$ rpki-client -vvf rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft File: y1sC0Pxzbip6stKIoPwzFnpLvO0.mft (raw, json) Hash identifier: rcJClVG0YWmrrafVIlTT6o1pC6QUuV4whAGjJif5x50= Subject key identifier: 38:F0:19:A2:A3:95:F1:75:AF:FC:40:37:DA:37:27:2F:98:2B:F1:9E Authority key identifier: CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED Certificate issuer: /CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Certificate serial: 0265 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft Manifest number: 025E Signing time: Wed 25 Mar 2026 01:35:42 +0000 Manifest this update: Wed 25 Mar 2026 01:35:41 +0000 Manifest next update: Wed 01 Apr 2026 01:35:41 +0000 Files and hashes: 1: y1sC0Pxzbip6stKIoPwzFnpLvO0.crl (hash: a5aaa6woLsG3LXwt71pO9dZAyFUBrnUQkhpMMchBTSs=) 2: 3E122AE0876011ED84335D46C4F9AE02.roa (hash: lMy4Wa3bZNfZogKIHMCZaFATHLOtC1FrGFIRZTmFan8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:35:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 613 (0x265) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129F1D, serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Validity Not Before: Mar 25 01:35:41 2026 GMT Not After : Apr 1 01:35:41 2026 GMT Subject: CN=69c33bee-1cf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e4:fb:4b:1d:7b:1e:b5:90:3a:ed:38:cc:53: 33:62:25:35:06:0e:7d:7b:2d:e0:6a:a9:6e:90:65: 02:64:44:83:e5:54:68:b0:e8:65:04:f1:00:d2:56: 22:a9:4b:a3:76:61:fd:c7:c4:d1:21:51:09:be:d6: f1:15:a7:31:ab:17:07:e0:2f:83:fd:df:d0:5c:b5: 99:da:32:09:9f:3a:ea:bc:d1:40:1b:d1:ec:ac:b0: bb:15:86:10:c1:d6:4b:14:56:a3:3b:7a:02:ba:44: 31:67:07:19:1c:d8:1f:1b:91:34:7e:b3:1a:c4:9d: 61:62:00:9e:2f:e9:88:86:b5:cf:24:a0:fa:6a:e6: 0d:2c:7f:04:23:fd:06:f6:37:ee:c4:f8:25:68:a2: 9e:cf:cf:4e:1a:61:aa:1e:c3:ee:70:ca:fe:a0:c4: 27:56:89:72:79:6b:d3:40:f6:e5:ae:51:4c:ca:79: ea:31:f5:d9:69:68:e0:0d:8b:a7:2f:86:22:d3:11: f1:b7:8b:76:ce:ff:40:c0:b7:c5:9a:5d:17:80:00: c9:fa:ac:3f:4b:30:62:72:2c:f2:fe:57:59:35:c6: 46:dd:91:b5:c8:6b:74:2c:09:a7:dd:25:81:7c:cf: ee:af:80:7a:0c:d8:b6:72:83:37:df:77:1e:fd:05: 61:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:F0:19:A2:A3:95:F1:75:AF:FC:40:37:DA:37:27:2F:98:2B:F1:9E X509v3 Authority Key Identifier: keyid:CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:64:59:86:0e:e6:f8:7c:33:71:b7:1f:ff:91:a8:bd:41:bf: 11:e9:48:dd:25:98:84:6b:b3:bc:a2:84:ff:cf:05:08:3c:e4: b0:7a:ba:ce:32:93:9d:75:e4:61:ce:2c:dd:3c:7b:fa:51:61: 9b:df:05:a7:c6:01:2f:40:b6:a8:ac:e3:21:4a:6d:bc:51:a5: 55:b4:ba:f8:50:a6:db:24:8a:d9:01:1c:55:4e:e0:3a:27:6b: 71:b7:63:fe:5d:33:70:ca:73:8a:f7:14:e2:3d:13:a2:1d:0d: a9:30:75:a1:3d:7f:10:ce:a7:8b:4c:24:a9:7c:2d:7b:a0:52: c1:54:31:9b:94:b3:3d:1e:4b:75:40:7e:dd:2a:06:4b:04:54: b2:03:4f:82:36:9f:a2:eb:09:52:53:6c:a6:e3:93:b4:71:f8: 44:77:d2:de:48:91:4d:c7:6f:4b:65:97:57:82:4c:13:0f:a6: 64:7b:48:30:c5:70:e8:51:eb:d6:dd:06:fb:82:5c:9c:92:be: 16:2a:0e:b2:0e:cd:75:e5:78:20:51:07:63:04:62:93:c5:bf: b2:b4:23:c3:11:e4:6e:36:46:03:69:de:17:43:fc:3f:75:9a: 31:9c:17:4e:d0:2b:96:59:f4:96:3f:0a:51:b6:b2:26:9a:77: ec:b3:9f:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlGMUQxMTAvBgNVBAUTKENCNUIwMkQwRkM3MzZFMkE3QUIyRDI4OEEwRkMzMzE2 N0E0QkJDRUQwHhcNMjYwMzI1MDEzNTQxWhcNMjYwNDAxMDEzNTQxWjAYMRYwFAYD VQQDEw02OWMzM2JlZS0xY2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAouT7Sx17HrWQOu04zFMzYiU1Bg59ey3gaqlukGUCZESD5VRosOhlBPEA0lYi qUujdmH9x8TRIVEJvtbxFacxqxcH4C+D/d/QXLWZ2jIJnzrqvNFAG9HsrLC7FYYQ wdZLFFajO3oCukQxZwcZHNgfG5E0frMaxJ1hYgCeL+mIhrXPJKD6auYNLH8EI/0G 9jfuxPglaKKez89OGmGqHsPucMr+oMQnVolyeWvTQPblrlFMynnqMfXZaWjgDYun L4Yi0xHxt4t2zv9AwLfFml0XgADJ+qw/SzBicizy/ldZNcZG3ZG1yGt0LAmn3SWB fM/ur4B6DNi2coM333ce/QVhzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDjwGaKj lfF1r/xAN9o3Jy+YK/GeMB8GA1UdIwQYMBaAFMtbAtD8c24qerLSiKD8MxZ6S7zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUYxRC8yMUNBQkE1Qzg3 NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJpcDZzdEtJb1B3ekZucEx2 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxc0MwUHh6YmlwNnN0S0lvUHd6Rm5wTHZPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUYxRC8yMUNBQkE1Qzg3NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJp cDZzdEtJb1B3ekZucEx2TzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALmRZhg7m+Hwzcbcf/5GovUG/EelI3SWYhGuzvKKE/88FCDzksHq6zjKTnXXk Yc4s3Tx7+lFhm98Fp8YBL0C2qKzjIUptvFGlVbS6+FCm2ySK2QEcVU7gOidrcbdj /l0zcMpzivcU4j0Toh0NqTB1oT1/EM6ni0wkqXwte6BSwVQxm5SzPR5LdUB+3SoG SwRUsgNPgjafousJUlNspuOTtHH4RHfS3kiRTcdvS2WXV4JMEw+mZHtIMMVw6FHr 1t0G+4JcnJK+FioOsg7NdeV4IFEHYwRik8W/srQjwxHkbjZGA2neF0P8P3WaMZwX TtArlln0lj8KUbayJpp37LOfQw== -----END CERTIFICATE-----Generated at Thu Mar 26 11:58:16 2026 by rpki-client