$ rpki-client -vvf rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft File: y1sC0Pxzbip6stKIoPwzFnpLvO0.mft (raw, json) Hash identifier: 3qCOoUyc7peE9UwL52GdYM3zSEZNVW5hOZAIkjYkKVA= Subject key identifier: 9E:A6:E7:4D:F0:8A:DC:4C:D0:EE:A1:88:8B:6D:6E:19:EF:FC:94:A8 Authority key identifier: CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED Certificate issuer: /CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Certificate serial: 028D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft Manifest number: 0286 Signing time: Sat 13 Jun 2026 01:50:37 +0000 Manifest this update: Sat 13 Jun 2026 01:50:36 +0000 Manifest next update: Sat 20 Jun 2026 01:50:36 +0000 Files and hashes: 1: y1sC0Pxzbip6stKIoPwzFnpLvO0.crl (hash: WuaTSXWwcwyvtuiHFVeCd9tCmfJPoH9UBLXYzBw7PPQ=) 2: 3E122AE0876011ED84335D46C4F9AE02.roa (hash: lMy4Wa3bZNfZogKIHMCZaFATHLOtC1FrGFIRZTmFan8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 01:50:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 653 (0x28d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129F1D, serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Validity Not Before: Jun 13 01:50:36 2026 GMT Not After : Jun 20 01:50:36 2026 GMT Subject: CN=6a2cb76c-d1cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:11:b0:d5:40:c3:c7:fb:65:13:d3:0a:75:2c: 46:88:21:ae:95:a1:52:3a:81:30:11:b4:fc:16:b9: c4:ac:23:5b:33:ce:f8:a2:2e:e6:47:96:f8:70:31: df:ab:27:f3:1c:69:a3:3c:9b:45:04:3f:99:ea:0c: da:10:0e:5d:e9:f1:44:b8:12:6d:dc:3d:cf:dd:99: 14:a1:73:65:f9:d8:b2:c6:6e:65:13:a4:08:7a:58: 3f:e4:e7:c0:b1:16:72:56:03:f3:c5:82:e7:17:84: f5:c1:91:fe:1b:2c:0d:c7:3c:73:07:6d:37:77:1d: f4:56:8f:74:fd:3f:25:2f:22:98:20:d4:2b:14:ca: 23:33:4c:f0:ad:87:dd:96:4a:58:61:9f:9c:49:3c: 4a:be:8a:0f:7f:6d:10:67:a6:80:da:7b:91:c5:f0: f3:42:e6:96:fc:8c:e0:1c:2c:45:e4:b6:12:aa:5f: 7c:09:73:ea:04:a9:ac:e9:1a:97:b6:84:42:08:27: 2b:27:84:11:af:13:49:df:b0:d3:7d:f6:53:76:b0: 17:f4:bd:8c:72:f2:05:f0:6e:75:af:6d:5f:f5:d4: 52:87:92:ab:f3:76:48:b6:10:30:a5:4c:fc:aa:14: 12:a7:09:2c:c0:03:25:d4:5a:2e:99:3a:8d:55:e3: c9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:A6:E7:4D:F0:8A:DC:4C:D0:EE:A1:88:8B:6D:6E:19:EF:FC:94:A8 X509v3 Authority Key Identifier: keyid:CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:60:c8:a1:d6:06:e2:4d:ef:30:99:bd:b3:79:7a:95:f2:6a: 9b:2b:bf:d5:e7:67:54:80:f8:0a:72:ab:84:ee:91:b8:be:87: 87:2d:d2:65:9a:86:a5:69:8f:0e:f0:ec:14:e1:66:33:87:ac: 7b:2d:44:f7:d5:9a:97:e4:f6:3d:f2:8b:76:a9:76:ec:8f:11: d0:08:a8:dc:07:b6:99:34:ab:17:e3:68:2c:da:60:d7:13:68: df:19:26:a4:13:f6:e1:2a:d6:3a:a2:01:aa:67:15:07:e3:c7: 7f:5b:aa:1d:19:2a:78:5d:d6:ba:fd:f3:5b:11:2f:0b:a8:a5: 15:c7:25:34:e4:d3:53:74:4a:da:85:2c:be:15:0f:7d:c1:3a: 95:ad:95:ef:dc:6e:d8:8a:6d:33:80:d1:a0:98:cc:ea:4b:73: 35:8d:b7:cc:4b:88:32:b6:f8:cc:69:11:53:f0:b8:0c:21:99: 79:c6:03:64:31:eb:69:5f:f8:2a:76:e0:b7:ac:11:e2:e7:e8: 22:35:01:83:b0:74:44:1e:df:a7:e1:10:a8:af:8f:88:f5:b4: 5d:6e:91:4c:58:26:58:30:d8:e4:60:99:17:ae:fb:c9:a9:88: 87:80:88:ad:57:97:b6:4c:98:fb:5a:eb:e8:93:e6:c0:3f:76: 00:8a:f9:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlGMUQxMTAvBgNVBAUTKENCNUIwMkQwRkM3MzZFMkE3QUIyRDI4OEEwRkMzMzE2 N0E0QkJDRUQwHhcNMjYwNjEzMDE1MDM2WhcNMjYwNjIwMDE1MDM2WjAYMRYwFAYD VQQDEw02YTJjYjc2Yy1kMWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBGw1UDDx/tlE9MKdSxGiCGulaFSOoEwEbT8FrnErCNbM874oi7mR5b4cDHf qyfzHGmjPJtFBD+Z6gzaEA5d6fFEuBJt3D3P3ZkUoXNl+diyxm5lE6QIelg/5OfA sRZyVgPzxYLnF4T1wZH+GywNxzxzB203dx30Vo90/T8lLyKYINQrFMojM0zwrYfd lkpYYZ+cSTxKvooPf20QZ6aA2nuRxfDzQuaW/IzgHCxF5LYSql98CXPqBKms6RqX toRCCCcrJ4QRrxNJ37DTffZTdrAX9L2McvIF8G51r21f9dRSh5Kr83ZIthAwpUz8 qhQSpwkswAMl1FoumTqNVePJgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ6m503w itxM0O6hiIttbhnv/JSoMB8GA1UdIwQYMBaAFMtbAtD8c24qerLSiKD8MxZ6S7zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUYxRC8yMUNBQkE1Qzg3 NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJpcDZzdEtJb1B3ekZucEx2 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxc0MwUHh6YmlwNnN0S0lvUHd6Rm5wTHZPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUYxRC8yMUNBQkE1Qzg3NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJp cDZzdEtJb1B3ekZucEx2TzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAWDIodYG4k3vMJm9s3l6lfJqmyu/1ednVID4CnKrhO6RuL6Hhy3SZZqGpWmP DvDsFOFmM4esey1E99Wal+T2PfKLdql27I8R0Aio3Ae2mTSrF+NoLNpg1xNo3xkm pBP24SrWOqIBqmcVB+PHf1uqHRkqeF3Wuv3zWxEvC6ilFcclNOTTU3RK2oUsvhUP fcE6la2V79xu2IptM4DRoJjM6ktzNY23zEuIMrb4zGkRU/C4DCGZecYDZDHraV/4 Knbgt6wR4ufoIjUBg7B0RB7fp+EQqK+PiPW0XW6RTFgmWDDY5GCZF677yamIh4CI rVeXtkyY+1rr6JPmwD92AIr5NA== -----END CERTIFICATE-----Generated at Sat Jun 13 15:11:31 2026 by rpki-client