$ rpki-client -vvf rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft File: y-PSoWWxlLlY7sO2qURXdyo6CSo.mft (raw, json) Hash identifier: s/iLlrYAUOv5ShOYZOQNVmDthk3oInC/xwO7Hn/7o7U= Subject key identifier: 01:F9:5B:C3:7A:A3:78:73:82:0D:5F:D9:15:D0:09:3C:74:1A:B6:56 Authority key identifier: CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A Certificate issuer: /CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Certificate serial: 08D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft Manifest number: 08B9 Signing time: Sat 04 Apr 2026 20:15:03 +0000 Manifest this update: Sat 04 Apr 2026 20:15:03 +0000 Manifest next update: Sat 11 Apr 2026 20:15:03 +0000 Files and hashes: 1: y-PSoWWxlLlY7sO2qURXdyo6CSo.crl (hash: lKYikvCJh1LT72Blsrk112cISt7v0G0a542sv8Ai0ms=) 2: 4B3AC7DC5FC811ED869A6956C4F9AE02.roa (hash: gwFMK8dXQ0BUy50EitJsxHltkOumkaciXIm9wu0O67s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2261 (0x8d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154FE7, serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Validity Not Before: Apr 4 20:15:03 2026 GMT Not After : Apr 11 20:15:03 2026 GMT Subject: CN=69d17147-125e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:60:d7:7d:f0:aa:2d:96:e0:6c:2c:67:40:f7: ed:ad:df:b4:33:bf:67:ba:77:b7:78:8f:56:95:0f: b8:43:79:01:d7:d2:87:e9:66:95:f5:03:53:98:09: e0:79:7c:91:e1:bc:3c:28:7c:23:17:f9:e4:73:29: 13:2d:14:c4:b9:34:38:5c:cb:be:3d:99:cb:96:02: a1:0e:4e:21:88:17:02:00:4e:b8:34:a3:a8:98:c5: 51:1d:5f:fb:2d:78:2c:48:f4:7b:ef:87:94:5a:95: e0:38:f1:72:57:e6:19:82:f8:ce:47:9c:3a:48:79: e4:bd:89:a9:56:6e:92:9e:3b:12:c3:43:26:2d:52: 1a:ef:78:9c:ee:54:fb:11:2f:e8:07:21:27:17:ef: 1d:8c:25:82:04:82:41:3a:91:3a:92:88:a4:d4:01: 61:af:87:02:bd:f7:d4:79:af:36:8b:5c:0b:7e:90: 60:e9:2b:2d:12:27:0e:ea:9d:9c:65:5d:7e:fd:a1: 59:02:3f:d9:96:fe:0b:a8:fb:c4:63:30:a6:66:9a: 9b:6e:35:e3:3b:d6:f2:10:06:2e:0b:3d:fc:74:fd: 2b:5c:cc:1f:ea:7d:8c:12:02:bd:87:fd:13:ff:0a: 26:6c:55:4a:09:d4:5f:75:ca:b2:4a:9a:13:77:92: 7f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:F9:5B:C3:7A:A3:78:73:82:0D:5F:D9:15:D0:09:3C:74:1A:B6:56 X509v3 Authority Key Identifier: keyid:CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:74:c0:78:3f:23:12:5a:5c:62:d9:93:5e:29:3d:2a:86:70: 75:ca:f5:0f:c4:27:9e:74:06:87:21:d3:63:e1:98:97:a5:1b: 7c:c6:78:08:37:99:4b:be:da:48:33:4f:50:ac:d5:cf:b5:31: ce:ac:9b:e6:70:72:93:0a:9d:8f:90:8d:81:a2:30:12:8a:31: 67:99:ef:20:c7:52:0d:75:a7:f6:71:14:e4:b7:67:34:3f:4d: b9:e3:8b:6c:3c:e4:e8:12:8c:f3:30:ad:4d:8b:db:69:ff:6d: 0f:80:f1:2a:b2:c8:50:2d:9a:ce:21:86:80:a9:88:00:e4:bc: aa:4e:3e:ff:42:1d:34:8f:0e:0f:25:cb:a4:77:85:f8:16:e3: 53:f8:5e:e6:5b:96:43:20:64:c3:a5:c1:98:cd:ef:5e:40:cc: 43:d1:ab:8b:62:ef:97:7c:a8:40:97:e9:3c:05:39:18:50:92: 43:f9:e1:7d:72:0a:71:d6:54:76:a2:06:4f:ef:d3:93:c6:48: 8c:31:17:fa:8c:9a:94:d4:c4:48:8b:ef:1f:9f:fd:d9:92:4e: cf:86:a4:96:a7:9a:41:84:23:b9:de:16:d7:72:2c:66:eb:9a: ed:2e:73:14:48:4a:ab:7b:d9:8f:37:2d:8b:f8:ec:a3:b8:42: fe:64:a0:d5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRGRTcxMTAvBgNVBAUTKENCRTNEMkExNjVCMTk0Qjk1OEVFQzNCNkE5NDQ1Nzc3 MkEzQTA5MkEwHhcNMjYwNDA0MjAxNTAzWhcNMjYwNDExMjAxNTAzWjAYMRYwFAYD VQQDEw02OWQxNzE0Ny0xMjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3mDXffCqLZbgbCxnQPftrd+0M79nune3eI9WlQ+4Q3kB19KH6WaV9QNTmAng eXyR4bw8KHwjF/nkcykTLRTEuTQ4XMu+PZnLlgKhDk4hiBcCAE64NKOomMVRHV/7 LXgsSPR774eUWpXgOPFyV+YZgvjOR5w6SHnkvYmpVm6SnjsSw0MmLVIa73ic7lT7 ES/oByEnF+8djCWCBIJBOpE6koik1AFhr4cCvffUea82i1wLfpBg6SstEicO6p2c ZV1+/aFZAj/Zlv4LqPvEYzCmZpqbbjXjO9byEAYuCz38dP0rXMwf6n2MEgK9h/0T /wombFVKCdRfdcqySpoTd5J/ywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAH5W8N6 o3hzgg1f2RXQCTx0GrZWMB8GA1UdIwQYMBaAFMvj0qFlsZS5WO7DtqlEV3cqOgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEZFNy81QTJEODlFQURC N0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxMbFk3c08ycVVSWGR5bzZD U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktUFNvV1d4bExsWTdzTzJxVVJYZHlvNkNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEZFNy81QTJEODlFQURCN0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxM bFk3c08ycVVSWGR5bzZDU28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAinTAeD8jElpcYtmTXik9KoZwdcr1D8QnnnQGhyHTY+GYl6UbfMZ4CDeZS77a SDNPUKzVz7Uxzqyb5nBykwqdj5CNgaIwEooxZ5nvIMdSDXWn9nEU5LdnND9NueOL bDzk6BKM8zCtTYvbaf9tD4DxKrLIUC2aziGGgKmIAOS8qk4+/0IdNI8ODyXLpHeF +BbjU/he5luWQyBkw6XBmM3vXkDMQ9Gri2Lvl3yoQJfpPAU5GFCSQ/nhfXIKcdZU dqIGT+/Tk8ZIjDEX+oyalNTESIvvH5/92ZJOz4aklqeaQYQjud4W13IsZuua7S5z FEhKq3vZjzcti/jso7hC/mSg1Q== -----END CERTIFICATE-----Generated at Mon Apr 6 08:22:57 2026 by rpki-client