$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft File: y_Kp2oisCPjVEG3svXLW-gnIGOk.mft (raw, json) Hash identifier: 4T6qy9OeEzLs9OCJi/XthOMc+75v1X6hUHBC7n9NIQY= Subject key identifier: CE:A5:21:BC:12:D9:FD:73:EC:6F:8C:F3:B3:45:47:97:24:27:05:6D Authority key identifier: CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 Certificate issuer: /CN=A91D5C25/serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Certificate serial: 0FE6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft Manifest number: 0FD5 Signing time: Wed 20 May 2026 17:30:20 +0000 Manifest this update: Wed 20 May 2026 17:30:19 +0000 Manifest next update: Wed 27 May 2026 17:30:19 +0000 Files and hashes: 1: y_Kp2oisCPjVEG3svXLW-gnIGOk.crl (hash: UZ0dIfaAblO0cRxvndauLER8sE9MdjGAIIYVUKWH5P0=) 2: 4ECF0A4C765C11E9A01A6E34C4F9AE02.roa (hash: RJ14Wr4LV/wXhdMBKMrnSZc5mLGEgm5MX8wuJCoDPHc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:30:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4070 (0xfe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5C25, serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Validity Not Before: May 20 17:30:19 2026 GMT Not After : May 27 17:30:19 2026 GMT Subject: CN=6a0defab-4889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:0e:04:03:fe:ef:20:28:e7:d9:70:32:b0:ce: 41:13:c3:6b:c6:53:bf:75:15:68:5a:6a:3b:54:a9: 4c:33:03:08:8c:87:16:0f:47:04:42:01:2b:c1:b6: ff:71:b3:76:f2:12:2f:01:b4:5f:bf:af:38:fd:d1: 04:91:39:05:4c:3e:63:6d:c1:b0:9f:9e:28:6e:86: 70:cf:06:c5:f3:62:d8:19:12:41:4f:56:92:5c:a3: a9:dd:50:1e:82:23:0c:b5:a1:b9:dd:25:c4:89:7d: 8a:c5:b7:a1:be:27:6f:0e:3f:9d:01:27:9d:91:45: eb:2c:4a:e0:f5:24:1c:84:58:93:3c:0d:f1:3e:1c: 73:39:49:af:f8:60:63:75:77:3c:fc:e9:95:20:e9: 4d:b6:fe:80:13:8d:06:97:71:29:9c:ec:55:66:8d: 84:8a:76:60:12:25:b5:3f:63:49:a4:35:ca:64:48: 8a:3c:15:72:bd:d0:b6:0e:af:c5:ca:0a:49:a5:87: 40:72:00:93:94:4f:30:7e:4f:90:41:c8:74:35:8a: 98:67:3f:5d:63:1c:d6:6c:4a:fc:78:00:3a:38:65: 08:b4:49:76:57:ee:b0:91:9a:f9:b6:3c:ba:80:45: 4e:89:a2:c4:4c:8a:4b:29:ef:98:b9:b2:60:79:2a: 59:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:A5:21:BC:12:D9:FD:73:EC:6F:8C:F3:B3:45:47:97:24:27:05:6D X509v3 Authority Key Identifier: keyid:CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:5e:27:6b:5c:11:fc:a8:f8:dd:00:a1:43:9c:01:36:e3:28: b6:b9:03:78:77:4f:1e:f8:93:ad:09:8e:c9:c8:6a:b8:36:ed: 7c:8c:89:a4:e3:cb:f4:2f:c2:08:16:33:63:d5:d9:84:2f:b8: 2e:9d:0c:cd:16:97:8e:86:b6:c7:db:ea:15:59:87:da:c3:15: bd:b5:86:fe:a8:29:3e:0e:f8:f8:3b:f8:fb:72:7c:bd:93:27: f7:f9:18:35:db:1b:71:99:73:27:1b:56:63:fc:6f:40:54:87: b6:81:42:b4:f0:f6:2c:26:71:fb:2b:37:3d:6d:2e:04:ab:f5: 84:20:4c:01:3d:de:f4:8a:97:dd:3e:7f:d5:01:6c:bb:23:25: 46:3d:86:21:bf:26:58:09:8e:ce:b1:16:28:56:77:cc:47:49: f8:5a:e5:28:a6:15:67:23:d5:5f:01:87:e0:0b:69:8b:24:32: 76:c8:48:fb:43:1e:2f:20:da:af:08:e2:ae:16:12:4a:f1:3e: f3:50:78:b8:13:43:b6:4d:60:2b:62:b9:44:a3:5c:65:57:26: 94:1f:6e:92:ff:dc:74:9f:e0:13:55:2f:57:5a:b0:27:32:3c: 21:c4:0a:51:ae:e2:a5:ef:a5:94:c9:ed:93:cf:46:ad:ad:32: 7c:52:ef:c7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVDMjUxMTAvBgNVBAUTKENCRjJBOURBODhBQzA4RjhENTEwNkRFQ0JENzJENkZB MDlDODE4RTkwHhcNMjYwNTIwMTczMDE5WhcNMjYwNTI3MTczMDE5WjAYMRYwFAYD VQQDEw02YTBkZWZhYi00ODg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzw4EA/7vICjn2XAysM5BE8NrxlO/dRVoWmo7VKlMMwMIjIcWD0cEQgErwbb/ cbN28hIvAbRfv684/dEEkTkFTD5jbcGwn54oboZwzwbF82LYGRJBT1aSXKOp3VAe giMMtaG53SXEiX2KxbehvidvDj+dASedkUXrLErg9SQchFiTPA3xPhxzOUmv+GBj dXc8/OmVIOlNtv6AE40Gl3EpnOxVZo2EinZgEiW1P2NJpDXKZEiKPBVyvdC2Dq/F ygpJpYdAcgCTlE8wfk+QQch0NYqYZz9dYxzWbEr8eAA6OGUItEl2V+6wkZr5tjy6 gEVOiaLETIpLKe+YubJgeSpZHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM6lIbwS 2f1z7G+M87NFR5ckJwVtMB8GA1UdIwQYMBaAFMvyqdqIrAj41RBt7L1y1voJyBjp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUMyNS82ODdBMTBBNjc2 NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQalZFRzNzdlhMVy1nbklH T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lfS3Ayb2lzQ1BqVkVHM3N2WExXLWduSUdPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUMyNS82ODdBMTBBNjc2NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQ alZFRzNzdlhMVy1nbklHT2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZl4na1wR/Kj43QChQ5wBNuMotrkDeHdPHviTrQmOychquDbtfIyJpOPL9C/C CBYzY9XZhC+4Lp0MzRaXjoa2x9vqFVmH2sMVvbWG/qgpPg74+Dv4+3J8vZMn9/kY NdsbcZlzJxtWY/xvQFSHtoFCtPD2LCZx+ys3PW0uBKv1hCBMAT3e9IqX3T5/1QFs uyMlRj2GIb8mWAmOzrEWKFZ3zEdJ+FrlKKYVZyPVXwGH4AtpiyQydshI+0MeLyDa rwjirhYSSvE+81B4uBNDtk1gK2K5RKNcZVcmlB9ukv/cdJ/gE1UvV1qwJzI8IcQK Ua7ipe+llMntk89Gra0yfFLvxw== -----END CERTIFICATE-----Generated at Thu May 21 09:38:49 2026 by rpki-client