$ rpki-client -vvf rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft File: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft (raw, json) Hash identifier: r/G63mWDB8L+ZBTTkWwnRi4VUum2lOYPHX6jSA1KlH0= Subject key identifier: AF:A6:6A:8F:ED:52:8F:8D:C1:2B:54:67:96:E4:F0:89:FA:46:E6:FD Authority key identifier: CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E Certificate issuer: /CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Certificate serial: 0BA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft Manifest number: 0B7F Signing time: Tue 12 May 2026 19:15:25 +0000 Manifest this update: Tue 12 May 2026 19:15:24 +0000 Manifest next update: Tue 19 May 2026 19:15:24 +0000 Files and hashes: 1: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl (hash: VK+UrntIps0pmK+YUVAU5lXVqhrJNP+JW4PoO1B1AWY=) 2: A2AF0622853711EFA09C892EC4F9AE02.roa (hash: OLS2n2bCipeK2cJAKKmNcGHacmpb1F1CGfou3xcKoRw=) 3: BA7B024C04D811EDBE98F982C4F9AE02.roa (hash: Qrs9ea1Ryt4mplsCkDhjHp70Ezhx/br174uLvjICktg=) 4: EF29C95E69C311EF82BCE77AC4F9AE02.roa (hash: wATgHFFEBhvghT6gMqTJTC0PonsBt+Ml1sqdhxwQAPg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2976 (0xba0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168BA2, serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Validity Not Before: May 12 19:15:24 2026 GMT Not After : May 19 19:15:24 2026 GMT Subject: CN=6a037c4d-b332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:96:d1:5e:3f:d0:5e:e2:ec:49:a7:36:b0:17: 37:cd:91:64:a6:9f:78:8d:1e:00:fd:30:1b:23:7b: 09:a3:db:40:1e:37:0e:18:10:74:e3:90:b1:20:77: 50:78:3a:8a:78:2f:a8:eb:70:07:d5:21:a7:30:c8: a8:81:7e:b8:ee:95:8b:9c:fb:54:da:35:ad:8e:e6: de:55:c4:ad:71:a5:fa:e0:b2:6b:a4:b6:f4:c3:bf: e6:c6:23:76:62:9a:bf:ee:ad:67:b7:d0:2b:f0:59: 9c:3b:03:29:03:d4:3a:e4:01:de:e9:64:e1:bd:7b: 6f:f6:67:79:ac:85:5e:1c:47:b6:1e:b3:a1:93:d9: c5:db:a4:1e:d9:71:c6:2e:ed:db:07:ac:c6:92:bf: c0:3b:cd:50:3b:f4:ef:c2:a0:bf:19:e7:34:40:f2: 91:f8:47:6d:58:b5:92:59:ea:79:9d:b6:a9:50:25: 4f:02:87:6a:e2:e5:70:80:a1:48:43:c6:cb:c0:b1: 5e:34:f8:3d:20:f9:f4:4e:76:0b:a0:4d:d7:c3:4d: ad:e0:6e:c5:cd:5e:b1:37:14:5e:3e:43:13:73:c9: 0a:86:b7:d9:83:61:ae:99:bd:f0:f7:81:9c:cb:17: 02:83:08:01:a6:31:b2:92:d8:5e:d6:c7:85:d0:e2: e5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:A6:6A:8F:ED:52:8F:8D:C1:2B:54:67:96:E4:F0:89:FA:46:E6:FD X509v3 Authority Key Identifier: keyid:CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:4e:03:1f:7a:e5:e5:81:95:15:b6:8e:d1:3d:1e:b7:03:a7: 2e:e6:86:4a:b6:0e:50:b8:7f:a4:13:1b:ec:9f:0f:a3:68:0e: b2:c7:51:95:8c:b4:13:08:7b:d0:22:fa:7a:65:02:7e:7f:39: 9e:e0:92:34:73:77:70:b4:9e:36:07:62:1a:af:6e:fa:91:c7: ae:b7:cb:68:f1:18:49:07:b2:d1:5c:e9:6d:b0:21:4d:a8:c1: d8:20:52:e2:8f:9e:2a:82:86:94:22:34:4d:a2:4b:e3:16:7a: 36:2e:14:18:2e:76:f0:d0:9a:ec:27:0b:22:05:65:5a:8c:81: b8:a1:46:0c:44:9c:80:90:b0:48:8a:e6:43:ef:7e:9f:d7:09: ed:cf:7b:0c:50:c3:4d:79:2e:2e:bc:82:62:fb:be:70:8b:46: 07:b2:26:0f:d1:93:14:84:22:c9:f5:86:6c:f5:2e:d1:75:09: e1:aa:ba:ae:f0:8d:99:23:1f:aa:d1:3c:17:5e:43:c4:90:84: 33:33:7a:b3:b3:0c:7a:6e:06:43:38:71:8e:50:4b:a6:ab:89: 5b:cb:cc:cb:5a:d9:dd:13:f2:18:45:c9:fb:c4:d1:57:f3:f0: f8:46:b0:66:f6:15:cb:76:9c:08:17:1d:13:87:8e:3c:d6:8d: bc:61:59:70 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCQTIxMTAvBgNVBAUTKENBNjJFNDM4Rjk4RDg1MThEMkYyQTVEOUY2NzY1NjUx RTVBREE2MEUwHhcNMjYwNTEyMTkxNTI0WhcNMjYwNTE5MTkxNTI0WjAYMRYwFAYD VQQDEw02YTAzN2M0ZC1iMzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ZbRXj/QXuLsSac2sBc3zZFkpp94jR4A/TAbI3sJo9tAHjcOGBB045CxIHdQ eDqKeC+o63AH1SGnMMiogX647pWLnPtU2jWtjubeVcStcaX64LJrpLb0w7/mxiN2 Ypq/7q1nt9Ar8FmcOwMpA9Q65AHe6WThvXtv9md5rIVeHEe2HrOhk9nF26Qe2XHG Lu3bB6zGkr/AO81QO/TvwqC/Gec0QPKR+EdtWLWSWep5nbapUCVPAodq4uVwgKFI Q8bLwLFeNPg9IPn0TnYLoE3Xw02t4G7FzV6xNxRePkMTc8kKhrfZg2Gumb3w94Gc yxcCgwgBpjGykthe1seF0OLlsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK+mao/t Uo+NwStUZ5bk8In6Rub9MB8GA1UdIwQYMBaAFMpi5Dj5jYUY0vKl2fZ2VlHlraYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEJBMi85OURGMzg2MjU0 QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhSalM4cVhaOW5aV1VlV3Rw ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltTGtPUG1OaFJqUzhxWFo5blpXVWVXdHBnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEJBMi85OURGMzg2MjU0QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhS alM4cVhaOW5aV1VlV3RwZzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlk4DH3rl5YGVFbaO0T0etwOnLuaGSrYOULh/pBMb7J8Po2gOssdRlYy0Ewh7 0CL6emUCfn85nuCSNHN3cLSeNgdiGq9u+pHHrrfLaPEYSQey0VzpbbAhTajB2CBS 4o+eKoKGlCI0TaJL4xZ6Ni4UGC528NCa7CcLIgVlWoyBuKFGDEScgJCwSIrmQ+9+ n9cJ7c97DFDDTXkuLryCYvu+cItGB7ImD9GTFIQiyfWGbPUu0XUJ4aq6rvCNmSMf qtE8F15DxJCEMzN6s7MMem4GQzhxjlBLpquJW8vMy1rZ3RPyGEXJ+8TRV/Pw+Eaw ZvYVy3acCBcdE4eOPNaNvGFZcA== -----END CERTIFICATE-----Generated at Wed May 13 01:29:32 2026 by rpki-client