$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft File: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft (raw, json) Hash identifier: eJlXCY1AKLn7GbUbWXKF9asnOlCCCzpHBmBKjllT474= Subject key identifier: E0:ED:9D:B8:65:98:F0:3F:7C:F5:C7:0B:17:4E:8B:EE:54:A0:31:4F Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 0AD8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft Manifest number: 0AC2 Signing time: Tue 12 May 2026 19:30:31 +0000 Manifest this update: Tue 12 May 2026 19:30:30 +0000 Manifest next update: Tue 19 May 2026 19:30:30 +0000 Files and hashes: 1: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl (hash: NYuvzcC8ZEDFun53CnqQa+K55fFMxyXYSXdFOwvOyVA=) 2: 55D7D802475A11F0B3C02112C4F9AE02.roa (hash: 1ct6ERLfD4y94EVh8sazQBKiN2tsb/2UaNvWuVl4I30=) 3: 3A851EE273E411EA9572F76EC4F9AE02.roa (hash: B7PIpT06o5yz5X0ICfGhNE1RjQ8ofk6sdiEjNK1EArU=) 4: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (hash: 9jHgiW6B1sqLvSJnd17xl6prg5mUxXRdfL0P2w6JRHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:30:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2776 (0xad8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF, serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: May 12 19:30:30 2026 GMT Not After : May 19 19:30:30 2026 GMT Subject: CN=6a037fd7-bc0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:00:dc:c5:da:96:ed:94:2f:d6:f6:d3:53:80: a2:04:af:fc:73:05:09:61:d1:61:68:62:8b:ea:64: 91:76:b3:b0:fb:e2:3a:39:94:3a:e6:3d:62:ce:af: 4d:a5:83:fd:95:13:43:ce:93:12:4f:17:29:c8:40: 49:17:66:56:77:71:0a:8a:66:67:38:c6:cd:08:9e: a2:2a:4e:21:0b:9c:68:0b:a0:24:34:ea:43:08:d3: a4:c0:5b:26:29:22:7f:db:63:03:66:87:aa:ea:5d: e5:a4:68:60:7d:08:87:7c:ef:d4:72:3b:99:4e:39: e7:c4:bf:d6:42:53:d0:5a:ac:71:d6:b7:6a:92:a9: cb:02:60:b3:c8:f0:19:ec:aa:93:63:95:df:e4:ce: f2:1e:88:46:1e:d7:0f:16:fd:06:36:8e:1c:0e:7d: 20:b9:93:4f:5b:b9:16:c3:57:63:99:52:63:ed:e8: f6:e8:3b:d6:4f:f5:ce:40:d3:9f:6e:0b:82:9b:72: 2b:9c:31:1c:1f:12:5f:d7:72:da:39:4e:e8:4c:3e: 96:24:c9:7e:60:7e:40:6e:9d:8f:89:b8:9a:75:b9: a0:22:85:97:4c:bf:c8:fa:9c:ad:e1:b1:cc:f2:d2: 71:f5:6f:58:f7:04:d2:54:75:b1:50:1c:45:06:3d: 42:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:ED:9D:B8:65:98:F0:3F:7C:F5:C7:0B:17:4E:8B:EE:54:A0:31:4F X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:77:42:cf:c2:e8:2f:49:ae:d7:6d:b2:ad:af:49:36:e6:8c: c0:04:bb:32:49:1f:e3:69:6a:ac:b0:65:b8:e2:63:af:96:f3: 0e:fe:b0:bd:b0:68:ec:a2:a1:d1:98:d7:df:21:0a:8e:8e:1b: 87:2a:fd:1e:eb:10:68:ff:b5:35:5d:c0:5d:83:7b:9d:49:76: db:b3:7a:83:97:55:14:42:8c:ff:bf:da:b1:95:77:e3:07:72: 71:9d:f8:1c:5c:3a:32:c9:8e:58:77:6a:ea:a9:59:2b:68:3a: fe:25:8f:5a:4b:6f:95:e1:ae:a2:65:2d:1f:85:28:22:42:fc: b7:cb:12:33:8b:b7:99:4b:72:b2:43:2f:76:4d:97:51:c0:69: ba:b4:91:2d:34:b5:bf:4e:65:56:27:08:1d:ac:7d:ca:23:43: bd:48:e3:20:f3:a8:7e:f2:51:2d:ed:5c:ab:b4:56:39:f1:f5: 7e:f3:53:2b:75:92:98:2e:56:0e:39:7b:39:b9:84:39:5b:ca: a7:7a:ce:9a:2e:e0:ff:cd:26:93:45:f7:5e:a0:d4:08:98:33: 38:2c:79:10:87:27:fc:7f:b4:38:ca:c9:aa:f8:a8:e9:fb:a4: 37:a7:1a:bb:e4:42:27:5c:d0:6a:d5:36:a3:d0:7a:8b:fc:ca: 04:d5:43:e4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjYwNTEyMTkzMDMwWhcNMjYwNTE5MTkzMDMwWjAYMRYwFAYD VQQDEw02YTAzN2ZkNy1iYzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvADcxdqW7ZQv1vbTU4CiBK/8cwUJYdFhaGKL6mSRdrOw++I6OZQ65j1izq9N pYP9lRNDzpMSTxcpyEBJF2ZWd3EKimZnOMbNCJ6iKk4hC5xoC6AkNOpDCNOkwFsm KSJ/22MDZoeq6l3lpGhgfQiHfO/UcjuZTjnnxL/WQlPQWqxx1rdqkqnLAmCzyPAZ 7KqTY5Xf5M7yHohGHtcPFv0GNo4cDn0guZNPW7kWw1djmVJj7ej26DvWT/XOQNOf bguCm3IrnDEcHxJf13LaOU7oTD6WJMl+YH5Abp2PibiadbmgIoWXTL/I+pyt4bHM 8tJx9W9Y9wTSVHWxUBxFBj1CywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFODtnbhl mPA/fPXHCxdOi+5UoDFPMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkFDRi81QUM2MkIyQTczRTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlh V3gtS2FnM1g0aUcyUGxOS3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPXdCz8LoL0mu122yra9JNuaMwAS7Mkkf42lqrLBluOJjr5bzDv6wvbBo7KKh 0ZjX3yEKjo4bhyr9HusQaP+1NV3AXYN7nUl227N6g5dVFEKM/7/asZV34wdycZ34 HFw6MsmOWHdq6qlZK2g6/iWPWktvleGuomUtH4UoIkL8t8sSM4u3mUtyskMvdk2X UcBpurSRLTS1v05lVicIHax9yiNDvUjjIPOofvJRLe1cq7RWOfH1fvNTK3WSmC5W Djl7ObmEOVvKp3rOmi7g/80mk0X3XqDUCJgzOCx5EIcn/H+0OMrJqvio6fukN6ca u+RCJ1zQatU2o9B6i/zKBNVD5A== -----END CERTIFICATE-----Generated at Wed May 13 02:35:30 2026 by rpki-client