$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft File: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft (raw, json) Hash identifier: Ifqj+/T9wjw4SPhKDKU7IL+9gUWkWc3B1+tGCJiUMS0= Subject key identifier: E4:98:2A:C0:05:8A:32:2F:5E:A9:D3:42:77:4B:DC:B1:D9:7D:4F:07 Authority key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E Certificate issuer: /CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Certificate serial: 01BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft Manifest number: 01A9 Signing time: Sun 01 Mar 2026 23:58:10 +0000 Manifest this update: Sun 01 Mar 2026 23:58:09 +0000 Manifest next update: Sun 08 Mar 2026 23:58:09 +0000 Files and hashes: 1: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl (hash: Xq7e57KQeekVYisuW2MCDhqCUm4oC2PVyOuKDke5KJY=) 2: 813EDCA4137E11EF9969A86BC4F9AE02.roa (hash: kHmzJQFISwyEUpGULb3zBF2TbRHI+xb67Nl+0z6kL98=) 3: 210A4EBAC0F211EE99FFBA21C4F9AE02.roa (hash: pDDDjvi9FAXyfLlfUq89Qy9ez0rIM+PdK6wyZ5aevpU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:58:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 447 (0x1bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C33, serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Validity Not Before: Mar 1 23:58:09 2026 GMT Not After : Mar 8 23:58:09 2026 GMT Subject: CN=69a4d292-b1eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:63:27:68:bf:09:61:cb:bb:07:3d:7d:42:45: f4:81:95:c2:0c:db:cc:7a:46:42:50:9a:5d:46:87: fa:fa:c3:8c:0d:25:1b:7d:b9:c8:cf:91:e4:17:ff: 01:d5:b6:40:52:4e:3e:a0:c8:d9:36:e3:a6:2c:b6: f8:39:90:d7:97:7d:96:37:c0:0a:8a:b2:b1:b2:37: d0:fb:47:b5:9e:5c:49:ba:4c:62:64:09:22:2a:c1: e8:03:56:ac:ef:5a:2b:46:85:5f:0d:8b:b1:9b:1c: ac:34:81:87:bc:d0:ed:1b:99:32:33:f5:7f:08:8a: c8:aa:5b:4b:d4:f4:f1:8c:8b:41:01:ee:1c:a4:07: 14:82:f5:f6:6e:d7:fe:7b:93:b8:53:13:8e:ff:16: b2:35:4f:a4:8a:6f:cb:c5:9b:fb:0d:c2:2c:da:2a: 37:ca:53:bb:9d:b3:5d:8c:33:c7:c8:eb:22:f2:3a: 75:71:44:26:a6:24:9f:c3:6a:bb:ed:6e:2f:5b:0a: 24:9c:b7:3d:f9:91:57:4d:87:84:68:73:a3:4f:e4: 1b:19:26:0a:0c:0d:e5:3d:3c:19:cf:13:a5:5d:a8: 50:93:22:0b:7e:ca:91:f0:ed:76:13:95:7f:4a:69: 27:6a:6e:09:2e:19:2c:b3:5a:4a:14:2c:4a:d0:9c: ac:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:98:2A:C0:05:8A:32:2F:5E:A9:D3:42:77:4B:DC:B1:D9:7D:4F:07 X509v3 Authority Key Identifier: keyid:AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:90:e9:be:f8:09:90:46:18:c1:e2:48:40:7e:f8:f7:95:8b: c1:77:a9:43:e3:a1:55:51:17:26:36:a8:2f:b0:a2:40:a0:8e: d8:d0:87:a4:98:2d:22:5b:d4:12:b0:19:9c:df:0a:2f:fd:5b: b9:e3:63:38:92:0f:69:3d:ea:66:84:c0:f9:11:25:57:6b:a1: 45:8e:fe:57:5b:63:34:8d:f7:ae:7b:4a:a7:58:58:5b:a9:0f: ab:3d:14:90:7a:92:2b:7a:94:b6:8a:78:ab:e9:82:11:0b:47: 5f:36:d4:1e:d0:0e:8e:54:59:3a:cd:39:c2:e3:5d:05:eb:b6: ac:1d:cc:db:d9:57:b6:02:33:34:02:43:00:92:40:c1:37:5f: cf:a1:b0:25:d8:89:23:5f:25:3f:e1:7a:fc:5e:79:36:ae:fe: 19:c7:a6:c2:36:41:dd:67:09:c0:76:98:f7:6a:a5:66:64:b1: aa:8f:27:5f:96:d9:fe:3b:64:72:85:f6:f1:6c:26:16:aa:ed: 2b:fc:8c:68:18:81:31:46:04:7e:1e:be:e7:de:06:22:72:4a: 6c:62:52:a4:c0:35:75:9e:26:f5:06:43:e4:57:cb:8d:2d:fc: 9d:b2:fc:91:5d:1c:fd:16:b5:34:0b:f1:74:7f:4c:3e:5c:d5: 52:fd:e8:12 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDMzMxMTAvBgNVBAUTKEFGMkVFMDQ0MTIzNTZBQkZEOEUxOUFFMkMxQjIyQTcz N0NERjVFOUUwHhcNMjYwMzAxMjM1ODA5WhcNMjYwMzA4MjM1ODA5WjAYMRYwFAYD VQQDEw02OWE0ZDI5Mi1iMWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWMnaL8JYcu7Bz19QkX0gZXCDNvMekZCUJpdRof6+sOMDSUbfbnIz5HkF/8B 1bZAUk4+oMjZNuOmLLb4OZDXl32WN8AKirKxsjfQ+0e1nlxJukxiZAkiKsHoA1as 71orRoVfDYuxmxysNIGHvNDtG5kyM/V/CIrIqltL1PTxjItBAe4cpAcUgvX2btf+ e5O4UxOO/xayNU+kim/LxZv7DcIs2io3ylO7nbNdjDPHyOsi8jp1cUQmpiSfw2q7 7W4vWwoknLc9+ZFXTYeEaHOjT+QbGSYKDA3lPTwZzxOlXahQkyILfsqR8O12E5V/ Smknam4JLhkss1pKFCxK0JyslwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOSYKsAF ijIvXqnTQndL3LHZfU8HMB8GA1UdIwQYMBaAFK8u4EQSNWq/2OGa4sGyKnN8316e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEMzMy85NTZDQjA4Njk4 MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFyX1k0WnJpd2JJcWMzemZY cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J5N2dSQkkxYXJfWTRacml3YklxYzN6ZlhwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEMzMy85NTZDQjA4Njk4MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFy X1k0WnJpd2JJcWMzemZYcDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFJDpvvgJkEYYweJIQH7495WLwXepQ+OhVVEXJjaoL7CiQKCO2NCHpJgtIlvU ErAZnN8KL/1bueNjOJIPaT3qZoTA+RElV2uhRY7+V1tjNI33rntKp1hYW6kPqz0U kHqSK3qUtop4q+mCEQtHXzbUHtAOjlRZOs05wuNdBeu2rB3M29lXtgIzNAJDAJJA wTdfz6GwJdiJI18lP+F6/F55Nq7+GcemwjZB3WcJwHaY92qlZmSxqo8nX5bZ/jtk coX28WwmFqrtK/yMaBiBMUYEfh6+594GInJKbGJSpMA1dZ4m9QZD5FfLjS38nbL8 kV0c/Ra1NAvxdH9MPlzVUv3oEg== -----END CERTIFICATE-----Generated at Mon Mar 2 14:44:14 2026 by rpki-client