$ rpki-client -vvf rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft File: y-PSoWWxlLlY7sO2qURXdyo6CSo.mft (raw, json) Hash identifier: HsSDfgYxSKyMntas/+ve2VAJO9IhexIPd4FXSCaBuQ0= Subject key identifier: 5C:22:04:E5:65:7D:28:A9:9A:F8:C7:EE:33:6D:AE:B3:EA:4E:C5:3D Authority key identifier: CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A Certificate issuer: /CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Certificate serial: 085A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft Manifest number: 084D Signing time: Thu 18 Sep 2025 20:57:42 +0000 Manifest this update: Thu 18 Sep 2025 20:57:42 +0000 Manifest next update: Thu 25 Sep 2025 20:57:42 +0000 Files and hashes: 1: y-PSoWWxlLlY7sO2qURXdyo6CSo.crl (hash: hSfEv8bcgFYJyE+26F/8rnZqO8mGv/PgXhQGERvSaMg=) 2: 4B3AC7DC5FC811ED869A6956C4F9AE02.roa (hash: hwrYZn+i2OUNCmUoK3ena1siLJOV1HVO2m5EjPVb3kw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:57:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2138 (0x85a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154FE7, serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Validity Not Before: Sep 18 20:57:42 2025 GMT Not After : Sep 25 20:57:42 2025 GMT Subject: CN=68cc7246-52a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:56:20:b9:0d:1c:bb:6d:8f:c7:5a:b4:01:53: 8f:b5:95:9d:ab:5f:e2:eb:d3:87:df:16:c1:aa:06: 50:d0:13:3c:2b:9d:09:15:61:7f:31:7d:a9:f4:90: 63:da:a8:2b:e3:f9:e0:1b:c5:70:da:b8:22:7c:5f: 68:48:0b:df:9e:9b:5d:4d:8f:93:10:a6:a8:38:95: 5d:28:10:f9:51:c4:7c:ab:b4:34:47:14:8c:99:a2: 45:b5:3b:01:42:92:7f:93:4e:98:51:bb:a3:a0:b4: 3a:f3:3d:6c:33:9a:90:b7:d0:e0:7a:3e:ea:5b:e7: 9f:c8:c2:ee:9a:67:b9:bd:90:e8:34:3d:65:4c:6f: e4:59:a3:e0:80:84:e4:da:48:da:3d:f5:ce:20:ec: 6e:79:19:a6:ec:69:9d:97:10:9f:41:b9:17:81:05: 3b:cb:ea:6c:c4:d1:11:5d:e2:e0:6b:52:8e:83:a7: 8d:13:77:75:5b:58:6f:33:ac:85:f3:46:ec:9d:09: 5c:41:82:0b:8b:e4:62:7d:4f:a7:6e:e1:85:5a:55: c8:23:07:67:f6:dd:44:dd:9e:bf:5b:81:55:33:18: 8e:fa:8f:51:d4:a6:93:af:97:b0:f3:f9:c4:4d:c3: f4:fb:d8:7d:39:fc:21:4f:14:71:dc:22:1d:43:f8: 0c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:22:04:E5:65:7D:28:A9:9A:F8:C7:EE:33:6D:AE:B3:EA:4E:C5:3D X509v3 Authority Key Identifier: keyid:CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:f5:7b:02:12:1d:05:97:ed:b8:c2:8f:41:e4:04:ca:e6:be: b4:56:6f:3f:a4:1e:08:90:02:fe:3b:0e:a8:cc:38:af:01:2e: 2f:06:70:8e:1e:7c:2e:0e:15:1e:6b:25:6d:be:67:e2:b2:4e: e3:dc:b0:c6:d9:eb:f6:79:ea:4c:88:81:11:7b:90:a1:4e:6f: 45:bf:dd:69:29:d2:66:0d:c6:b7:31:74:0d:ac:e1:74:c7:e0: e5:66:2c:05:54:e4:95:66:6f:ad:2d:f6:c0:e1:44:d2:8c:2d: 5a:a5:88:b0:56:cb:aa:03:50:66:dc:f3:2e:f0:68:b5:5a:bd: 9c:2c:ad:8f:3e:fb:af:bb:65:d6:5e:57:33:0d:fe:8b:e5:88: cd:1e:89:ae:f4:c3:ce:06:48:ef:8c:6a:8b:02:25:0f:9c:87: ba:e3:b9:c3:fc:05:01:a5:9e:01:48:11:cf:fb:20:1f:8e:c9: 3b:11:d4:76:6e:2f:b8:cb:af:4a:41:85:cc:8e:c4:1b:c9:c0: b1:ca:c0:3a:fc:ed:78:24:72:af:e5:b7:c2:c3:34:66:68:06: 97:9d:7b:00:5c:06:bb:45:e0:9c:95:90:62:23:07:9a:47:a8: 00:6b:5a:4c:a7:84:8d:fd:5f:4f:ef:c9:5d:12:d1:0b:44:38: e0:05:e1:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRGRTcxMTAvBgNVBAUTKENCRTNEMkExNjVCMTk0Qjk1OEVFQzNCNkE5NDQ1Nzc3 MkEzQTA5MkEwHhcNMjUwOTE4MjA1NzQyWhcNMjUwOTI1MjA1NzQyWjAYMRYwFAYD VQQDEw02OGNjNzI0Ni01MmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7FYguQ0cu22Px1q0AVOPtZWdq1/i69OH3xbBqgZQ0BM8K50JFWF/MX2p9JBj 2qgr4/ngG8Vw2rgifF9oSAvfnptdTY+TEKaoOJVdKBD5UcR8q7Q0RxSMmaJFtTsB QpJ/k06YUbujoLQ68z1sM5qQt9Dgej7qW+efyMLumme5vZDoND1lTG/kWaPggITk 2kjaPfXOIOxueRmm7GmdlxCfQbkXgQU7y+psxNERXeLga1KOg6eNE3d1W1hvM6yF 80bsnQlcQYILi+RifU+nbuGFWlXIIwdn9t1E3Z6/W4FVMxiO+o9R1KaTr5ew8/nE TcP0+9h9OfwhTxRx3CIdQ/gMrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwiBOVl fSipmvjH7jNtrrPqTsU9MB8GA1UdIwQYMBaAFMvj0qFlsZS5WO7DtqlEV3cqOgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEZFNy81QTJEODlFQURC N0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxMbFk3c08ycVVSWGR5bzZD U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktUFNvV1d4bExsWTdzTzJxVVJYZHlvNkNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEZFNy81QTJEODlFQURCN0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxM bFk3c08ycVVSWGR5bzZDU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDD9XsCEh0Fl+24wo9B5ATK5r60Vm8/pB4IkAL+Ow6ozDivAS4vBnCO HnwuDhUeayVtvmfisk7j3LDG2ev2eepMiIERe5ChTm9Fv91pKdJmDca3MXQNrOF0 x+DlZiwFVOSVZm+tLfbA4UTSjC1apYiwVsuqA1Bm3PMu8Gi1Wr2cLK2PPvuvu2XW XlczDf6L5YjNHomu9MPOBkjvjGqLAiUPnIe647nD/AUBpZ4BSBHP+yAfjsk7EdR2 bi+4y69KQYXMjsQbycCxysA6/O14JHKv5bfCwzRmaAaXnXsAXAa7ReCclZBiIwea R6gAa1pMp4SN/V9P78ldEtELRDjgBeH7 -----END CERTIFICATE-----Generated at Fri Sep 19 03:57:13 2025 by rpki-client