$ rpki-client -vvf rpki.apnic.net/member_repository/A9120D97/10A99A0A178311F1B7AAC0FF273D8C67/Y0nPcXs0CWM10fw5e8UEBkinjw4.mft File: Y0nPcXs0CWM10fw5e8UEBkinjw4.mft (raw, json) Hash identifier: 4fz77pPto5c3BzjGqcXVF//sHoXOX3SA3whe8hu81vo= Subject key identifier: DB:5B:4A:D4:79:D5:6D:20:6F:AA:00:0E:1E:C9:9E:E3:1B:8A:A4:A4 Authority key identifier: 63:49:CF:71:7B:34:09:63:35:D1:FC:39:7B:C5:04:06:48:A7:8F:0E Certificate issuer: /CN=A9120D97/serialNumber=6349CF717B34096335D1FC397BC5040648A78F0E Certificate serial: 05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0nPcXs0CWM10fw5e8UEBkinjw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120D97/10A99A0A178311F1B7AAC0FF273D8C67/Y0nPcXs0CWM10fw5e8UEBkinjw4.mft Manifest number: 04 Signing time: Sat 07 Mar 2026 08:25:56 +0000 Manifest this update: Sat 07 Mar 2026 08:25:56 +0000 Manifest next update: Sat 14 Mar 2026 08:25:56 +0000 Files and hashes: 1: Y0nPcXs0CWM10fw5e8UEBkinjw4.crl (hash: aPnh5X2HVPKK/sbGMjcg5ZMd2alGrdb8tAUZ88zRgeo=) 2: B2D0F8D2178311F1B32BFEF6283D8C67.roa (hash: 0l1faSsNOHOUv9dts3Hprtyh48iyjB1f/xwuNggdhEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120D97/10A99A0A178311F1B7AAC0FF273D8C67/Y0nPcXs0CWM10fw5e8UEBkinjw4.crl rsync://rpki.apnic.net/member_repository/A9120D97/10A99A0A178311F1B7AAC0FF273D8C67/Y0nPcXs0CWM10fw5e8UEBkinjw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0nPcXs0CWM10fw5e8UEBkinjw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 08:25:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120D97, serialNumber=6349CF717B34096335D1FC397BC5040648A78F0E Validity Not Before: Mar 7 08:25:56 2026 GMT Not After : Mar 14 08:25:56 2026 GMT Subject: CN=69abe114-ccc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:12:9f:34:e6:3f:f9:e0:fe:9e:95:7f:16:77: 04:ba:1a:9c:16:d4:59:4a:47:02:af:a6:4c:a9:53: 7e:e0:b8:20:97:78:60:d8:b9:51:4e:f5:26:1d:2d: ee:3c:31:fd:ea:fe:c9:f7:16:49:25:7c:66:9b:b8: 15:38:0f:71:78:82:cb:cf:76:68:ad:ce:f7:ee:15: d9:93:cc:34:41:8c:54:4a:3c:02:58:c5:18:a7:24: 62:cd:f7:b1:b9:1d:f0:04:b3:c0:e4:4a:55:60:75: 9d:0a:48:ee:4c:0b:36:18:ed:af:fa:90:e1:c4:f5: 4b:65:53:fa:a0:42:79:84:b0:87:bd:24:ca:40:8c: 31:f9:9f:4e:63:1b:b4:92:94:bf:de:89:44:b7:4d: 2d:ce:7a:8e:73:07:cb:58:b1:c0:21:d2:70:fd:87: 6e:0b:03:ae:52:1d:2f:d4:f9:4e:cf:3a:2e:86:ec: 68:eb:17:5e:05:66:58:d1:8c:3a:8d:cc:95:9e:d8: 8b:d2:83:27:30:fa:92:fe:5d:88:dd:58:10:d6:62: 82:c3:81:cf:5f:f4:c1:ec:a1:3a:46:70:99:07:dc: 9b:72:2c:af:d6:4d:6b:a2:f9:20:f6:d9:d9:bb:f0: 6f:2d:53:47:49:0a:56:41:df:f5:1e:78:d2:bd:a4: 0c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:5B:4A:D4:79:D5:6D:20:6F:AA:00:0E:1E:C9:9E:E3:1B:8A:A4:A4 X509v3 Authority Key Identifier: keyid:63:49:CF:71:7B:34:09:63:35:D1:FC:39:7B:C5:04:06:48:A7:8F:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120D97/10A99A0A178311F1B7AAC0FF273D8C67/Y0nPcXs0CWM10fw5e8UEBkinjw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0nPcXs0CWM10fw5e8UEBkinjw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120D97/10A99A0A178311F1B7AAC0FF273D8C67/Y0nPcXs0CWM10fw5e8UEBkinjw4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:55:90:82:89:95:04:09:9b:dd:f4:98:9f:ae:12:ce:87:c3: a5:f3:04:74:f7:56:5b:f1:b0:02:26:70:a9:26:dc:58:31:48: 91:f2:f7:fa:6d:2c:15:61:df:3a:c7:f3:21:3c:46:16:a3:8d: c2:43:56:54:74:e9:13:71:25:dc:4a:0c:9a:03:f0:b9:a3:7c: b9:5e:b0:3c:ed:bc:ea:7c:7e:a2:ac:e7:75:f2:f8:07:df:4d: 57:5b:af:23:23:16:c3:87:24:e9:2c:fd:78:84:df:d1:74:a1: 89:d5:93:ee:d1:e0:f9:89:9f:61:be:bf:0a:69:2e:28:cf:69: 83:a2:32:67:af:23:17:21:02:fb:50:da:9f:7c:e6:b5:b1:a5: 82:4d:56:67:87:31:79:ce:0f:1e:de:f8:97:ef:ec:f0:88:ed: d8:f2:fa:85:4c:bd:fa:df:38:3c:e6:33:e9:d4:84:11:76:6d: 99:00:15:3f:9f:d2:5d:cb:0c:20:52:8d:d6:36:54:96:f8:12: b7:3f:25:8a:5c:9c:de:27:cc:3c:51:ff:8b:a5:65:b3:5b:c8: 5d:17:2a:7e:61:c1:4d:6d:40:dd:a4:2f:d8:42:4e:89:f3:e3: 76:78:c4:65:7f:d1:e3:cd:6b:da:f9:91:3c:74:a8:64:dc:48: bc:e9:1f:74 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MEQ5NzExMC8GA1UEBRMoNjM0OUNGNzE3QjM0MDk2MzM1RDFGQzM5N0JDNTA0MDY0 OEE3OEYwRTAeFw0yNjAzMDcwODI1NTZaFw0yNjAzMTQwODI1NTZaMBgxFjAUBgNV BAMTDTY5YWJlMTE0LWNjYzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTEp805j/54P6elX8WdwS6GpwW1FlKRwKvpkypU37guCCXeGDYuVFO9SYdLe48 Mf3q/sn3FkklfGabuBU4D3F4gsvPdmitzvfuFdmTzDRBjFRKPAJYxRinJGLN97G5 HfAEs8DkSlVgdZ0KSO5MCzYY7a/6kOHE9UtlU/qgQnmEsIe9JMpAjDH5n05jG7SS lL/eiUS3TS3Oeo5zB8tYscAh0nD9h24LA65SHS/U+U7POi6G7GjrF14FZljRjDqN zJWe2IvSgycw+pL+XYjdWBDWYoLDgc9f9MHsoTpGcJkH3JtyLK/WTWui+SD22dm7 8G8tU0dJClZB3/UeeNK9pAxrAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU21tK1HnV bSBvqgAOHsme4xuKpKQwHwYDVR0jBBgwFoAUY0nPcXs0CWM10fw5e8UEBkinjw4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIwRDk3LzEwQTk5QTBBMTc4 MzExRjFCN0FBQzBGRjI3M0Q4QzY3L1kwblBjWHMwQ1dNMTBmdzVlOFVFQmtpbmp3 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWTBuUGNYczBDV00xMGZ3NWU4VUVCa2luanc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIw RDk3LzEwQTk5QTBBMTc4MzExRjFCN0FBQzBGRjI3M0Q4QzY3L1kwblBjWHMwQ1dN MTBmdzVlOFVFQmtpbmp3NC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBQVZCCiZUECZvd9JifrhLOh8Ol8wR091Zb8bACJnCpJtxYMUiR8vf6bSwVYd86 x/MhPEYWo43CQ1ZUdOkTcSXcSgyaA/C5o3y5XrA87bzqfH6irOd18vgH301XW68j IxbDhyTpLP14hN/RdKGJ1ZPu0eD5iZ9hvr8KaS4oz2mDojJnryMXIQL7UNqffOa1 saWCTVZnhzF5zg8e3viX7+zwiO3Y8vqFTL363zg85jPp1IQRdm2ZABU/n9Jdywwg Uo3WNlSW+BK3PyWKXJzeJ8w8Uf+LpWWzW8hdFyp+YcFNbUDdpC/YQk6J8+N2eMRl f9HjzWva+ZE8dKhk3Ei86R90 -----END CERTIFICATE-----Generated at Sun Mar 8 01:27:49 2026 by rpki-client