$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft File: RyCit4x4I5km_e5zRKNoDaDYBx0.mft (raw, json) Hash identifier: Y6CcICJxp5nHUYQO0zyQ5KCvFETBRUdM4gSYvFwvm14= Subject key identifier: 13:28:C1:37:33:E5:4A:A3:03:32:BD:4B:A8:DB:DB:16:26:08:56:D2 Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: 013F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft Manifest number: 012B Signing time: Mon 11 May 2026 05:36:14 +0000 Manifest this update: Mon 11 May 2026 05:36:13 +0000 Manifest next update: Mon 18 May 2026 05:36:13 +0000 Files and hashes: 1: RyCit4x4I5km_e5zRKNoDaDYBx0.crl (hash: Br6vKUxix9zJmecZnXsK2HOhUL+r9fp5P5ijaqv7oOY=) 2: D2D7B762995611EFADA5D754C4F9AE02.roa (hash: uC7UgU3WUyp6lo8+x5BnzjYje46EFX3E65V33NxoTHM=) 3: 003589503F8311F0AA4DF254C4F9AE02.roa (hash: DKnLp31Pt39zKxYHan0L0UpjSQtw5gIheDfF7NmRFzQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 05:36:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: May 11 05:36:13 2026 GMT Not After : May 18 05:36:13 2026 GMT Subject: CN=6a016ace-6c48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2b:6d:5f:53:a5:fe:fc:c1:ff:b8:ae:83:d8: 43:0f:cc:03:ad:63:b5:23:92:cd:04:0d:a1:60:d8: d8:ce:3f:e4:1f:d0:da:6c:b1:a9:a1:5e:59:1d:49: 45:e9:e6:72:49:7b:13:32:38:7c:0f:76:92:8d:34: e4:f2:2b:21:6e:22:6d:07:d7:0b:d8:ed:9c:d3:d3: 90:df:5b:19:0b:d1:8b:b5:81:1a:ab:47:25:71:dd: 81:50:6b:20:e0:13:ee:17:8c:09:94:db:29:7e:b4: 0b:5e:6d:ab:54:68:06:b1:4a:fc:eb:c7:a6:84:b0: 37:9f:34:48:37:27:95:22:51:64:04:60:5f:ed:29: e9:90:c9:71:61:96:88:10:58:79:48:3c:e5:00:df: eb:c8:b2:d5:3c:3a:d8:bb:a8:ec:34:e9:e8:54:b1: a9:42:fa:e0:6b:64:3d:6f:74:13:2a:63:85:cc:2a: c3:37:eb:51:91:69:8a:4c:05:6c:6e:37:a7:ea:82: ce:f0:cf:01:fb:ab:1d:cf:7a:f0:8a:7b:b3:f3:c6: df:24:12:8e:20:45:7e:20:c2:99:e4:cb:e4:e8:3c: da:1b:c2:14:55:ef:1b:06:22:e3:48:cf:5a:e1:18: a3:cf:fe:00:68:7f:da:d4:af:87:a1:67:df:cc:67: df:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:28:C1:37:33:E5:4A:A3:03:32:BD:4B:A8:DB:DB:16:26:08:56:D2 X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:7f:1a:1f:a7:e2:b2:43:bf:ba:58:60:23:68:37:04:77:e0: 14:b0:1c:56:c3:23:9b:0d:ff:ea:19:67:9a:dc:33:60:8a:03: 8c:d1:57:f4:75:da:0c:39:8a:df:03:cd:b6:d1:99:d7:58:19: ff:c3:c3:28:2e:46:0e:12:53:32:10:8e:df:20:a6:bd:e3:07: 5b:1a:cd:31:73:c0:6d:51:22:3b:7d:09:5f:4f:ff:88:bf:ff: de:6b:1d:e2:90:70:bb:37:02:0b:10:91:57:89:2b:97:c8:ea: 1e:ff:2d:ca:f7:a3:af:0f:aa:c6:e3:2a:57:7a:a3:aa:1e:af: 67:ae:43:ae:42:0e:96:4c:94:d4:ed:1a:ff:64:bb:99:98:9b: a9:8c:21:84:56:f3:4a:7d:e4:3b:99:d5:6b:22:bc:7c:41:dc: 1a:b1:f7:e9:bb:9d:e9:dd:e2:61:74:08:ff:05:90:0b:11:f8: da:2c:02:05:a6:a2:73:82:42:1e:04:f7:df:a9:e5:22:63:b6: 00:dc:8b:43:84:a6:2d:cf:5a:71:0a:26:4a:3d:b8:53:65:3e: 8c:98:4b:ee:a2:3c:dc:9d:5f:79:8e:81:c3:61:46:eb:4e:be: 10:bd:ae:7f:d6:a4:2a:31:3b:68:cb:4d:d6:7e:05:00:1c:ee: 22:66:e8:68 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDQ3MjBBMkI3OEM3ODIzOTkyNkZERUU3MzQ0QTM2ODBE QTBEODA3MUQwHhcNMjYwNTExMDUzNjEzWhcNMjYwNTE4MDUzNjEzWjAYMRYwFAYD VQQDEw02YTAxNmFjZS02YzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqyttX1Ol/vzB/7iug9hDD8wDrWO1I5LNBA2hYNjYzj/kH9DabLGpoV5ZHUlF 6eZySXsTMjh8D3aSjTTk8ishbiJtB9cL2O2c09OQ31sZC9GLtYEaq0clcd2BUGsg 4BPuF4wJlNspfrQLXm2rVGgGsUr868emhLA3nzRINyeVIlFkBGBf7SnpkMlxYZaI EFh5SDzlAN/ryLLVPDrYu6jsNOnoVLGpQvrga2Q9b3QTKmOFzCrDN+tRkWmKTAVs bjen6oLO8M8B+6sdz3rwinuz88bfJBKOIEV+IMKZ5Mvk6DzaG8IUVe8bBiLjSM9a 4Rijz/4AaH/a1K+HoWffzGffVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBMowTcz 5UqjAzK9S6jb2xYmCFbSMB8GA1UdIwQYMBaAFEcgoreMeCOZJv3uc0SjaA2g2Acd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi8yN0UzRURBNDk4 MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1a21fZTV6UktOb0RhRFlC eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJERi8yN0UzRURBNDk4MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1 a21fZTV6UktOb0RhRFlCeDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASH8aH6fiskO/ulhgI2g3BHfgFLAcVsMjmw3/6hlnmtwzYIoDjNFX9HXaDDmK 3wPNttGZ11gZ/8PDKC5GDhJTMhCO3yCmveMHWxrNMXPAbVEiO30JX0//iL//3msd 4pBwuzcCCxCRV4krl8jqHv8tyvejrw+qxuMqV3qjqh6vZ65DrkIOlkyU1O0a/2S7 mZibqYwhhFbzSn3kO5nVayK8fEHcGrH36bud6d3iYXQI/wWQCxH42iwCBaaic4JC HgT336nlImO2ANyLQ4SmLc9acQomSj24U2U+jJhL7qI83J1feY6Bw2FG606+EL2u f9akKjE7aMtN1n4FABzuImboaA== -----END CERTIFICATE-----Generated at Wed May 13 04:56:46 2026 by rpki-client