$ rpki-client -vvf rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft File: y1sC0Pxzbip6stKIoPwzFnpLvO0.mft (raw, json) Hash identifier: 0gzvDwxv+2QuvDeQA7u/wQCfX6KiAeAKDUs2j6fK4rE= Subject key identifier: 78:3D:C8:D1:00:B6:6A:CC:E9:70:9C:58:0A:79:76:F2:2A:4F:AD:7A Authority key identifier: CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED Certificate issuer: /CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Certificate serial: 027A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft Manifest number: 0273 Signing time: Tue 05 May 2026 01:58:05 +0000 Manifest this update: Tue 05 May 2026 01:58:05 +0000 Manifest next update: Tue 12 May 2026 01:58:05 +0000 Files and hashes: 1: y1sC0Pxzbip6stKIoPwzFnpLvO0.crl (hash: t8JCDslnPt+M0636Vx3ZRrI7JwBqE6SF6D4ImeUmyv0=) 2: 3E122AE0876011ED84335D46C4F9AE02.roa (hash: lMy4Wa3bZNfZogKIHMCZaFATHLOtC1FrGFIRZTmFan8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 22:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 634 (0x27a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129F1D, serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Validity Not Before: May 5 01:58:05 2026 GMT Not After : May 12 01:58:05 2026 GMT Subject: CN=69f94ead-f6e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d9:33:81:32:41:54:68:7a:43:c1:44:03:78: a2:e4:69:1e:b4:56:63:4c:fb:b7:12:5e:90:fb:a6: 2f:b2:ad:a0:bc:1d:52:fc:e4:3b:b7:b4:91:f3:98: a8:d0:9c:e0:83:45:d6:55:33:4c:dd:78:5e:75:45: 1b:cb:f0:51:77:81:85:82:9a:18:db:87:24:7e:a5: 17:78:2f:0b:bb:e7:f9:5f:6d:34:42:ad:d1:a0:0e: c9:92:81:67:42:7a:b9:02:20:c9:0b:22:00:92:1a: cd:dd:97:f7:16:71:15:fa:cc:86:82:d5:f5:9c:9a: 21:d1:47:0e:d7:ca:3a:b1:e9:79:67:6c:da:46:43: c6:ed:e2:8f:32:b0:fd:0e:21:23:87:e5:64:0f:b7: 06:5b:78:1f:44:00:99:29:7d:9c:2b:cb:a1:c5:70: 47:84:ab:88:37:08:27:0d:32:7b:08:d4:05:33:0f: 9e:0e:89:60:f4:2a:12:8a:7c:83:96:ad:81:76:c3: ea:b8:1b:bd:d6:85:77:48:8b:ce:eb:f4:29:20:06: 35:b3:88:f3:cf:2a:d3:9a:07:50:f2:69:af:00:7b: 5a:ca:df:d3:00:6d:45:31:95:74:03:7a:b4:5a:28: 00:7f:dc:9a:3f:4a:8a:16:3d:c6:42:a5:67:20:1e: 63:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:3D:C8:D1:00:B6:6A:CC:E9:70:9C:58:0A:79:76:F2:2A:4F:AD:7A X509v3 Authority Key Identifier: keyid:CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:2a:ea:d6:6c:54:6a:25:79:d3:af:90:ec:73:ed:47:66:6d: 50:ee:7c:24:1b:a1:50:be:db:c3:cc:14:8c:10:ad:31:8b:f0: af:5f:13:42:32:05:fd:93:ee:76:2c:68:ca:18:18:05:da:05: db:41:0f:0d:27:cc:88:c3:dd:af:b9:d0:98:fc:40:58:3b:f1: 1f:f5:ed:b4:12:34:40:8e:3b:37:a8:6e:f3:78:fc:68:ff:65: 30:70:37:3b:1a:4c:40:7d:a0:3d:75:d2:88:32:b4:0f:6b:44: c3:bc:e1:89:2c:82:7d:e2:d8:ff:fe:3b:d0:0c:c1:33:7e:36: c6:5a:f1:8b:96:06:b7:09:56:05:62:6f:51:54:5f:f3:0d:52: f7:b5:5d:34:1b:cb:25:69:31:00:fc:b4:c6:5a:42:8c:b7:bf: ef:56:c7:5d:d8:cb:2f:38:89:0e:d2:d5:0a:6d:47:a2:86:86: 55:23:da:ef:41:61:e1:48:8c:f3:f4:72:d2:03:89:67:aa:41: b0:0e:ed:11:9e:a6:01:b5:5a:8f:52:33:7c:6b:df:e0:50:11: b1:3d:d2:db:dc:a3:34:46:3f:34:c6:21:eb:df:4f:db:80:56: ce:dd:a6:38:9b:36:5b:c9:34:98:6e:9d:a8:68:50:3f:ba:0c: e9:1c:16:a7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlGMUQxMTAvBgNVBAUTKENCNUIwMkQwRkM3MzZFMkE3QUIyRDI4OEEwRkMzMzE2 N0E0QkJDRUQwHhcNMjYwNTA1MDE1ODA1WhcNMjYwNTEyMDE1ODA1WjAYMRYwFAYD VQQDEw02OWY5NGVhZC1mNmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9kzgTJBVGh6Q8FEA3ii5GketFZjTPu3El6Q+6Yvsq2gvB1S/OQ7t7SR85io 0Jzgg0XWVTNM3XhedUUby/BRd4GFgpoY24ckfqUXeC8Lu+f5X200Qq3RoA7JkoFn Qnq5AiDJCyIAkhrN3Zf3FnEV+syGgtX1nJoh0UcO18o6sel5Z2zaRkPG7eKPMrD9 DiEjh+VkD7cGW3gfRACZKX2cK8uhxXBHhKuINwgnDTJ7CNQFMw+eDolg9CoSinyD lq2BdsPquBu91oV3SIvO6/QpIAY1s4jzzyrTmgdQ8mmvAHtayt/TAG1FMZV0A3q0 WigAf9yaP0qKFj3GQqVnIB5jhwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHg9yNEA tmrM6XCcWAp5dvIqT616MB8GA1UdIwQYMBaAFMtbAtD8c24qerLSiKD8MxZ6S7zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUYxRC8yMUNBQkE1Qzg3 NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJpcDZzdEtJb1B3ekZucEx2 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxc0MwUHh6YmlwNnN0S0lvUHd6Rm5wTHZPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUYxRC8yMUNBQkE1Qzg3NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJp cDZzdEtJb1B3ekZucEx2TzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPirq1mxUaiV506+Q7HPtR2ZtUO58JBuhUL7bw8wUjBCtMYvwr18TQjIF/ZPu dixoyhgYBdoF20EPDSfMiMPdr7nQmPxAWDvxH/XttBI0QI47N6hu83j8aP9lMHA3 OxpMQH2gPXXSiDK0D2tEw7zhiSyCfeLY//470AzBM342xlrxi5YGtwlWBWJvUVRf 8w1S97VdNBvLJWkxAPy0xlpCjLe/71bHXdjLLziJDtLVCm1HooaGVSPa70Fh4UiM 8/Ry0gOJZ6pBsA7tEZ6mAbVaj1IzfGvf4FARsT3S29yjNEY/NMYh699P24BWzt2m OJs2W8k0mG6dqGhQP7oM6RwWpw== -----END CERTIFICATE-----Generated at Tue May 5 05:47:49 2026 by rpki-client