$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft File: _RYHGGNz6B9E0TeyoOlpV-YquKE.mft (raw, json) Hash identifier: 5TIgQC/KCcaGx+48aLuS6tL1RTBW/3GNOGcuKBDEOw8= Subject key identifier: CE:A7:5A:A3:76:63:D4:88:96:83:66:61:F7:99:FA:CF:6E:ED:AD:29 Authority key identifier: FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 Certificate issuer: /CN=A91EA958/serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Certificate serial: 3578 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft Manifest number: 3552 Signing time: Thu 16 Apr 2026 15:00:54 +0000 Manifest this update: Thu 16 Apr 2026 15:00:54 +0000 Manifest next update: Thu 23 Apr 2026 15:00:54 +0000 Files and hashes: 1: _RYHGGNz6B9E0TeyoOlpV-YquKE.crl (hash: 5J1BxVvhOpKRV1Q0kKHQQjlCmRdIJI1/TMLA+HZr3FE=) 2: D347187A7E9511ECA9132A0BC4F9AE02.roa (hash: hOPjAACYFIMnZpYQK50BQrHSZKRavg8kb8cFoUPdabA=) 3: 5A7BB752BD2F11EBB84EE532C4F9AE02.roa (hash: OqYW8F4250vX2cVPr/WKUGN/bLRsN60JeF92JnIapyY=) 4: 59F4A758BD2F11EBB84EE532C4F9AE02.roa (hash: m731XVB6b1xAGYHDb9IkvhodV8wFo5nHOoj74jQNmhY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13688 (0x3578) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA958, serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Validity Not Before: Apr 16 15:00:54 2026 GMT Not After : Apr 23 15:00:54 2026 GMT Subject: CN=69e0f9a6-14aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:67:32:7f:30:37:ba:e7:d1:8b:45:a1:b3:c1: bd:12:f8:20:9b:ea:b0:4c:1d:95:0a:53:f4:9c:65: 21:e3:91:cc:94:2a:7d:f9:93:94:8b:a3:ad:62:6b: 4a:5d:77:10:e1:b7:e4:bb:8c:8d:e3:f3:82:d4:84: 09:fc:a5:f7:80:b1:1b:f9:8b:74:91:c3:dd:8a:c3: 77:95:c2:30:d4:38:de:85:69:68:8a:d3:08:5b:b2: 30:57:2b:1e:f7:0c:7e:f7:87:fc:bd:1d:01:9c:d5: 77:fd:f7:92:bc:72:8f:19:f9:15:a8:29:1f:29:09: dc:88:aa:28:47:46:49:a7:2c:78:50:0d:48:c0:14: 0c:ab:30:09:d5:50:5e:98:4b:55:49:07:78:70:9a: 72:29:49:60:fa:e2:64:63:8a:0a:5c:ad:96:68:49: 6f:48:65:db:14:84:9d:41:50:7b:69:27:eb:4d:18: 50:91:ea:3a:a2:0c:d9:2d:b6:da:3c:6a:e5:e1:d0: 58:40:df:1c:24:f7:34:05:95:24:70:40:c9:1f:32: b8:c7:19:9d:5f:47:c7:d0:47:b7:9d:c8:f1:31:7c: 01:e2:71:d3:60:11:dd:5a:d2:36:65:b2:c5:a8:14: 01:87:23:42:9d:85:5d:de:bd:e4:e3:32:ac:08:7e: 9f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:A7:5A:A3:76:63:D4:88:96:83:66:61:F7:99:FA:CF:6E:ED:AD:29 X509v3 Authority Key Identifier: keyid:FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:a7:40:66:71:a4:81:32:ef:5d:32:ae:ba:79:41:07:7f:59: 06:04:24:11:90:c8:d1:71:53:15:42:41:e2:36:65:23:2d:18: f3:51:0c:d8:48:8b:25:15:7c:c2:ac:fe:c5:43:84:97:9c:b4: a2:7c:4d:21:19:e9:93:87:47:91:df:df:77:1a:61:c4:82:1d: 95:59:3d:ce:09:5d:d9:bb:3e:23:51:ce:09:68:8d:b7:f1:87: ec:38:1e:ba:e2:bc:1a:55:4b:c9:ea:cf:ee:d4:2b:0c:50:bd: cd:4b:fb:75:a0:2e:f5:52:7e:df:17:d7:8e:3d:65:4f:47:62: 2b:cd:28:4e:f6:52:85:b0:c6:f8:3e:70:01:25:7f:cd:79:2d: 2d:84:3b:c3:71:69:60:31:b6:4d:ac:c0:22:9c:3c:57:a4:a1: 8f:7a:f1:2c:af:ed:23:ae:02:7d:b8:09:95:2b:68:3c:47:dd: e8:35:55:15:67:cb:88:39:45:3f:2e:7b:c8:90:0e:55:53:d1: c3:0d:62:f3:06:9c:15:c7:ba:42:01:1c:89:7b:0a:79:44:d9: 18:f4:61:3c:05:4c:96:0f:56:cd:a2:25:71:42:f7:53:7b:18: 7f:66:83:3c:02:c9:b1:67:72:3b:8a:7a:77:00:a5:4f:c0:ec: 1a:e9:af:71 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NTgxMTAvBgNVBAUTKEZEMTYwNzE4NjM3M0U4MUY0NEQxMzdCMkEwRTk2OTU3 RTYyQUI4QTEwHhcNMjYwNDE2MTUwMDU0WhcNMjYwNDIzMTUwMDU0WjAYMRYwFAYD VQQDEw02OWUwZjlhNi0xNGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmcyfzA3uufRi0Whs8G9Evggm+qwTB2VClP0nGUh45HMlCp9+ZOUi6OtYmtK XXcQ4bfku4yN4/OC1IQJ/KX3gLEb+Yt0kcPdisN3lcIw1DjehWloitMIW7IwVyse 9wx+94f8vR0BnNV3/feSvHKPGfkVqCkfKQnciKooR0ZJpyx4UA1IwBQMqzAJ1VBe mEtVSQd4cJpyKUlg+uJkY4oKXK2WaElvSGXbFISdQVB7aSfrTRhQkeo6ogzZLbba PGrl4dBYQN8cJPc0BZUkcEDJHzK4xxmdX0fH0Ee3ncjxMXwB4nHTYBHdWtI2ZbLF qBQBhyNCnYVd3r3k4zKsCH6fYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM6nWqN2 Y9SIloNmYfeZ+s9u7a0pMB8GA1UdIwQYMBaAFP0WBxhjc+gfRNE3sqDpaVfmKrih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk1OC81QUUxOTdGNDFE OUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZCOUUwVGV5b09scFYtWXF1 S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19SWUhHR056NkI5RTBUZXlvT2xwVi1ZcXVLRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTk1OC81QUUxOTdGNDFEOUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZC OUUwVGV5b09scFYtWXF1S0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAX6dAZnGkgTLvXTKuunlBB39ZBgQkEZDI0XFTFUJB4jZlIy0Y81EM2EiLJRV8 wqz+xUOEl5y0onxNIRnpk4dHkd/fdxphxIIdlVk9zgld2bs+I1HOCWiNt/GH7Dge uuK8GlVLyerP7tQrDFC9zUv7daAu9VJ+3xfXjj1lT0diK80oTvZShbDG+D5wASV/ zXktLYQ7w3FpYDG2TazAIpw8V6Shj3rxLK/tI64CfbgJlStoPEfd6DVVFWfLiDlF Py57yJAOVVPRww1i8wacFce6QgEciXsKeUTZGPRhPAVMlg9WzaIlcUL3U3sYf2aD PALJsWdyO4p6dwClT8DsGumvcQ== -----END CERTIFICATE-----Generated at Sat Apr 18 00:29:47 2026 by rpki-client