$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft File: _RYHGGNz6B9E0TeyoOlpV-YquKE.mft (raw, json) Hash identifier: pPy8XXTDiPIpJ1/eex4/rLC83gilZNbGfU55qLhmi6I= Subject key identifier: 68:C3:42:EA:ED:4E:10:95:05:DE:0B:33:DB:BD:F9:9E:19:1A:32:28 Authority key identifier: FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 Certificate issuer: /CN=A91EA958/serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Certificate serial: 3579 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft Manifest number: 3553 Signing time: Sat 18 Apr 2026 14:59:53 +0000 Manifest this update: Sat 18 Apr 2026 14:59:53 +0000 Manifest next update: Sat 25 Apr 2026 14:59:53 +0000 Files and hashes: 1: _RYHGGNz6B9E0TeyoOlpV-YquKE.crl (hash: gnvOBGQSKmSpBHtc7XLU+RSbNOiuQ2+ZN6dzRwQCxxo=) 2: 5A7BB752BD2F11EBB84EE532C4F9AE02.roa (hash: OqYW8F4250vX2cVPr/WKUGN/bLRsN60JeF92JnIapyY=) 3: D347187A7E9511ECA9132A0BC4F9AE02.roa (hash: hOPjAACYFIMnZpYQK50BQrHSZKRavg8kb8cFoUPdabA=) 4: 59F4A758BD2F11EBB84EE532C4F9AE02.roa (hash: m731XVB6b1xAGYHDb9IkvhodV8wFo5nHOoj74jQNmhY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 14:59:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13689 (0x3579) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA958, serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Validity Not Before: Apr 18 14:59:53 2026 GMT Not After : Apr 25 14:59:53 2026 GMT Subject: CN=69e39c69-9f3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6c:bd:0d:38:b2:7f:72:d4:ca:3b:46:f3:d5: 55:51:2a:16:5c:db:78:6e:f4:d6:db:7f:8e:4c:14: 08:d5:3e:ab:59:14:4f:d1:95:b8:89:4c:d8:77:39: 78:13:58:d7:78:fc:c4:d1:f0:be:62:ca:31:79:88: 4c:52:c5:15:7c:4e:22:df:dc:7e:3f:6b:9d:bb:1a: 6c:b1:7f:24:c6:20:f5:b7:54:1c:11:ff:68:33:2f: 8d:f1:4a:f0:0e:e5:de:ae:c8:b4:53:6a:a6:23:36: 91:0f:e9:9b:64:ba:96:2c:4e:65:77:db:84:88:d6: 5e:88:ae:20:eb:b7:64:f5:8d:82:ca:f5:a4:fe:a9: 9a:c0:2a:d6:41:6a:42:67:64:80:48:80:5b:a6:c3: 41:e5:d6:d4:0e:66:8b:23:70:f3:58:42:1c:9d:bc: 77:ff:86:c1:b1:e2:83:ce:e5:30:4c:fb:12:d4:a3: f4:d5:7f:6f:48:4b:f3:8a:16:b9:98:2f:ca:6d:f7: 4c:ee:83:2e:b1:b7:37:a2:63:70:10:60:f2:65:9d: 0b:ce:8d:f5:11:3e:75:8f:72:f1:5d:a2:0a:98:17: e0:66:89:45:07:d3:fc:0b:93:57:0a:cc:06:d1:c5: 66:4c:7f:b3:c2:9d:ab:e4:d0:bd:8b:25:fd:41:f2: 4e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C3:42:EA:ED:4E:10:95:05:DE:0B:33:DB:BD:F9:9E:19:1A:32:28 X509v3 Authority Key Identifier: keyid:FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:72:7e:1e:ef:63:94:e8:80:5c:97:5a:ae:a6:87:19:60:73: 9d:1b:be:42:66:4d:27:ed:a4:c4:24:71:fd:8f:e5:37:97:dd: 98:78:cf:7c:e8:f5:e9:d5:a3:a0:c9:2e:6e:b6:b6:35:3b:32: c8:7f:42:89:d3:ac:b9:ca:72:fb:e7:99:15:d2:78:88:a7:92: 45:69:ea:02:7d:c9:8a:aa:e5:50:3c:95:50:03:76:5b:89:b8: b2:85:06:94:65:4e:22:8d:86:82:85:4f:65:b8:ef:f6:3d:78: f5:0e:82:00:1b:0d:bb:8e:e3:ec:b5:b5:97:7e:dc:3a:15:29: 1a:a5:b4:b5:bd:71:63:9b:f5:68:41:e9:38:a3:a0:f5:65:1a: 88:8b:a8:d7:fc:0d:0c:12:df:99:f1:29:97:5e:b2:a5:9c:72: 57:d0:5a:98:aa:10:b2:c7:17:87:46:48:6a:38:3e:cf:b2:d1: c2:70:b1:7c:a8:75:a0:5f:df:91:a9:16:fb:db:3d:ab:dc:88: 85:d3:97:d5:9e:b7:18:25:fa:78:15:fa:89:40:93:2e:f8:62: 74:da:3b:8a:f6:80:e1:ad:6f:f7:d9:38:f2:6b:49:81:2d:36: 24:06:ae:ce:52:12:63:48:44:78:da:86:de:71:ce:79:3e:e4: 30:3a:bb:8b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NTgxMTAvBgNVBAUTKEZEMTYwNzE4NjM3M0U4MUY0NEQxMzdCMkEwRTk2OTU3 RTYyQUI4QTEwHhcNMjYwNDE4MTQ1OTUzWhcNMjYwNDI1MTQ1OTUzWjAYMRYwFAYD VQQDEw02OWUzOWM2OS05ZjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmy9DTiyf3LUyjtG89VVUSoWXNt4bvTW23+OTBQI1T6rWRRP0ZW4iUzYdzl4 E1jXePzE0fC+YsoxeYhMUsUVfE4i39x+P2uduxpssX8kxiD1t1QcEf9oMy+N8Urw DuXersi0U2qmIzaRD+mbZLqWLE5ld9uEiNZeiK4g67dk9Y2CyvWk/qmawCrWQWpC Z2SASIBbpsNB5dbUDmaLI3DzWEIcnbx3/4bBseKDzuUwTPsS1KP01X9vSEvziha5 mC/KbfdM7oMusbc3omNwEGDyZZ0Lzo31ET51j3LxXaIKmBfgZolFB9P8C5NXCswG 0cVmTH+zwp2r5NC9iyX9QfJOJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGjDQurt ThCVBd4LM9u9+Z4ZGjIoMB8GA1UdIwQYMBaAFP0WBxhjc+gfRNE3sqDpaVfmKrih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk1OC81QUUxOTdGNDFE OUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZCOUUwVGV5b09scFYtWXF1 S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19SWUhHR056NkI5RTBUZXlvT2xwVi1ZcXVLRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTk1OC81QUUxOTdGNDFEOUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZC OUUwVGV5b09scFYtWXF1S0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUnJ+Hu9jlOiAXJdarqaHGWBznRu+QmZNJ+2kxCRx/Y/lN5fdmHjPfOj16dWj oMkubra2NTsyyH9CidOsucpy++eZFdJ4iKeSRWnqAn3JiqrlUDyVUAN2W4m4soUG lGVOIo2GgoVPZbjv9j149Q6CABsNu47j7LW1l37cOhUpGqW0tb1xY5v1aEHpOKOg 9WUaiIuo1/wNDBLfmfEpl16ypZxyV9BamKoQsscXh0ZIajg+z7LRwnCxfKh1oF/f kakW+9s9q9yIhdOX1Z63GCX6eBX6iUCTLvhidNo7ivaA4a1v99k48mtJgS02JAau zlISY0hEeNqG3nHOeT7kMDq7iw== -----END CERTIFICATE-----Generated at Sun Apr 19 02:47:39 2026 by rpki-client