$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft File: LYC7UpVYC-No2mj7jQPqtI16xss.mft (raw, json) Hash identifier: XOp3FWVeKIL7jn0hyKWTVCuRXcSdc35fOKerBQa4Wa8= Subject key identifier: AA:D3:6F:11:3F:C2:9B:70:E1:3E:F9:D1:78:07:C1:64:94:FC:B7:07 Authority key identifier: 2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB Certificate issuer: /CN=A91B7948/serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft Manifest number: 0151 Signing time: Fri 17 Apr 2026 04:46:54 +0000 Manifest this update: Fri 17 Apr 2026 04:46:53 +0000 Manifest next update: Fri 24 Apr 2026 04:46:53 +0000 Files and hashes: 1: LYC7UpVYC-No2mj7jQPqtI16xss.crl (hash: ITe6hryork+nf5Uqqxyb3rV84tS/tnqejOXkWLlg/VM=) 2: 70ED9D2837D111EF99A8011CC4F9AE02.roa (hash: mOCADM7rUyrVZQHR29QGDW6mWHRCcP7t6l0A8fFGuLc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7948, serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Validity Not Before: Apr 17 04:46:53 2026 GMT Not After : Apr 24 04:46:53 2026 GMT Subject: CN=69e1bb3e-df71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:0f:56:66:e4:28:d3:e1:56:83:25:24:7b:b9: a5:98:ec:01:11:ff:17:91:8f:db:9d:51:73:98:c4: db:2f:23:8d:1b:7b:51:18:17:a5:18:96:d6:9c:b2: 50:ce:99:6a:41:13:9c:fc:b0:c0:d3:90:4f:6c:16: fd:d0:83:2c:24:4a:9e:bb:38:e2:b6:63:17:28:f5: fc:9c:fb:3c:c2:13:c6:6b:c1:5e:e1:80:7c:bb:42: b0:80:b4:c7:b2:93:de:05:09:fd:4e:28:23:10:5c: 13:ea:a6:0e:37:85:53:99:aa:df:a0:59:c0:45:c5: 06:e5:03:7f:9d:4d:d1:b2:1f:b4:37:20:11:16:04: 24:75:b7:02:92:54:8f:f0:a8:d0:a8:ee:c6:8f:9f: e7:f9:e5:d2:12:7a:89:37:35:75:b3:54:2c:3d:c6: 4e:bc:6c:bc:2c:15:6c:c4:67:04:99:c2:9c:a9:52: 76:3e:61:44:2e:ea:aa:ad:61:08:41:dd:d6:c3:58: d4:ef:b2:78:ef:94:01:64:5f:cb:2c:46:8e:cf:5e: 02:ec:61:d0:58:65:04:42:df:1b:7b:f7:81:e2:30: e6:bc:16:e2:d3:e1:f7:c1:c4:80:61:04:00:1f:44: cc:63:70:08:e4:2e:1d:38:94:7a:02:6b:29:9e:8e: 18:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:D3:6F:11:3F:C2:9B:70:E1:3E:F9:D1:78:07:C1:64:94:FC:B7:07 X509v3 Authority Key Identifier: keyid:2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:cc:16:1c:3f:5b:21:19:6d:b9:d5:a9:6d:65:d4:50:0d:eb: 51:cc:55:00:e5:b4:3d:f9:e8:fa:6a:53:6f:4b:95:2f:52:bb: 1e:7a:ef:98:1b:40:4b:b7:14:03:6b:8c:93:a2:4b:bf:c6:aa: b8:f5:f5:98:1d:55:58:20:7d:c4:b7:9c:fb:a4:b4:72:44:38: bf:92:17:0b:c8:63:ef:d2:33:4d:4e:cb:ba:b1:6e:e5:db:3a: a7:3d:21:72:d3:9f:d7:87:ee:05:e5:2f:15:42:58:65:d5:90: cc:d8:f7:a9:f9:dc:57:e8:a0:ba:cd:c1:c2:2e:dc:75:90:2d: f3:95:ad:c1:9a:a2:f1:0f:85:55:87:82:98:80:1a:37:b1:7e: 76:39:f5:50:3f:04:bc:4d:a7:da:14:d2:d4:7d:07:6d:00:c8: 39:c7:2d:1c:fd:d5:f4:5b:c0:80:58:51:8e:68:8c:f1:09:7b: 81:e1:17:0d:33:1c:a8:be:07:a9:ed:54:56:ef:b9:b2:f2:f6: 10:02:51:cd:30:15:b3:64:de:a3:cf:6f:c7:40:69:ce:0a:27: 72:32:89:bb:a2:e4:4f:ed:56:a4:2e:2d:14:34:04:0d:e2:10: f4:f5:9a:92:d0:a9:e4:7e:02:d2:93:4f:ea:75:e9:8a:4a:01: 1c:fe:1c:e8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc5NDgxMTAvBgNVBAUTKDJEODBCQjUyOTU1ODBCRTM2OERBNjhGQjhEMDNFQUI0 OEQ3QUM2Q0IwHhcNMjYwNDE3MDQ0NjUzWhcNMjYwNDI0MDQ0NjUzWjAYMRYwFAYD VQQDEw02OWUxYmIzZS1kZjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzw9WZuQo0+FWgyUke7mlmOwBEf8XkY/bnVFzmMTbLyONG3tRGBelGJbWnLJQ zplqQROc/LDA05BPbBb90IMsJEqeuzjitmMXKPX8nPs8whPGa8Fe4YB8u0KwgLTH spPeBQn9TigjEFwT6qYON4VTmarfoFnARcUG5QN/nU3Rsh+0NyARFgQkdbcCklSP 8KjQqO7Gj5/n+eXSEnqJNzV1s1QsPcZOvGy8LBVsxGcEmcKcqVJ2PmFELuqqrWEI Qd3Ww1jU77J475QBZF/LLEaOz14C7GHQWGUEQt8be/eB4jDmvBbi0+H3wcSAYQQA H0TMY3AI5C4dOJR6Amspno4YUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKrTbxE/ wptw4T750XgHwWSU/LcHMB8GA1UdIwQYMBaAFC2Au1KVWAvjaNpo+40D6rSNesbL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzk0OC80NkRDNkIwQTM3 RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi9MWUM3VXBWWUMtTm8ybWo3alFQcXRJMTZ4 c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xZQzdVcFZZQy1ObzJtajdqUVBxdEkxNnhzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzk0OC80NkRDNkIwQTM3RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi9MWUM3VXBWWUMt Tm8ybWo3alFQcXRJMTZ4c3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPcwWHD9bIRltudWpbWXUUA3rUcxVAOW0Pfno+mpTb0uVL1K7HnrvmBtAS7cU A2uMk6JLv8aquPX1mB1VWCB9xLec+6S0ckQ4v5IXC8hj79IzTU7LurFu5ds6pz0h ctOf14fuBeUvFUJYZdWQzNj3qfncV+igus3Bwi7cdZAt85WtwZqi8Q+FVYeCmIAa N7F+djn1UD8EvE2n2hTS1H0HbQDIOcctHP3V9FvAgFhRjmiM8Ql7geEXDTMcqL4H qe1UVu+5svL2EAJRzTAVs2Teo89vx0BpzgoncjKJu6LkT+1WpC4tFDQEDeIQ9PWa ktCp5H4C0pNP6nXpikoBHP4c6A== -----END CERTIFICATE-----Generated at Fri Apr 17 10:40:09 2026 by rpki-client