$ rpki-client -vvf rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft File: punLpSnAWpYkymA1SKPjFJF1jys.mft (raw, json) Hash identifier: dWBX3sHjayKH7y/eeaDn3fmTmSy5OEeTgx9CigXBlcw= Subject key identifier: 3C:20:D6:FF:9D:4A:06:EF:D2:67:A2:43:BF:81:5E:D7:43:FD:0B:65 Authority key identifier: A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B Certificate issuer: /CN=A9189B41/serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B Certificate serial: 0134 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft Manifest number: 012C Signing time: Wed 25 Mar 2026 04:49:01 +0000 Manifest this update: Wed 25 Mar 2026 04:49:00 +0000 Manifest next update: Wed 01 Apr 2026 04:49:00 +0000 Files and hashes: 1: punLpSnAWpYkymA1SKPjFJF1jys.crl (hash: 87OZMwtiZE9l+VzmZWHLqrjjJs3XIwjj3QeSDB84J+M=) 2: 17AF252C605A11EFB7F45361C4F9AE02.roa (hash: 8DprNqSctLRq9Um1DBwsXYIm/hC+xtUbZc0GLoio6ks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:49:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189B41, serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B Validity Not Before: Mar 25 04:49:00 2026 GMT Not After : Apr 1 04:49:00 2026 GMT Subject: CN=69c3693d-f5b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:aa:f0:21:f1:02:aa:36:aa:1d:17:c9:f6:17: 74:72:6c:d3:06:f7:08:15:7b:97:fd:5c:f5:68:19: c9:94:e5:70:b4:59:7e:ac:61:a3:98:2e:a3:66:4d: 4c:6d:ab:de:3c:ea:0e:39:b0:5e:d7:6a:be:8b:f0: 67:a0:38:33:70:38:ce:b1:4f:5d:d0:f5:9a:67:dc: 58:ac:51:a1:69:4d:9a:36:b4:c0:15:f7:36:83:6a: e6:9c:0b:4d:91:7c:38:ea:21:8a:34:76:0c:05:73: eb:d6:31:a0:34:ba:49:7f:33:16:94:86:76:d8:10: 39:47:a6:42:f5:30:cd:b0:b4:40:3b:64:21:72:2d: 84:ae:46:14:db:81:da:fb:0b:d2:3c:77:b8:10:d0: 0a:38:f3:27:94:d6:70:dc:cf:43:a0:0f:86:e8:fb: 38:59:5e:97:d7:d6:4c:d1:14:01:23:3c:e8:ce:4b: 5f:55:85:aa:72:80:9c:33:a9:ce:c9:5e:5a:6f:aa: 8d:46:ab:6e:a1:cb:20:f3:7a:3a:c2:47:73:05:e5: 37:89:d0:bc:7e:a3:76:f2:e9:d0:c8:f1:79:61:8f: 8a:6e:fb:da:89:54:6e:de:b5:3a:9e:a2:cd:5a:a7: 20:b7:0a:39:18:00:0f:46:8f:79:48:75:00:f0:bc: c4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:20:D6:FF:9D:4A:06:EF:D2:67:A2:43:BF:81:5E:D7:43:FD:0B:65 X509v3 Authority Key Identifier: keyid:A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:97:00:0b:d4:5b:aa:f7:5e:6e:0a:bc:ce:e0:9e:e6:26:ae: a7:cf:21:8e:57:85:25:f5:58:f2:a3:ac:35:51:4f:b7:ad:ac: 08:5d:5d:5f:2a:7f:bc:06:59:6d:03:c7:e3:cf:fb:41:0d:d3: 25:92:14:47:a6:b1:93:6b:31:84:9f:93:f6:5e:f2:9b:b7:03: 11:f4:f7:cd:88:eb:f8:58:99:5c:73:52:eb:b0:85:69:49:d7: b4:2b:0a:b1:0c:fd:e3:66:f9:73:7f:39:f5:eb:ca:7f:4d:7e: b2:ec:b0:ce:df:8d:e6:02:27:96:5a:6c:67:75:46:37:97:4f: ff:d1:9b:04:05:b1:a5:ca:52:98:6f:72:aa:df:cb:c8:7b:ce: eb:e3:36:00:f8:cf:87:61:f0:53:49:17:30:e1:a4:c2:3a:86: 3d:4c:8a:10:bd:52:cd:8f:8f:68:d6:66:3a:30:32:ae:42:94: 3a:d4:d5:a5:37:e1:8a:fd:ee:45:50:b9:2e:3d:d0:fc:27:23: 28:d0:13:dc:c8:65:9d:c4:6d:aa:a5:10:9c:7c:57:cc:ca:f7: ea:d7:a7:54:09:c3:7a:36:5d:ad:cc:73:f9:09:be:99:3c:3a: 41:99:4f:fd:e4:df:98:4e:82:01:05:4b:55:7a:04:52:d9:cf: a3:8f:ea:2b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlCNDExMTAvBgNVBAUTKEE2RTlDQkE1MjlDMDVBOTYyNENBNjAzNTQ4QTNFMzE0 OTE3NThGMkIwHhcNMjYwMzI1MDQ0OTAwWhcNMjYwNDAxMDQ0OTAwWjAYMRYwFAYD VQQDEw02OWMzNjkzZC1mNWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqrwIfECqjaqHRfJ9hd0cmzTBvcIFXuX/Vz1aBnJlOVwtFl+rGGjmC6jZk1M bavePOoOObBe12q+i/BnoDgzcDjOsU9d0PWaZ9xYrFGhaU2aNrTAFfc2g2rmnAtN kXw46iGKNHYMBXPr1jGgNLpJfzMWlIZ22BA5R6ZC9TDNsLRAO2Qhci2ErkYU24Ha +wvSPHe4ENAKOPMnlNZw3M9DoA+G6Ps4WV6X19ZM0RQBIzzozktfVYWqcoCcM6nO yV5ab6qNRqtuocsg83o6wkdzBeU3idC8fqN28unQyPF5YY+KbvvaiVRu3rU6nqLN Wqcgtwo5GAAPRo95SHUA8LzEqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDwg1v+d Sgbv0meiQ7+BXtdD/QtlMB8GA1UdIwQYMBaAFKbpy6UpwFqWJMpgNUij4xSRdY8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUI0MS82OUI3Njk4RTYw NTkxMUVGOUMyMjM3NjBDNEY5QUUwMi9wdW5McFNuQVdwWWt5bUExU0tQakZKRjFq eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3B1bkxwU25BV3BZa3ltQTFTS1BqRkpGMWp5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUI0MS82OUI3Njk4RTYwNTkxMUVGOUMyMjM3NjBDNEY5QUUwMi9wdW5McFNuQVdw WWt5bUExU0tQakZKRjFqeXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJ5cAC9Rbqvdebgq8zuCe5iaup88hjleFJfVY8qOsNVFPt62sCF1dXyp/vAZZ bQPH48/7QQ3TJZIUR6axk2sxhJ+T9l7ym7cDEfT3zYjr+FiZXHNS67CFaUnXtCsK sQz942b5c3859evKf01+suywzt+N5gInllpsZ3VGN5dP/9GbBAWxpcpSmG9yqt/L yHvO6+M2APjPh2HwU0kXMOGkwjqGPUyKEL1SzY+PaNZmOjAyrkKUOtTVpTfhiv3u RVC5Lj3Q/CcjKNAT3MhlncRtqqUQnHxXzMr36tenVAnDejZdrcxz+Qm+mTw6QZlP /eTfmE6CAQVLVXoEUtnPo4/qKw== -----END CERTIFICATE-----Generated at Thu Mar 26 16:59:21 2026 by rpki-client