$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft File: DYtx2GteICkzvLAqW210CSpSoXw.mft (raw, json) Hash identifier: 1GRbY0SSabLo8iwWw2TaXcOW9KX9FEb461JgLvs+3IM= Subject key identifier: A5:78:E0:19:A0:B4:D2:DB:37:47:59:42:97:1D:3C:74:FE:3E:C6:8A Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 35B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft Manifest number: 3558 Signing time: Sun 26 Apr 2026 14:49:41 +0000 Manifest this update: Sun 26 Apr 2026 14:49:41 +0000 Manifest next update: Sun 03 May 2026 14:49:41 +0000 Files and hashes: 1: DYtx2GteICkzvLAqW210CSpSoXw.crl (hash: Y8SMvMJ2HsQc4h/FnSiUpf9qA+LSSPkjhfmgz4jNq2M=) 2: 3DBC186C5AD611EF85A4557BC4F9AE02.roa (hash: 6uLGUsAxDCCetxCSvWggNZXKnXx2TcJW5ybw8uE9+E8=) 3: 9B71FEB0593F11EA9F9FA238C4F9AE02.roa (hash: Q4GRmFRI4ONgbTnKmbxTEpLs75sW5Sq4FWea39SXv98=) 4: D56D9FD87E8711EC9A928B6AC4F9AE02.roa (hash: l9+xBEny0RtitxX+horpYy85rL+QwU54sl8n7bTIiQE=) 5: 65552C3AE8D411ED8D0FAD45C4F9AE02.roa (hash: D7Y0D/y/CKTIEfmEtpoWEBzYAJ2qa9qCceCAIRlHBxE=) 6: 9A2B0DE4593F11EA9F9FA238C4F9AE02.roa (hash: NLs+1lW2c+XRSot8ioe6j0/P90GPYhhRdikdITCoGOI=) 7: 991EB004BE8511EE960E5082C4F9AE02.roa (hash: rP4EBcoYjp/fb5drtfKj/6SrPS0+St4OmibSJgW68j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 14:49:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13744 (0x35b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C, serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: Apr 26 14:49:41 2026 GMT Not After : May 3 14:49:41 2026 GMT Subject: CN=69ee2605-0f12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:dd:9b:d9:97:09:45:43:27:c7:b7:ff:8d:8e: 8e:ef:9f:6c:92:9c:60:55:04:a1:01:82:7d:b7:52: 83:91:e5:b6:24:9e:9b:99:65:6e:5f:71:c0:5c:23: 76:a1:1d:3d:2f:a7:ca:da:d4:e7:e5:89:f3:87:c0: d9:96:5a:1b:e2:87:15:cd:4b:14:53:37:40:67:54: f4:c0:c0:6f:de:aa:ec:dc:72:79:7b:4f:80:ca:79: 37:bb:1d:66:e4:5a:6b:bf:98:b6:0e:49:49:1b:62: f6:d0:9c:a8:f6:76:3b:32:49:34:fc:79:86:dd:06: d1:37:b1:56:27:b6:6a:0c:0f:de:1f:68:c0:d4:5f: 25:8c:fe:89:dc:fc:1a:15:39:7f:cf:3c:7c:a4:68: 54:d0:d0:58:10:88:2d:a0:93:4f:59:ad:78:7c:ea: 60:33:9e:ba:f8:6f:a8:d1:05:98:fa:bb:a6:ad:32: b8:09:8a:46:73:b8:5d:04:12:84:97:98:f6:45:6e: 00:c0:e3:53:4d:39:98:2b:7b:60:a3:2d:4a:11:85: c5:26:2c:ea:9b:90:63:f2:ea:78:0d:0d:2f:4d:b3: 0d:9a:28:2c:d9:50:ed:b0:d3:b0:46:33:fd:af:bb: 9b:b4:8d:bc:06:23:7e:f2:0f:05:a4:1b:85:cc:ef: e4:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:78:E0:19:A0:B4:D2:DB:37:47:59:42:97:1D:3C:74:FE:3E:C6:8A X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:f5:92:e7:4a:e0:bb:f6:25:fc:9c:ba:31:d8:c6:d5:da:d8: 17:75:79:6c:b4:3d:7a:ea:81:4a:d6:41:ce:e6:ba:47:4b:93: 30:e4:ef:00:b9:45:ba:fa:ef:12:a9:85:ec:86:e4:23:99:64: 2a:38:a1:7f:e1:5c:0d:07:c9:03:bd:3e:33:ac:50:d6:a3:36: 5e:a9:62:d6:fe:0d:8d:f4:a2:ab:33:3f:27:d8:82:52:b3:29: e2:f8:eb:0e:52:22:37:b7:ea:4f:fb:a6:65:2a:4b:85:d4:95: 39:f0:39:98:b6:73:97:b3:17:c5:92:df:e8:a7:a9:fd:19:cf: 07:8d:47:df:ac:50:aa:fe:22:0f:fa:07:46:c6:ea:33:88:e7: 5e:6e:fd:73:17:5e:36:85:d4:90:1c:2f:a6:ea:6c:88:56:ca: b1:36:86:92:98:f8:8f:21:b4:69:69:d3:87:97:1c:2a:50:1c: 15:db:14:29:68:bd:49:4f:84:df:24:23:59:b8:1b:27:1f:f8: 90:4f:30:3f:be:c7:4b:0a:3a:19:52:cd:86:4f:7e:41:ae:34: 3c:08:5d:5e:95:a6:f7:30:d3:21:c8:9f:d9:44:a3:19:1d:eb: 9e:a2:b8:5b:32:a8:62:78:86:90:14:ec:cf:8d:75:2d:40:d6: d7:51:80:ce -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjYwNDI2MTQ0OTQxWhcNMjYwNTAzMTQ0OTQxWjAYMRYwFAYD VQQDEw02OWVlMjYwNS0wZjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAut2b2ZcJRUMnx7f/jY6O759skpxgVQShAYJ9t1KDkeW2JJ6bmWVuX3HAXCN2 oR09L6fK2tTn5Ynzh8DZllob4ocVzUsUUzdAZ1T0wMBv3qrs3HJ5e0+Aynk3ux1m 5Fprv5i2DklJG2L20Jyo9nY7Mkk0/HmG3QbRN7FWJ7ZqDA/eH2jA1F8ljP6J3Pwa FTl/zzx8pGhU0NBYEIgtoJNPWa14fOpgM566+G+o0QWY+rumrTK4CYpGc7hdBBKE l5j2RW4AwONTTTmYK3tgoy1KEYXFJizqm5Bj8up4DQ0vTbMNmigs2VDtsNOwRjP9 r7ubtI28BiN+8g8FpBuFzO/kDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKV44Bmg tNLbN0dZQpcdPHT+PsaKMB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzk1Qy9CQjM0MTdDMDFEOTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlD a3p2TEFxVzIxMENTcFNvWHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAq/WS50rgu/Yl/Jy6MdjG1drYF3V5bLQ9euqBStZBzua6R0uTMOTvALlFuvrv EqmF7IbkI5lkKjihf+FcDQfJA70+M6xQ1qM2Xqli1v4NjfSiqzM/J9iCUrMp4vjr DlIiN7fqT/umZSpLhdSVOfA5mLZzl7MXxZLf6Kep/RnPB41H36xQqv4iD/oHRsbq M4jnXm79cxdeNoXUkBwvpupsiFbKsTaGkpj4jyG0aWnTh5ccKlAcFdsUKWi9SU+E 3yQjWbgbJx/4kE8wP77HSwo6GVLNhk9+Qa40PAhdXpWm9zDTIcif2USjGR3rnqK4 WzKoYniGkBTsz411LUDW11GAzg== -----END CERTIFICATE-----Generated at Mon Apr 27 09:16:32 2026 by rpki-client