$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft File: ySTN5BVFl0tvV4MubGA7zIlm2eA.mft (raw, json) Hash identifier: YUGZU8iPR/oOli01pc+aWSQTPQKMkNoEnzCfK6kFYuU= Subject key identifier: B3:8B:D3:13:60:C9:29:E1:C4:CF:B9:03:C7:25:38:E7:5D:36:36:AC Authority key identifier: C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 Certificate issuer: /CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Certificate serial: 03CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft Manifest number: 12C5 Signing time: Tue 12 May 2026 17:38:29 +0000 Manifest this update: Tue 12 May 2026 17:38:29 +0000 Manifest next update: Tue 19 May 2026 17:38:29 +0000 Files and hashes: 1: ySTN5BVFl0tvV4MubGA7zIlm2eA.crl (hash: MscIBXXUgG/9+7JmC5IB/O998JL2by3q7nPwu65xBb4=) 2: 2FBEB0B0D5B011EC90A8A031C4F9AE02.roa (hash: +CMTAtAhA5A3bcW+qweztRhJOEGADprPEZzn/dd78sw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:38:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 971 (0x3cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD, serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Validity Not Before: May 12 17:38:29 2026 GMT Not After : May 19 17:38:29 2026 GMT Subject: CN=6a036595-d17c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:31:58:5e:83:bb:d7:80:6d:14:68:f0:1a:85: ac:79:0b:62:89:d9:9d:85:97:66:e3:4d:5e:60:91: 3b:f6:f8:fa:51:5b:be:ef:a4:a5:b2:43:cf:71:19: e8:29:24:e0:7d:9d:47:72:b4:74:0f:80:60:39:cc: d6:ba:65:9c:eb:a6:55:31:7f:c7:72:40:6e:6c:3d: 89:9e:4e:10:b4:72:f7:9c:f6:82:f0:fb:62:ed:4a: ca:c1:b7:28:90:04:25:db:90:36:67:af:07:bd:2a: c3:ab:26:66:90:a0:55:f2:9e:a5:da:e9:25:ce:13: 63:be:c6:78:68:5c:d2:74:78:93:c9:d0:c3:d5:1e: 55:5a:a1:b8:75:6c:f8:ec:b6:91:e7:7d:f9:54:29: 31:11:27:91:94:9a:6b:f0:14:3d:92:ba:c4:73:fd: 45:3d:a3:a4:ee:48:6f:e9:05:9c:b7:2d:f9:42:48: 22:a6:fa:0b:28:92:1f:5a:0f:da:54:16:b2:21:2e: a7:b2:f7:8b:42:ab:ad:3b:43:5e:1b:80:3c:a9:e0: 3e:51:8d:a0:e8:b7:97:45:1b:c0:8a:f3:82:ca:27: 5e:39:ff:7b:47:6b:ac:70:5c:e2:f1:9a:36:62:b5: 1b:57:71:88:72:87:b7:f2:a4:e6:00:4c:66:85:57: 68:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:8B:D3:13:60:C9:29:E1:C4:CF:B9:03:C7:25:38:E7:5D:36:36:AC X509v3 Authority Key Identifier: keyid:C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:c2:13:c0:45:ad:22:70:7a:53:01:1c:c5:da:09:00:ea:ba: 81:1e:3a:46:d0:79:1b:94:37:75:9e:70:d5:41:37:7f:43:15: 88:9c:6f:1b:eb:5e:bb:79:c8:a2:46:8d:c7:d2:46:76:9a:1f: c9:51:48:20:a8:27:95:7d:b3:a2:0d:b0:93:70:17:76:4b:3b: 06:69:30:49:0f:4f:a4:18:41:64:b4:a6:96:37:68:2a:a0:d6: 91:38:3d:c8:11:6e:0b:6c:52:70:81:bc:db:da:15:a1:05:13: 9d:ff:d2:31:32:c0:85:33:44:fb:05:46:ec:91:b9:4d:ff:22: 41:0e:c4:d4:08:99:82:0b:db:71:15:f6:de:33:c8:6d:3a:fa: 7d:77:ef:1c:f5:0e:c2:7d:9f:ce:fa:36:c5:a1:ad:15:2e:5f: 60:9a:76:c2:ed:50:e2:37:e7:81:e4:0d:e8:0e:a8:ff:93:2b: f1:eb:7c:64:8b:4d:99:90:c2:5a:52:52:23:0d:44:16:21:63: 6a:5a:cb:49:78:40:56:20:5e:fe:fb:23:8d:e2:cf:c7:c5:7e: ec:73:67:a3:64:6a:5d:9d:8f:f9:3e:f5:ff:fa:95:a4:18:b0: 1a:0f:30:05:55:0e:8d:16:57:e4:30:64:12:44:71:c1:8f:b7: 9c:08:33:68 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKEM5MjRDREU0MTU0NTk3NEI2RjU3ODMyRTZDNjAzQkND ODk2NkQ5RTAwHhcNMjYwNTEyMTczODI5WhcNMjYwNTE5MTczODI5WjAYMRYwFAYD VQQDEw02YTAzNjU5NS1kMTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzFYXoO714BtFGjwGoWseQtiidmdhZdm401eYJE79vj6UVu+76SlskPPcRno KSTgfZ1HcrR0D4BgOczWumWc66ZVMX/HckBubD2Jnk4QtHL3nPaC8Pti7UrKwbco kAQl25A2Z68HvSrDqyZmkKBV8p6l2uklzhNjvsZ4aFzSdHiTydDD1R5VWqG4dWz4 7LaR5335VCkxESeRlJpr8BQ9krrEc/1FPaOk7khv6QWcty35QkgipvoLKJIfWg/a VBayIS6nsveLQqutO0NeG4A8qeA+UY2g6LeXRRvAivOCyideOf97R2uscFzi8Zo2 YrUbV3GIcoe38qTmAExmhVdo+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLOL0xNg ySnhxM+5A8clOOddNjasMB8GA1UdIwQYMBaAFMkkzeQVRZdLb1eDLmxgO8yJZtng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmwwdHZWNE11YkdBN3pJbG0y ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTVE41QlZGbDB0dlY0TXViR0E3eklsbTJlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkRERC9CNEEyODM2MjlFMUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmww dHZWNE11YkdBN3pJbG0yZUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkMITwEWtInB6UwEcxdoJAOq6gR46RtB5G5Q3dZ5w1UE3f0MViJxvG+teu3nI okaNx9JGdpofyVFIIKgnlX2zog2wk3AXdks7BmkwSQ9PpBhBZLSmljdoKqDWkTg9 yBFuC2xScIG829oVoQUTnf/SMTLAhTNE+wVG7JG5Tf8iQQ7E1AiZggvbcRX23jPI bTr6fXfvHPUOwn2fzvo2xaGtFS5fYJp2wu1Q4jfngeQN6A6o/5Mr8et8ZItNmZDC WlJSIw1EFiFjalrLSXhAViBe/vsjjeLPx8V+7HNno2RqXZ2P+T71//qVpBiwGg8w BVUOjRZX5DBkEkRxwY+3nAgzaA== -----END CERTIFICATE-----Generated at Wed May 13 05:33:25 2026 by rpki-client