$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft File: RyCit4x4I5km_e5zRKNoDaDYBx0.mft (raw, json) Hash identifier: qeaif5Kg9L0d0R2A31jeUueTI1+IQCpw2KDHwoD2pww= Subject key identifier: ED:54:2B:E4:B0:44:C7:7E:8E:AC:6B:FB:63:DE:13:2F:68:A6:F6:2D Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: 010D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft Manifest number: 0105 Signing time: Sun 01 Mar 2026 07:02:02 +0000 Manifest this update: Sun 01 Mar 2026 07:02:02 +0000 Manifest next update: Sun 08 Mar 2026 07:02:02 +0000 Files and hashes: 1: RyCit4x4I5km_e5zRKNoDaDYBx0.crl (hash: eAt4SOkECrZud1DWuJ/98OlKXy+fWxhaFxj+tYt0+Ug=) 2: 003589503F8311F0AA4DF254C4F9AE02.roa (hash: mFg/4qdLeiQ8AjEap32HrO7ldoixpAZaZ3NegxVi38A=) 3: D2D7B762995611EFADA5D754C4F9AE02.roa (hash: DBuT5pVIx5+DapGoOy/MWoVxejvGW3jQONX5f21P15c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:02:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: Mar 1 07:02:02 2026 GMT Not After : Mar 8 07:02:02 2026 GMT Subject: CN=69a3e46a-a5ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:31:39:2e:e2:d9:7c:e7:8a:be:74:bf:85:92: 37:d7:15:b2:02:82:ad:56:7b:f7:11:bd:25:eb:3d: 1b:90:62:af:53:98:0f:6a:f8:80:24:fb:c9:53:64: 63:d4:ae:b4:eb:60:f6:2c:d6:aa:3a:49:51:ed:9b: 44:f4:ee:37:15:2d:e2:00:e8:02:e7:04:6d:8a:cb: 0e:13:e8:a2:41:95:f9:29:6e:46:76:5e:97:d8:6b: 21:b6:f4:43:37:53:37:30:47:91:b8:71:70:25:c8: 05:a1:31:4c:4f:06:bc:bc:58:32:6a:c5:28:a7:d4: a7:2f:50:89:83:e0:1a:13:e2:5e:a2:5a:0b:dd:5a: 1d:4a:9c:ae:cc:c9:9f:4b:3c:15:ee:ca:cf:94:73: 31:7d:0c:64:de:f9:ff:77:5b:40:13:3f:cc:b5:7c: b4:e6:2c:f6:ed:78:b6:dc:52:20:e5:38:09:55:69: b4:12:9c:04:f7:8a:29:c2:d1:d8:72:0b:65:89:58: a1:d8:4e:be:a3:e2:c0:ad:ee:a6:9b:88:14:a3:0d: 9a:cb:fb:bb:0f:ea:1e:dd:f1:93:5a:33:86:37:31: eb:e8:c6:3e:37:1e:54:c9:fa:c1:b6:e1:d2:ff:0e: cf:ab:1d:c4:b2:a1:fb:60:e6:77:e2:ec:19:ff:23: b0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:54:2B:E4:B0:44:C7:7E:8E:AC:6B:FB:63:DE:13:2F:68:A6:F6:2D X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e0:bc:87:fd:2f:a3:c6:5b:d0:14:62:ef:de:12:8a:c7:b1:27: 5b:47:39:de:5e:4a:f9:be:5c:79:a3:c6:bc:1b:c7:8a:80:4e: bd:18:fc:92:67:cd:c2:64:d5:d8:30:58:a7:cb:7d:94:9a:a4: 53:b3:48:8e:99:c8:a0:6c:1d:56:0c:76:47:35:cf:36:3a:73: 2b:43:5d:08:d5:09:a6:7e:43:64:16:a0:c9:39:6e:75:26:ef: 41:10:77:0e:f7:c8:b0:b4:77:e1:da:9d:6b:fb:3b:bd:18:a5: 43:d0:75:a7:f1:7c:8f:f3:6f:70:95:70:30:44:59:3a:55:70: de:46:6a:04:75:2a:32:f8:f2:0b:ae:46:2a:11:f4:5f:12:3a: 5c:85:b8:6e:0b:27:86:11:f4:d1:92:83:99:5b:16:f4:1f:32: b2:3d:e6:aa:00:0a:20:bd:0d:96:91:58:b7:64:b8:03:a0:47: ef:65:76:51:e4:a4:9b:a4:83:a8:ca:47:97:c3:b3:98:84:4f: 87:98:4a:f1:73:08:a5:3d:d8:a7:39:8a:e0:83:3c:8e:6c:8a: 80:ae:19:12:ac:a3:36:c3:99:25:ff:cb:56:8b:8a:47:a4:da: 71:37:83:91:c5:d3:37:a3:74:3c:25:ec:b2:0c:f2:63:30:40: a9:13:81:23 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDQ3MjBBMkI3OEM3ODIzOTkyNkZERUU3MzQ0QTM2ODBE QTBEODA3MUQwHhcNMjYwMzAxMDcwMjAyWhcNMjYwMzA4MDcwMjAyWjAYMRYwFAYD VQQDEw02OWEzZTQ2YS1hNWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TE5LuLZfOeKvnS/hZI31xWyAoKtVnv3Eb0l6z0bkGKvU5gPaviAJPvJU2Rj 1K6062D2LNaqOklR7ZtE9O43FS3iAOgC5wRtissOE+iiQZX5KW5Gdl6X2GshtvRD N1M3MEeRuHFwJcgFoTFMTwa8vFgyasUop9SnL1CJg+AaE+JeoloL3VodSpyuzMmf SzwV7srPlHMxfQxk3vn/d1tAEz/MtXy05iz27Xi23FIg5TgJVWm0EpwE94opwtHY cgtliVih2E6+o+LAre6mm4gUow2ay/u7D+oe3fGTWjOGNzHr6MY+Nx5UyfrBtuHS /w7Pqx3EsqH7YOZ34uwZ/yOweQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO1UK+Sw RMd+jqxr+2PeEy9opvYtMB8GA1UdIwQYMBaAFEcgoreMeCOZJv3uc0SjaA2g2Acd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi8yN0UzRURBNDk4 MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1a21fZTV6UktOb0RhRFlC eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJERi8yN0UzRURBNDk4MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1 a21fZTV6UktOb0RhRFlCeDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA4LyH/S+jxlvQFGLv3hKKx7EnW0c53l5K+b5ceaPGvBvHioBOvRj8kmfNwmTV 2DBYp8t9lJqkU7NIjpnIoGwdVgx2RzXPNjpzK0NdCNUJpn5DZBagyTludSbvQRB3 DvfIsLR34dqda/s7vRilQ9B1p/F8j/NvcJVwMERZOlVw3kZqBHUqMvjyC65GKhH0 XxI6XIW4bgsnhhH00ZKDmVsW9B8ysj3mqgAKIL0NlpFYt2S4A6BH72V2UeSkm6SD qMpHl8OzmIRPh5hK8XMIpT3YpzmK4IM8jmyKgK4ZEqyjNsOZJf/LVouKR6TacTeD kcXTN6N0PCXssgzyYzBAqROBIw== -----END CERTIFICATE-----Generated at Mon Mar 2 00:46:33 2026 by rpki-client