$ rpki-client -vvf rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft File: y-PSoWWxlLlY7sO2qURXdyo6CSo.mft (raw, json) Hash identifier: q3ckDCMikjo1axctNW/yYhevflCtOJ8du+fr92DVGEE= Subject key identifier: D5:F4:0F:BA:C5:59:0D:1A:40:2B:29:2E:54:68:BB:A9:6E:9A:19:C7 Authority key identifier: CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A Certificate issuer: /CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Certificate serial: 084C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft Manifest number: 083F Signing time: Fri 22 Aug 2025 20:52:48 +0000 Manifest this update: Fri 22 Aug 2025 20:52:47 +0000 Manifest next update: Fri 29 Aug 2025 20:52:47 +0000 Files and hashes: 1: y-PSoWWxlLlY7sO2qURXdyo6CSo.crl (hash: hS0zEKgjk93lDeOpgB95clHoS8Kdq8sH4zytKBfwW3c=) 2: 4B3AC7DC5FC811ED869A6956C4F9AE02.roa (hash: hwrYZn+i2OUNCmUoK3ena1siLJOV1HVO2m5EjPVb3kw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:52:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2124 (0x84c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154FE7, serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Validity Not Before: Aug 22 20:52:47 2025 GMT Not After : Aug 29 20:52:47 2025 GMT Subject: CN=68a8d8a0-77d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:cb:4b:0a:21:b2:5d:f5:42:ba:0b:b9:b5:ca: d1:5a:2b:6a:41:58:22:e7:e8:28:ec:45:f4:ef:c4: 4c:70:d8:f5:2e:10:b1:f6:93:8d:2a:76:31:06:9b: d5:b4:18:32:a9:4d:60:bd:49:f9:fd:06:c5:52:8d: 69:a0:72:0a:8c:91:20:63:62:f0:8d:3f:81:3f:90: 2e:5f:79:bf:4c:29:05:63:8c:64:30:2c:c2:f0:27: 9f:e6:38:08:d0:d3:3c:c5:7a:21:ac:1f:c1:4a:cd: aa:f3:74:f7:6a:42:59:d9:49:2e:4f:68:d5:80:b3: 76:a4:d0:37:ae:c3:d0:4d:95:ee:86:2a:d0:09:43: ef:b4:8f:cb:f8:ef:d3:86:f3:0d:9d:14:80:3c:e8: 53:43:84:2c:30:03:3c:34:ff:75:6f:44:be:97:92: b1:b6:60:42:2e:67:bf:8f:b8:36:4a:ad:b3:9d:0e: bf:ae:3e:80:d1:51:b9:b7:6f:c9:f5:54:bc:e2:6e: 6c:45:30:f3:fd:c9:5c:e4:3b:57:6b:08:38:51:fd: 8c:5e:79:f7:ab:b2:a7:c6:30:3d:9b:cc:96:7a:4d: f4:77:d9:c1:a6:0c:26:65:8d:57:cc:a9:9f:9e:fc: f9:6c:4b:ec:78:07:e6:1e:78:12:d7:df:57:1e:8e: 0f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:F4:0F:BA:C5:59:0D:1A:40:2B:29:2E:54:68:BB:A9:6E:9A:19:C7 X509v3 Authority Key Identifier: keyid:CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:3c:fe:d7:af:7b:ab:b2:34:45:e2:d4:33:54:c0:e3:a8:e1: 95:3f:ee:aa:bf:f7:f7:cc:76:5f:a8:5f:04:3c:e7:b9:2d:1b: 34:12:71:e2:2e:11:a1:52:4f:eb:6d:e7:dc:70:ec:fe:03:26: f5:89:51:7e:ef:96:47:ef:c9:ed:1d:63:1e:e8:90:a2:6e:74: 7c:37:78:7a:ef:98:3a:db:8a:48:4c:71:7b:aa:04:5e:25:2e: 1f:d8:52:62:65:45:84:48:95:d9:8a:a4:e4:82:7b:57:d7:58: 6e:1f:21:25:2b:bc:57:ea:50:b6:ce:dd:48:cd:da:60:78:4c: 47:5f:e1:9c:2a:3d:8a:40:b1:bd:5f:44:60:29:af:09:c8:c1: 40:6a:25:1f:72:86:4a:d6:86:f3:84:c6:60:76:82:97:fc:31: c8:fc:f9:ad:52:e7:d6:34:5f:9d:f8:06:bd:f2:d6:18:3b:0f: fd:ec:0b:98:3b:fd:d0:dc:c4:d2:90:10:d5:e2:39:e1:ea:b8: cd:80:8a:72:43:10:aa:71:36:c5:76:a0:86:61:1e:06:ee:d4: a6:09:0a:68:72:95:a8:5e:a6:ea:9a:0a:5e:96:4a:0d:e7:44: ef:75:fe:b5:4b:a1:03:31:22:13:06:d4:b4:b8:9b:4a:cd:17: 91:8d:06:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRGRTcxMTAvBgNVBAUTKENCRTNEMkExNjVCMTk0Qjk1OEVFQzNCNkE5NDQ1Nzc3 MkEzQTA5MkEwHhcNMjUwODIyMjA1MjQ3WhcNMjUwODI5MjA1MjQ3WjAYMRYwFAYD VQQDEw02OGE4ZDhhMC03N2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxctLCiGyXfVCugu5tcrRWitqQVgi5+go7EX078RMcNj1LhCx9pONKnYxBpvV tBgyqU1gvUn5/QbFUo1poHIKjJEgY2LwjT+BP5AuX3m/TCkFY4xkMCzC8Cef5jgI 0NM8xXohrB/BSs2q83T3akJZ2UkuT2jVgLN2pNA3rsPQTZXuhirQCUPvtI/L+O/T hvMNnRSAPOhTQ4QsMAM8NP91b0S+l5KxtmBCLme/j7g2Sq2znQ6/rj6A0VG5t2/J 9VS84m5sRTDz/clc5DtXawg4Uf2MXnn3q7KnxjA9m8yWek30d9nBpgwmZY1XzKmf nvz5bEvseAfmHngS199XHo4PpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNX0D7rF WQ0aQCspLlRou6lumhnHMB8GA1UdIwQYMBaAFMvj0qFlsZS5WO7DtqlEV3cqOgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEZFNy81QTJEODlFQURC N0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxMbFk3c08ycVVSWGR5bzZD U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktUFNvV1d4bExsWTdzTzJxVVJYZHlvNkNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEZFNy81QTJEODlFQURCN0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxM bFk3c08ycVVSWGR5bzZDU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApPP7Xr3ursjRF4tQzVMDjqOGVP+6qv/f3zHZfqF8EPOe5LRs0EnHi LhGhUk/rbefccOz+Ayb1iVF+75ZH78ntHWMe6JCibnR8N3h675g624pITHF7qgRe JS4f2FJiZUWESJXZiqTkgntX11huHyElK7xX6lC2zt1IzdpgeExHX+GcKj2KQLG9 X0RgKa8JyMFAaiUfcoZK1obzhMZgdoKX/DHI/PmtUufWNF+d+Aa98tYYOw/97AuY O/3Q3MTSkBDV4jnh6rjNgIpyQxCqcTbFdqCGYR4G7tSmCQpocpWoXqbqmgpelkoN 50Tvdf61S6EDMSITBtS0uJtKzReRjQZg -----END CERTIFICATE-----Generated at Sat Aug 23 14:23:55 2025 by rpki-client