$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft File: YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft (raw, json) Hash identifier: HnibZRtUUzbFuRYKil/UrOiSE03oqKcuEpFI5JksvRc= Subject key identifier: 9D:57:E0:D0:89:C1:4D:DB:82:86:78:AE:0B:04:EE:EA:C3:0B:B8:7A Authority key identifier: 60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 Certificate issuer: /CN=A91AF3C6/serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Certificate serial: 08A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft Manifest number: 0894 Signing time: Tue 12 May 2026 20:42:22 +0000 Manifest this update: Tue 12 May 2026 20:42:21 +0000 Manifest next update: Tue 19 May 2026 20:42:21 +0000 Files and hashes: 1: YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl (hash: 98ovQvc0ccS44Y+7nmxYO7SoppTIwMVALRpih7k/1y8=) 2: 3983EA66217E11F18ECE80E5073D8C67.roa (hash: /mxloS7ClCcaj5x0floJR4T78S/qjwGI70YG2UCZk8Q=) 3: F7F2D20ABCE911EFB7786B63C4F9AE02.roa (hash: dQd4m5byeKJORC74YKFJB4r+c7cujg4OEtxCIHvr0lM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:42:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2211 (0x8a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF3C6, serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Validity Not Before: May 12 20:42:21 2026 GMT Not After : May 19 20:42:21 2026 GMT Subject: CN=6a0390ae-94a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:67:dd:10:a0:fd:7a:58:a2:3e:9a:f5:8c:2d: 30:45:4a:f3:37:56:00:7c:a4:82:47:9f:23:44:68: 5d:a1:5a:1b:ed:ac:ec:03:46:32:74:98:6e:4e:f7: cc:53:42:d4:c9:3a:85:81:80:6c:16:12:6d:aa:d8: fa:d1:4c:bc:5c:71:2a:99:99:58:c3:f1:65:05:e4: ef:64:8d:b2:57:3f:19:46:72:73:4b:67:89:cc:ae: a0:f9:f5:06:0a:a6:25:7f:2a:01:62:5f:27:88:bb: ce:37:22:2f:11:b8:5a:d5:ab:6d:ea:0e:b3:f9:24: b5:54:6b:43:7b:f2:cf:9a:67:d0:83:3c:ed:18:b9: a6:da:56:5e:49:11:79:96:7d:6b:6d:54:6c:cb:35: ef:5d:53:32:06:8e:ee:ef:f0:dd:ec:e4:b5:c6:25: 38:f9:87:b1:f6:4e:4a:2c:82:fa:2e:8a:6a:69:74: 69:64:7a:95:e9:4b:93:65:21:7b:be:4b:1e:6d:c3: 2d:2a:48:8d:5a:b1:59:97:19:5a:33:ae:e8:a0:c4: ad:32:a5:13:8b:7e:9f:1e:1f:58:ba:34:02:67:7a: 51:cf:03:4d:ea:07:44:d0:ce:dc:b7:ae:81:f6:22: b2:67:ba:80:b6:3f:7e:10:cc:e9:24:aa:91:76:dd: 2e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:57:E0:D0:89:C1:4D:DB:82:86:78:AE:0B:04:EE:EA:C3:0B:B8:7A X509v3 Authority Key Identifier: keyid:60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:98:c5:3e:6d:03:0d:ce:0d:cb:58:7d:37:ea:b1:88:5b:55: c5:99:cf:d1:a2:4b:fa:ba:69:05:3d:92:0f:68:83:57:10:de: 1e:cd:54:4b:9a:e9:a3:9e:9c:3d:13:73:7f:b1:df:5c:c9:ef: 37:2b:fd:85:bd:e6:83:9d:05:61:8d:bb:10:23:ca:95:b0:9e: d7:c9:3b:9e:02:d3:da:26:c6:3a:23:b5:67:3d:bc:24:19:ce: 37:fd:96:05:df:e8:a0:97:cb:9e:4e:de:91:f5:45:f7:37:f7: 8e:ed:3e:a9:9a:be:65:24:8e:b2:23:68:8f:fa:b9:61:1d:7d: ce:56:1c:0c:1a:d7:9e:41:ff:da:7d:dd:fd:a6:64:6a:02:6b: cf:fd:af:91:3d:02:5a:a0:3d:53:2d:04:26:4c:0f:7e:43:7b: ce:c6:c6:86:d0:77:62:e4:48:e1:45:eb:1c:bc:eb:b8:3d:15: a3:f8:76:0c:da:c4:45:b4:48:5f:e5:c3:24:d8:84:87:d2:78: 9b:45:f3:21:7a:bc:1a:35:b9:81:55:03:61:be:bd:e8:4b:cd: b9:b9:68:80:af:ea:80:22:a3:55:4d:98:55:9e:1a:9f:13:8c: d1:47:34:80:59:29:1d:06:90:4e:60:c7:55:8a:70:db:b7:70: 64:a3:c4:37 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzQzYxMTAvBgNVBAUTKDYwNkVFODVEQzNDNDY3RkM0NjRBODk0RUQ0N0E5RjFC RDMyMUI0NDEwHhcNMjYwNTEyMjA0MjIxWhcNMjYwNTE5MjA0MjIxWjAYMRYwFAYD VQQDEw02YTAzOTBhZS05NGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWfdEKD9eliiPpr1jC0wRUrzN1YAfKSCR58jRGhdoVob7azsA0YydJhuTvfM U0LUyTqFgYBsFhJtqtj60Uy8XHEqmZlYw/FlBeTvZI2yVz8ZRnJzS2eJzK6g+fUG CqYlfyoBYl8niLvONyIvEbha1att6g6z+SS1VGtDe/LPmmfQgzztGLmm2lZeSRF5 ln1rbVRsyzXvXVMyBo7u7/Dd7OS1xiU4+Yex9k5KLIL6LopqaXRpZHqV6UuTZSF7 vksebcMtKkiNWrFZlxlaM67ooMStMqUTi36fHh9YujQCZ3pRzwNN6gdE0M7ct66B 9iKyZ7qAtj9+EMzpJKqRdt0uMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ1X4NCJ wU3bgoZ4rgsE7urDC7h6MB8GA1UdIwQYMBaAFGBu6F3DxGf8RkqJTtR6nxvTIbRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjNDNi82MzFDQzE2MEYz MzgxMUVBQTYzRDQxNTRDNEY5QUUwMi9ZRzdvWGNQRVpfeEdTb2xPMUhxZkc5TWh0 RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lHN29YY1BFWl94R1NvbE8xSHFmRzlNaHRFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjNDNi82MzFDQzE2MEYzMzgxMUVBQTYzRDQxNTRDNEY5QUUwMi9ZRzdvWGNQRVpf eEdTb2xPMUhxZkc5TWh0RUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG5jFPm0DDc4Ny1h9N+qxiFtVxZnP0aJL+rppBT2SD2iDVxDeHs1US5rpo56c PRNzf7HfXMnvNyv9hb3mg50FYY27ECPKlbCe18k7ngLT2ibGOiO1Zz28JBnON/2W Bd/ooJfLnk7ekfVF9zf3ju0+qZq+ZSSOsiNoj/q5YR19zlYcDBrXnkH/2n3d/aZk agJrz/2vkT0CWqA9Uy0EJkwPfkN7zsbGhtB3YuRI4UXrHLzruD0Vo/h2DNrERbRI X+XDJNiEh9J4m0XzIXq8GjW5gVUDYb696EvNublogK/qgCKjVU2YVZ4anxOM0Uc0 gFkpHQaQTmDHVYpw27dwZKPENw== -----END CERTIFICATE-----Generated at Wed May 13 07:19:17 2026 by rpki-client