$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft File: y6GXwEyqm9KV9XiEcqahCqP773A.mft (raw, json) Hash identifier: Ymztd8OXzKyKR+tKd31WANrW+IzneDu8+FB72jkZ+xI= Subject key identifier: 81:5D:C9:FA:4C:E1:BB:B7:00:F2:E8:34:30:9F:6B:E4:F1:49:3A:EF Authority key identifier: CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 Certificate issuer: /CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Certificate serial: 1BDA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft Manifest number: 1BA0 Signing time: Tue 24 Mar 2026 16:11:10 +0000 Manifest this update: Tue 24 Mar 2026 16:11:09 +0000 Manifest next update: Tue 31 Mar 2026 16:11:09 +0000 Files and hashes: 1: y6GXwEyqm9KV9XiEcqahCqP773A.crl (hash: uRin4aNJoANnuuw22yGHOZs71yRDjY/i1PRei9CQlGM=) 2: D90961489C1311EFA0BF1480C4F9AE02.roa (hash: jz3mUG66x+LfglClnYcC2zPJcIcV277FZw8xXWBFQHI=) 3: DE0A76C805B511EE95562E2AC4F9AE02.roa (hash: fSrLukxaAM59ZQEmbnxQBdopl2ygjyhAoNct9kxcFt4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:11:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7130 (0x1bda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Validity Not Before: Mar 24 16:11:09 2026 GMT Not After : Mar 31 16:11:09 2026 GMT Subject: CN=69c2b79e-ac40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e4:8b:d3:60:1d:84:04:ac:6b:e2:fe:43:dd: 70:c6:cf:2e:e7:8c:be:9a:fe:60:e5:54:3d:49:7c: b7:e8:d3:65:2a:96:40:0f:0a:9d:0c:83:36:79:b5: 68:89:9f:5f:ca:15:d2:f4:14:53:f7:55:31:66:2f: f3:e8:f2:7d:70:71:69:3a:7f:bd:d4:a4:f0:97:c7: 6d:96:23:7e:43:a6:8b:29:a0:43:f4:fe:71:56:7c: 08:1d:29:77:f9:ff:0c:22:e7:dd:99:aa:84:13:79: 4d:70:3d:05:5f:2d:a7:1f:0e:b2:6a:c0:8d:8a:bf: 4c:6a:52:11:f1:3d:2c:66:ae:64:66:a5:da:70:b1: 79:bc:db:30:58:00:b0:e2:e1:25:19:87:2b:dc:14: c8:b7:f6:56:19:e1:26:31:ac:37:a8:6d:98:9a:ba: 91:1a:ce:c5:e6:ec:2b:f1:03:c7:ea:fe:c9:d0:ff: b4:36:ac:00:cb:14:7e:98:a5:6a:19:87:ad:36:16: 5b:9d:ba:e5:f4:f9:68:a9:f7:d6:c4:3a:77:77:3b: a0:f9:f8:dd:12:c3:cd:94:14:6f:2e:2a:98:05:ff: c6:4e:9b:a3:f3:59:0a:56:c3:67:c0:68:d4:35:5d: c3:c5:f6:63:0c:40:6f:39:7f:29:9c:51:0f:e5:00: 6c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:5D:C9:FA:4C:E1:BB:B7:00:F2:E8:34:30:9F:6B:E4:F1:49:3A:EF X509v3 Authority Key Identifier: keyid:CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:1b:2c:0c:04:4e:fd:ef:1c:c6:da:c7:17:0a:9d:aa:ee:b3: 25:2d:1d:9a:ea:50:5e:aa:da:85:90:1d:af:2d:31:d9:8c:95: 06:0e:86:37:2a:03:93:40:1d:f3:d7:56:5e:15:2a:0f:13:d2: c7:50:96:5e:44:5b:0b:05:f2:44:00:ed:98:23:69:35:b6:41: 79:01:70:1f:3a:03:3f:c4:0c:66:9f:37:87:c9:fc:46:dc:d1: 88:2b:17:b0:ca:2a:ad:5e:94:9f:0f:31:fa:32:20:b0:06:f3: c9:cc:00:c5:d4:a4:23:1a:5d:62:6a:74:c6:5c:33:d4:4e:1f: d7:59:fa:6a:b1:21:1a:88:4e:a9:84:36:a5:a1:b7:10:e0:63: 7b:a9:b2:89:47:b0:e6:9d:12:0a:8e:7d:dc:56:54:c9:87:b1: 9b:36:35:8f:e2:68:59:d0:2d:8d:e2:82:80:02:f1:d6:75:89: 86:df:31:6a:58:5b:41:8f:2b:48:f6:82:65:b9:73:2a:28:17: 0c:32:bb:9e:c2:ae:14:26:ae:ef:e7:5b:55:60:81:9c:04:e7: 4b:2b:4e:f7:40:92:0d:a1:5a:7f:53:ee:9e:19:27:39:d0:ba: d7:ab:0f:f1:2c:09:46:35:c1:2b:96:7f:c1:9b:8d:bf:78:a1: 2b:7b:69:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICG9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKENCQTE5N0MwNENBQTlCRDI5NUY1Nzg4NDcyQTZBMTBB QTNGQkVGNzAwHhcNMjYwMzI0MTYxMTA5WhcNMjYwMzMxMTYxMTA5WjAYMRYwFAYD VQQDEw02OWMyYjc5ZS1hYzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOSL02AdhASsa+L+Q91wxs8u54y+mv5g5VQ9SXy36NNlKpZADwqdDIM2ebVo iZ9fyhXS9BRT91UxZi/z6PJ9cHFpOn+91KTwl8dtliN+Q6aLKaBD9P5xVnwIHSl3 +f8MIufdmaqEE3lNcD0FXy2nHw6yasCNir9MalIR8T0sZq5kZqXacLF5vNswWACw 4uElGYcr3BTIt/ZWGeEmMaw3qG2YmrqRGs7F5uwr8QPH6v7J0P+0NqwAyxR+mKVq GYetNhZbnbrl9PloqffWxDp3dzug+fjdEsPNlBRvLiqYBf/GTpuj81kKVsNnwGjU NV3DxfZjDEBvOX8pnFEP5QBsnwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIFdyfpM 4bu3APLoNDCfa+TxSTrvMB8GA1UdIwQYMBaAFMuhl8BMqpvSlfV4hHKmoQqj++9w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xREI3OTgzQzI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05S1Y5WGlFY3FhaENxUDc3 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k2R1h3RXlxbTlLVjlYaUVjcWFoQ3FQNzczQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xREI3OTgzQzI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05 S1Y5WGlFY3FhaENxUDc3M0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcBssDARO/e8cxtrHFwqdqu6zJS0dmupQXqrahZAdry0x2YyVBg6GNyoDk0Ad 89dWXhUqDxPSx1CWXkRbCwXyRADtmCNpNbZBeQFwHzoDP8QMZp83h8n8RtzRiCsX sMoqrV6Unw8x+jIgsAbzycwAxdSkIxpdYmp0xlwz1E4f11n6arEhGohOqYQ2paG3 EOBje6myiUew5p0SCo593FZUyYexmzY1j+JoWdAtjeKCgALx1nWJht8xalhbQY8r SPaCZblzKigXDDK7nsKuFCau7+dbVWCBnATnSytO90CSDaFaf1PunhknOdC616sP 8SwJRjXBK5Z/wZuNv3ihK3tpKA== -----END CERTIFICATE-----Generated at Thu Mar 26 17:02:32 2026 by rpki-client