$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft File: RyCit4x4I5km_e5zRKNoDaDYBx0.mft (raw, json) Hash identifier: 0q6H19IDugmxxn28RkyosWhNXfX2dQGU5YpILlXywLo= Subject key identifier: B2:D5:32:E8:1E:94:D8:48:9C:03:3D:EA:52:2B:F9:A9:02:14:48:00 Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: 0133 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft Manifest number: 011F Signing time: Fri 17 Apr 2026 05:21:45 +0000 Manifest this update: Fri 17 Apr 2026 05:21:44 +0000 Manifest next update: Fri 24 Apr 2026 05:21:44 +0000 Files and hashes: 1: RyCit4x4I5km_e5zRKNoDaDYBx0.crl (hash: ADgXrbkyw+sMev01alGiBltFAPa83I06/cxiLxySRts=) 2: D2D7B762995611EFADA5D754C4F9AE02.roa (hash: uC7UgU3WUyp6lo8+x5BnzjYje46EFX3E65V33NxoTHM=) 3: 003589503F8311F0AA4DF254C4F9AE02.roa (hash: DKnLp31Pt39zKxYHan0L0UpjSQtw5gIheDfF7NmRFzQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: Apr 17 05:21:44 2026 GMT Not After : Apr 24 05:21:44 2026 GMT Subject: CN=69e1c369-7433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:64:6b:53:26:22:a0:e1:45:b4:6c:ad:90:64: 76:23:56:23:5e:c6:b2:9c:b2:23:20:88:85:25:66: 2b:ef:ef:af:77:df:97:8a:86:b6:ce:da:0c:92:d4: ab:e6:4e:f0:7f:1d:58:b6:5a:6d:4d:de:3a:04:f1: 4e:85:a5:04:c0:fd:5e:76:74:6d:0c:5e:e9:80:46: a9:e6:a3:46:56:79:86:33:68:81:3b:71:38:50:e4: 4b:a1:0d:00:6f:e7:b3:e5:29:6b:5a:e5:89:93:09: fb:27:d4:30:47:38:b3:fc:1f:df:9c:be:89:95:fb: d4:46:ad:53:39:a5:80:d0:77:62:a5:91:b0:5f:0a: 70:2e:f3:ba:b4:0e:a7:a1:d7:86:97:b0:01:9d:6f: eb:88:d6:06:5c:91:48:1f:72:1e:ee:e3:b7:c8:a4: bd:8c:19:69:59:03:33:7e:11:49:94:e9:bf:36:0c: 2c:af:c9:5a:0d:c9:a2:3e:2d:71:c5:3c:49:d1:a3: 5f:b1:d2:b7:1b:b7:19:fd:b2:fc:aa:58:05:75:74: 80:25:18:7f:08:9c:ea:4c:7f:8b:ed:4f:0d:5d:69: ba:ae:c2:7c:e5:4a:3c:d5:28:fb:fe:3d:8e:bc:fb: ec:62:e9:5e:5e:a5:a4:cf:ec:19:e6:d4:14:eb:08: 4b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:D5:32:E8:1E:94:D8:48:9C:03:3D:EA:52:2B:F9:A9:02:14:48:00 X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:46:41:b7:15:d4:a7:67:7f:fc:38:8a:9d:17:a3:cd:db:ef: 40:fc:db:ed:ca:5f:18:a9:d1:55:76:4b:19:c5:10:1e:0f:a9: 9b:2b:ed:b2:76:bf:20:25:1a:78:89:64:7f:50:fe:c0:7d:3d: f8:55:6a:ca:a7:a2:a6:48:97:ee:02:99:fa:e6:83:a4:b8:33: a5:28:3c:d6:fb:f4:9f:4f:8d:53:9c:88:cd:05:fb:ca:35:8b: 33:33:b6:5b:3d:01:b1:78:80:0f:78:d3:d4:78:d8:19:48:24: b2:23:5b:0f:0d:c6:6e:89:15:f4:30:a3:50:b4:21:85:e3:69: 06:e1:40:13:50:6a:2d:e9:97:ca:22:1e:d0:bf:24:cf:c1:0e: 72:23:6b:fc:a7:ca:e9:5c:df:a8:77:ec:7c:70:54:f6:af:12: a4:ae:42:c6:c3:34:c4:8d:1d:9d:2d:95:72:b3:c7:48:6e:f7: 1b:09:88:a1:a7:05:45:a0:56:6d:0a:3d:7b:71:36:ca:22:27: 17:1d:d3:d4:91:86:12:64:79:17:01:82:94:48:88:9f:02:57: e5:69:c6:49:52:b3:07:5e:4d:48:b4:ba:a9:74:f8:80:90:4f: 91:82:24:dc:61:f5:3f:46:a2:96:f1:e0:4c:ca:09:b4:d3:d8: 61:7a:5f:62 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDQ3MjBBMkI3OEM3ODIzOTkyNkZERUU3MzQ0QTM2ODBE QTBEODA3MUQwHhcNMjYwNDE3MDUyMTQ0WhcNMjYwNDI0MDUyMTQ0WjAYMRYwFAYD VQQDEw02OWUxYzM2OS03NDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmmRrUyYioOFFtGytkGR2I1YjXsaynLIjIIiFJWYr7++vd9+Xioa2ztoMktSr 5k7wfx1YtlptTd46BPFOhaUEwP1ednRtDF7pgEap5qNGVnmGM2iBO3E4UORLoQ0A b+ez5SlrWuWJkwn7J9QwRziz/B/fnL6JlfvURq1TOaWA0HdipZGwXwpwLvO6tA6n odeGl7ABnW/riNYGXJFIH3Ie7uO3yKS9jBlpWQMzfhFJlOm/Ngwsr8laDcmiPi1x xTxJ0aNfsdK3G7cZ/bL8qlgFdXSAJRh/CJzqTH+L7U8NXWm6rsJ85Uo81Sj7/j2O vPvsYuleXqWkz+wZ5tQU6whLCwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLLVMuge lNhInAM96lIr+akCFEgAMB8GA1UdIwQYMBaAFEcgoreMeCOZJv3uc0SjaA2g2Acd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi8yN0UzRURBNDk4 MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1a21fZTV6UktOb0RhRFlC eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJERi8yN0UzRURBNDk4MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1 a21fZTV6UktOb0RhRFlCeDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAskZBtxXUp2d//DiKnRejzdvvQPzb7cpfGKnRVXZLGcUQHg+pmyvtsna/ICUa eIlkf1D+wH09+FVqyqeipkiX7gKZ+uaDpLgzpSg81vv0n0+NU5yIzQX7yjWLMzO2 Wz0BsXiAD3jT1HjYGUgksiNbDw3GbokV9DCjULQhheNpBuFAE1BqLemXyiIe0L8k z8EOciNr/KfK6VzfqHfsfHBU9q8SpK5CxsM0xI0dnS2VcrPHSG73GwmIoacFRaBW bQo9e3E2yiInFx3T1JGGEmR5FwGClEiInwJX5WnGSVKzB15NSLS6qXT4gJBPkYIk 3GH1P0ailvHgTMoJtNPYYXpfYg== -----END CERTIFICATE-----Generated at Fri Apr 17 12:40:14 2026 by rpki-client