$ rpki-client -vvf rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft File: y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft (raw, json) Hash identifier: GHClALflDJjpXn7aafOWADaZYq9rm6n1bjDQHw0RpWA= Subject key identifier: A3:A7:64:96:B0:0F:21:08:6B:44:AB:7C:D3:44:A4:7B:0D:0F:53:F5 Authority key identifier: CB:EC:6F:18:39:05:48:75:21:C7:94:7B:4F:7B:FD:6C:B7:8D:A4:79 Certificate issuer: /CN=A9159FAF/serialNumber=CBEC6F183905487521C7947B4F7BFD6CB78DA479 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft Manifest number: 01C8 Signing time: Sun 01 Mar 2026 04:38:17 +0000 Manifest this update: Sun 01 Mar 2026 04:38:17 +0000 Manifest next update: Sun 08 Mar 2026 04:38:17 +0000 Files and hashes: 1: y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl (hash: rvV5FcLgxt77PZBJ1pK32EfZQjoujhIZQOLuxqxtldc=) 2: A910F37297CE11F0885B0A30C4F9AE02.roa (hash: uh2P47IBcHMM0L8oBBKfgghiw2YLRwDywND7UD5FXBE=) 3: B752E03A97CE11F0ADE43030C4F9AE02.roa (hash: QABA7r3c5bhYEoxOIKS37tG5+qLaZHIwuiYwF2+lVog=) 4: 6A0C1182CA9D11F084B0E810C4F9AE02.roa (hash: JajtVxpbHZnBdHiaM28AkvH5E922BJLDjWvD5zvNQn0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:38:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159FAF, serialNumber=CBEC6F183905487521C7947B4F7BFD6CB78DA479 Validity Not Before: Mar 1 04:38:17 2026 GMT Not After : Mar 8 04:38:17 2026 GMT Subject: CN=69a3c2b9-5acf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:7f:41:48:b8:f9:be:aa:4d:72:eb:23:81:7d: 20:69:7a:a9:d8:6e:8f:84:8d:00:82:41:ee:50:96: 8a:8a:e5:69:bc:a3:e4:63:d9:09:cf:de:2a:51:b4: df:ad:cc:6d:6c:05:f3:9a:68:b8:c0:e0:97:e3:2b: ea:57:ff:6b:53:23:e6:bb:d3:ee:62:46:02:09:f8: 7c:22:50:58:a4:10:a4:f7:0a:d7:25:72:96:02:4a: 4f:03:8e:a3:53:03:4e:ee:eb:f3:c8:34:50:7c:7c: 5a:93:7d:e9:e0:8f:e8:19:1a:45:9c:c0:e8:b5:bf: 2e:8f:4d:c6:60:41:c6:2a:41:cf:42:11:a5:b4:7e: 53:a2:e2:c5:c1:0f:91:a0:1e:ca:83:14:1f:fc:7a: 02:81:3a:6b:2a:d8:72:fd:89:44:e0:cc:ce:ba:4d: 56:c4:17:f0:4c:03:6d:45:4b:e5:81:6d:11:8a:4f: 33:82:ac:2c:97:cd:f3:55:6f:b1:61:e0:c8:57:94: 82:a6:89:51:d5:66:cf:0e:ad:e4:cf:ce:6a:64:a7: ff:52:b1:a6:fd:02:07:98:b1:98:72:4e:9c:c1:e3: 45:c2:ec:b5:b0:5f:1d:67:1e:d8:c4:20:41:46:d7: 4d:36:79:23:51:41:5e:d9:a7:06:2a:9c:08:93:4e: d7:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:A7:64:96:B0:0F:21:08:6B:44:AB:7C:D3:44:A4:7B:0D:0F:53:F5 X509v3 Authority Key Identifier: keyid:CB:EC:6F:18:39:05:48:75:21:C7:94:7B:4F:7B:FD:6C:B7:8D:A4:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:ed:74:a6:21:c0:8b:eb:5d:90:de:c5:94:bf:89:03:7a:dc: d3:9e:34:81:37:dc:8d:12:93:44:33:94:cb:56:a1:86:26:47: 11:e6:df:00:fe:88:de:59:81:8f:7c:ec:7b:e2:47:22:ec:34: 40:27:27:84:70:4a:df:87:55:bc:9c:e1:d5:6f:cd:56:ce:74: 85:38:09:6f:a1:69:9a:97:b6:dc:34:b5:84:29:56:0b:7c:29: 76:58:36:40:58:8a:c7:77:7a:b1:b7:be:0d:1c:4c:25:c9:2f: 3b:a9:7f:5c:48:a8:f7:26:36:ed:2f:e6:b8:50:9f:b6:a6:28: b7:b2:4e:25:34:ef:f3:c1:9d:26:8e:a8:25:ea:e1:70:5f:e7: 6d:42:46:0b:e1:77:e1:5f:9f:b1:be:36:43:35:ae:a9:87:4a: 39:2d:7b:df:b9:c3:3f:98:99:f7:4e:2a:43:fd:8e:e1:09:b4: 08:d9:36:ec:4f:c1:45:fa:fe:02:71:50:9f:f3:7c:7c:6b:95: 25:b6:a0:d6:15:42:13:00:d7:78:0c:89:78:49:12:6c:f5:95: c5:7b:ca:9b:7a:81:78:a7:ee:c2:d2:88:e5:3d:a6:4a:fc:10: bf:8f:6b:2a:8c:94:54:62:ab:03:01:ab:e2:24:ff:d6:1e:f3: 0c:6d:4f:90 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlGQUYxMTAvBgNVBAUTKENCRUM2RjE4MzkwNTQ4NzUyMUM3OTQ3QjRGN0JGRDZD Qjc4REE0NzkwHhcNMjYwMzAxMDQzODE3WhcNMjYwMzA4MDQzODE3WjAYMRYwFAYD VQQDDA02OWEzYzJiOS01YWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA139BSLj5vqpNcusjgX0gaXqp2G6PhI0AgkHuUJaKiuVpvKPkY9kJz94qUbTf rcxtbAXzmmi4wOCX4yvqV/9rUyPmu9PuYkYCCfh8IlBYpBCk9wrXJXKWAkpPA46j UwNO7uvzyDRQfHxak33p4I/oGRpFnMDotb8uj03GYEHGKkHPQhGltH5TouLFwQ+R oB7KgxQf/HoCgTprKthy/YlE4MzOuk1WxBfwTANtRUvlgW0Rik8zgqwsl83zVW+x YeDIV5SCpolR1WbPDq3kz85qZKf/UrGm/QIHmLGYck6cweNFwuy1sF8dZx7YxCBB RtdNNnkjUUFe2acGKpwIk07XHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKOnZJaw DyEIa0SrfNNEpHsND1P1MB8GA1UdIwQYMBaAFMvsbxg5BUh1IceUe097/Wy3jaR5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUZBRi8xMjk1NzVDNDZF NDIxMUVFQUI0QzlDNkNDNEY5QUUwMi95LXh2R0RrRlNIVWh4NVI3VDN2OWJMZU5w SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kteHZHRGtGU0hVaHg1UjdUM3Y5YkxlTnBIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUZBRi8xMjk1NzVDNDZFNDIxMUVFQUI0QzlDNkNDNEY5QUUwMi95LXh2R0RrRlNI VWh4NVI3VDN2OWJMZU5wSGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfe10piHAi+tdkN7FlL+JA3rc0540gTfcjRKTRDOUy1ahhiZHEebfAP6I3lmB j3zse+JHIuw0QCcnhHBK34dVvJzh1W/NVs50hTgJb6Fpmpe23DS1hClWC3wpdlg2 QFiKx3d6sbe+DRxMJckvO6l/XEio9yY27S/muFCftqYot7JOJTTv88GdJo6oJerh cF/nbUJGC+F34V+fsb42QzWuqYdKOS1737nDP5iZ904qQ/2O4Qm0CNk27E/BRfr+ AnFQn/N8fGuVJbag1hVCEwDXeAyJeEkSbPWVxXvKm3qBeKfuwtKI5T2mSvwQv49r KoyUVGKrAwGr4iT/1h7zDG1PkA== -----END CERTIFICATE-----Generated at Mon Mar 2 02:19:21 2026 by rpki-client