$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft File: LYC7UpVYC-No2mj7jQPqtI16xss.mft (raw, json) Hash identifier: ycMTAPKdHeNw2OR4YsKNhfVTaFchBaCpxXEtZQQO2ug= Subject key identifier: E4:7C:EB:1A:0D:26:94:D8:FB:B7:E0:A5:53:08:81:F3:2A:9D:1C:C8 Authority key identifier: 2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB Certificate issuer: /CN=A91B7948/serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Certificate serial: 0142 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft Manifest number: 013A Signing time: Tue 03 Mar 2026 04:56:50 +0000 Manifest this update: Tue 03 Mar 2026 04:56:50 +0000 Manifest next update: Tue 10 Mar 2026 04:56:50 +0000 Files and hashes: 1: LYC7UpVYC-No2mj7jQPqtI16xss.crl (hash: 6Miig3UfwvKXRrMkndBiRMi70iljVC8UAx3RFlbMIPs=) 2: 70ED9D2837D111EF99A8011CC4F9AE02.roa (hash: mOCADM7rUyrVZQHR29QGDW6mWHRCcP7t6l0A8fFGuLc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 04:56:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7948, serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Validity Not Before: Mar 3 04:56:50 2026 GMT Not After : Mar 10 04:56:50 2026 GMT Subject: CN=69a66a12-3811 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ab:34:d9:7a:25:bd:11:35:af:d2:62:e7:46: 78:ba:3c:b6:ed:4a:cc:72:0b:da:4b:67:33:5e:00: a5:a0:e9:22:d5:88:cf:27:52:98:40:77:3e:cb:e3: 8b:a8:88:ed:ab:07:60:4b:01:06:bd:a4:f3:3f:f6: e2:74:f2:52:03:1e:db:40:50:4b:56:97:a4:1a:62: 6a:4d:92:fa:56:c6:1e:f6:33:8e:2d:d7:d3:c5:3d: 73:97:77:02:55:bc:3c:77:58:a8:65:d7:04:b1:56: 72:94:ad:cd:bf:5e:7a:fc:6d:75:ef:c1:90:40:26: bf:97:94:38:28:9b:a0:7e:a0:5a:e2:59:c1:ab:7b: e0:99:33:b7:e4:eb:58:5f:e9:de:45:61:d5:b8:a6: 85:20:19:3c:49:25:a2:ee:f2:9d:8f:e8:f2:2a:78: ca:19:81:01:88:a7:b1:a3:cc:b8:a9:d5:44:fa:0d: 5a:29:1f:e1:82:0b:e4:c6:db:c9:f3:dd:d5:54:43: a8:45:7e:cb:ae:7c:ec:46:cf:d4:69:8d:8c:9a:b1: 96:81:f0:7d:32:d9:3a:17:77:11:d4:c3:f7:b4:6b: 58:8d:57:f8:1e:36:ba:7a:da:e3:c1:41:bd:db:3a: 0a:12:1f:9a:96:a3:b7:c8:7f:3f:f8:22:36:46:ea: ce:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:7C:EB:1A:0D:26:94:D8:FB:B7:E0:A5:53:08:81:F3:2A:9D:1C:C8 X509v3 Authority Key Identifier: keyid:2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:8f:d1:a5:03:08:e8:18:2d:9a:54:39:bc:5c:a5:38:79:c4: 94:a8:ed:9e:aa:ac:c0:71:54:32:e2:94:0f:e5:2a:3d:4d:40: 11:a8:ab:55:6e:10:86:13:67:e3:70:7f:48:67:dc:de:d3:44: d0:8e:94:9d:74:8a:47:c9:56:fd:be:a5:7a:7d:20:2e:d1:0d: b2:6d:37:56:98:c4:0b:75:2b:99:f8:e1:3e:1c:6b:53:b6:94: 9b:21:eb:87:db:28:c9:0a:33:a9:db:f0:4b:c9:f9:b3:db:40: 96:b1:f3:0e:fc:ed:2a:f3:31:35:9a:b9:48:34:82:5e:9d:77: 73:5e:dc:98:4b:a0:7c:b2:92:62:9c:b5:5c:80:f2:3e:49:78: 4c:00:84:10:47:4e:95:12:ac:d8:b3:52:fd:4a:9b:a6:17:10: c3:fb:37:5b:6b:84:d7:4f:dd:7c:ad:ad:0a:9f:9a:e0:66:ac: dd:72:d5:35:d9:81:d6:5a:31:fb:df:00:f4:5e:fc:78:59:65: d6:2e:9f:28:98:c7:4a:c9:b6:00:8e:7a:51:3e:5a:67:01:22: 58:ac:51:59:db:12:24:60:ee:1e:63:8f:92:76:59:cf:5d:bf: ec:75:5c:51:2f:64:39:58:bf:c2:1e:71:40:60:88:2d:ef:0f: 8e:6e:a8:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc5NDgxMTAvBgNVBAUTKDJEODBCQjUyOTU1ODBCRTM2OERBNjhGQjhEMDNFQUI0 OEQ3QUM2Q0IwHhcNMjYwMzAzMDQ1NjUwWhcNMjYwMzEwMDQ1NjUwWjAYMRYwFAYD VQQDEw02OWE2NmExMi0zODExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzas02XolvRE1r9Ji50Z4ujy27UrMcgvaS2czXgCloOki1YjPJ1KYQHc+y+OL qIjtqwdgSwEGvaTzP/bidPJSAx7bQFBLVpekGmJqTZL6VsYe9jOOLdfTxT1zl3cC Vbw8d1ioZdcEsVZylK3Nv156/G1178GQQCa/l5Q4KJugfqBa4lnBq3vgmTO35OtY X+neRWHVuKaFIBk8SSWi7vKdj+jyKnjKGYEBiKexo8y4qdVE+g1aKR/hggvkxtvJ 893VVEOoRX7LrnzsRs/UaY2MmrGWgfB9Mtk6F3cR1MP3tGtYjVf4Hja6etrjwUG9 2zoKEh+alqO3yH8/+CI2RurOTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOR86xoN JpTY+7fgpVMIgfMqnRzIMB8GA1UdIwQYMBaAFC2Au1KVWAvjaNpo+40D6rSNesbL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzk0OC80NkRDNkIwQTM3 RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi9MWUM3VXBWWUMtTm8ybWo3alFQcXRJMTZ4 c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xZQzdVcFZZQy1ObzJtajdqUVBxdEkxNnhzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzk0OC80NkRDNkIwQTM3RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi9MWUM3VXBWWUMt Tm8ybWo3alFQcXRJMTZ4c3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAr4/RpQMI6BgtmlQ5vFylOHnElKjtnqqswHFUMuKUD+UqPU1AEairVW4QhhNn 43B/SGfc3tNE0I6UnXSKR8lW/b6len0gLtENsm03VpjEC3UrmfjhPhxrU7aUmyHr h9soyQozqdvwS8n5s9tAlrHzDvztKvMxNZq5SDSCXp13c17cmEugfLKSYpy1XIDy Pkl4TACEEEdOlRKs2LNS/UqbphcQw/s3W2uE10/dfK2tCp+a4Gas3XLVNdmB1lox +98A9F78eFll1i6fKJjHSsm2AI56UT5aZwEiWKxRWdsSJGDuHmOPknZZz12/7HVc US9kOVi/wh5xQGCILe8Pjm6ohQ== -----END CERTIFICATE-----Generated at Wed Mar 4 08:38:43 2026 by rpki-client