$ rpki-client -vvf rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft File: lyuQ2cUZIlatlkdbOSurGnp5zC0.mft (raw, json) Hash identifier: hfzJWgmvJt160qNXgokTWr3JpaNqWODH/EkjD8ilHJU= Subject key identifier: 6C:8C:74:28:C5:A5:8E:01:7D:E5:BC:A9:95:98:98:97:E3:38:03:DF Authority key identifier: 97:2B:90:D9:C5:19:22:56:AD:96:47:5B:39:2B:AB:1A:7A:79:CC:2D Certificate issuer: /CN=A9132FD9/serialNumber=972B90D9C5192256AD96475B392BAB1A7A79CC2D Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lyuQ2cUZIlatlkdbOSurGnp5zC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft Manifest number: 9D Signing time: Sun 01 Mar 2026 08:39:49 +0000 Manifest this update: Sun 01 Mar 2026 08:39:49 +0000 Manifest next update: Sun 08 Mar 2026 08:39:49 +0000 Files and hashes: 1: lyuQ2cUZIlatlkdbOSurGnp5zC0.crl (hash: UGuy2cBZPLaCVeXEjmU8LcYNVS3mnwSQUnRe9RDBkcU=) 2: DCC2224A313011F0BE214A64C4F9AE02.roa (hash: QFbRVf66lkbe54l2PG3KMXf9eXUVn8c/LsTJGZHTzRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.crl rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lyuQ2cUZIlatlkdbOSurGnp5zC0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:39:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132FD9, serialNumber=972B90D9C5192256AD96475B392BAB1A7A79CC2D Validity Not Before: Mar 1 08:39:49 2026 GMT Not After : Mar 8 08:39:49 2026 GMT Subject: CN=69a3fb55-41da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ec:46:84:b1:9f:aa:14:dd:09:d8:4d:4c:75: 7b:45:3f:63:cf:e0:42:4e:b8:57:b4:b3:89:c2:76: 1b:07:7d:5a:6d:af:0e:eb:d4:50:f7:1e:55:e5:b1: 45:f6:90:1d:4e:d7:fc:ae:41:35:c7:10:4d:44:66: 60:7f:a8:6d:fd:6d:61:0b:aa:a1:80:74:c9:4d:16: ac:c6:3a:bf:81:23:24:48:3d:96:ca:6b:75:57:05: 80:16:99:c7:60:6a:03:69:18:2f:3e:fd:fc:b7:bc: 6b:ea:e2:75:8a:54:66:e2:af:e2:94:c4:30:ca:b2: e3:a7:b4:c0:16:84:44:da:83:9c:be:a4:52:43:04: 19:11:71:2e:64:3c:2d:c1:e1:d0:99:5c:79:d0:2d: ec:fd:9c:cc:fb:d6:b7:11:8a:26:60:ce:4c:0d:36: a5:05:ff:bd:96:30:3c:e8:dc:09:90:05:ed:a8:17: c1:9e:c5:db:01:ae:d5:cb:bc:c1:84:8f:1a:50:de: eb:43:77:b7:0a:de:6a:cb:81:bd:74:97:7d:ae:99: 37:6a:9d:46:fa:05:98:80:9a:af:0f:79:da:dd:5c: 41:0c:d9:d0:29:55:bc:e4:73:7d:ba:19:f0:00:91: 9b:cb:86:e5:ae:57:11:10:3c:8c:eb:d6:87:07:a6: 81:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:8C:74:28:C5:A5:8E:01:7D:E5:BC:A9:95:98:98:97:E3:38:03:DF X509v3 Authority Key Identifier: keyid:97:2B:90:D9:C5:19:22:56:AD:96:47:5B:39:2B:AB:1A:7A:79:CC:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lyuQ2cUZIlatlkdbOSurGnp5zC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:a3:2d:56:77:b5:87:0d:9a:f1:00:71:b1:5b:7b:ba:53:47: c0:c6:a6:8b:21:03:b2:b3:2a:c9:72:76:42:8b:68:a6:31:83: e7:dc:f3:8b:4f:e8:93:f7:f1:ad:5d:5f:03:77:df:7c:84:75: ef:90:b1:b1:26:ac:06:72:5c:c3:23:b7:67:71:07:5c:17:38: 66:b0:0d:48:9d:f0:f2:b9:67:c8:8a:24:df:cc:5c:89:08:59: 28:d5:3b:3d:c2:05:2c:34:4f:82:39:65:6e:1f:29:3f:d6:18: 44:d8:61:03:8a:d5:54:8f:d2:6b:c2:be:2f:8a:82:9c:17:6c: 4f:79:59:ed:89:7b:9f:b4:08:65:09:69:5f:1a:1e:04:27:40: 11:18:5d:9b:bd:ab:1c:87:9d:b1:31:73:27:69:9d:a3:77:07: c6:bd:dd:c0:ce:35:59:c3:4e:0c:d0:5f:8c:25:1b:d0:eb:09: 91:32:45:07:7c:ad:4d:14:33:2b:3e:73:ef:7b:7d:d6:75:c1: d9:ad:8b:2d:09:08:2c:c4:fe:35:0d:b5:1f:0c:cf:66:57:a4: 06:59:53:4a:b7:35:25:7a:3f:af:5f:84:65:23:c2:dc:9b:b4: be:cc:dc:15:bb:bb:c2:60:56:41:f9:0d:4e:9e:bc:2f:04:32: 3c:72:56:c8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGRDkxMTAvBgNVBAUTKDk3MkI5MEQ5QzUxOTIyNTZBRDk2NDc1QjM5MkJBQjFB N0E3OUNDMkQwHhcNMjYwMzAxMDgzOTQ5WhcNMjYwMzA4MDgzOTQ5WjAYMRYwFAYD VQQDEw02OWEzZmI1NS00MWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsexGhLGfqhTdCdhNTHV7RT9jz+BCTrhXtLOJwnYbB31aba8O69RQ9x5V5bFF 9pAdTtf8rkE1xxBNRGZgf6ht/W1hC6qhgHTJTRasxjq/gSMkSD2Wymt1VwWAFpnH YGoDaRgvPv38t7xr6uJ1ilRm4q/ilMQwyrLjp7TAFoRE2oOcvqRSQwQZEXEuZDwt weHQmVx50C3s/ZzM+9a3EYomYM5MDTalBf+9ljA86NwJkAXtqBfBnsXbAa7Vy7zB hI8aUN7rQ3e3Ct5qy4G9dJd9rpk3ap1G+gWYgJqvD3na3VxBDNnQKVW85HN9uhnw AJGby4blrlcREDyM69aHB6aB4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGyMdCjF pY4BfeW8qZWYmJfjOAPfMB8GA1UdIwQYMBaAFJcrkNnFGSJWrZZHWzkrqxp6ecwt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkZEOS83RjlBNzAzNDJC QjUxMUYwOURFNUJBNEVDNEY5QUUwMi9seXVRMmNVWklsYXRsa2RiT1N1ckducDV6 QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x5dVEyY1VaSWxhdGxrZGJPU3VyR25wNXpDMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkZEOS83RjlBNzAzNDJCQjUxMUYwOURFNUJBNEVDNEY5QUUwMi9seXVRMmNVWkls YXRsa2RiT1N1ckducDV6QzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACaMtVne1hw2a8QBxsVt7ulNHwMamiyEDsrMqyXJ2QotopjGD59zzi0/ok/fx rV1fA3fffIR175CxsSasBnJcwyO3Z3EHXBc4ZrANSJ3w8rlnyIok38xciQhZKNU7 PcIFLDRPgjllbh8pP9YYRNhhA4rVVI/Sa8K+L4qCnBdsT3lZ7Yl7n7QIZQlpXxoe BCdAERhdm72rHIedsTFzJ2mdo3cHxr3dwM41WcNODNBfjCUb0OsJkTJFB3ytTRQz Kz5z73t91nXB2a2LLQkILMT+NQ21HwzPZlekBllTSrc1JXo/r1+EZSPC3Ju0vszc Fbu7wmBWQfkNTp68LwQyPHJWyA== -----END CERTIFICATE-----Generated at Mon Mar 2 05:31:38 2026 by rpki-client