$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft File: 0ypa3AVCwugXwgK-a3KB6GnReJc.mft (raw, json) Hash identifier: I5BvpxQZ4MBs40l/Mclc3cpucQ7gtgfzFRYuX07ZwDU= Subject key identifier: 79:5C:6D:D2:E2:D2:AA:D5:C2:1A:4A:CB:7C:A8:EA:5A:54:6A:54:79 Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft Manifest number: 016D Signing time: Mon 01 Jun 2026 05:40:27 +0000 Manifest this update: Mon 01 Jun 2026 05:40:26 +0000 Manifest next update: Mon 08 Jun 2026 05:40:26 +0000 Files and hashes: 1: 0ypa3AVCwugXwgK-a3KB6GnReJc.crl (hash: n7c8DldzaOkSNkDchDfXXvTPEbLyY5/sMtmwyKbB+7M=) 2: 6F723CC0830B11F0B82E836DC4F9AE02.roa (hash: kic2dalBDWVuSnTSKRWGlC83NcfnCjH4W7+pZUZCDAs=) 3: 77D3D4A0FEDA11F0AB7A7279726F56BC.roa (hash: FHfqmVc0DH5T6GrvyUSWpVxXHt1ddRfHNNOxDC51WEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 05:40:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Jun 1 05:40:26 2026 GMT Not After : Jun 8 05:40:26 2026 GMT Subject: CN=6a1d1b4b-7efe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:90:d8:9d:44:e9:c7:59:cc:98:22:f3:e2:bf: 8e:eb:4b:a5:99:7e:08:1e:bb:6b:98:7c:0a:72:68: f5:f3:10:a7:b9:35:5b:87:33:f9:49:37:76:42:c2: 52:b9:e0:a2:55:0e:3e:98:98:4a:57:c1:71:ea:c0: 39:c3:a3:cf:e1:fc:5b:a8:85:9f:07:2b:bc:4a:2e: ec:f0:09:6a:7b:21:54:f7:48:55:c1:97:88:55:2a: e7:7d:bb:e1:84:4a:2d:57:fa:64:bb:04:c3:8a:b1: dc:7d:c1:d7:75:f5:b5:5d:49:bf:74:08:0d:dd:ad: e7:a2:fd:10:c6:87:d3:8a:ab:23:08:de:53:91:a6: 09:20:9d:9b:db:40:8e:d0:ab:51:3b:53:cc:14:11: 33:b6:06:6f:6c:4d:fd:21:80:f0:e6:25:d6:33:68: b9:9a:0b:66:9f:c5:0e:c7:1a:fa:a2:e3:21:2c:90: 45:55:16:b0:48:fc:18:8d:04:bb:1a:6c:5b:e2:a4: 78:70:37:bf:d6:d3:0c:c8:59:37:20:2f:e0:08:96: 7e:99:73:6f:aa:5a:0b:30:87:52:43:66:ae:c4:60: 1c:2a:ae:48:c7:7b:4b:5c:b4:91:a7:fc:13:18:84: 5c:19:a6:39:e3:00:b1:7c:f6:49:2c:73:fe:83:aa: d2:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:5C:6D:D2:E2:D2:AA:D5:C2:1A:4A:CB:7C:A8:EA:5A:54:6A:54:79 X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:f6:fd:e1:a6:8d:ab:9c:40:49:85:4d:56:04:93:33:b3:ab: 89:9e:82:00:28:d4:ae:f4:97:8b:e6:5c:ad:22:02:09:ff:a6: 9e:6f:14:aa:d8:0b:9d:86:6f:30:3f:05:9c:60:24:05:d0:27: 49:db:98:76:7c:18:43:33:a3:2f:c0:8f:7c:10:8e:e5:a4:80: 31:e2:47:6a:76:4f:fa:1f:26:fa:1a:31:be:80:9c:a1:9f:8a: e7:bd:fa:0a:dd:6c:76:98:37:2d:1c:b1:3a:3a:a6:f0:f7:6f: 0e:fd:91:91:4a:4e:d4:39:fc:27:e2:e3:bd:16:91:a2:09:f2: cb:90:64:40:25:00:b2:a0:ff:bb:c0:b4:a3:46:b0:3a:a1:6b: 92:09:19:b5:bf:74:ee:74:a8:90:44:54:2c:86:dd:de:2a:3d: 43:2e:ed:92:bb:c4:d1:3f:fa:59:32:41:17:b2:90:82:9f:37: d3:17:c3:0f:73:7e:ef:3e:e7:84:32:f0:94:fb:df:0b:fc:00: f1:17:19:ba:89:bf:da:35:ed:3c:14:7d:3f:eb:d4:85:5e:93: e1:03:30:14:80:46:c5:18:cf:56:26:b9:f4:57:51:80:1e:2f: 3c:02:b0:bc:29:41:14:45:84:18:8f:29:10:5d:2d:53:9f:f8: de:81:a6:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA4NTUxMTAvBgNVBAUTKEQzMkE1QURDMDU0MkMyRTgxN0MyMDJCRTZCNzI4MUU4 NjlEMTc4OTcwHhcNMjYwNjAxMDU0MDI2WhcNMjYwNjA4MDU0MDI2WjAYMRYwFAYD VQQDEw02YTFkMWI0Yi03ZWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJDYnUTpx1nMmCLz4r+O60ulmX4IHrtrmHwKcmj18xCnuTVbhzP5STd2QsJS ueCiVQ4+mJhKV8Fx6sA5w6PP4fxbqIWfByu8Si7s8AlqeyFU90hVwZeIVSrnfbvh hEotV/pkuwTDirHcfcHXdfW1XUm/dAgN3a3nov0QxofTiqsjCN5TkaYJIJ2b20CO 0KtRO1PMFBEztgZvbE39IYDw5iXWM2i5mgtmn8UOxxr6ouMhLJBFVRawSPwYjQS7 Gmxb4qR4cDe/1tMMyFk3IC/gCJZ+mXNvqloLMIdSQ2auxGAcKq5Ix3tLXLSRp/wT GIRcGaY54wCxfPZJLHP+g6rSowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHlcbdLi 0qrVwhpKy3yo6lpUalR5MB8GA1UdIwQYMBaAFNMqWtwFQsLoF8ICvmtygehp0XiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDg1NS81MDRDRkZFMjQ0 OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1Z1h3Z0stYTNLQjZHblJl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDg1NS81MDRDRkZFMjQ0OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1 Z1h3Z0stYTNLQjZHblJlSmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAS/b94aaNq5xASYVNVgSTM7OriZ6CACjUrvSXi+ZcrSICCf+mnm8UqtgLnYZv MD8FnGAkBdAnSduYdnwYQzOjL8CPfBCO5aSAMeJHanZP+h8m+hoxvoCcoZ+K5736 Ct1sdpg3LRyxOjqm8PdvDv2RkUpO1Dn8J+LjvRaRognyy5BkQCUAsqD/u8C0o0aw OqFrkgkZtb907nSokERULIbd3io9Qy7tkrvE0T/6WTJBF7KQgp830xfDD3N+7z7n hDLwlPvfC/wA8RcZuom/2jXtPBR9P+vUhV6T4QMwFIBGxRjPVia59FdRgB4vPAKw vClBFEWEGI8pEF0tU5/43oGmuA== -----END CERTIFICATE-----Generated at Tue Jun 2 21:19:23 2026 by rpki-client