$ rpki-client -vvf rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft File: y-PSoWWxlLlY7sO2qURXdyo6CSo.mft (raw, json) Hash identifier: q/5EROxmmmjC26TYcc15doema4pJ9dyQ4JWlo2D3LiE= Subject key identifier: 64:B9:10:E5:C6:CA:99:C6:C3:69:62:05:F6:E6:0B:3E:A1:13:7B:47 Authority key identifier: CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A Certificate issuer: /CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Certificate serial: 08E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft Manifest number: 08CC Signing time: Tue 12 May 2026 20:28:58 +0000 Manifest this update: Tue 12 May 2026 20:28:58 +0000 Manifest next update: Tue 19 May 2026 20:28:58 +0000 Files and hashes: 1: y-PSoWWxlLlY7sO2qURXdyo6CSo.crl (hash: CkKT9wEEE/j0VngscikVMilLvAKlrymaarKg5bgNUEE=) 2: 4B3AC7DC5FC811ED869A6956C4F9AE02.roa (hash: gwFMK8dXQ0BUy50EitJsxHltkOumkaciXIm9wu0O67s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:57:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2280 (0x8e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154FE7, serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Validity Not Before: May 12 20:28:58 2026 GMT Not After : May 19 20:28:58 2026 GMT Subject: CN=6a038d8a-9383 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:0f:43:a3:c3:a5:af:0f:50:d8:8f:43:c2:b6: 65:95:df:fd:0b:df:25:bc:ad:89:4b:ca:e3:30:aa: a6:20:67:75:cd:7e:55:7b:9a:18:6c:51:c4:0b:89: 01:8e:58:73:e3:89:5a:0e:56:7e:10:b2:5e:1c:18: 3f:93:cc:01:28:f5:cd:b4:5a:ac:b9:b1:40:a6:04: a8:96:7b:0b:85:79:f5:b8:3e:39:49:70:18:23:b4: 45:5b:57:60:1e:60:55:4d:2b:e5:ea:62:f9:1f:6e: 27:39:08:47:d2:58:51:80:e3:6d:2b:af:75:1d:99: 73:fd:82:7a:ce:7a:ab:d5:02:14:42:d0:24:74:79: 59:34:d7:de:65:54:d1:b6:3f:5d:0c:60:88:7c:b4: 88:ab:fa:79:89:46:29:de:01:a8:fa:01:9d:87:43: 9c:7b:e2:80:22:9d:cc:c2:d4:ac:b4:fd:86:74:22: fd:3d:7c:c9:fe:6b:39:7d:9f:67:99:88:07:81:7b: 60:d5:da:8e:c3:f8:1e:fa:b1:8c:ba:20:b4:6b:4a: 9e:2e:2c:c4:63:f5:81:2e:6e:98:e8:f1:1e:e6:cb: ae:04:3d:8e:2c:0a:74:b2:65:d7:1a:d0:ec:15:9e: b8:c8:71:04:cb:ec:0c:c7:68:5b:49:db:12:67:43: 55:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:B9:10:E5:C6:CA:99:C6:C3:69:62:05:F6:E6:0B:3E:A1:13:7B:47 X509v3 Authority Key Identifier: keyid:CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:04:99:62:b6:d3:a7:8c:93:70:7e:31:84:98:a7:c5:12:b2: 4a:22:df:31:44:c6:2f:02:79:3f:fd:1b:d5:28:06:cf:c2:bb: fa:65:6f:c2:69:ce:a8:f2:d9:6e:aa:9d:f9:1f:26:cc:f8:fc: 16:84:63:b7:cc:f4:4b:3e:12:d8:8b:de:05:71:d5:f2:f5:98: c1:f4:1c:f4:4b:2e:54:aa:65:15:f6:f1:2f:98:20:ef:8e:3b: f7:e0:78:a6:ce:40:af:7e:4f:53:0d:e6:29:cd:9a:ec:a3:01: 23:4b:da:be:90:0b:f6:ad:c3:77:b2:83:89:5c:99:67:9b:5b: 5e:84:59:77:47:1a:83:42:c2:07:a7:97:95:6d:76:db:d9:2a: c7:1e:ec:29:37:d6:86:1f:5d:d6:77:20:40:64:c0:d0:97:55: 7d:ba:09:cf:d4:ec:50:d4:0e:f4:b5:b7:41:cb:f7:d2:39:d0: e9:89:bc:6f:75:5c:39:07:b2:c2:06:c6:3d:e7:7c:55:2d:3d: 2b:00:6b:54:1f:63:55:68:73:19:40:f2:61:ae:56:6d:73:7b: 91:b0:fc:13:29:7b:05:8c:ab:7c:43:0a:ad:81:d1:49:4f:0b: e8:67:da:a6:94:b4:0f:74:d9:a5:75:22:b6:d7:ce:2a:ce:62: 1b:04:80:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRGRTcxMTAvBgNVBAUTKENCRTNEMkExNjVCMTk0Qjk1OEVFQzNCNkE5NDQ1Nzc3 MkEzQTA5MkEwHhcNMjYwNTEyMjAyODU4WhcNMjYwNTE5MjAyODU4WjAYMRYwFAYD VQQDEw02YTAzOGQ4YS05MzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqA9Do8Olrw9Q2I9DwrZlld/9C98lvK2JS8rjMKqmIGd1zX5Ve5oYbFHEC4kB jlhz44laDlZ+ELJeHBg/k8wBKPXNtFqsubFApgSolnsLhXn1uD45SXAYI7RFW1dg HmBVTSvl6mL5H24nOQhH0lhRgONtK691HZlz/YJ6znqr1QIUQtAkdHlZNNfeZVTR tj9dDGCIfLSIq/p5iUYp3gGo+gGdh0Oce+KAIp3MwtSstP2GdCL9PXzJ/ms5fZ9n mYgHgXtg1dqOw/ge+rGMuiC0a0qeLizEY/WBLm6Y6PEe5suuBD2OLAp0smXXGtDs FZ64yHEEy+wMx2hbSdsSZ0NVPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGS5EOXG ypnGw2liBfbmCz6hE3tHMB8GA1UdIwQYMBaAFMvj0qFlsZS5WO7DtqlEV3cqOgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEZFNy81QTJEODlFQURC N0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxMbFk3c08ycVVSWGR5bzZD U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktUFNvV1d4bExsWTdzTzJxVVJYZHlvNkNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEZFNy81QTJEODlFQURCN0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxM bFk3c08ycVVSWGR5bzZDU28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADwSZYrbTp4yTcH4xhJinxRKySiLfMUTGLwJ5P/0b1SgGz8K7+mVvwmnOqPLZ bqqd+R8mzPj8FoRjt8z0Sz4S2IveBXHV8vWYwfQc9EsuVKplFfbxL5gg74479+B4 ps5Ar35PUw3mKc2a7KMBI0vavpAL9q3Dd7KDiVyZZ5tbXoRZd0cag0LCB6eXlW12 29kqxx7sKTfWhh9d1ncgQGTA0JdVfboJz9TsUNQO9LW3Qcv30jnQ6Ym8b3VcOQey wgbGPed8VS09KwBrVB9jVWhzGUDyYa5WbXN7kbD8Eyl7BYyrfEMKrYHRSU8L6Gfa ppS0D3TZpXUittfOKs5iGwSAqA== -----END CERTIFICATE-----Generated at Tue May 12 23:10:15 2026 by rpki-client