$ rpki-client -vvf rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft File: lyuQ2cUZIlatlkdbOSurGnp5zC0.mft (raw, json) Hash identifier: 1GJNIooztnUXKwZpBeZ/qBTFkESeIwkohsh7LL3PSz4= Subject key identifier: 7E:20:EA:07:34:04:F0:1C:52:1C:35:40:FE:B1:1D:12:30:19:1B:1E Authority key identifier: 97:2B:90:D9:C5:19:22:56:AD:96:47:5B:39:2B:AB:1A:7A:79:CC:2D Certificate issuer: /CN=A9132FD9/serialNumber=972B90D9C5192256AD96475B392BAB1A7A79CC2D Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lyuQ2cUZIlatlkdbOSurGnp5zC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft Manifest number: A9 Signing time: Wed 25 Mar 2026 06:27:43 +0000 Manifest this update: Wed 25 Mar 2026 06:27:43 +0000 Manifest next update: Wed 01 Apr 2026 06:27:43 +0000 Files and hashes: 1: lyuQ2cUZIlatlkdbOSurGnp5zC0.crl (hash: p4pJ7PahRhBmHK5pmbA09vVaGUGr5d7qo2kUSrFWH9Q=) 2: DCC2224A313011F0BE214A64C4F9AE02.roa (hash: QFbRVf66lkbe54l2PG3KMXf9eXUVn8c/LsTJGZHTzRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.crl rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lyuQ2cUZIlatlkdbOSurGnp5zC0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:27:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132FD9, serialNumber=972B90D9C5192256AD96475B392BAB1A7A79CC2D Validity Not Before: Mar 25 06:27:43 2026 GMT Not After : Apr 1 06:27:43 2026 GMT Subject: CN=69c3805f-b0e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:e6:18:7c:77:ca:b6:22:cf:9a:46:3f:aa:c1: 98:86:79:2a:93:35:b8:9c:0d:8b:dc:b9:55:0c:8e: 51:13:ea:be:ac:00:7a:8a:f9:48:8a:4b:1c:47:98: f8:07:0a:2e:02:61:02:0f:a2:e3:f9:12:c3:66:78: c2:07:d7:47:f6:c3:c4:f7:4a:8f:8a:4d:5a:5d:9d: 85:1c:db:92:b4:b8:da:6b:26:66:32:3a:d8:4f:3f: 78:21:da:05:d7:c5:f9:0e:f4:f9:79:b0:2a:c2:9e: 9b:ee:e2:0f:27:9c:d9:cf:97:00:3b:bf:1e:b6:a9: af:7f:06:e1:f4:fc:32:bb:7b:f1:56:fc:00:49:53: 96:68:de:4b:6b:ef:79:90:ac:96:e2:be:64:26:88: 44:1f:c7:fc:d6:cd:ac:97:c0:50:6d:c9:35:f8:fc: 03:0e:c4:5c:d8:a6:86:92:ec:4d:78:22:1e:5f:19: f1:8b:d4:18:fc:87:e0:3c:d1:fd:97:8a:fe:9c:67: 37:4e:c7:2d:74:12:5f:37:88:3b:5f:d0:4d:9a:b3: 81:61:93:6e:90:7a:be:91:38:81:0d:b9:64:07:f2: 5e:56:4e:db:be:14:2e:9e:0a:92:df:cd:e9:a0:93: 8d:4e:01:ae:1c:6d:51:53:83:58:06:27:a1:a4:1c: bf:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:20:EA:07:34:04:F0:1C:52:1C:35:40:FE:B1:1D:12:30:19:1B:1E X509v3 Authority Key Identifier: keyid:97:2B:90:D9:C5:19:22:56:AD:96:47:5B:39:2B:AB:1A:7A:79:CC:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lyuQ2cUZIlatlkdbOSurGnp5zC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132FD9/7F9A70342BB511F09DE5BA4EC4F9AE02/lyuQ2cUZIlatlkdbOSurGnp5zC0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:ef:67:12:8a:b4:f8:f0:95:61:fd:87:24:5d:19:f8:72:d7: 7f:48:5a:d8:1f:58:91:78:70:d6:8d:36:04:f9:c7:4b:7a:d6: fe:cc:6d:90:45:ed:d4:be:25:38:65:ad:05:8c:f2:bd:da:94: 87:1b:05:9f:56:42:59:8b:ec:e4:ff:5c:0c:ab:b5:d1:f1:b5: c8:d2:9f:26:60:c3:f3:8f:8a:fa:21:ef:d2:e5:fe:16:2f:27: 43:a6:f6:d3:36:b4:83:e4:ed:64:ee:3a:0c:94:e2:68:04:b3: de:20:3e:4a:8b:1a:49:20:b0:24:47:5d:ef:9f:d9:b0:32:61: 5d:f2:74:a8:61:98:ae:64:ab:29:53:6c:b2:5e:29:d2:b1:5e: 1a:90:be:d1:1f:58:2b:e6:9d:d8:ac:d2:67:2a:ff:12:1f:a6: 6b:5b:80:a5:f1:3a:31:04:66:13:7b:ea:17:42:6d:1a:39:bd: c3:ac:3b:82:12:bd:f4:67:e3:a9:b8:d5:24:02:a0:71:29:46: 5d:f5:3d:7d:bd:74:52:1d:af:f1:fc:fb:9d:7d:11:b6:ef:15: 4a:29:30:d1:87:82:f1:3e:f8:09:88:c3:1d:9d:bf:2d:5a:5b: 19:5c:b1:d3:07:d6:2c:0c:6f:92:8d:09:53:58:6f:fe:73:3d: 3d:bc:85:18 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGRDkxMTAvBgNVBAUTKDk3MkI5MEQ5QzUxOTIyNTZBRDk2NDc1QjM5MkJBQjFB N0E3OUNDMkQwHhcNMjYwMzI1MDYyNzQzWhcNMjYwNDAxMDYyNzQzWjAYMRYwFAYD VQQDEw02OWMzODA1Zi1iMGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8uYYfHfKtiLPmkY/qsGYhnkqkzW4nA2L3LlVDI5RE+q+rAB6ivlIikscR5j4 BwouAmECD6Lj+RLDZnjCB9dH9sPE90qPik1aXZ2FHNuStLjaayZmMjrYTz94IdoF 18X5DvT5ebAqwp6b7uIPJ5zZz5cAO78etqmvfwbh9Pwyu3vxVvwASVOWaN5La+95 kKyW4r5kJohEH8f81s2sl8BQbck1+PwDDsRc2KaGkuxNeCIeXxnxi9QY/IfgPNH9 l4r+nGc3TsctdBJfN4g7X9BNmrOBYZNukHq+kTiBDblkB/JeVk7bvhQungqS383p oJONTgGuHG1RU4NYBiehpBy/5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH4g6gc0 BPAcUhw1QP6xHRIwGRseMB8GA1UdIwQYMBaAFJcrkNnFGSJWrZZHWzkrqxp6ecwt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkZEOS83RjlBNzAzNDJC QjUxMUYwOURFNUJBNEVDNEY5QUUwMi9seXVRMmNVWklsYXRsa2RiT1N1ckducDV6 QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x5dVEyY1VaSWxhdGxrZGJPU3VyR25wNXpDMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkZEOS83RjlBNzAzNDJCQjUxMUYwOURFNUJBNEVDNEY5QUUwMi9seXVRMmNVWkls YXRsa2RiT1N1ckducDV6QzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADe9nEoq0+PCVYf2HJF0Z+HLXf0ha2B9YkXhw1o02BPnHS3rW/sxtkEXt1L4l OGWtBYzyvdqUhxsFn1ZCWYvs5P9cDKu10fG1yNKfJmDD84+K+iHv0uX+Fi8nQ6b2 0za0g+TtZO46DJTiaASz3iA+SosaSSCwJEdd75/ZsDJhXfJ0qGGYrmSrKVNssl4p 0rFeGpC+0R9YK+ad2KzSZyr/Eh+ma1uApfE6MQRmE3vqF0JtGjm9w6w7ghK99Gfj qbjVJAKgcSlGXfU9fb10Uh2v8fz7nX0Rtu8VSikw0YeC8T74CYjDHZ2/LVpbGVyx 0wfWLAxvko0JU1hv/nM9PbyFGA== -----END CERTIFICATE-----Generated at Thu Mar 26 14:07:56 2026 by rpki-client