$ rpki-client -vvf rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft File: punLpSnAWpYkymA1SKPjFJF1jys.mft (raw, json) Hash identifier: 004iXlyJLsGU0l3Tysr3P4plEgFj0OV2hizW/0/H7uc= Subject key identifier: 5E:52:52:37:B8:D1:4B:82:75:53:B9:D3:2D:9D:74:14:55:CB:7B:57 Authority key identifier: A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B Certificate issuer: /CN=A9189B41/serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft Manifest number: 0121 Signing time: Tue 03 Mar 2026 05:18:57 +0000 Manifest this update: Tue 03 Mar 2026 05:18:56 +0000 Manifest next update: Tue 10 Mar 2026 05:18:56 +0000 Files and hashes: 1: punLpSnAWpYkymA1SKPjFJF1jys.crl (hash: RrKZViBZJjqz61xNvjvIYpqR6yZkl9Bh2w8d/XJYxHs=) 2: 17AF252C605A11EFB7F45361C4F9AE02.roa (hash: 8DprNqSctLRq9Um1DBwsXYIm/hC+xtUbZc0GLoio6ks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 05:18:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189B41, serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B Validity Not Before: Mar 3 05:18:56 2026 GMT Not After : Mar 10 05:18:56 2026 GMT Subject: CN=69a66f41-0b06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d5:a0:77:aa:b6:9f:26:c6:55:23:57:cc:0b: 99:36:c8:4c:f7:65:3a:2b:b7:60:6f:00:de:15:d3: c6:6e:76:fe:8f:be:f8:dd:47:3b:c5:c1:c5:19:5d: 1b:39:93:0d:b8:79:3e:44:c4:1c:b0:5e:41:78:d1: 9f:c1:ea:6c:2f:8a:b0:d5:e0:a4:51:b8:bd:02:8e: 99:63:32:e9:da:04:15:37:d8:5c:aa:49:c2:64:88: e5:6d:f3:01:07:2c:80:29:73:94:4e:fd:54:32:f9: eb:73:1f:7d:b8:a8:bd:4e:4a:7a:8b:90:0d:9d:17: 2f:9d:e0:ad:a5:ee:e2:27:0f:08:c9:d8:3d:9a:bf: fb:ad:81:8c:bf:bc:9a:b4:c9:32:b0:1e:07:83:60: 74:29:af:cb:50:03:2c:b9:c8:76:b8:c4:10:ae:a6: d7:f7:2a:8f:70:e0:3c:68:51:d0:57:b4:de:07:82: fd:49:25:6b:c7:37:48:eb:cf:6e:c4:15:0c:d0:be: 80:29:14:bf:9d:17:b1:97:39:fb:8c:8e:0b:46:f0: a6:85:bf:c2:0b:da:31:22:80:5f:ed:79:e4:6b:9a: 1f:83:fd:fb:0f:c7:22:dd:0b:a5:3c:74:d8:58:aa: 27:52:9e:30:48:be:52:2c:45:21:02:c9:c7:bc:94: f4:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:52:52:37:B8:D1:4B:82:75:53:B9:D3:2D:9D:74:14:55:CB:7B:57 X509v3 Authority Key Identifier: keyid:A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:c8:e9:14:b9:ee:4a:a4:62:21:50:41:02:e6:de:35:67:35: b7:dd:e4:0b:a7:d0:eb:48:19:ea:11:c1:50:2e:7c:b4:39:8e: 58:c1:bc:56:30:f7:8e:48:ef:bf:e2:0d:a8:bf:3d:e1:db:47: 26:ce:8b:f2:05:05:06:07:27:ef:84:73:bb:23:a5:31:09:16: 82:4a:5c:0a:0c:fd:30:b8:7c:cf:a2:31:25:22:81:87:fd:2f: 40:33:70:8e:bc:f3:cc:b2:13:bb:aa:b9:e6:8c:c9:2b:b5:39: fe:73:69:13:ff:72:50:6f:a8:a9:00:6e:d6:94:0e:9a:d3:5b: cd:5a:74:ad:95:51:ca:d9:90:75:33:3c:d0:3d:57:a8:56:91: 59:b2:b2:d9:1c:b0:d8:01:c1:f7:21:c0:92:04:33:8a:01:ab: 6a:fa:4c:05:7d:3b:2f:65:e5:e9:24:53:b6:4c:c1:8f:60:18: 37:84:58:b3:46:94:7b:35:38:8a:3e:bf:59:0d:22:e3:4e:b4: 2e:e9:35:ed:a4:52:0b:19:8a:59:5c:f0:dd:cf:d2:99:0d:90: 83:67:67:5a:11:53:4e:62:70:b6:d0:91:77:41:c1:9d:96:b2: 84:ed:89:d9:9d:35:22:a0:7b:52:ff:df:7f:d8:79:61:19:b7: bb:af:a4:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlCNDExMTAvBgNVBAUTKEE2RTlDQkE1MjlDMDVBOTYyNENBNjAzNTQ4QTNFMzE0 OTE3NThGMkIwHhcNMjYwMzAzMDUxODU2WhcNMjYwMzEwMDUxODU2WjAYMRYwFAYD VQQDEw02OWE2NmY0MS0wYjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtWgd6q2nybGVSNXzAuZNshM92U6K7dgbwDeFdPGbnb+j7743Uc7xcHFGV0b OZMNuHk+RMQcsF5BeNGfwepsL4qw1eCkUbi9Ao6ZYzLp2gQVN9hcqknCZIjlbfMB ByyAKXOUTv1UMvnrcx99uKi9Tkp6i5ANnRcvneCtpe7iJw8Iydg9mr/7rYGMv7ya tMkysB4Hg2B0Ka/LUAMsuch2uMQQrqbX9yqPcOA8aFHQV7TeB4L9SSVrxzdI689u xBUM0L6AKRS/nRexlzn7jI4LRvCmhb/CC9oxIoBf7Xnka5ofg/37D8ci3QulPHTY WKonUp4wSL5SLEUhAsnHvJT01QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF5SUje4 0UuCdVO50y2ddBRVy3tXMB8GA1UdIwQYMBaAFKbpy6UpwFqWJMpgNUij4xSRdY8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUI0MS82OUI3Njk4RTYw NTkxMUVGOUMyMjM3NjBDNEY5QUUwMi9wdW5McFNuQVdwWWt5bUExU0tQakZKRjFq eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3B1bkxwU25BV3BZa3ltQTFTS1BqRkpGMWp5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUI0MS82OUI3Njk4RTYwNTkxMUVGOUMyMjM3NjBDNEY5QUUwMi9wdW5McFNuQVdw WWt5bUExU0tQakZKRjFqeXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUMjpFLnuSqRiIVBBAubeNWc1t93kC6fQ60gZ6hHBUC58tDmOWMG8VjD3jkjv v+INqL894dtHJs6L8gUFBgcn74RzuyOlMQkWgkpcCgz9MLh8z6IxJSKBh/0vQDNw jrzzzLITu6q55ozJK7U5/nNpE/9yUG+oqQBu1pQOmtNbzVp0rZVRytmQdTM80D1X qFaRWbKy2Ryw2AHB9yHAkgQzigGravpMBX07L2Xl6SRTtkzBj2AYN4RYs0aUezU4 ij6/WQ0i4060Luk17aRSCxmKWVzw3c/SmQ2Qg2dnWhFTTmJwttCRd0HBnZayhO2J 2Z01IqB7Uv/ff9h5YRm3u6+kgQ== -----END CERTIFICATE-----Generated at Wed Mar 4 08:24:09 2026 by rpki-client