$ rpki-client -vvf rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft File: y1sC0Pxzbip6stKIoPwzFnpLvO0.mft (raw, json) Hash identifier: 8P3SnfStpPjDpGlPnWaROicRo4UIL3Xf0hSAkgSq9w0= Subject key identifier: D3:36:51:38:4F:61:25:41:E9:40:90:6F:3D:24:A1:29:BE:0B:FE:93 Authority key identifier: CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED Certificate issuer: /CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Certificate serial: 0291 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft Manifest number: 028A Signing time: Sun 21 Jun 2026 01:50:00 +0000 Manifest this update: Sun 21 Jun 2026 01:50:00 +0000 Manifest next update: Sun 28 Jun 2026 01:50:00 +0000 Files and hashes: 1: y1sC0Pxzbip6stKIoPwzFnpLvO0.crl (hash: mr6oQ5KoFAOL6RR8o8O2mc35DgM3EgL+yndeWtzyPgQ=) 2: 3E122AE0876011ED84335D46C4F9AE02.roa (hash: lMy4Wa3bZNfZogKIHMCZaFATHLOtC1FrGFIRZTmFan8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Jun 2026 01:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 657 (0x291) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129F1D, serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Validity Not Before: Jun 21 01:50:00 2026 GMT Not After : Jun 28 01:50:00 2026 GMT Subject: CN=6a374348-ed4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:bf:1a:1e:5f:7d:10:3d:d8:b3:f6:99:16:96: 56:b4:8f:f2:8a:14:bf:16:f1:cc:78:6f:22:94:91: 91:78:1e:25:e2:0f:74:56:29:42:d0:c4:ba:cd:5d: 89:a7:cc:81:05:51:7c:05:a7:e0:85:fb:c8:09:8f: 7d:39:05:2e:9e:6f:df:02:e0:34:58:f9:c9:eb:11: 5a:73:d2:b5:a3:c1:42:05:7a:ea:fe:41:0c:0a:c7: 97:ca:78:e5:3e:e4:36:2d:f1:98:cd:44:58:cc:e1: 75:71:59:87:50:3c:06:80:e9:68:d2:f0:1c:86:29: 30:90:cc:40:62:1c:01:90:f7:4f:56:76:07:61:4b: c8:70:73:3e:f4:3c:12:dd:d6:9d:18:43:f2:a3:24: 4d:94:8d:ed:bc:f6:13:73:22:20:9a:46:35:0a:f7: 53:83:da:ed:74:ef:bb:fb:5a:4f:3d:70:9c:b0:9e: 80:16:c9:d2:3f:f0:db:b8:02:37:cd:07:f8:d8:98: 2d:80:e6:7d:03:2b:29:db:b8:7e:4c:7d:a9:54:93: c3:f4:6f:e7:65:10:84:b7:c1:db:87:66:0a:71:7d: 2e:5d:97:99:d7:ce:c6:05:aa:8d:55:a2:c1:22:3e: 11:81:ef:af:a9:e7:8a:18:81:73:72:78:88:31:cb: 95:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:36:51:38:4F:61:25:41:E9:40:90:6F:3D:24:A1:29:BE:0B:FE:93 X509v3 Authority Key Identifier: keyid:CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:30:3d:e3:0f:4a:b6:a8:17:16:d8:06:4d:11:b3:d8:90:08: 8c:b1:30:14:45:e0:b5:a0:f6:99:6d:2b:df:e7:d6:8c:5d:f7: e4:0b:e2:3a:37:8b:d1:35:40:54:1b:f8:1e:f6:e5:b3:34:c5: d2:7f:55:06:81:e0:9d:19:8d:60:f9:30:2c:14:d7:63:27:4f: 41:78:d5:a2:7c:47:71:99:4f:56:8b:60:02:27:bc:ae:d6:83: f1:33:bd:7a:3d:82:ec:02:78:ab:b8:9a:0a:7d:69:d9:d8:06: dd:f9:d7:ae:73:c6:66:bc:5b:73:0c:5b:a7:45:7a:81:c5:f5: 8f:ba:47:00:24:42:f9:64:43:1a:4f:4e:64:3c:17:ca:ac:75: 35:d0:e7:79:2a:c6:36:09:26:b6:2a:3f:28:2a:2f:98:03:0c: da:53:6c:2b:b2:67:14:ea:bf:8f:9c:86:bb:02:57:f6:42:1b: 17:4f:da:a8:7b:35:f7:b4:c6:31:8e:ed:23:ff:e3:ce:68:cf: b2:94:3b:04:51:0b:3a:6f:17:3e:aa:95:a6:11:2a:b1:10:4f: 62:f6:78:aa:d3:44:04:2d:b9:66:5e:30:69:ec:2b:93:88:52: 5d:19:5b:ee:d9:ce:52:19:f2:d7:dd:ac:70:53:77:bb:99:55: 66:fc:b9:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlGMUQxMTAvBgNVBAUTKENCNUIwMkQwRkM3MzZFMkE3QUIyRDI4OEEwRkMzMzE2 N0E0QkJDRUQwHhcNMjYwNjIxMDE1MDAwWhcNMjYwNjI4MDE1MDAwWjAYMRYwFAYD VQQDEw02YTM3NDM0OC1lZDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnL8aHl99ED3Ys/aZFpZWtI/yihS/FvHMeG8ilJGReB4l4g90VilC0MS6zV2J p8yBBVF8BafghfvICY99OQUunm/fAuA0WPnJ6xFac9K1o8FCBXrq/kEMCseXynjl PuQ2LfGYzURYzOF1cVmHUDwGgOlo0vAchikwkMxAYhwBkPdPVnYHYUvIcHM+9DwS 3dadGEPyoyRNlI3tvPYTcyIgmkY1CvdTg9rtdO+7+1pPPXCcsJ6AFsnSP/DbuAI3 zQf42JgtgOZ9Aysp27h+TH2pVJPD9G/nZRCEt8Hbh2YKcX0uXZeZ187GBaqNVaLB Ij4Rge+vqeeKGIFzcniIMcuVRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNM2UThP YSVB6UCQbz0koSm+C/6TMB8GA1UdIwQYMBaAFMtbAtD8c24qerLSiKD8MxZ6S7zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUYxRC8yMUNBQkE1Qzg3 NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJpcDZzdEtJb1B3ekZucEx2 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxc0MwUHh6YmlwNnN0S0lvUHd6Rm5wTHZPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUYxRC8yMUNBQkE1Qzg3NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJp cDZzdEtJb1B3ekZucEx2TzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHjA94w9KtqgXFtgGTRGz2JAIjLEwFEXgtaD2mW0r3+fWjF335AviOjeL0TVA VBv4HvblszTF0n9VBoHgnRmNYPkwLBTXYydPQXjVonxHcZlPVotgAie8rtaD8TO9 ej2C7AJ4q7iaCn1p2dgG3fnXrnPGZrxbcwxbp0V6gcX1j7pHACRC+WRDGk9OZDwX yqx1NdDneSrGNgkmtio/KCovmAMM2lNsK7JnFOq/j5yGuwJX9kIbF0/aqHs197TG MY7tI//jzmjPspQ7BFELOm8XPqqVphEqsRBPYvZ4qtNEBC25Zl4waewrk4hSXRlb 7tnOUhny192scFN3u5lVZvy5ww== -----END CERTIFICATE-----Generated at Sun Jun 21 12:40:40 2026 by rpki-client