$ rpki-client -vvf rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft File: ry1FO-u_318ptjrBZ1THjRsPy4g.mft (raw, json) Hash identifier: MQfbwQAhu+6FLV6ZH80sS83hFMy2rSyATbokrzL5lrI= Subject key identifier: 5D:67:C2:AA:A3:01:08:8E:C6:19:F4:3A:D3:9F:C7:A7:63:B3:90:31 Authority key identifier: AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 Certificate issuer: /CN=A91557BA/serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Certificate serial: 0CF0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft Manifest number: 0CE4 Signing time: Thu 26 Mar 2026 18:09:15 +0000 Manifest this update: Thu 26 Mar 2026 18:09:15 +0000 Manifest next update: Thu 02 Apr 2026 18:09:15 +0000 Files and hashes: 1: ry1FO-u_318ptjrBZ1THjRsPy4g.crl (hash: 8OxC1gqyvGA8CMcvubynHFBXoX8YLc8tIvud4YPH9KQ=) 2: 157A1BFC59EE11EBA398AA0AC4F9AE02.roa (hash: Rdzf+qY0rc3ljoOiOxZKwXFF+npaW6qfoR/HzxroHsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3312 (0xcf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557BA, serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Validity Not Before: Mar 26 18:09:15 2026 GMT Not After : Apr 2 18:09:15 2026 GMT Subject: CN=69c5764b-a486 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a7:59:92:a5:ac:ee:77:ee:57:cd:57:23:00: 41:93:73:52:7f:5b:b6:38:22:44:8e:88:93:0b:bb: 4e:41:c1:8e:e6:ef:20:20:82:80:e8:47:89:ba:ae: a3:58:33:bc:94:5a:b8:15:f9:99:16:56:b1:49:f4: 2b:b2:ec:05:7e:89:fe:90:a7:22:de:8b:b4:e0:b0: 58:57:07:88:a0:f7:1f:36:b1:27:64:f3:e2:22:6c: 9d:5c:bc:f2:f8:49:00:cc:84:b1:a2:e5:e1:5e:99: 73:c8:28:1b:08:d7:6a:20:7f:ae:83:69:ff:f3:bc: 9b:86:07:26:cf:21:48:7e:0d:30:cb:d7:6b:83:e0: ad:14:72:a4:8d:8a:f7:c6:22:4f:ee:68:b0:b7:4e: 90:73:18:00:c7:1d:39:93:ce:2f:c4:1a:c5:1b:18: 9b:6e:a9:7e:0f:66:73:4f:29:0d:a1:7e:4e:8d:99: e2:47:c1:c2:e6:66:d7:08:be:c2:67:3c:89:32:07: e6:7c:34:a9:c1:1c:58:8d:17:d2:18:d1:4a:f0:88: ae:fe:2c:bd:05:7d:a4:fa:de:2a:a4:75:6d:67:a1: b4:12:cc:5a:96:3a:4e:df:03:e9:59:6a:c8:9b:d9: f7:66:8e:b4:f0:a2:18:f1:3e:4b:75:0a:08:d8:61: 87:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:67:C2:AA:A3:01:08:8E:C6:19:F4:3A:D3:9F:C7:A7:63:B3:90:31 X509v3 Authority Key Identifier: keyid:AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:9d:d0:83:74:bf:aa:d3:dc:a0:3f:17:5a:50:38:b4:cb:c2: d6:9e:15:90:3d:c1:25:89:92:5e:c3:96:e8:ba:52:74:32:49: d2:17:96:eb:8f:ad:c4:47:9f:ac:19:40:68:03:09:64:cf:7c: 2f:fc:39:f8:a5:af:f1:77:e1:bf:89:bb:8e:28:23:02:fe:2b: 99:7e:6c:e7:36:e2:04:d0:fb:0e:74:73:51:68:00:3b:e9:09: 56:0d:28:55:76:06:16:79:61:b8:3c:77:0a:6f:73:08:b5:1d: 7c:8d:f8:9a:4b:90:81:02:a1:33:99:e1:73:44:73:a1:41:f5: 46:b9:b3:dd:26:70:95:66:3d:3b:42:8b:f3:20:4d:d9:32:d3: 9f:6c:85:15:20:e4:25:cd:78:54:8b:ab:80:76:c3:19:23:1d: 3b:2a:77:76:61:9f:2c:d7:e6:51:00:d3:9d:71:b6:06:27:79: f3:4e:b5:b8:96:e1:b7:36:3f:6e:d4:2d:41:97:21:21:23:41: 1d:56:72:a0:8a:c2:bd:c5:16:ea:30:b0:bf:ea:fe:f0:b3:f4: c1:c5:ff:58:49:42:a9:13:6c:8c:4f:47:b3:c2:a6:41:1f:ee: 43:2f:46:a0:0c:66:7e:53:c8:cc:56:d9:69:62:1d:11:14:54: ec:75:c3:7d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3QkExMTAvBgNVBAUTKEFGMkQ0NTNCRUJCRkRGNUYyOUI2M0FDMTY3NTRDNzhE MUIwRkNCODgwHhcNMjYwMzI2MTgwOTE1WhcNMjYwNDAyMTgwOTE1WjAYMRYwFAYD VQQDEw02OWM1NzY0Yi1hNDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKdZkqWs7nfuV81XIwBBk3NSf1u2OCJEjoiTC7tOQcGO5u8gIIKA6EeJuq6j WDO8lFq4FfmZFlaxSfQrsuwFfon+kKci3ou04LBYVweIoPcfNrEnZPPiImydXLzy +EkAzISxouXhXplzyCgbCNdqIH+ug2n/87ybhgcmzyFIfg0wy9drg+CtFHKkjYr3 xiJP7miwt06QcxgAxx05k84vxBrFGxibbql+D2ZzTykNoX5OjZniR8HC5mbXCL7C ZzyJMgfmfDSpwRxYjRfSGNFK8Iiu/iy9BX2k+t4qpHVtZ6G0EsxaljpO3wPpWWrI m9n3Zo608KIY8T5LdQoI2GGHHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF1nwqqj AQiOxhn0OtOfx6djs5AxMB8GA1UdIwQYMBaAFK8tRTvrv99fKbY6wWdUx40bD8uI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdCQS82ODEyREY5MjA0 RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMxOHB0anJCWjFUSGpSc1B5 NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3J5MUZPLXVfMzE4cHRqckJaMVRIalJzUHk0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdCQS82ODEyREY5MjA0RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMx OHB0anJCWjFUSGpSc1B5NGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZ53Qg3S/qtPcoD8XWlA4tMvC1p4VkD3BJYmSXsOW6LpSdDJJ0heW64+txEef rBlAaAMJZM98L/w5+KWv8Xfhv4m7jigjAv4rmX5s5zbiBND7DnRzUWgAO+kJVg0o VXYGFnlhuDx3Cm9zCLUdfI34mkuQgQKhM5nhc0RzoUH1Rrmz3SZwlWY9O0KL8yBN 2TLTn2yFFSDkJc14VIurgHbDGSMdOyp3dmGfLNfmUQDTnXG2Bid58061uJbhtzY/ btQtQZchISNBHVZyoIrCvcUW6jCwv+r+8LP0wcX/WElCqRNsjE9Hs8KmQR/uQy9G oAxmflPIzFbZaWIdERRU7HXDfQ== -----END CERTIFICATE-----Generated at Thu Mar 26 20:22:47 2026 by rpki-client