$ rpki-client -vvf rpki.apnic.net/member_repository/A9120D97/10A99A0A178311F1B7AAC0FF273D8C67/Y0nPcXs0CWM10fw5e8UEBkinjw4.mft File: Y0nPcXs0CWM10fw5e8UEBkinjw4.mft (raw, json) Hash identifier: YFhQRYdoc2DnKQGZGjDtrHzAKr5F/Hq7//nbMaRL69w= Subject key identifier: E5:69:AA:D2:B8:61:D2:7D:41:1D:A7:78:78:B4:DD:B8:96:9C:66:B6 Authority key identifier: 63:49:CF:71:7B:34:09:63:35:D1:FC:39:7B:C5:04:06:48:A7:8F:0E Certificate issuer: /CN=A9120D97/serialNumber=6349CF717B34096335D1FC397BC5040648A78F0E Certificate serial: 32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0nPcXs0CWM10fw5e8UEBkinjw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120D97/10A99A0A178311F1B7AAC0FF273D8C67/Y0nPcXs0CWM10fw5e8UEBkinjw4.mft Manifest number: 31 Signing time: Fri 05 Jun 2026 09:04:03 +0000 Manifest this update: Fri 05 Jun 2026 09:04:02 +0000 Manifest next update: Fri 12 Jun 2026 09:04:02 +0000 Files and hashes: 1: Y0nPcXs0CWM10fw5e8UEBkinjw4.crl (hash: Jtviejpcywm4n4YrYs5KQe1/bXUJYbZXnFPNWjQu/7k=) 2: B2D0F8D2178311F1B32BFEF6283D8C67.roa (hash: 0l1faSsNOHOUv9dts3Hprtyh48iyjB1f/xwuNggdhEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120D97/10A99A0A178311F1B7AAC0FF273D8C67/Y0nPcXs0CWM10fw5e8UEBkinjw4.crl rsync://rpki.apnic.net/member_repository/A9120D97/10A99A0A178311F1B7AAC0FF273D8C67/Y0nPcXs0CWM10fw5e8UEBkinjw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0nPcXs0CWM10fw5e8UEBkinjw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 09:04:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120D97, serialNumber=6349CF717B34096335D1FC397BC5040648A78F0E Validity Not Before: Jun 5 09:04:02 2026 GMT Not After : Jun 12 09:04:02 2026 GMT Subject: CN=6a229103-4e98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f5:cd:93:ec:0f:fc:bd:ab:61:db:aa:13:f0: 14:33:74:88:15:86:32:69:7b:39:f6:a7:1c:04:86: 38:71:35:55:cb:2e:69:a1:87:21:fa:23:27:c9:7a: e5:2d:75:17:3d:26:c8:16:06:b5:d8:52:fe:41:3f: 9d:05:af:43:1c:c6:d4:65:57:b9:de:38:df:22:30: 37:fb:9f:20:f1:0a:f0:ce:09:ce:26:c5:a7:55:8a: df:b9:d1:e2:79:f5:32:43:fe:1c:5c:e2:0e:2b:79: 0b:99:e8:69:59:cb:c0:30:7c:b4:18:db:34:38:7c: df:3e:46:dc:7d:c0:0d:c8:60:39:38:13:30:20:db: bc:db:1f:24:ec:fb:89:a1:d9:72:0a:93:6b:e8:de: a2:00:c6:68:87:9a:d1:90:dc:06:5b:3e:79:04:ce: 15:fa:e3:5e:15:cb:c6:b9:a8:c4:1f:ed:83:4d:76: fa:35:e1:87:73:b6:4b:6a:32:7a:90:02:d1:a2:e5: c2:3e:a6:a3:dc:67:79:ba:e2:c9:4e:75:8f:95:8a: c5:86:d5:89:32:e4:b6:9b:ba:ce:44:39:34:f8:fd: de:e3:b5:0e:f5:86:d4:56:8f:e1:0e:49:c4:9e:8a: 06:a0:58:de:f5:3a:c2:ee:2f:64:c6:fc:7e:2a:bb: a8:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:69:AA:D2:B8:61:D2:7D:41:1D:A7:78:78:B4:DD:B8:96:9C:66:B6 X509v3 Authority Key Identifier: keyid:63:49:CF:71:7B:34:09:63:35:D1:FC:39:7B:C5:04:06:48:A7:8F:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120D97/10A99A0A178311F1B7AAC0FF273D8C67/Y0nPcXs0CWM10fw5e8UEBkinjw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0nPcXs0CWM10fw5e8UEBkinjw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120D97/10A99A0A178311F1B7AAC0FF273D8C67/Y0nPcXs0CWM10fw5e8UEBkinjw4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:e3:cb:1a:97:3d:aa:10:58:f8:79:40:a0:98:ad:d4:90:17: 77:4f:dd:a1:9b:e5:45:66:0b:24:8c:5e:18:ff:1b:07:b0:b4: be:b9:6a:2d:eb:f2:1d:aa:6f:fc:fd:d4:cd:e4:6b:5f:f4:2b: 30:0c:35:55:47:80:4c:c5:13:b6:c1:6b:fd:f5:44:09:63:c5: 46:2a:cc:d8:cd:f8:7d:e9:8f:f2:64:ca:ba:1c:39:1b:69:8f: c0:25:c3:b6:7e:2e:2f:a7:00:29:9c:19:fa:cd:67:a7:18:91: df:98:72:fe:1f:03:32:b7:6a:6e:90:72:0b:ea:a1:2b:5e:89: 62:98:81:5a:b7:23:a0:60:91:9c:8b:b6:be:ca:54:88:ca:59: 35:a2:ec:f8:fe:0c:d5:ed:8b:f7:07:a3:8f:d5:cc:41:62:11: 08:c0:7a:b1:94:8d:9c:36:f9:fc:4b:ee:96:3b:97:73:da:4b: 3d:59:85:a7:e6:06:4e:0a:6b:5f:12:29:db:55:e9:d6:ae:41: f8:1e:59:08:50:18:c8:c1:7f:6d:0e:e5:1d:a3:86:82:6c:c0: 52:ae:e2:4e:71:50:c4:51:d7:35:fe:ba:ac:bb:05:dd:b1:bb: 08:9f:9b:45:83:1b:36:11:04:af:0a:f3:4c:65:81:40:35:ab: ea:fc:c7:a9 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MEQ5NzExMC8GA1UEBRMoNjM0OUNGNzE3QjM0MDk2MzM1RDFGQzM5N0JDNTA0MDY0 OEE3OEYwRTAeFw0yNjA2MDUwOTA0MDJaFw0yNjA2MTIwOTA0MDJaMBgxFjAUBgNV BAMTDTZhMjI5MTAzLTRlOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC89c2T7A/8vath26oT8BQzdIgVhjJpezn2pxwEhjhxNVXLLmmhhyH6IyfJeuUt dRc9JsgWBrXYUv5BP50Fr0McxtRlV7neON8iMDf7nyDxCvDOCc4mxadVit+50eJ5 9TJD/hxc4g4reQuZ6GlZy8AwfLQY2zQ4fN8+Rtx9wA3IYDk4EzAg27zbHyTs+4mh 2XIKk2vo3qIAxmiHmtGQ3AZbPnkEzhX6414Vy8a5qMQf7YNNdvo14YdztktqMnqQ AtGi5cI+pqPcZ3m64slOdY+VisWG1Yky5Labus5EOTT4/d7jtQ71htRWj+EOScSe igagWN71OsLuL2TG/H4qu6grAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU5Wmq0rhh 0n1BHad4eLTduJacZrYwHwYDVR0jBBgwFoAUY0nPcXs0CWM10fw5e8UEBkinjw4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIwRDk3LzEwQTk5QTBBMTc4 MzExRjFCN0FBQzBGRjI3M0Q4QzY3L1kwblBjWHMwQ1dNMTBmdzVlOFVFQmtpbmp3 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWTBuUGNYczBDV00xMGZ3NWU4VUVCa2luanc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIw RDk3LzEwQTk5QTBBMTc4MzExRjFCN0FBQzBGRjI3M0Q4QzY3L1kwblBjWHMwQ1dN MTBmdzVlOFVFQmtpbmp3NC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAM48salz2qEFj4eUCgmK3UkBd3T92hm+VFZgskjF4Y/xsHsLS+uWot6/Idqm/8 /dTN5Gtf9CswDDVVR4BMxRO2wWv99UQJY8VGKszYzfh96Y/yZMq6HDkbaY/AJcO2 fi4vpwApnBn6zWenGJHfmHL+HwMyt2pukHIL6qErXolimIFatyOgYJGci7a+ylSI ylk1ouz4/gzV7Yv3B6OP1cxBYhEIwHqxlI2cNvn8S+6WO5dz2ks9WYWn5gZOCmtf EinbVenWrkH4HlkIUBjIwX9tDuUdo4aCbMBSruJOcVDEUdc1/rqsuwXdsbsIn5tF gxs2EQSvCvNMZYFANavq/Mep -----END CERTIFICATE-----Generated at Sat Jun 6 19:29:38 2026 by rpki-client