$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft File: DYtx2GteICkzvLAqW210CSpSoXw.mft (raw, json) Hash identifier: VcU5H064BLHC5T+lEp1SDjLjzhspP7wjzsvNu1QgTic= Subject key identifier: 82:F8:F1:55:D5:59:FC:7B:28:6E:91:CE:3C:F4:70:CF:E3:E4:21:7A Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 35AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft Manifest number: 3553 Signing time: Thu 16 Apr 2026 14:50:16 +0000 Manifest this update: Thu 16 Apr 2026 14:50:15 +0000 Manifest next update: Thu 23 Apr 2026 14:50:15 +0000 Files and hashes: 1: DYtx2GteICkzvLAqW210CSpSoXw.crl (hash: LgQy2Hgv2lWEJBOma1RAJsBRW/Rf1LUicZKFnSNdYpA=) 2: D56D9FD87E8711EC9A928B6AC4F9AE02.roa (hash: l9+xBEny0RtitxX+horpYy85rL+QwU54sl8n7bTIiQE=) 3: 991EB004BE8511EE960E5082C4F9AE02.roa (hash: rP4EBcoYjp/fb5drtfKj/6SrPS0+St4OmibSJgW68j8=) 4: 9A2B0DE4593F11EA9F9FA238C4F9AE02.roa (hash: NLs+1lW2c+XRSot8ioe6j0/P90GPYhhRdikdITCoGOI=) 5: 65552C3AE8D411ED8D0FAD45C4F9AE02.roa (hash: D7Y0D/y/CKTIEfmEtpoWEBzYAJ2qa9qCceCAIRlHBxE=) 6: 3DBC186C5AD611EF85A4557BC4F9AE02.roa (hash: 6uLGUsAxDCCetxCSvWggNZXKnXx2TcJW5ybw8uE9+E8=) 7: 9B71FEB0593F11EA9F9FA238C4F9AE02.roa (hash: Q4GRmFRI4ONgbTnKmbxTEpLs75sW5Sq4FWea39SXv98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13739 (0x35ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C, serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: Apr 16 14:50:15 2026 GMT Not After : Apr 23 14:50:15 2026 GMT Subject: CN=69e0f728-c34b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a8:68:81:74:ab:76:e9:47:6e:91:ea:1d:13: 7b:2d:9f:e0:88:96:cc:67:1f:b0:c8:7f:e6:70:32: 38:ea:cf:85:3f:39:0a:96:b1:9b:9b:1f:b3:5e:6b: c7:01:01:38:6b:3f:89:db:12:c1:e5:dd:8e:06:dd: 9d:d2:44:dd:43:8a:21:20:01:45:eb:b1:ec:fe:26: 35:2b:86:a2:36:aa:97:4b:e6:2a:cf:9b:63:97:eb: e0:de:5c:8e:fa:9e:ce:10:74:f9:d8:27:0d:e0:35: 88:3e:70:60:1e:b9:3b:e6:a0:28:e8:d0:4c:a0:37: 5c:1e:b7:15:5e:a5:9c:80:fd:d9:3e:e6:d6:83:69: 03:40:b4:f0:a7:cb:af:4d:04:f4:32:96:6e:8d:93: e6:89:ec:8b:73:09:b3:de:f9:97:3b:a6:21:1c:8e: b5:20:8a:e3:d1:91:e5:3a:c8:03:70:34:42:24:71: bb:b7:f6:05:d9:8b:6e:00:0f:c9:e1:9b:3f:58:36: c2:18:6b:c4:8e:1f:f4:09:a0:e8:0e:5b:94:30:1d: c2:4f:cc:78:d4:5b:6f:78:1b:7d:3f:49:d3:3e:03: 75:8a:96:bf:4f:4d:3e:81:5a:d9:30:1f:2d:41:e2: e5:5d:16:19:41:69:bc:6d:a6:9c:b3:89:e5:82:c6: 1d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:F8:F1:55:D5:59:FC:7B:28:6E:91:CE:3C:F4:70:CF:E3:E4:21:7A X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:6b:6d:54:3d:7d:ec:7f:32:85:60:d6:4a:e8:6a:0f:2c:71: 4e:02:79:09:6e:1b:93:9f:25:fb:cd:e8:29:31:bf:f6:e9:fe: d0:49:a8:62:8a:c7:0e:36:ab:33:a9:ae:0f:34:1f:dd:51:80: c8:36:24:50:08:56:5e:ef:a0:f7:a3:25:4b:4d:b5:53:1a:b3: 0a:ee:2d:8c:d4:b2:54:8f:a4:66:58:e8:8f:2c:68:e5:aa:60: 24:0f:b8:b1:e3:cf:da:30:0c:1b:56:3a:22:54:b8:d5:b0:d6: 6e:31:a0:5c:a0:06:bc:44:f4:0e:a2:8e:6a:0d:05:70:1e:aa: 99:64:1f:2f:f9:87:1d:2c:79:c8:75:e2:8e:95:df:d7:ad:6f: ad:6a:dd:b3:bb:43:9c:51:94:37:ff:60:96:21:3b:e0:14:1f: e9:e2:3e:cd:f1:98:da:db:03:6d:cb:a2:ca:5c:2c:4d:e0:b8: e6:c7:5b:bc:c3:ad:3b:be:cd:e6:df:5c:46:17:6a:ea:f1:b8: 66:c4:e3:ca:9f:86:67:51:22:f7:39:a8:49:44:78:90:b9:a9: bf:10:3f:e6:0f:73:1e:e8:45:50:59:ac:a0:ea:47:53:80:fe: 08:eb:b7:bd:7a:57:54:40:bf:9e:e2:07:36:cf:03:9d:1c:d7: e9:c6:58:0c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjYwNDE2MTQ1MDE1WhcNMjYwNDIzMTQ1MDE1WjAYMRYwFAYD VQQDEw02OWUwZjcyOC1jMzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApKhogXSrdulHbpHqHRN7LZ/giJbMZx+wyH/mcDI46s+FPzkKlrGbmx+zXmvH AQE4az+J2xLB5d2OBt2d0kTdQ4ohIAFF67Hs/iY1K4aiNqqXS+Yqz5tjl+vg3lyO +p7OEHT52CcN4DWIPnBgHrk75qAo6NBMoDdcHrcVXqWcgP3ZPubWg2kDQLTwp8uv TQT0MpZujZPmieyLcwmz3vmXO6YhHI61IIrj0ZHlOsgDcDRCJHG7t/YF2YtuAA/J 4Zs/WDbCGGvEjh/0CaDoDluUMB3CT8x41FtveBt9P0nTPgN1ipa/T00+gVrZMB8t QeLlXRYZQWm8baacs4nlgsYd2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIL48VXV Wfx7KG6Rzjz0cM/j5CF6MB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzk1Qy9CQjM0MTdDMDFEOTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlD a3p2TEFxVzIxMENTcFNvWHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZ2ttVD197H8yhWDWSuhqDyxxTgJ5CW4bk58l+83oKTG/9un+0EmoYorHDjar M6muDzQf3VGAyDYkUAhWXu+g96MlS021UxqzCu4tjNSyVI+kZljojyxo5apgJA+4 sePP2jAMG1Y6IlS41bDWbjGgXKAGvET0DqKOag0FcB6qmWQfL/mHHSx5yHXijpXf 161vrWrds7tDnFGUN/9gliE74BQf6eI+zfGY2tsDbcuiylwsTeC45sdbvMOtO77N 5t9cRhdq6vG4ZsTjyp+GZ1Ei9zmoSUR4kLmpvxA/5g9zHuhFUFmsoOpHU4D+COu3 vXpXVEC/nuIHNs8DnRzX6cZYDA== -----END CERTIFICATE-----Generated at Fri Apr 17 15:50:11 2026 by rpki-client