$ rpki-client -vvf rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft File: y-PSoWWxlLlY7sO2qURXdyo6CSo.mft (raw, json) Hash identifier: s6090a/DjUd4pMxHoga6zI3d5jUZ6FU14CfwXFYE6pQ= Subject key identifier: 09:04:AA:23:9B:73:1D:D5:AC:3A:5F:36:B8:34:44:C5:D3:EA:B9:C1 Authority key identifier: CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A Certificate issuer: /CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Certificate serial: 08CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft Manifest number: 08B3 Signing time: Tue 24 Mar 2026 20:14:13 +0000 Manifest this update: Tue 24 Mar 2026 20:14:13 +0000 Manifest next update: Tue 31 Mar 2026 20:14:13 +0000 Files and hashes: 1: y-PSoWWxlLlY7sO2qURXdyo6CSo.crl (hash: 9YvpUdE3ZLrhcJbf5P2Qf5wyCxvlCSQVTyDoEtBJYxQ=) 2: 4B3AC7DC5FC811ED869A6956C4F9AE02.roa (hash: gwFMK8dXQ0BUy50EitJsxHltkOumkaciXIm9wu0O67s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:14:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2255 (0x8cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154FE7, serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Validity Not Before: Mar 24 20:14:13 2026 GMT Not After : Mar 31 20:14:13 2026 GMT Subject: CN=69c2f095-76d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:eb:b0:d6:8c:7a:bc:ed:7b:bf:04:46:de:6a: 69:22:48:d2:3a:04:23:21:d2:5d:94:f0:6f:88:39: 5d:e3:12:73:c0:c0:4a:63:40:08:8e:e8:32:3e:2d: 0a:47:7e:5a:40:32:b8:0f:20:a8:2b:cb:8a:87:5d: 8c:85:f4:13:1b:2c:13:4e:8a:68:28:1f:36:e3:13: 36:53:85:5c:87:95:ff:f6:ef:27:e2:df:36:0c:fc: 88:c1:94:bf:4c:d6:3d:c2:2e:c6:1f:da:3f:ba:e7: fd:2d:eb:55:a1:83:07:54:0b:db:f1:e4:6a:a5:f1: ca:15:c1:c6:d0:7b:29:6c:48:e4:bc:e7:b2:ba:2f: a3:c0:c1:60:99:77:75:63:eb:bd:3d:2b:91:c6:89: 2d:73:1f:46:a6:c3:2a:5a:de:e0:2d:63:ce:19:92: 3f:05:55:c0:33:46:4a:45:cf:7e:61:d3:ce:74:ba: 9e:2c:39:35:77:1f:51:8a:31:29:8d:e2:b2:b1:70: fc:ef:ef:5f:8f:71:37:ee:43:2a:40:3d:61:45:a2: d3:4f:ad:e5:9c:06:99:51:2c:a4:80:f1:fe:25:98: 6e:e7:e0:19:39:8d:09:92:87:ae:b0:24:e5:5c:ab: 14:98:d4:18:5d:80:bf:5a:0c:61:62:db:b3:31:a1: 4a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:04:AA:23:9B:73:1D:D5:AC:3A:5F:36:B8:34:44:C5:D3:EA:B9:C1 X509v3 Authority Key Identifier: keyid:CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:41:db:0b:36:f1:6f:50:fe:d7:21:ae:65:01:c3:18:0f:bf: ba:28:c3:51:18:6d:23:20:2b:8f:48:15:24:79:f9:bc:5e:5a: 38:60:9d:08:cc:32:40:9b:1b:ab:6c:f9:b0:c7:d8:78:3f:e0: 98:c0:c3:a7:84:7c:2c:3f:ff:10:e8:07:9e:19:d3:44:6c:bc: a4:f1:0c:12:f5:cd:9c:a8:46:91:88:e0:e6:b8:c3:c5:a9:a2: 67:d3:1a:e3:06:ba:43:bb:c6:c9:b3:3a:40:e0:88:78:01:f7: b4:31:17:2d:9a:7c:65:10:16:53:41:02:a2:11:16:cb:d4:5c: 42:26:27:c6:0d:59:21:ef:6d:d7:a1:d7:b5:e2:20:17:b0:05: 42:3f:34:6e:f7:56:78:76:2e:1b:25:c5:dc:2e:c6:89:e0:b1: 9d:30:e8:64:ff:dc:b6:7e:35:66:43:8a:92:ac:9a:1b:03:18: 10:e7:ca:f8:29:81:0e:a1:8e:e9:18:c9:41:e2:54:5c:54:ca: 5a:c8:0d:06:a3:16:a7:6e:59:90:44:02:cd:39:19:57:f9:7a: 01:cf:10:d2:df:f3:eb:be:25:ae:c7:42:ac:74:6d:21:c2:5c: 36:de:5f:45:11:c5:b3:12:04:d0:0c:ab:f0:50:c7:90:59:dc: 72:3c:3b:83 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRGRTcxMTAvBgNVBAUTKENCRTNEMkExNjVCMTk0Qjk1OEVFQzNCNkE5NDQ1Nzc3 MkEzQTA5MkEwHhcNMjYwMzI0MjAxNDEzWhcNMjYwMzMxMjAxNDEzWjAYMRYwFAYD VQQDEw02OWMyZjA5NS03NmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAluuw1ox6vO17vwRG3mppIkjSOgQjIdJdlPBviDld4xJzwMBKY0AIjugyPi0K R35aQDK4DyCoK8uKh12MhfQTGywTTopoKB824xM2U4Vch5X/9u8n4t82DPyIwZS/ TNY9wi7GH9o/uuf9LetVoYMHVAvb8eRqpfHKFcHG0HspbEjkvOeyui+jwMFgmXd1 Y+u9PSuRxoktcx9GpsMqWt7gLWPOGZI/BVXAM0ZKRc9+YdPOdLqeLDk1dx9RijEp jeKysXD87+9fj3E37kMqQD1hRaLTT63lnAaZUSykgPH+JZhu5+AZOY0JkoeusCTl XKsUmNQYXYC/WgxhYtuzMaFKFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAkEqiOb cx3VrDpfNrg0RMXT6rnBMB8GA1UdIwQYMBaAFMvj0qFlsZS5WO7DtqlEV3cqOgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEZFNy81QTJEODlFQURC N0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxMbFk3c08ycVVSWGR5bzZD U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktUFNvV1d4bExsWTdzTzJxVVJYZHlvNkNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEZFNy81QTJEODlFQURCN0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxM bFk3c08ycVVSWGR5bzZDU28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANUHbCzbxb1D+1yGuZQHDGA+/uijDURhtIyArj0gVJHn5vF5aOGCdCMwyQJsb q2z5sMfYeD/gmMDDp4R8LD//EOgHnhnTRGy8pPEMEvXNnKhGkYjg5rjDxamiZ9Ma 4wa6Q7vGybM6QOCIeAH3tDEXLZp8ZRAWU0ECohEWy9RcQiYnxg1ZIe9t16HXteIg F7AFQj80bvdWeHYuGyXF3C7GieCxnTDoZP/ctn41ZkOKkqyaGwMYEOfK+CmBDqGO 6RjJQeJUXFTKWsgNBqMWp25ZkEQCzTkZV/l6Ac8Q0t/z674lrsdCrHRtIcJcNt5f RRHFsxIE0Ayr8FDHkFnccjw7gw== -----END CERTIFICATE-----Generated at Thu Mar 26 12:50:55 2026 by rpki-client