$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft File: yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft (raw, json) Hash identifier: aGlDDLjNvKeY14GOZc90HSqHD287zkVPM0PWT9+qPOw= Subject key identifier: 13:E4:A4:FE:B3:CE:50:BB:3B:94:AE:09:D9:23:AC:B5:2B:08:75:1D Authority key identifier: C8:90:92:54:F6:96:66:D5:85:E3:10:AC:D8:DF:F2:B1:FB:9A:5F:2A Certificate issuer: /CN=A91B3558/serialNumber=C8909254F69666D585E310ACD8DFF2B1FB9A5F2A Certificate serial: 1132 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJCSVPaWZtWF4xCs2N_ysfuaXyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft Manifest number: 1117 Signing time: Wed 20 May 2026 17:16:32 +0000 Manifest this update: Wed 20 May 2026 17:16:32 +0000 Manifest next update: Wed 27 May 2026 17:16:32 +0000 Files and hashes: 1: yJCSVPaWZtWF4xCs2N_ysfuaXyo.crl (hash: L+d0n80tOB9unDdFQMfLYUUDIWYEeUqFCS1+ExGLX7U=) 2: 9305EF46716511EFAA44E47BC4F9AE02.roa (hash: MInSGZWk/+V+/O784VPQkOPEvkikcYw1hh5xAfaMy+Y=) 3: BAE1D7A8716711EFBF91272AC4F9AE02.roa (hash: aScypq58ma32Blk4gXAn5hRCMA++RlRKUglRyBdAIIU=) 4: B9E0D3EA716711EFBF91272AC4F9AE02.roa (hash: QNd+7yoJE7XGdb3l9stbVIXGPJdYrSjK5lDsTdFfmX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.crl rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJCSVPaWZtWF4xCs2N_ysfuaXyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:16:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4402 (0x1132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3558, serialNumber=C8909254F69666D585E310ACD8DFF2B1FB9A5F2A Validity Not Before: May 20 17:16:32 2026 GMT Not After : May 27 17:16:32 2026 GMT Subject: CN=6a0dec70-3d50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:bd:53:bc:5b:62:75:e3:f5:d9:b6:df:22:57: 31:b5:ec:36:a7:c3:67:81:2e:2a:3e:62:ca:6b:8d: 35:03:83:9a:35:3b:87:d9:11:ee:f3:42:1a:88:29: ae:3c:8d:49:69:6d:79:1a:37:e8:22:6c:55:92:b2: 0c:9b:f2:f2:fa:14:f2:63:bd:ea:ce:17:98:40:ef: 2d:1f:ef:6e:29:6b:55:88:f5:97:ca:d9:90:7e:f3: 2f:f5:cc:bd:a8:f6:37:45:0f:3a:4a:13:99:fb:f7: 71:0e:13:23:f0:88:d8:c5:94:09:ad:93:5e:74:ff: 7d:6d:25:17:86:70:cd:18:65:c9:83:fc:82:71:e1: 21:27:68:76:29:c8:4d:e4:39:e0:5d:e5:73:e9:2c: d8:90:9e:b2:a1:b7:79:82:bf:17:00:06:10:ef:b7: 23:bf:32:ff:bf:0d:d0:58:cd:9e:4b:d6:b2:7b:9d: 79:a6:89:55:67:8e:d4:48:0b:7a:c0:92:b0:b6:a3: 73:20:28:d6:3b:16:04:00:f2:d2:be:14:40:69:fc: 15:de:b0:a8:43:e6:e5:47:be:b0:cd:a7:62:7f:56: 94:c3:23:06:8e:52:ad:58:f4:d5:5c:3e:52:53:d4: ea:eb:73:04:40:27:b5:b4:3f:60:09:1f:52:49:79: 41:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:E4:A4:FE:B3:CE:50:BB:3B:94:AE:09:D9:23:AC:B5:2B:08:75:1D X509v3 Authority Key Identifier: keyid:C8:90:92:54:F6:96:66:D5:85:E3:10:AC:D8:DF:F2:B1:FB:9A:5F:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJCSVPaWZtWF4xCs2N_ysfuaXyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:c5:06:f1:46:56:c5:27:68:9a:f6:50:d9:d1:9f:ae:2e:a6: b2:9b:f9:88:93:59:4d:9d:b5:08:43:66:4c:4b:d1:2b:14:6a: 3d:db:a5:5a:2b:cf:6e:6a:b8:10:d8:6d:bb:14:ea:5e:63:15: b3:a0:ae:d2:53:7b:a4:de:d2:2b:c0:89:db:c1:f6:5f:93:2d: 44:30:1b:35:34:67:f7:13:57:d7:17:a0:2e:ab:cc:ea:b3:c3: 20:df:b0:dc:c4:37:4e:ab:b1:b4:98:55:2d:ff:d7:d1:52:cd: 04:59:06:ce:bb:23:e6:15:4a:85:3d:82:9e:7d:08:80:f7:09: bd:dd:b8:bd:23:be:c7:28:46:e5:51:ac:86:c1:d5:57:bb:19: ce:5f:8b:e2:34:fa:b8:fc:fc:f2:55:ea:f7:7b:0e:b1:95:2e: 75:27:6d:de:fe:1c:77:8e:fd:11:fd:17:50:ef:f8:d3:b3:e7: 8c:b2:02:49:f9:3c:2b:61:e4:cd:1b:05:fc:df:1c:72:d9:60: 64:75:af:46:25:23:79:bc:02:ab:7c:fe:d9:19:77:eb:78:23: 7b:91:4a:5e:20:9e:14:2a:9b:89:58:c1:09:ba:c2:2a:13:dd: 8a:4a:77:eb:2f:49:50:ca:7d:49:b9:bd:13:fd:43:53:e1:fa: d8:bc:eb:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICETIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM1NTgxMTAvBgNVBAUTKEM4OTA5MjU0RjY5NjY2RDU4NUUzMTBBQ0Q4REZGMkIx RkI5QTVGMkEwHhcNMjYwNTIwMTcxNjMyWhcNMjYwNTI3MTcxNjMyWjAYMRYwFAYD VQQDEw02YTBkZWM3MC0zZDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0b1TvFtideP12bbfIlcxtew2p8NngS4qPmLKa401A4OaNTuH2RHu80IaiCmu PI1JaW15GjfoImxVkrIMm/Ly+hTyY73qzheYQO8tH+9uKWtViPWXytmQfvMv9cy9 qPY3RQ86ShOZ+/dxDhMj8IjYxZQJrZNedP99bSUXhnDNGGXJg/yCceEhJ2h2KchN 5DngXeVz6SzYkJ6yobd5gr8XAAYQ77cjvzL/vw3QWM2eS9aye515polVZ47USAt6 wJKwtqNzICjWOxYEAPLSvhRAafwV3rCoQ+blR76wzadif1aUwyMGjlKtWPTVXD5S U9Tq63MEQCe1tD9gCR9SSXlBaQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBPkpP6z zlC7O5SuCdkjrLUrCHUdMB8GA1UdIwQYMBaAFMiQklT2lmbVheMQrNjf8rH7ml8q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzU1OC8wRjIxMjE0RTM5 MDUxMUU5OUEzMzAyMzNDNEY5QUUwMi95SkNTVlBhV1p0V0Y0eENzMk5feXNmdWFY eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lKQ1NWUGFXWnRXRjR4Q3MyTl95c2Z1YVh5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzU1OC8wRjIxMjE0RTM5MDUxMUU5OUEzMzAyMzNDNEY5QUUwMi95SkNTVlBhV1p0 V0Y0eENzMk5feXNmdWFYeW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVMUG8UZWxSdomvZQ2dGfri6mspv5iJNZTZ21CENmTEvRKxRqPdulWivPbmq4 ENhtuxTqXmMVs6Cu0lN7pN7SK8CJ28H2X5MtRDAbNTRn9xNX1xegLqvM6rPDIN+w 3MQ3TquxtJhVLf/X0VLNBFkGzrsj5hVKhT2Cnn0IgPcJvd24vSO+xyhG5VGshsHV V7sZzl+L4jT6uPz88lXq93sOsZUudSdt3v4cd479Ef0XUO/407PnjLICSfk8K2Hk zRsF/N8cctlgZHWvRiUjebwCq3z+2Rl363gje5FKXiCeFCqbiVjBCbrCKhPdikp3 6y9JUMp9Sbm9E/1DU+H62LzrNA== -----END CERTIFICATE-----Generated at Fri May 22 15:18:54 2026 by rpki-client