$ rpki-client -vvf rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft File: Y4g-TKLI593aw5h-SE_R1nLZOUk.mft (raw, json) Hash identifier: CvmgvH3brYTbxiqDtE0L/ATfyidw5V4foFvJPksOgCA= Subject key identifier: E9:B1:C8:A4:87:BA:47:77:93:CD:BA:8A:C2:34:FD:C0:7B:BD:23:9B Authority key identifier: 63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 Certificate issuer: /CN=A913E4AA/serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Certificate serial: 0CD0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft Manifest number: 0CC1 Signing time: Tue 12 May 2026 18:31:51 +0000 Manifest this update: Tue 12 May 2026 18:31:50 +0000 Manifest next update: Tue 19 May 2026 18:31:50 +0000 Files and hashes: 1: Y4g-TKLI593aw5h-SE_R1nLZOUk.crl (hash: l6NL4EqGpIJPUj+2a+AKDHLudZ0IlTbE0yWvUzOQ8UU=) 2: DF7C7778A97711F0A76BF369C4F9AE02.roa (hash: BQ60yu99DWJ9CNKy9x/LydxX4YGxdVFeZGopEZ5WrOo=) 3: 3C48E7BECA0E11F0B519EA6AC4F9AE02.roa (hash: BJhR7XO5jBVX7pJopEIukYOW4YF8aEvCYgvTMv/w/5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:31:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3280 (0xcd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E4AA, serialNumber=63883E4CA2C8E7DDDAC3987E484FD1D672D93949 Validity Not Before: May 12 18:31:50 2026 GMT Not After : May 19 18:31:50 2026 GMT Subject: CN=6a037216-04ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2f:f1:7d:65:76:f3:4a:aa:88:96:e9:e4:41: c5:24:dd:bc:ad:ad:4c:8a:7e:9c:97:87:e4:e3:20: 9a:cd:ea:13:86:a9:b7:1a:f0:97:62:c1:23:51:fa: 99:c1:31:1f:c1:82:c4:1a:3b:e3:e7:48:7d:d0:32: ef:bc:cb:a8:75:c2:21:2b:a9:5d:4e:50:5d:1b:73: 04:10:f0:3d:0f:47:81:15:c6:04:ac:55:2f:8d:60: 4a:66:9c:49:e6:76:99:c7:1d:e3:c4:7b:47:96:c7: 2f:4d:65:50:dc:1d:26:63:2e:6e:e7:cc:65:cb:9b: 56:55:96:d2:d2:51:ce:b9:85:50:26:91:22:4e:a8: dd:f8:3c:bd:2e:bd:77:79:54:f3:66:4a:a5:51:28: ca:e7:50:9c:5d:82:2f:af:43:be:59:a2:25:8e:88: 7b:37:59:e7:54:25:cf:60:35:35:b0:37:6a:54:3a: db:e2:1c:cd:bc:c8:6e:34:61:83:81:45:de:89:ea: 9b:88:88:49:9c:d0:e5:ee:64:3e:ae:4d:9a:d2:b0: dd:63:38:c9:5f:50:74:a7:a3:60:22:da:e7:e4:3f: 94:b6:f2:7f:4e:04:38:52:1d:7d:fa:ec:11:40:81: f6:7d:54:5b:4f:fd:d9:23:d6:aa:fc:2b:b2:f7:f7: fd:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:B1:C8:A4:87:BA:47:77:93:CD:BA:8A:C2:34:FD:C0:7B:BD:23:9B X509v3 Authority Key Identifier: keyid:63:88:3E:4C:A2:C8:E7:DD:DA:C3:98:7E:48:4F:D1:D6:72:D9:39:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4g-TKLI593aw5h-SE_R1nLZOUk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E4AA/674CA29E11DB11EABF45DA55C4F9AE02/Y4g-TKLI593aw5h-SE_R1nLZOUk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:01:48:f7:06:59:4a:45:f7:ed:1e:75:1e:60:f8:c1:3e:de: 08:64:f5:35:d3:03:7b:01:69:6d:94:ea:72:0e:f1:52:9d:9f: 85:fc:f2:7a:1b:1c:10:f2:a6:d3:bb:be:68:62:2c:1c:16:33: 50:37:5e:3c:b3:21:5a:c3:a2:68:2e:65:28:53:dc:81:97:ec: b8:99:21:0c:3f:e4:96:83:0e:d6:b1:62:ce:e1:c1:0a:e6:66: 8c:8f:ed:40:5f:a6:cc:d6:ee:3b:62:02:1d:d2:96:2b:0d:9e: 35:1f:dc:12:b2:2b:c4:43:00:b6:4b:77:e2:8a:9b:30:f6:62: 8c:74:a9:70:e4:23:df:dc:8f:9a:12:fa:d2:77:a0:87:7b:76: 66:d1:ec:17:6f:cc:7a:b0:31:c5:3c:95:7b:42:5f:59:1d:a6: ab:b0:55:f2:ed:04:69:73:38:fa:3d:8e:17:47:86:e2:34:a8: 32:4b:6d:75:a2:cb:37:08:e2:e7:82:a7:aa:a6:8b:62:02:e7: 00:87:4e:1b:fd:77:e2:db:93:f9:c5:9a:c8:f7:92:5c:d8:6b: eb:6d:c6:6e:e4:7a:96:07:22:69:b0:3a:28:89:ef:2c:85:cd: ef:10:2a:bd:59:ac:61:81:93:4e:88:f8:41:05:31:72:f6:b3: f7:23:36:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDNAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U0QUExMTAvBgNVBAUTKDYzODgzRTRDQTJDOEU3REREQUMzOTg3RTQ4NEZEMUQ2 NzJEOTM5NDkwHhcNMjYwNTEyMTgzMTUwWhcNMjYwNTE5MTgzMTUwWjAYMRYwFAYD VQQDEw02YTAzNzIxNi0wNGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsS/xfWV280qqiJbp5EHFJN28ra1Min6cl4fk4yCazeoThqm3GvCXYsEjUfqZ wTEfwYLEGjvj50h90DLvvMuodcIhK6ldTlBdG3MEEPA9D0eBFcYErFUvjWBKZpxJ 5naZxx3jxHtHlscvTWVQ3B0mYy5u58xly5tWVZbS0lHOuYVQJpEiTqjd+Dy9Lr13 eVTzZkqlUSjK51CcXYIvr0O+WaIljoh7N1nnVCXPYDU1sDdqVDrb4hzNvMhuNGGD gUXeieqbiIhJnNDl7mQ+rk2a0rDdYzjJX1B0p6NgItrn5D+UtvJ/TgQ4Uh19+uwR QIH2fVRbT/3ZI9aq/Cuy9/f9jwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOmxyKSH ukd3k826isI0/cB7vSObMB8GA1UdIwQYMBaAFGOIPkyiyOfd2sOYfkhP0dZy2TlJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTRBQS82NzRDQTI5RTEx REIxMUVBQkY0NURBNTVDNEY5QUUwMi9ZNGctVEtMSTU5M2F3NWgtU0VfUjFuTFpP VWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k0Zy1US0xJNTkzYXc1aC1TRV9SMW5MWk9Vay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTRBQS82NzRDQTI5RTExREIxMUVBQkY0NURBNTVDNEY5QUUwMi9ZNGctVEtMSTU5 M2F3NWgtU0VfUjFuTFpPVWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcgFI9wZZSkX37R51HmD4wT7eCGT1NdMDewFpbZTqcg7xUp2fhfzyehscEPKm 07u+aGIsHBYzUDdePLMhWsOiaC5lKFPcgZfsuJkhDD/kloMO1rFizuHBCuZmjI/t QF+mzNbuO2ICHdKWKw2eNR/cErIrxEMAtkt34oqbMPZijHSpcOQj39yPmhL60neg h3t2ZtHsF2/MerAxxTyVe0JfWR2mq7BV8u0EaXM4+j2OF0eG4jSoMkttdaLLNwji 54KnqqaLYgLnAIdOG/134tuT+cWayPeSXNhr623GbuR6lgciabA6KInvLIXN7xAq vVmsYYGTToj4QQUxcvaz9yM2gQ== -----END CERTIFICATE-----Generated at Wed May 13 04:13:03 2026 by rpki-client