$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft File: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft (raw, json) Hash identifier: u4jsEeZsWuBFixhj0PCaDbYXFW2kBsvwtohN/QYev1w= Subject key identifier: 8A:60:8C:28:BB:7B:B2:D3:B2:B4:CC:5C:57:B8:84:A1:81:77:2E:24 Authority key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E Certificate issuer: /CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Certificate serial: 01E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft Manifest number: 01BC Signing time: Sun 05 Apr 2026 03:28:39 +0000 Manifest this update: Sun 05 Apr 2026 03:28:39 +0000 Manifest next update: Sun 12 Apr 2026 03:28:39 +0000 Files and hashes: 1: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl (hash: 3eQfjR/3L9QtX0yrVf5UJGq4kJMm7Bst1/9zjUs7qLE=) 2: 210A4EBAC0F211EE99FFBA21C4F9AE02.roa (hash: u48zpmX4MX32BsS3SWmiT1sLqFE6P1rFb2rRJj5ZiBw=) 3: 813EDCA4137E11EF9969A86BC4F9AE02.roa (hash: MD6k5wA0AqG/dEECYzynxqcMbFFUqeKVXvzHIx4QFZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:28:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 482 (0x1e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C33, serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Validity Not Before: Apr 5 03:28:39 2026 GMT Not After : Apr 12 03:28:39 2026 GMT Subject: CN=69d1d6e7-9fb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7c:16:4b:3f:2c:46:d3:e3:7d:3a:a2:a6:2b: 60:82:30:e9:7b:26:74:c0:bf:c6:4d:99:d0:73:12: 85:d3:89:95:b6:d3:60:0f:01:61:2e:08:7f:b4:5e: 0d:22:33:de:e0:48:a1:fa:20:4d:13:83:e5:4a:5e: 8b:f2:b2:db:54:46:90:0e:f1:af:44:9f:63:3f:d7: 1c:2f:28:ec:94:08:b1:fa:6d:39:25:b6:8b:7f:bd: 73:3b:be:bf:91:82:72:0b:9e:63:23:b4:0d:f7:76: 06:0f:03:d7:2e:30:4c:d7:1d:d5:b3:b5:42:b9:8d: 0a:58:d2:d6:5f:5a:ec:fe:8c:8a:67:b1:99:43:37: 4b:ad:34:6c:07:a5:ac:b4:5c:75:c6:a2:c4:61:45: a7:7b:09:de:b6:91:62:17:09:20:79:28:9f:d0:77: 72:9f:a7:3b:cf:e8:ea:a6:0a:0b:59:60:1c:94:1c: 0b:e8:a4:da:4e:0d:36:63:15:40:00:17:c2:14:6a: 29:52:98:0e:94:57:aa:87:29:fa:93:3a:d7:aa:76: ba:ce:be:2e:ed:0a:95:20:3c:4d:9d:e4:34:62:6a: cc:79:7d:73:cf:22:c1:dc:2c:45:33:9a:f8:ab:df: bd:f4:b8:d3:9e:fd:ac:ca:5f:e5:43:24:32:5e:5e: a6:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:60:8C:28:BB:7B:B2:D3:B2:B4:CC:5C:57:B8:84:A1:81:77:2E:24 X509v3 Authority Key Identifier: keyid:AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:d5:17:27:ec:fc:8e:91:ba:03:f7:d3:a1:ff:75:a4:92:16: c1:21:ab:76:18:30:61:57:ef:50:18:d4:8a:d3:34:e6:11:14: 31:57:9f:33:b1:40:58:b4:9f:1b:d1:bd:aa:bf:56:59:6c:e5: 62:40:52:9f:59:c1:1a:f7:9f:a7:59:81:17:58:b5:bd:70:5a: b4:8d:d7:bd:cf:b7:ca:9a:e2:06:29:99:8e:4c:6a:d8:c5:19: 95:1f:04:13:93:4c:1f:71:6d:ae:c8:52:82:32:40:08:e4:c9: 39:e9:32:95:19:d7:22:06:cd:24:7e:f5:04:10:0d:07:d5:fc: b1:e9:8d:59:4f:84:20:81:07:39:f3:bf:01:17:b6:b0:3d:66: a5:1d:ab:5a:8d:33:ce:fa:14:34:93:27:2a:03:3d:d7:7b:31: c2:6e:08:27:df:92:12:26:b4:cd:a8:67:be:ae:ec:b7:c4:e5: f2:c8:7f:0b:df:b6:17:84:4f:df:fd:e0:49:93:c7:f7:ad:a1: 8a:60:54:b6:82:05:75:f5:df:47:f6:90:37:f8:d0:25:ab:94: 8e:74:93:90:32:25:7b:ec:0f:0f:38:ee:0e:c8:a3:f8:88:31: c6:63:d5:ea:0d:d7:cd:85:fb:02:04:f0:2c:6c:cb:c7:cf:cb: 35:db:98:b7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDMzMxMTAvBgNVBAUTKEFGMkVFMDQ0MTIzNTZBQkZEOEUxOUFFMkMxQjIyQTcz N0NERjVFOUUwHhcNMjYwNDA1MDMyODM5WhcNMjYwNDEyMDMyODM5WjAYMRYwFAYD VQQDEw02OWQxZDZlNy05ZmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA03wWSz8sRtPjfTqipitggjDpeyZ0wL/GTZnQcxKF04mVttNgDwFhLgh/tF4N IjPe4Eih+iBNE4PlSl6L8rLbVEaQDvGvRJ9jP9ccLyjslAix+m05JbaLf71zO76/ kYJyC55jI7QN93YGDwPXLjBM1x3Vs7VCuY0KWNLWX1rs/oyKZ7GZQzdLrTRsB6Ws tFx1xqLEYUWnewnetpFiFwkgeSif0Hdyn6c7z+jqpgoLWWAclBwL6KTaTg02YxVA ABfCFGopUpgOlFeqhyn6kzrXqna6zr4u7QqVIDxNneQ0YmrMeX1zzyLB3CxFM5r4 q9+99LjTnv2syl/lQyQyXl6mHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIpgjCi7 e7LTsrTMXFe4hKGBdy4kMB8GA1UdIwQYMBaAFK8u4EQSNWq/2OGa4sGyKnN8316e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEMzMy85NTZDQjA4Njk4 MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFyX1k0WnJpd2JJcWMzemZY cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J5N2dSQkkxYXJfWTRacml3YklxYzN6ZlhwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEMzMy85NTZDQjA4Njk4MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFy X1k0WnJpd2JJcWMzemZYcDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALdUXJ+z8jpG6A/fTof91pJIWwSGrdhgwYVfvUBjUitM05hEUMVefM7FAWLSf G9G9qr9WWWzlYkBSn1nBGvefp1mBF1i1vXBatI3Xvc+3ypriBimZjkxq2MUZlR8E E5NMH3FtrshSgjJACOTJOekylRnXIgbNJH71BBANB9X8semNWU+EIIEHOfO/ARe2 sD1mpR2rWo0zzvoUNJMnKgM913sxwm4IJ9+SEia0zahnvq7st8Tl8sh/C9+2F4RP 3/3gSZPH962himBUtoIFdfXfR/aQN/jQJauUjnSTkDIle+wPDzjuDsij+IgxxmPV 6g3XzYX7AgTwLGzLx8/LNduYtw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:33:14 2026 by rpki-client