$ rpki-client -vvf rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft File: y1sC0Pxzbip6stKIoPwzFnpLvO0.mft (raw, json) Hash identifier: jXU/r8NkVnYJLukqPGCD2x0MgFLkgW1+cSjEwS8A/w0= Subject key identifier: 4A:D3:17:78:04:C7:B4:97:23:CE:23:57:DF:C6:D2:E6:8B:55:27:17 Authority key identifier: CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED Certificate issuer: /CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Certificate serial: 0259 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft Manifest number: 0252 Signing time: Mon 02 Mar 2026 02:36:36 +0000 Manifest this update: Mon 02 Mar 2026 02:36:35 +0000 Manifest next update: Mon 09 Mar 2026 02:36:35 +0000 Files and hashes: 1: y1sC0Pxzbip6stKIoPwzFnpLvO0.crl (hash: Q15Q+3FIMZyN1iLQ4Ev6gHOB29lYN+uYXbYhkDfLuKM=) 2: 3E122AE0876011ED84335D46C4F9AE02.roa (hash: lMy4Wa3bZNfZogKIHMCZaFATHLOtC1FrGFIRZTmFan8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:36:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 601 (0x259) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129F1D, serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Validity Not Before: Mar 2 02:36:35 2026 GMT Not After : Mar 9 02:36:35 2026 GMT Subject: CN=69a4f7b4-2030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7c:86:51:0a:31:a7:0b:88:d0:48:e5:d9:cf: 0c:fc:0d:f5:8c:8c:5c:19:bc:fb:9f:ba:59:6e:94: 0c:ee:fa:91:36:2c:7b:72:47:04:d0:3c:98:98:7c: 4b:3d:d6:f0:8d:d5:c9:4b:69:4e:51:44:0e:35:ed: 75:aa:42:49:ce:e4:18:57:07:4d:c3:9d:4d:4a:fb: d0:dd:3c:c4:55:87:39:78:44:2b:21:ea:22:e9:67: f9:a1:41:02:09:3b:88:14:c0:a4:25:bd:43:e9:fe: 72:4f:63:0a:8c:83:ac:79:4b:b9:68:6b:93:73:c2: 47:6d:00:ce:0a:c9:6f:3c:e0:76:d3:7e:2a:34:d5: 9e:dc:d6:d4:d8:e3:cc:92:b8:b4:6b:fc:57:13:57: cb:0d:92:ed:34:fa:04:4b:6b:b2:38:7f:39:e4:75: a3:4c:84:1c:b5:8e:9e:4f:95:4f:41:a8:5d:f8:6d: 4f:a3:f9:f1:b3:bb:cf:13:20:36:35:65:1e:69:3f: 70:80:51:d1:50:ce:55:fb:0e:a9:75:6c:9c:b2:93: aa:a1:5e:1c:52:fa:b0:89:72:67:f9:8e:a7:45:4c: 3c:a9:13:6b:e9:2e:60:41:fc:88:e4:51:25:6b:d7: 74:88:d8:50:60:88:ca:2a:19:6a:7a:cf:43:49:5c: 2a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:D3:17:78:04:C7:B4:97:23:CE:23:57:DF:C6:D2:E6:8B:55:27:17 X509v3 Authority Key Identifier: keyid:CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:d3:dc:ef:4a:fb:c3:88:a6:6c:79:12:25:da:d9:bc:53:42: 6e:1a:81:48:a7:a1:d4:8b:8b:70:97:7a:7a:2c:50:e7:28:21: e1:6f:85:b1:c8:04:a9:cc:69:19:0a:ab:ac:80:3a:fa:ad:63: 5d:40:56:16:30:22:75:ab:e4:a8:07:63:4e:f2:54:15:51:2d: 15:f6:41:63:a3:c7:96:5b:a0:61:e7:0b:0c:ca:73:d7:f7:82: ec:8e:5f:06:d6:81:89:d5:5a:03:bf:0b:6a:81:62:e4:04:6c: 07:61:d9:32:ec:f6:29:2d:37:5d:7c:4c:28:2f:f9:39:13:74: 25:4d:0e:6d:f5:dc:b7:8b:a1:5c:19:e4:be:52:34:1c:aa:56: 91:29:6d:cb:7d:0c:0b:a0:fb:97:82:d0:8b:ea:1c:69:d9:7c: 7a:ad:fc:85:65:55:52:8d:79:f2:ae:7b:1a:df:43:bb:b0:c1: f2:01:97:9f:71:87:15:57:cd:81:0f:24:a8:76:27:17:ed:d4: 06:ac:d2:3c:d5:ae:5b:ca:09:a1:7f:83:69:c8:bc:7a:da:96: ab:b5:9a:db:a3:8a:e6:4b:28:04:5c:75:1a:98:a3:56:c1:02: d2:09:57:1f:9e:41:24:66:e9:4d:04:a9:68:e3:a5:e9:01:57: 7e:60:80:73 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlGMUQxMTAvBgNVBAUTKENCNUIwMkQwRkM3MzZFMkE3QUIyRDI4OEEwRkMzMzE2 N0E0QkJDRUQwHhcNMjYwMzAyMDIzNjM1WhcNMjYwMzA5MDIzNjM1WjAYMRYwFAYD VQQDEw02OWE0ZjdiNC0yMDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnyGUQoxpwuI0Ejl2c8M/A31jIxcGbz7n7pZbpQM7vqRNix7ckcE0DyYmHxL PdbwjdXJS2lOUUQONe11qkJJzuQYVwdNw51NSvvQ3TzEVYc5eEQrIeoi6Wf5oUEC CTuIFMCkJb1D6f5yT2MKjIOseUu5aGuTc8JHbQDOCslvPOB2034qNNWe3NbU2OPM kri0a/xXE1fLDZLtNPoES2uyOH855HWjTIQctY6eT5VPQahd+G1Po/nxs7vPEyA2 NWUeaT9wgFHRUM5V+w6pdWycspOqoV4cUvqwiXJn+Y6nRUw8qRNr6S5gQfyI5FEl a9d0iNhQYIjKKhlqes9DSVwqBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFErTF3gE x7SXI84jV9/G0uaLVScXMB8GA1UdIwQYMBaAFMtbAtD8c24qerLSiKD8MxZ6S7zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUYxRC8yMUNBQkE1Qzg3 NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJpcDZzdEtJb1B3ekZucEx2 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxc0MwUHh6YmlwNnN0S0lvUHd6Rm5wTHZPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUYxRC8yMUNBQkE1Qzg3NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJp cDZzdEtJb1B3ekZucEx2TzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqNPc70r7w4imbHkSJdrZvFNCbhqBSKeh1IuLcJd6eixQ5ygh4W+FscgEqcxp GQqrrIA6+q1jXUBWFjAidavkqAdjTvJUFVEtFfZBY6PHllugYecLDMpz1/eC7I5f BtaBidVaA78LaoFi5ARsB2HZMuz2KS03XXxMKC/5ORN0JU0ObfXct4uhXBnkvlI0 HKpWkSlty30MC6D7l4LQi+ocadl8eq38hWVVUo158q57Gt9Du7DB8gGXn3GHFVfN gQ8kqHYnF+3UBqzSPNWuW8oJoX+Daci8etqWq7Wa26OK5ksoBFx1GpijVsEC0glX H55BJGbpTQSpaOOl6QFXfmCAcw== -----END CERTIFICATE-----Generated at Mon Mar 2 07:47:47 2026 by rpki-client