$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft File: YcuQhfAv-PpF5zL1gDQPQkngDKI.mft (raw, json) Hash identifier: LF9pyvyNtWGUvkp+jNHmIqISIlTMR+GjKioNeE8IPK0= Subject key identifier: DE:5C:49:8A:E4:7C:48:69:EE:42:5F:09:A3:F4:72:3F:2C:47:D0:DF Authority key identifier: 61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 Certificate issuer: /CN=A91DCB25/serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Certificate serial: 123E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft Manifest number: 1232 Signing time: Tue 12 May 2026 17:08:32 +0000 Manifest this update: Tue 12 May 2026 17:08:32 +0000 Manifest next update: Tue 19 May 2026 17:08:32 +0000 Files and hashes: 1: YcuQhfAv-PpF5zL1gDQPQkngDKI.crl (hash: 6J174iModZx2M7+pWh/eEE376yTjtJO/stt/EjI6oDk=) 2: BDC1AB0AFDA611E88FA5E26DC4F9AE02.roa (hash: wLzSSsb1W3A2MYP49E/fklCTD0d/JRiMl3Lul9XwiIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4670 (0x123e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCB25, serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Validity Not Before: May 12 17:08:32 2026 GMT Not After : May 19 17:08:32 2026 GMT Subject: CN=6a035e90-b59d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:15:dd:54:77:32:97:c1:5b:1e:e1:fc:a8:89: 5d:e9:c0:07:9f:51:b6:08:ac:83:0f:2f:1d:71:7a: 6e:a6:69:ab:72:f4:c2:d1:2f:e9:fa:a0:d6:b2:dc: 90:96:d9:2f:7d:9d:14:77:62:80:f0:3e:6f:70:5b: 64:e3:ad:d6:4b:50:f0:ef:cb:4c:dd:c7:aa:1d:88: d0:94:d2:31:b2:97:85:7b:74:03:94:2b:8b:38:d3: 5b:e6:5d:72:6e:33:a4:31:a1:5e:01:7a:98:e4:92: 4b:77:2a:a5:8a:d2:1d:83:76:41:06:68:19:34:45: 33:c3:17:3b:11:ea:d8:92:eb:2c:b6:55:e0:06:5f: e3:0e:25:1a:d8:12:9c:f3:65:f4:31:e3:e2:c3:31: 8b:95:7a:5c:9c:d1:44:09:13:10:32:30:ed:53:b3: 03:35:b3:b2:b9:6c:bb:a2:80:f2:bd:43:a4:5e:d6: 58:f7:c7:b4:f2:0c:3f:ab:cb:c6:00:ff:0b:4c:22: d8:d6:66:f1:ff:aa:78:37:25:a4:83:50:60:05:fc: ab:14:e3:a6:63:61:25:34:e5:f2:e6:a1:e4:c9:3b: a3:61:b2:50:e3:76:f4:1c:74:6a:2b:14:d1:ae:2c: a1:46:7f:87:4f:f4:f6:05:bb:3b:7c:09:98:69:55: 09:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:5C:49:8A:E4:7C:48:69:EE:42:5F:09:A3:F4:72:3F:2C:47:D0:DF X509v3 Authority Key Identifier: keyid:61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:db:f7:bf:5d:51:b4:2d:a8:7e:d3:c4:f5:e1:98:fa:6a:d4: e2:3d:46:e9:44:ba:b8:78:86:77:6d:29:97:e0:5d:b3:6b:d9: f2:fc:8f:36:f6:27:f5:db:a5:98:f7:50:1b:bd:72:0a:f2:ee: 06:b0:24:a4:48:0f:c6:e3:60:6e:2f:68:56:70:78:33:61:58: 41:5d:a5:91:97:93:56:a6:22:9e:88:17:40:ee:57:09:ae:0b: 4c:ef:70:e7:d2:07:90:c3:dd:b3:00:8d:9d:08:85:e3:c7:28: 2c:14:65:78:fb:e0:33:3f:f3:8a:7b:7f:8a:3b:aa:76:30:1c: 24:7e:4b:f1:67:05:2c:59:ec:db:60:08:0c:a8:7e:64:b9:f9: 43:77:dc:78:a7:48:d1:de:e5:60:e7:a6:a4:0a:55:2d:b4:00: ce:42:54:62:3a:40:65:a4:92:5d:8e:ab:7b:05:30:b5:89:50: 49:7c:68:d2:fd:85:76:6b:43:1b:87:2c:6d:93:2b:92:b3:c8: 2c:40:7b:07:f1:98:03:8d:dd:54:aa:66:91:1b:59:3e:16:be: 15:64:d4:ff:a6:c6:d3:38:dc:ae:dc:32:a1:ff:08:cf:73:fb: a0:6d:53:53:fa:fa:ee:74:dc:d1:a1:fb:95:68:b0:4a:75:8e: 32:97:83:ec -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENCMjUxMTAvBgNVBAUTKDYxQ0I5MDg1RjAyRkY4RkE0NUU3MzJGNTgwMzQwRjQy NDlFMDBDQTIwHhcNMjYwNTEyMTcwODMyWhcNMjYwNTE5MTcwODMyWjAYMRYwFAYD VQQDEw02YTAzNWU5MC1iNTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5hXdVHcyl8FbHuH8qIld6cAHn1G2CKyDDy8dcXpupmmrcvTC0S/p+qDWstyQ ltkvfZ0Ud2KA8D5vcFtk463WS1Dw78tM3ceqHYjQlNIxspeFe3QDlCuLONNb5l1y bjOkMaFeAXqY5JJLdyqlitIdg3ZBBmgZNEUzwxc7EerYkusstlXgBl/jDiUa2BKc 82X0MePiwzGLlXpcnNFECRMQMjDtU7MDNbOyuWy7ooDyvUOkXtZY98e08gw/q8vG AP8LTCLY1mbx/6p4NyWkg1BgBfyrFOOmY2ElNOXy5qHkyTujYbJQ43b0HHRqKxTR riyhRn+HT/T2Bbs7fAmYaVUJIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN5cSYrk fEhp7kJfCaP0cj8sR9DfMB8GA1UdIwQYMBaAFGHLkIXwL/j6Recy9YA0D0JJ4Ayi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0IyNS8yQzYwREZEOEZE QTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1QcEY1ekwxZ0RRUFFrbmdE S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ljdVFoZkF2LVBwRjV6TDFnRFFQUWtuZ0RLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0IyNS8yQzYwREZEOEZEQTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1Q cEY1ekwxZ0RRUFFrbmdES0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMdv3v11RtC2oftPE9eGY+mrU4j1G6US6uHiGd20pl+Bds2vZ8vyPNvYn9dul mPdQG71yCvLuBrAkpEgPxuNgbi9oVnB4M2FYQV2lkZeTVqYinogXQO5XCa4LTO9w 59IHkMPdswCNnQiF48coLBRlePvgMz/zint/ijuqdjAcJH5L8WcFLFns22AIDKh+ ZLn5Q3fceKdI0d7lYOempApVLbQAzkJUYjpAZaSSXY6rewUwtYlQSXxo0v2FdmtD G4csbZMrkrPILEB7B/GYA43dVKpmkRtZPha+FWTU/6bG0zjcrtwyof8Iz3P7oG1T U/r67nTc0aH7lWiwSnWOMpeD7A== -----END CERTIFICATE-----Generated at Wed May 13 04:36:37 2026 by rpki-client