$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft File: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft (raw, json) Hash identifier: RSk6EFNpCDilZJOtlYIa30kSW2Zn7WT0n/nKi5H/BKc= Subject key identifier: 2D:13:19:C0:B5:37:4E:7B:BB:EE:2D:5C:35:CD:2F:DF:9A:28:D9:A0 Authority key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E Certificate issuer: /CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Certificate serial: 01F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft Manifest number: 01D3 Signing time: Thu 21 May 2026 03:46:39 +0000 Manifest this update: Thu 21 May 2026 03:46:38 +0000 Manifest next update: Thu 28 May 2026 03:46:38 +0000 Files and hashes: 1: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl (hash: zNCjs1yybEsfdpxNHHLlytdMzW1XGzzqaKqW0Bglnq4=) 2: 210A4EBAC0F211EE99FFBA21C4F9AE02.roa (hash: u48zpmX4MX32BsS3SWmiT1sLqFE6P1rFb2rRJj5ZiBw=) 3: 813EDCA4137E11EF9969A86BC4F9AE02.roa (hash: MD6k5wA0AqG/dEECYzynxqcMbFFUqeKVXvzHIx4QFZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 505 (0x1f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C33, serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Validity Not Before: May 21 03:46:38 2026 GMT Not After : May 28 03:46:38 2026 GMT Subject: CN=6a0e801e-0a60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:63:22:76:66:90:57:bb:61:d0:e0:02:bc:b6: 49:0b:80:b5:bb:86:98:39:59:2e:c6:4f:4c:d1:fe: a3:84:75:29:6a:69:52:40:45:58:ba:0f:cf:25:a2: 67:04:fc:78:12:d0:ba:c0:d7:59:d1:04:2e:fa:5d: 3c:24:78:95:c2:a0:81:31:5b:c6:8c:7f:de:3a:cd: 69:9c:c8:de:bd:bf:b3:57:d3:9d:3b:d4:c8:60:a2: 4f:d7:6e:90:97:e9:7e:3a:1d:7b:f8:9a:51:89:75: ea:6b:bb:0b:9e:19:ad:08:72:c4:dd:70:f6:33:49: e5:11:c5:85:89:a2:2f:b7:b3:3c:7f:4c:9c:d3:6a: ea:6c:cd:ee:39:01:47:14:43:f7:67:0c:f8:d3:1a: 45:50:d9:24:f9:b7:e4:e3:7f:81:61:09:26:e0:d7: f6:66:84:29:29:8b:dc:6e:a7:c8:f6:80:05:ec:3d: d2:83:b8:21:ea:8a:e9:e4:b7:6d:96:91:86:16:ea: 79:52:36:1c:45:bb:73:7b:94:95:39:bd:d7:54:f8: 9a:c0:b3:d3:58:8b:eb:72:69:83:f6:92:8d:18:c7: d0:dd:c2:88:c8:6b:6d:da:89:91:80:38:3b:af:8d: 5f:e7:09:33:18:12:69:64:c8:d4:f4:7f:4a:f2:db: 1d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:13:19:C0:B5:37:4E:7B:BB:EE:2D:5C:35:CD:2F:DF:9A:28:D9:A0 X509v3 Authority Key Identifier: keyid:AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:65:58:6a:87:28:cc:47:76:69:9b:e2:b3:7a:8b:eb:ff:aa: 86:3a:8a:80:ab:c7:28:93:3b:e8:46:6e:92:cd:08:96:96:8c: 96:81:6f:ba:f2:ad:46:92:43:d5:00:aa:65:af:f8:9b:e2:93: 67:30:20:da:b2:8e:0b:9d:48:ba:9e:2d:73:c4:c6:9e:2d:82: 7f:86:8f:d8:1b:60:8e:ae:13:7f:56:e2:e4:b9:89:76:03:61: c6:32:60:34:31:06:58:89:01:8c:ff:8a:78:0f:ac:ad:34:ce: e0:dd:38:13:1d:d7:07:3b:29:1b:95:3b:4f:28:63:8c:8a:ca: 9b:0e:68:19:ad:de:95:5a:4a:77:be:f4:19:cd:7e:e3:3c:41: 8a:3c:4f:c1:13:e3:cd:9c:00:44:ce:b5:ba:24:45:6f:aa:42: 36:26:2b:37:fa:eb:96:15:8d:8a:9f:9a:80:a0:30:df:76:b9: 72:6c:39:e2:5c:28:0e:f5:c1:73:30:45:7e:f1:f5:70:17:6b: cb:bb:9d:a6:08:96:6f:75:9e:05:fd:e3:5a:a0:95:a7:74:f3: 4c:48:ee:cc:27:47:d9:5b:d3:83:9a:ce:a1:76:db:af:d1:97: 78:c6:ff:3c:eb:aa:f3:a3:0f:36:19:03:2b:1c:8f:a8:63:23: 2a:f1:b2:09 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDMzMxMTAvBgNVBAUTKEFGMkVFMDQ0MTIzNTZBQkZEOEUxOUFFMkMxQjIyQTcz N0NERjVFOUUwHhcNMjYwNTIxMDM0NjM4WhcNMjYwNTI4MDM0NjM4WjAYMRYwFAYD VQQDEw02YTBlODAxZS0wYTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2MidmaQV7th0OACvLZJC4C1u4aYOVkuxk9M0f6jhHUpamlSQEVYug/PJaJn BPx4EtC6wNdZ0QQu+l08JHiVwqCBMVvGjH/eOs1pnMjevb+zV9OdO9TIYKJP126Q l+l+Oh17+JpRiXXqa7sLnhmtCHLE3XD2M0nlEcWFiaIvt7M8f0yc02rqbM3uOQFH FEP3Zwz40xpFUNkk+bfk43+BYQkm4Nf2ZoQpKYvcbqfI9oAF7D3Sg7gh6orp5Ldt lpGGFup5UjYcRbtze5SVOb3XVPiawLPTWIvrcmmD9pKNGMfQ3cKIyGtt2omRgDg7 r41f5wkzGBJpZMjU9H9K8tsdzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC0TGcC1 N057u+4tXDXNL9+aKNmgMB8GA1UdIwQYMBaAFK8u4EQSNWq/2OGa4sGyKnN8316e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEMzMy85NTZDQjA4Njk4 MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFyX1k0WnJpd2JJcWMzemZY cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J5N2dSQkkxYXJfWTRacml3YklxYzN6ZlhwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEMzMy85NTZDQjA4Njk4MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFy X1k0WnJpd2JJcWMzemZYcDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABGVYaocozEd2aZvis3qL6/+qhjqKgKvHKJM76EZuks0IlpaMloFvuvKtRpJD 1QCqZa/4m+KTZzAg2rKOC51Iup4tc8TGni2Cf4aP2Btgjq4Tf1bi5LmJdgNhxjJg NDEGWIkBjP+KeA+srTTO4N04Ex3XBzspG5U7TyhjjIrKmw5oGa3elVpKd770Gc1+ 4zxBijxPwRPjzZwARM61uiRFb6pCNiYrN/rrlhWNip+agKAw33a5cmw54lwoDvXB czBFfvH1cBdry7udpgiWb3WeBf3jWqCVp3TzTEjuzCdH2VvTg5rOoXbbr9GXeMb/ POuq86MPNhkDKxyPqGMjKvGyCQ== -----END CERTIFICATE-----Generated at Thu May 21 09:39:25 2026 by rpki-client