 2026 GMT Not After : Apr 12 05:09:03 2026 GMT Subject: CN=69d1ee70-57cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b5:d2:d2:da:87:24:41:ce:84:67:26:29:b2: 42:3b:58:49:39:50:22:47:a1:91:2b:7d:6c:11:3e: 7a:35:89:60:bc:1d:b4:a9:33:a2:6e:f6:26:34:1d: 17:8a:78:d6:53:25:4f:84:25:99:9e:30:92:34:1d: 69:98:b7:9c:52:50:bd:ac:fd:d6:20:4f:3a:7f:ce: 69:b3:ec:d1:a3:5b:ce:cf:73:d8:72:9f:89:d6:7e: f9:b7:db:20:57:31:23:42:6c:4a:98:49:f3:82:c2: 5a:e4:0e:da:6e:18:8e:1b:89:1c:c8:bc:e0:4e:31: 08:6d:cb:bd:dd:82:6a:19:3a:4a:84:28:db:b0:7e: 77:16:66:d1:34:55:84:66:2a:09:4c:c1:7e:e8:e9: 0d:b1:16:d9:59:40:f6:c7:25:4c:76:6e:f8:98:dd: 39:db:7f:6f:40:27:af:e4:88:14:f3:e8:f1:fb:e2: 37:c0:30:04:31:a8:e4:8a:5b:18:f8:ce:d1:f7:94: 7c:53:86:c5:1b:d9:b8:3c:8e:70:1e:b2:7e:16:ca: e8:7a:54:99:12:21:93:ec:7a:d8:a6:9d:7e:23:3d: c0:fa:ee:f2:06:2a:57:58:b6:a4:9e:bd:b5:5a:f3: 7a:df:08:84:87:88:91:b3:92:e2:84:37:ca:8b:f8: 98:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:36:B1:09:F6:2C:D2:1A:75:1D:12:58:B7:FA:64:7D:DF:35:EF:76 X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:b8:fb:3a:c8:f2:b4:12:5c:a0:8c:d6:d1:71:fb:ac:c0:3e: c5:e6:a2:56:a9:e7:11:b9:6c:97:16:8a:b7:fc:b3:bd:c0:2a: c5:da:d2:fb:8c:cc:28:a9:6c:60:ff:12:5a:2f:1c:14:69:30: ec:bf:da:7e:84:e6:7c:5d:55:a2:e4:cd:7a:4f:f8:0c:f4:91: 93:d3:2e:0d:47:6d:59:16:45:a8:63:a1:42:f7:c1:9e:8e:94: a3:7e:44:2d:38:cb:2b:3a:53:dc:fe:7e:2e:ca:96:77:28:34: ed:af:c9:58:7d:50:45:d5:13:59:31:c8:0e:8b:81:80:11:82: cd:f1:d9:9f:a0:8e:0d:06:8a:f7:2d:93:3d:06:67:14:3e:76: 65:a1:50:7c:69:c7:7f:de:03:7f:bb:a0:e1:b0:ce:80:74:58: 6d:f5:fa:f2:9b:00:b9:ff:5b:22:64:0f:6e:96:1c:6a:0a:63: a2:fa:d6:a5:d1:39:0d:db:0a:7f:c9:86:fb:ac:10:75:84:e3: 18:63:66:6e:59:ef:76:df:72:de:ff:6a:bb:1f:6d:ca:fa:5e: fd:c9:ac:e6:5c:e3:92:e7:24:18:c5:91:f6:23:a9:3d:46:9d: 1e:2f:b8:a4:f4:7c:72:ff:aa:23:93:4c:0c:6a:62:25:82:ae: c0:bf:bc:24 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDQ3MjBBMkI3OEM3ODIzOTkyNkZERUU3MzQ0QTM2ODBE QTBEODA3MUQwHhcNMjYwNDA1MDUwOTAzWhcNMjYwNDEyMDUwOTAzWjAYMRYwFAYD VQQDEw02OWQxZWU3MC01N2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArLXS0tqHJEHOhGcmKbJCO1hJOVAiR6GRK31sET56NYlgvB20qTOibvYmNB0X injWUyVPhCWZnjCSNB1pmLecUlC9rP3WIE86f85ps+zRo1vOz3PYcp+J1n75t9sg VzEjQmxKmEnzgsJa5A7abhiOG4kcyLzgTjEIbcu93YJqGTpKhCjbsH53FmbRNFWE ZioJTMF+6OkNsRbZWUD2xyVMdm74mN05239vQCev5IgU8+jx++I3wDAEMajkilsY +M7R95R8U4bFG9m4PI5wHrJ+FsroelSZEiGT7HrYpp1+Iz3A+u7yBipXWLaknr21 WvN63wiEh4iRs5LihDfKi/iYEQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHU2sQn2 LNIadR0SWLf6ZH3fNe92MB8GA1UdIwQYMBaAFEcgoreMeCOZJv3uc0SjaA2g2Acd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi8yN0UzRURBNDk4 MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1a21fZTV6UktOb0RhRFlC eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJERi8yN0UzRURBNDk4MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1 a21fZTV6UktOb0RhRFlCeDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlLj7OsjytBJcoIzW0XH7rMA+xeaiVqnnEblslxaKt/yzvcAqxdrS+4zMKKls YP8SWi8cFGkw7L/afoTmfF1VouTNek/4DPSRk9MuDUdtWRZFqGOhQvfBno6Uo35E LTjLKzpT3P5+LsqWdyg07a/JWH1QRdUTWTHIDouBgBGCzfHZn6CODQaK9y2TPQZn FD52ZaFQfGnHf94Df7ug4bDOgHRYbfX68psAuf9bImQPbpYcagpjovrWpdE5DdsK f8mG+6wQdYTjGGNmblnvdt9y3v9qux9tyvpe/cms5lzjkuckGMWR9iOpPUadHi+4 pPR8cv+qI5NMDGpiJYKuwL+8JA== -----END CERTIFICATE-----Generated at Mon Apr 6 13:57:41 2026 by rpki-client