$ rpki-client -vvf rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft File: y1sC0Pxzbip6stKIoPwzFnpLvO0.mft (raw, json) Hash identifier: giNGKULLmQF3HcXDSjX3/J3x7AyCWTmHlTRhH9RMr0Y= Subject key identifier: 74:B2:2D:C8:F0:67:D2:B4:62:2F:05:B1:D1:D0:54:BC:93:6A:94:DC Authority key identifier: CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED Certificate issuer: /CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Certificate serial: 0262 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft Manifest number: 025B Signing time: Thu 19 Mar 2026 01:28:42 +0000 Manifest this update: Thu 19 Mar 2026 01:28:41 +0000 Manifest next update: Thu 26 Mar 2026 01:28:41 +0000 Files and hashes: 1: y1sC0Pxzbip6stKIoPwzFnpLvO0.crl (hash: 0cVgPOB5Fw1TaSzu7RM9HDMbMXXclDIzb7x/QTCb3Gs=) 2: 3E122AE0876011ED84335D46C4F9AE02.roa (hash: lMy4Wa3bZNfZogKIHMCZaFATHLOtC1FrGFIRZTmFan8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 01:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 610 (0x262) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129F1D, serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Validity Not Before: Mar 19 01:28:41 2026 GMT Not After : Mar 26 01:28:41 2026 GMT Subject: CN=69bb514a-4436 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:4b:59:b5:da:ae:4c:d9:b3:9d:1c:7f:98:c0: 76:04:a5:44:52:a8:0d:eb:6d:00:ea:8c:d3:30:ea: b3:b2:20:25:dc:55:06:bb:16:ef:ef:13:0d:52:a3: c7:45:cb:e8:21:49:fa:47:ab:b6:1e:cf:ba:eb:7d: 9e:d6:b8:88:a3:54:93:ad:09:67:e0:fa:21:ad:88: ab:36:14:f6:01:55:ec:92:32:19:03:cb:eb:f4:4d: 5e:8e:da:6c:2a:f4:ee:63:79:bb:d7:86:76:c4:c5: d6:e5:23:a2:d4:d9:21:04:c6:44:aa:1b:33:61:95: d4:e0:cc:c6:9d:01:3b:83:da:8f:82:52:5a:76:f3: 22:92:68:12:5b:00:96:3a:a3:66:4a:8e:14:1f:d1: 23:df:5f:da:14:25:d9:37:ef:d0:cd:a3:f3:db:99: 3e:f9:ff:da:74:a8:0a:8c:b1:ae:51:f7:6a:db:46: ba:bf:17:24:e4:b1:ab:8b:2e:03:dc:40:70:0e:93: bf:de:c0:c4:44:e3:47:0e:e5:fc:5c:76:5d:4c:df: d6:07:df:8e:26:9b:64:8e:77:16:af:67:b0:34:99: 24:7c:1c:73:f2:f7:42:41:b9:4b:df:4d:c1:fc:f0: 5f:cc:c9:5f:1a:a5:c8:44:a6:13:0c:f3:bf:b1:45: b2:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:B2:2D:C8:F0:67:D2:B4:62:2F:05:B1:D1:D0:54:BC:93:6A:94:DC X509v3 Authority Key Identifier: keyid:CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:d0:bf:14:ec:6c:77:0c:1f:74:db:de:f7:97:8f:0a:46:61: 46:f0:31:cb:44:c4:e4:7f:9f:8b:0a:df:44:a1:da:97:39:cb: c2:9b:c8:7b:56:ab:43:77:13:c0:12:57:0b:77:d8:60:b4:fa: bd:db:8e:67:53:88:07:93:25:6e:fe:2c:1f:28:f4:82:c1:e0: 7a:ed:75:7b:ad:17:28:35:b6:17:0c:65:32:6b:2f:ba:b0:c2: 62:ec:a2:72:9f:35:b1:53:11:40:31:d9:56:f3:6e:0b:f0:a7: 24:36:2c:93:5e:57:e3:ff:55:8a:7a:bf:ee:97:19:51:de:f8: 05:31:00:2d:f9:9d:15:fa:51:47:e3:9b:7f:6a:90:a3:44:51: 07:22:3b:38:51:36:c4:1b:3e:02:4e:ed:de:80:66:1f:69:22: 8d:26:1d:c9:1f:a8:b5:68:13:58:83:dc:6e:98:2d:e4:ab:9e: 67:fe:f3:81:37:19:a1:43:9e:c7:8b:29:ec:98:06:33:d6:01: 68:da:1d:33:34:f2:70:27:44:f3:c2:54:60:ed:a4:f8:93:dd: ac:23:81:ed:09:d7:ba:af:d9:e7:a3:a5:af:37:6f:b3:4d:46: fc:e6:5c:54:c0:95:40:62:4e:3e:41:e4:39:06:01:36:09:df: 36:c7:3f:66 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlGMUQxMTAvBgNVBAUTKENCNUIwMkQwRkM3MzZFMkE3QUIyRDI4OEEwRkMzMzE2 N0E0QkJDRUQwHhcNMjYwMzE5MDEyODQxWhcNMjYwMzI2MDEyODQxWjAYMRYwFAYD VQQDEw02OWJiNTE0YS00NDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkktZtdquTNmznRx/mMB2BKVEUqgN620A6ozTMOqzsiAl3FUGuxbv7xMNUqPH RcvoIUn6R6u2Hs+6632e1riIo1STrQln4PohrYirNhT2AVXskjIZA8vr9E1ejtps KvTuY3m714Z2xMXW5SOi1NkhBMZEqhszYZXU4MzGnQE7g9qPglJadvMikmgSWwCW OqNmSo4UH9Ej31/aFCXZN+/QzaPz25k++f/adKgKjLGuUfdq20a6vxck5LGriy4D 3EBwDpO/3sDERONHDuX8XHZdTN/WB9+OJptkjncWr2ewNJkkfBxz8vdCQblL303B /PBfzMlfGqXIRKYTDPO/sUWyCwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHSyLcjw Z9K0Yi8FsdHQVLyTapTcMB8GA1UdIwQYMBaAFMtbAtD8c24qerLSiKD8MxZ6S7zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUYxRC8yMUNBQkE1Qzg3 NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJpcDZzdEtJb1B3ekZucEx2 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxc0MwUHh6YmlwNnN0S0lvUHd6Rm5wTHZPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUYxRC8yMUNBQkE1Qzg3NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJp cDZzdEtJb1B3ekZucEx2TzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACNC/FOxsdwwfdNve95ePCkZhRvAxy0TE5H+fiwrfRKHalznLwpvIe1arQ3cT wBJXC3fYYLT6vduOZ1OIB5Mlbv4sHyj0gsHgeu11e60XKDW2FwxlMmsvurDCYuyi cp81sVMRQDHZVvNuC/CnJDYsk15X4/9Vinq/7pcZUd74BTEALfmdFfpRR+Obf2qQ o0RRByI7OFE2xBs+Ak7t3oBmH2kijSYdyR+otWgTWIPcbpgt5KueZ/7zgTcZoUOe x4sp7JgGM9YBaNodMzTycCdE88JUYO2k+JPdrCOB7QnXuq/Z56Olrzdvs01G/OZc VMCVQGJOPkHkOQYBNgnfNsc/Zg== -----END CERTIFICATE-----Generated at Thu Mar 19 15:48:45 2026 by rpki-client