$ rpki-client -vvf rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft File: y-PSoWWxlLlY7sO2qURXdyo6CSo.mft (raw, json) Hash identifier: O2PCOSvXZyBrZosTwKWnnPG6/jadOddQRcjMKTXR4Mg= Subject key identifier: 2D:6F:61:3B:9C:CB:F5:41:EB:12:E4:39:02:B0:55:1D:87:2E:4C:7A Authority key identifier: CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A Certificate issuer: /CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Certificate serial: 0869 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft Manifest number: 085C Signing time: Sat 18 Oct 2025 21:50:08 +0000 Manifest this update: Sat 18 Oct 2025 21:50:07 +0000 Manifest next update: Sat 25 Oct 2025 21:50:07 +0000 Files and hashes: 1: y-PSoWWxlLlY7sO2qURXdyo6CSo.crl (hash: j1n3lhx5sDiwvJVSYNKL5RRYEUwbl+U1AkHVFHapEno=) 2: 4B3AC7DC5FC811ED869A6956C4F9AE02.roa (hash: hwrYZn+i2OUNCmUoK3ena1siLJOV1HVO2m5EjPVb3kw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:50:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2153 (0x869) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154FE7, serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Validity Not Before: Oct 18 21:50:07 2025 GMT Not After : Oct 25 21:50:07 2025 GMT Subject: CN=68f40b90-6007 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5d:23:26:4e:de:e9:e0:b5:b8:7a:20:56:e0: 0a:66:8d:18:d9:b5:f3:a4:72:81:22:53:39:75:fb: a3:e2:be:28:99:5f:38:2c:bc:44:6e:cb:48:72:39: 80:9a:53:50:d9:28:49:8a:0f:62:3e:e6:8e:b4:3b: c0:9d:18:78:76:ca:0f:f8:06:92:82:35:c7:63:94: ed:73:6a:51:a8:b6:26:3d:8f:05:fa:3b:81:fd:84: 01:01:c3:d9:4e:21:f8:b7:4e:dc:0c:e7:23:d5:fa: 69:64:a1:74:e6:49:63:74:3d:01:af:0d:df:84:75: 0a:b0:66:94:fc:31:ec:5a:9e:2d:9a:ea:c6:b3:31: da:d5:ac:9f:c2:83:ea:95:29:5e:7b:22:e0:e7:5e: 5d:0b:7d:45:7d:bd:d7:4e:40:93:29:1c:0d:03:57: 4e:1f:c4:10:48:5b:7b:90:b0:7e:a7:b5:fc:7e:05: 9e:ff:7b:98:be:42:f3:d3:20:05:c4:58:63:75:68: ef:6c:cd:ac:ef:83:98:77:e8:b4:55:39:44:5a:aa: e4:60:69:ae:32:fb:ff:6f:35:70:af:fd:5f:5f:37: 5a:45:3f:14:d7:d8:19:32:a7:fd:08:69:2d:24:de: bb:0a:33:b9:cf:33:3b:e7:41:61:a8:f7:5f:c3:18: 65:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:6F:61:3B:9C:CB:F5:41:EB:12:E4:39:02:B0:55:1D:87:2E:4C:7A X509v3 Authority Key Identifier: keyid:CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:c8:e0:c5:7f:86:9e:45:cf:bd:1e:b1:d1:9e:7a:5d:ed:57: 44:71:30:0a:fb:5c:55:91:13:bf:47:c7:29:98:fc:09:8f:45: 43:9f:b7:a2:ee:fe:f3:00:98:8e:a3:9c:80:ba:9e:12:54:34: d6:93:ae:46:46:3d:aa:8a:73:6f:94:60:aa:21:97:b0:99:8b: be:c9:4d:18:19:7d:4f:fc:61:59:1b:41:63:6b:e1:60:ab:47: 48:65:45:4f:27:e5:54:59:86:e0:43:75:d0:6b:d8:3d:b8:7e: 12:40:15:14:fc:8e:1f:8d:6d:a2:05:db:b3:73:49:6a:18:8d: 4f:52:62:33:09:2b:9a:f8:5f:ab:a1:c8:90:49:67:1b:d0:ac: 00:b4:e7:30:59:3e:b8:27:a7:24:59:a6:61:ea:ce:33:35:99: 47:89:7d:d2:1f:58:d3:34:ee:eb:74:d8:46:e8:44:d9:17:a7: f0:49:ab:5c:3d:16:30:a9:af:8a:0f:15:e0:40:29:fe:a3:62: 57:6b:7a:ae:50:6a:f8:e8:94:3a:39:8e:5c:87:74:98:e5:b3: 8e:8c:71:8b:01:e7:44:f0:27:74:d2:0a:ce:ba:77:6e:d4:f0: 2c:53:dd:88:d2:8c:2d:a7:c1:69:c0:7e:c9:ad:84:5f:98:fa: 65:ed:4d:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRGRTcxMTAvBgNVBAUTKENCRTNEMkExNjVCMTk0Qjk1OEVFQzNCNkE5NDQ1Nzc3 MkEzQTA5MkEwHhcNMjUxMDE4MjE1MDA3WhcNMjUxMDI1MjE1MDA3WjAYMRYwFAYD VQQDEw02OGY0MGI5MC02MDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvF0jJk7e6eC1uHogVuAKZo0Y2bXzpHKBIlM5dfuj4r4omV84LLxEbstIcjmA mlNQ2ShJig9iPuaOtDvAnRh4dsoP+AaSgjXHY5Ttc2pRqLYmPY8F+juB/YQBAcPZ TiH4t07cDOcj1fppZKF05kljdD0Brw3fhHUKsGaU/DHsWp4tmurGszHa1ayfwoPq lSleeyLg515dC31Ffb3XTkCTKRwNA1dOH8QQSFt7kLB+p7X8fgWe/3uYvkLz0yAF xFhjdWjvbM2s74OYd+i0VTlEWqrkYGmuMvv/bzVwr/1fXzdaRT8U19gZMqf9CGkt JN67CjO5zzM750FhqPdfwxhl0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC1vYTuc y/VB6xLkOQKwVR2HLkx6MB8GA1UdIwQYMBaAFMvj0qFlsZS5WO7DtqlEV3cqOgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEZFNy81QTJEODlFQURC N0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxMbFk3c08ycVVSWGR5bzZD U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktUFNvV1d4bExsWTdzTzJxVVJYZHlvNkNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEZFNy81QTJEODlFQURCN0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxM bFk3c08ycVVSWGR5bzZDU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3yODFf4aeRc+9HrHRnnpd7VdEcTAK+1xVkRO/R8cpmPwJj0VDn7ei 7v7zAJiOo5yAup4SVDTWk65GRj2qinNvlGCqIZewmYu+yU0YGX1P/GFZG0Fja+Fg q0dIZUVPJ+VUWYbgQ3XQa9g9uH4SQBUU/I4fjW2iBduzc0lqGI1PUmIzCSua+F+r ociQSWcb0KwAtOcwWT64J6ckWaZh6s4zNZlHiX3SH1jTNO7rdNhG6ETZF6fwSatc PRYwqa+KDxXgQCn+o2JXa3quUGr46JQ6OY5ch3SY5bOOjHGLAedE8Cd00grOundu 1PAsU92I0owtp8FpwH7JrYRfmPpl7U3y -----END CERTIFICATE-----Generated at Mon Oct 20 07:46:25 2025 by rpki-client