$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft File: RyCit4x4I5km_e5zRKNoDaDYBx0.mft (raw, json) Hash identifier: sQl2Nm80HeYL2anuTaxhxt9zMSClockRmRZql3RRE+c= Subject key identifier: 00:77:37:D2:CD:F5:D3:D1:70:13:0E:C7:A8:8C:18:69:2D:7C:AB:A8 Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft Manifest number: 0113 Signing time: Wed 25 Mar 2026 05:01:40 +0000 Manifest this update: Wed 25 Mar 2026 05:01:39 +0000 Manifest next update: Wed 01 Apr 2026 05:01:39 +0000 Files and hashes: 1: RyCit4x4I5km_e5zRKNoDaDYBx0.crl (hash: AtfGFOpaoZwm5rNaAtHB5/NFkBl8z9M+DUGRqJMROMc=) 2: D2D7B762995611EFADA5D754C4F9AE02.roa (hash: uC7UgU3WUyp6lo8+x5BnzjYje46EFX3E65V33NxoTHM=) 3: 003589503F8311F0AA4DF254C4F9AE02.roa (hash: DKnLp31Pt39zKxYHan0L0UpjSQtw5gIheDfF7NmRFzQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: Mar 25 05:01:39 2026 GMT Not After : Apr 1 05:01:39 2026 GMT Subject: CN=69c36c34-6aa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:32:6e:06:ef:b3:ff:1c:42:7e:17:ac:0a:a2: d3:fd:7b:71:48:a5:50:b7:e9:e3:bb:8a:e9:13:f8: 83:48:fb:fd:0c:9b:61:5a:ba:d5:4c:8e:ea:f0:0e: 1e:69:0d:23:bb:e9:95:f3:e7:5e:31:e5:d8:e1:c0: 3b:1b:58:f7:70:8b:f1:88:e5:74:b0:2a:ad:08:76: cc:0a:8a:cb:a2:d7:69:0a:d0:8d:d0:38:7c:09:20: f9:05:67:4b:da:6c:50:e6:06:43:c8:fa:62:1a:9d: f5:0e:67:94:2d:84:ca:42:38:79:c7:0b:f4:b0:d5: 07:7a:a2:33:eb:1d:64:35:2f:21:b1:f6:11:41:ec: c0:fc:79:68:7d:1d:d3:c8:0a:20:fd:47:38:35:87: 4c:21:97:30:6b:1b:1c:02:16:72:09:73:43:a6:de: a9:ba:de:77:06:7b:6e:ad:45:c6:88:69:04:1e:3e: a5:e8:86:a0:45:b8:ff:47:e0:87:6c:5f:2f:7e:49: f8:17:4d:f4:25:8f:4a:bd:2f:49:e7:d5:b8:25:77: a4:66:92:7e:8f:8d:4a:5a:de:17:1c:7d:70:4e:ef: 29:0f:05:99:6c:d4:dd:67:24:91:a1:7c:2f:1a:52: 73:ae:48:cd:0b:38:74:c1:fb:c2:81:c8:a6:0c:2c: cf:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:77:37:D2:CD:F5:D3:D1:70:13:0E:C7:A8:8C:18:69:2D:7C:AB:A8 X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:b8:4e:21:4b:7d:d7:7a:1f:d6:93:e5:4b:0c:d7:32:ed:a2: f6:90:11:2c:d9:89:a0:75:00:cb:db:06:7f:9b:4e:bf:96:ef: ab:94:3d:53:09:06:ed:a2:f8:5f:4e:cd:28:12:ff:f2:f5:f7: 79:5d:a7:ea:63:e5:63:ea:92:d8:e9:41:07:45:2f:17:e8:1c: b3:0b:0f:a6:ef:df:5a:c1:c6:69:3d:a6:29:c9:52:c1:7b:6f: 17:7f:3d:13:56:50:7a:4d:a4:88:07:c7:2e:33:e2:f1:59:6b: 62:54:6c:77:cc:30:11:93:35:b3:24:57:ce:c9:8e:73:e2:df: 93:f3:dc:2f:aa:a7:d9:88:5d:ab:bd:79:e0:28:81:93:0a:6a: 15:b7:c7:58:28:de:8f:ec:e9:79:88:7f:94:ba:dc:1a:e0:dc: 0e:52:3e:c2:02:39:69:e1:68:4c:04:53:54:92:41:dd:f9:63: 32:70:86:34:6b:04:bc:a9:0f:66:88:60:19:62:02:fa:ea:e5: e7:67:2a:10:e7:19:89:59:a6:75:e2:f1:6b:4d:ed:7c:70:9f: 3e:bb:2f:7a:99:60:26:86:0b:b5:43:f5:d3:b8:09:b1:ab:fb: b4:12:dc:e0:8b:b8:4b:78:a5:59:12:5a:37:43:47:2a:d8:d2: 5c:aa:50:09 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDQ3MjBBMkI3OEM3ODIzOTkyNkZERUU3MzQ0QTM2ODBE QTBEODA3MUQwHhcNMjYwMzI1MDUwMTM5WhcNMjYwNDAxMDUwMTM5WjAYMRYwFAYD VQQDEw02OWMzNmMzNC02YWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjJuBu+z/xxCfhesCqLT/XtxSKVQt+nju4rpE/iDSPv9DJthWrrVTI7q8A4e aQ0ju+mV8+deMeXY4cA7G1j3cIvxiOV0sCqtCHbMCorLotdpCtCN0Dh8CSD5BWdL 2mxQ5gZDyPpiGp31DmeULYTKQjh5xwv0sNUHeqIz6x1kNS8hsfYRQezA/HlofR3T yAog/Uc4NYdMIZcwaxscAhZyCXNDpt6put53BnturUXGiGkEHj6l6IagRbj/R+CH bF8vfkn4F030JY9KvS9J59W4JXekZpJ+j41KWt4XHH1wTu8pDwWZbNTdZySRoXwv GlJzrkjNCzh0wfvCgcimDCzP4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAB3N9LN 9dPRcBMOx6iMGGktfKuoMB8GA1UdIwQYMBaAFEcgoreMeCOZJv3uc0SjaA2g2Acd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi8yN0UzRURBNDk4 MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1a21fZTV6UktOb0RhRFlC eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJERi8yN0UzRURBNDk4MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1 a21fZTV6UktOb0RhRFlCeDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEbhOIUt913of1pPlSwzXMu2i9pARLNmJoHUAy9sGf5tOv5bvq5Q9UwkG7aL4 X07NKBL/8vX3eV2n6mPlY+qS2OlBB0UvF+gcswsPpu/fWsHGaT2mKclSwXtvF389 E1ZQek2kiAfHLjPi8VlrYlRsd8wwEZM1syRXzsmOc+Lfk/PcL6qn2Yhdq7154CiB kwpqFbfHWCjej+zpeYh/lLrcGuDcDlI+wgI5aeFoTARTVJJB3fljMnCGNGsEvKkP ZohgGWIC+url52cqEOcZiVmmdeLxa03tfHCfPrsveplgJoYLtUP107gJsav7tBLc 4Iu4S3ilWRJaN0NHKtjSXKpQCQ== -----END CERTIFICATE-----Generated at Thu Mar 26 11:18:04 2026 by rpki-client