$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft File: y1IFTj13aOoWtrColMdzon3qkho.mft (raw, json) Hash identifier: QtztUpHg+wokv4RnrktBbRugmfnptnlW7GmiYv9C+yk= Subject key identifier: 66:B1:52:35:9D:7E:B4:14:DC:EB:C2:C2:B8:16:23:AA:73:D0:98:1C Authority key identifier: CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A Certificate issuer: /CN=A91EB6AC/serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Certificate serial: 0CB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft Manifest number: 0CA8 Signing time: Thu 14 May 2026 18:33:52 +0000 Manifest this update: Thu 14 May 2026 18:33:52 +0000 Manifest next update: Thu 21 May 2026 18:33:52 +0000 Files and hashes: 1: y1IFTj13aOoWtrColMdzon3qkho.crl (hash: EG06HpladkldLtFVNx5/GPumcFqqc4oJ8hJ9JBciw5o=) 2: 9DA63F546D2811F09647053BC4F9AE02.roa (hash: RqF3cRBG8AaHKTEnB008C+GD7GzGFEY6SVWZ6TQ/56s=) 3: 12D352766D2911F0B26CB33BC4F9AE02.roa (hash: +veuE7uroMOvZaLX4YYQUXIUo7kDv0lS8n9ppMEUfBU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 21 May 2026 18:33:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3256 (0xcb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB6AC, serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Validity Not Before: May 14 18:33:52 2026 GMT Not After : May 21 18:33:52 2026 GMT Subject: CN=6a061590-7726 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:7f:69:7d:e3:b5:e6:7e:41:5b:bb:db:7b:c8: 49:11:0d:46:be:95:58:6f:92:ae:35:3b:5e:11:0e: ff:de:8a:b4:f2:39:7b:7f:4e:0e:b8:58:b0:cf:65: 94:cd:fe:44:4f:fa:95:0c:9d:45:92:5d:9e:78:99: b6:8f:0b:08:12:7a:53:b5:54:df:f6:91:e9:52:be: 95:38:b4:b0:4b:2f:dc:78:73:0e:f9:b1:a0:82:3f: 51:49:54:7a:d4:df:c7:83:96:b2:84:31:72:f4:75: d5:58:9d:8e:52:ca:5b:2b:28:9e:ad:b2:8c:f7:3a: 15:31:da:95:b4:90:a6:84:40:ef:63:e0:ae:3d:ea: f0:e5:d3:dc:d4:06:a8:0f:0a:3a:4d:c3:f5:e4:49: 0a:2d:d6:fa:31:74:14:85:88:54:b7:e5:43:e4:ec: bd:18:52:bf:a3:79:7a:06:6a:9b:53:f7:8b:c8:00: 17:25:47:23:c6:7f:2f:6d:c9:d9:ad:27:2a:35:af: 9d:b2:d9:22:9e:d8:b2:79:f7:b4:7c:d3:40:39:9b: ee:61:1a:bd:2d:ba:18:f1:2c:b6:aa:fc:da:0d:8b: b4:fc:12:99:d5:a4:88:e2:58:48:45:64:f6:12:86: c7:be:85:3e:23:58:37:4d:a9:61:cf:53:14:74:b3: cf:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:B1:52:35:9D:7E:B4:14:DC:EB:C2:C2:B8:16:23:AA:73:D0:98:1C X509v3 Authority Key Identifier: keyid:CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:71:ec:f0:1e:db:72:96:66:8f:b8:77:ab:83:15:a2:d9:e1: 5a:4d:7e:b8:e0:69:ad:0a:4c:1d:30:d4:c4:7d:1b:b4:ca:39: 77:64:ac:6e:27:15:b7:ff:0c:ad:51:88:f1:42:b1:ce:9e:d3: dd:06:e2:c8:4a:7d:88:35:9f:96:d7:f0:14:e1:3c:71:85:1b: fa:c8:cd:9f:98:4d:3e:36:f3:99:9d:03:ba:bd:af:9b:0b:11: bc:78:f5:1b:f8:b8:6b:65:a8:48:d5:ab:ab:49:88:03:8a:11: b1:5f:eb:bf:9f:1b:90:26:2c:98:98:73:b3:eb:15:c6:ff:61: a0:49:49:75:fa:ae:ce:84:a2:42:05:bd:04:35:7f:bf:04:ab: 78:99:b2:82:d2:8a:dd:fb:1e:6f:05:2d:dd:60:e4:42:6e:ac: 28:d3:3f:5d:be:d2:5d:df:d2:58:aa:d4:28:66:bc:7c:88:96: 74:18:fe:c6:5d:f1:22:e6:6b:4a:2e:38:7f:a5:2e:cb:f5:38: 28:ca:0b:37:b0:77:d5:7a:11:d9:d7:84:e5:83:4a:01:8a:b9: 62:1d:b5:97:f4:eb:e7:63:c2:b8:5a:4e:ea:2e:5a:0d:54:ee: dd:ff:9e:f0:7b:62:43:b4:5d:8e:8e:d8:1d:da:ab:49:50:a2: 60:e5:0f:9c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI2QUMxMTAvBgNVBAUTKENCNTIwNTRFM0Q3NzY4RUExNkI2QjBBODk0Qzc3M0Ey N0RFQTkyMUEwHhcNMjYwNTE0MTgzMzUyWhcNMjYwNTIxMTgzMzUyWjAYMRYwFAYD VQQDEw02YTA2MTU5MC03NzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl39pfeO15n5BW7vbe8hJEQ1GvpVYb5KuNTteEQ7/3oq08jl7f04OuFiwz2WU zf5ET/qVDJ1Fkl2eeJm2jwsIEnpTtVTf9pHpUr6VOLSwSy/ceHMO+bGggj9RSVR6 1N/Hg5ayhDFy9HXVWJ2OUspbKyierbKM9zoVMdqVtJCmhEDvY+CuPerw5dPc1Aao Dwo6TcP15EkKLdb6MXQUhYhUt+VD5Oy9GFK/o3l6BmqbU/eLyAAXJUcjxn8vbcnZ rScqNa+dstkintiyefe0fNNAOZvuYRq9LboY8Sy2qvzaDYu0/BKZ1aSI4lhIRWT2 EobHvoU+I1g3Talhz1MUdLPPUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGaxUjWd frQU3OvCwrgWI6pz0JgcMB8GA1UdIwQYMBaAFMtSBU49d2jqFrawqJTHc6J96pIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjZBQy9EN0U5OEE2RTE1 RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FPb1d0ckNvbE1kem9uM3Fr aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxSUZUajEzYU9vV3RyQ29sTWR6b24zcWtoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjZBQy9EN0U5OEE2RTE1RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FP b1d0ckNvbE1kem9uM3FraG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApHHs8B7bcpZmj7h3q4MVotnhWk1+uOBprQpMHTDUxH0btMo5d2SsbicVt/8M rVGI8UKxzp7T3QbiyEp9iDWfltfwFOE8cYUb+sjNn5hNPjbzmZ0Dur2vmwsRvHj1 G/i4a2WoSNWrq0mIA4oRsV/rv58bkCYsmJhzs+sVxv9hoElJdfquzoSiQgW9BDV/ vwSreJmygtKK3fsebwUt3WDkQm6sKNM/Xb7SXd/SWKrUKGa8fIiWdBj+xl3xIuZr Si44f6Uuy/U4KMoLN7B31XoR2deE5YNKAYq5Yh21l/Tr52PCuFpO6i5aDVTu3f+e 8HtiQ7Rdjo7YHdqrSVCiYOUPnA== -----END CERTIFICATE-----Generated at Fri May 15 20:45:15 2026 by rpki-client