$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft File: yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft (raw, json) Hash identifier: AceucklhAC0tsjsEnNWv5fN3xEC7uYXVvo98roip88Y= Subject key identifier: 97:22:1A:EB:66:23:4B:35:4E:AC:0E:09:4C:F1:A0:96:D0:06:EC:20 Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 06A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft Manifest number: 067B Signing time: Mon 18 May 2026 22:35:27 +0000 Manifest this update: Mon 18 May 2026 22:35:27 +0000 Manifest next update: Mon 25 May 2026 22:35:27 +0000 Files and hashes: 1: yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl (hash: A9BFFJL5EdgLLcV7eIzjflv1nQR0UmN4Odi402F+eG0=) 2: 6954A6281D1811F1BB26F0200F3D8C67.roa (hash: Fgn01xCliB3jOqCRZvxtZZ8TUDtvaptuz97JIHGUWac=) 3: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (hash: GFfQfs1rBXk5RvNn/1eLrsagDcvE+KrBjwNFBGF3aQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 May 2026 22:35:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1704 (0x6a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: May 18 22:35:27 2026 GMT Not After : May 25 22:35:27 2026 GMT Subject: CN=6a0b942f-91ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2a:55:35:6b:ed:39:1a:f0:b6:49:49:2d:3e: d9:60:6c:fc:42:58:da:db:46:33:26:95:74:aa:b0: 8f:c2:dc:18:03:50:bb:c0:cb:a2:59:f8:57:4b:99: 28:6f:a1:7d:0d:db:43:8e:6b:dc:37:49:63:8d:20: 3f:0f:ca:1f:03:da:e5:c7:21:71:3c:0d:93:c7:d3: b7:6f:9f:8d:ef:b4:02:50:31:7b:02:ed:4d:8a:9d: 23:b3:0e:f2:39:68:65:6e:ef:2f:0b:fb:e0:c5:0c: 0d:13:89:18:3f:e6:d2:c5:f9:8e:fa:3c:ce:6c:84: 2f:e6:b0:0d:6b:d1:42:4f:e3:43:7f:30:1a:e1:2a: 60:65:41:5d:4e:09:95:f0:0b:f1:10:5f:f3:dc:cb: 87:f2:45:72:c9:ac:5f:43:e1:fa:5a:cf:12:93:29: d2:47:c3:1b:50:d8:93:d1:71:39:7e:66:71:ce:fd: 2d:ff:c9:86:d6:f6:32:2d:6a:ae:2c:45:a9:6c:f2: 28:86:a0:80:c6:21:83:55:9a:61:59:35:af:71:56: 88:2b:cf:60:65:56:f1:e0:ad:59:00:1d:56:b7:65: db:81:bd:f7:e6:77:60:d1:51:55:b8:13:08:e2:df: a7:25:21:6d:3b:cd:9a:3e:47:68:b4:cf:e7:4f:10: 31:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:22:1A:EB:66:23:4B:35:4E:AC:0E:09:4C:F1:A0:96:D0:06:EC:20 X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:e1:4b:f4:c4:73:9b:e1:6f:ec:50:6f:03:15:8a:0b:c0:9d: f8:40:42:ef:46:f2:9b:9b:2d:49:ec:3f:d2:04:2d:8d:c5:91: f0:2b:07:62:8c:f6:fe:db:0b:2e:b7:dc:a2:14:42:5f:69:7c: 9e:34:7b:f4:b7:2d:eb:bf:08:28:2d:5d:ed:8a:4c:1c:0d:11: 4f:2f:cd:2a:76:43:f8:df:a8:f3:61:bd:c2:a3:c8:2e:6c:5c: 5f:96:55:62:bf:3c:28:07:ea:b9:23:27:a0:5d:59:c6:4a:95: b5:bf:3f:15:82:72:9a:25:ae:74:d1:af:4b:55:a4:b4:26:47: ec:4d:2d:1f:e3:0b:34:b6:47:2c:0a:1e:db:a4:2a:84:7c:33: 83:5e:f7:4b:ee:c7:da:bd:3e:ce:84:bd:c6:46:db:a9:cc:4c: 74:1c:53:62:d4:93:b3:ab:6f:b4:3a:ed:c2:23:e6:a0:8a:4e: 21:a6:75:f2:89:d3:49:c7:02:c9:7f:fb:67:70:fd:4d:22:d6: a8:da:2d:9f:8c:6a:a5:52:9b:98:6c:44:72:c7:76:eb:5b:e1: b8:6d:20:88:1e:04:1f:cd:0d:4b:5b:08:f0:83:fd:57:c9:da: 01:4e:ae:6b:4d:d8:27:52:83:e9:4b:ad:f8:66:66:72:38:bd: 16:dc:b3:80 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjYwNTE4MjIzNTI3WhcNMjYwNTI1MjIzNTI3WjAYMRYwFAYD VQQDEw02YTBiOTQyZi05MWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArypVNWvtORrwtklJLT7ZYGz8Qlja20YzJpV0qrCPwtwYA1C7wMuiWfhXS5ko b6F9DdtDjmvcN0ljjSA/D8ofA9rlxyFxPA2Tx9O3b5+N77QCUDF7Au1Nip0jsw7y OWhlbu8vC/vgxQwNE4kYP+bSxfmO+jzObIQv5rANa9FCT+NDfzAa4SpgZUFdTgmV 8AvxEF/z3MuH8kVyyaxfQ+H6Ws8SkynSR8MbUNiT0XE5fmZxzv0t/8mG1vYyLWqu LEWpbPIohqCAxiGDVZphWTWvcVaIK89gZVbx4K1ZAB1Wt2Xbgb335ndg0VFVuBMI 4t+nJSFtO82aPkdotM/nTxAxvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJciGutm I0s1TqwOCUzxoJbQBuwgMB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9CMDIwMkQzMkQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1Vm LUs3ZURlRERZSDdybVA5d0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABeFL9MRzm+Fv7FBvAxWKC8Cd+EBC70bym5stSew/0gQtjcWR8CsHYoz2/tsL LrfcohRCX2l8njR79Lct678IKC1d7YpMHA0RTy/NKnZD+N+o82G9wqPILmxcX5ZV Yr88KAfquSMnoF1ZxkqVtb8/FYJymiWudNGvS1WktCZH7E0tH+MLNLZHLAoe26Qq hHwzg173S+7H2r0+zoS9xkbbqcxMdBxTYtSTs6tvtDrtwiPmoIpOIaZ18onTSccC yX/7Z3D9TSLWqNotn4xqpVKbmGxEcsd261vhuG0giB4EH80NS1sI8IP9V8naAU6u a03YJ1KD6Uut+GZmcji9FtyzgA== -----END CERTIFICATE-----Generated at Tue May 19 10:21:22 2026 by rpki-client