$ rpki-client -vvf rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft File: bycituUTNGUloqmUZBtOJ_BNU1Y.mft (raw, json) Hash identifier: C6AnD8TMOBMB5bEmd36q18yl1QZ+ZocjzBdF0zp9Djc= Subject key identifier: B8:F5:63:1C:13:DA:A6:E2:C5:F2:A7:C0:0C:A7:05:E6:76:54:AC:EC Authority key identifier: 6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 Certificate issuer: /CN=A91870B9/serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Certificate serial: 02B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft Manifest number: 02B3 Signing time: Sat 23 Aug 2025 01:43:14 +0000 Manifest this update: Sat 23 Aug 2025 01:43:13 +0000 Manifest next update: Sat 30 Aug 2025 01:43:13 +0000 Files and hashes: 1: bycituUTNGUloqmUZBtOJ_BNU1Y.crl (hash: /Ix9MS6XYkXwFEH2QBRnIC5mkfKJvKoNS5dTQpUzPwM=) 2: A48AD700072111ED91EABE39C4F9AE02.roa (hash: tggayaLto8CAWEhkFDTMAXvd1HSZb+GtdD7dZmQyKpM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 695 (0x2b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91870B9, serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Validity Not Before: Aug 23 01:43:13 2025 GMT Not After : Aug 30 01:43:13 2025 GMT Subject: CN=68a91cb1-68fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c9:4e:f5:74:f6:c0:c3:b4:cb:8c:dd:26:54: 29:0c:fc:8e:3f:12:b1:1d:82:83:77:ab:52:1d:9e: 54:1f:76:18:b7:49:16:52:d0:24:ce:ca:dd:23:ab: 5e:0d:f3:28:cd:ec:35:44:60:a8:35:91:38:7c:05: 20:d1:08:68:90:86:65:7b:15:4d:0c:37:bf:b3:82: e5:00:e1:5e:83:fd:df:9f:3e:7d:e8:fb:93:55:d6: b7:d1:20:03:5b:25:76:08:e9:52:75:3d:ab:b7:b7: bd:c4:22:74:50:e0:55:45:fe:4a:1d:66:cb:72:7b: c9:bc:c6:3c:7e:c8:a1:1d:95:f8:86:44:35:06:69: 97:3b:28:a0:e6:4f:80:16:1d:93:e6:c6:81:fd:c8: b1:20:ae:7f:a0:fe:e1:c1:54:aa:61:c2:10:cc:0d: 26:54:4c:98:02:7a:1e:5e:5c:31:c1:80:c7:9f:ec: 07:94:57:e2:54:8f:f3:4f:3a:df:7f:c8:30:0d:d9: 98:cb:41:c6:ef:12:b9:00:7f:89:c3:e5:26:9a:aa: f2:e1:14:e9:a6:50:1e:b0:78:76:60:c7:77:ed:34: 8b:cc:69:36:ed:38:a3:5b:7d:2c:b8:f2:da:ae:0b: ad:90:99:51:00:db:0c:16:36:0e:88:7c:01:9e:70: c2:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:F5:63:1C:13:DA:A6:E2:C5:F2:A7:C0:0C:A7:05:E6:76:54:AC:EC X509v3 Authority Key Identifier: keyid:6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:85:a6:5e:99:ae:90:c5:70:a1:18:f8:60:5a:1c:5e:ec:a5: 03:92:52:cc:92:ac:92:b0:54:46:25:90:ce:46:dc:26:43:5e: bf:78:c6:37:4f:b1:8a:60:2f:a2:43:0f:03:30:89:30:91:4a: 6e:43:da:75:83:05:11:06:e0:16:f7:76:46:d8:a8:4d:80:5c: 7c:7d:c7:03:9a:65:f5:d5:0b:ec:d6:55:db:ad:cd:7c:4d:b5: b3:a9:2a:b9:69:7c:20:72:71:24:a4:9d:a4:51:26:cb:ee:2a: 55:2a:05:1a:3c:ef:81:d1:62:5b:26:b9:04:0b:90:a3:02:9e: 6b:9f:67:a0:f1:1e:7c:3d:61:2e:b1:c9:f0:c6:68:c1:e3:03: 6d:e9:a3:47:ac:b0:0f:1f:7c:9b:5b:d4:0f:6c:27:5a:cf:7b: 4c:2d:10:9f:20:58:46:fa:78:c8:da:15:be:98:18:c1:97:d0: ea:8d:20:14:27:bc:43:54:31:f1:05:78:19:c8:b0:27:65:f8: 04:df:02:e2:ba:d1:5e:16:eb:54:91:6a:41:2f:6c:be:14:37: 37:eb:45:69:17:65:90:1d:c8:95:72:ce:ef:a2:9a:7d:9b:2e: 62:0a:22:34:d3:a4:71:c0:3f:4c:38:d0:9d:2c:6f:0f:81:ff: 68:7f:d5:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcwQjkxMTAvBgNVBAUTKDZGMjcyMkI2RTUxMzM0NjUyNUEyQTk5NDY0MUI0RTI3 RjA0RDUzNTYwHhcNMjUwODIzMDE0MzEzWhcNMjUwODMwMDE0MzEzWjAYMRYwFAYD VQQDEw02OGE5MWNiMS02OGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuslO9XT2wMO0y4zdJlQpDPyOPxKxHYKDd6tSHZ5UH3YYt0kWUtAkzsrdI6te DfMozew1RGCoNZE4fAUg0QhokIZlexVNDDe/s4LlAOFeg/3fnz596PuTVda30SAD WyV2COlSdT2rt7e9xCJ0UOBVRf5KHWbLcnvJvMY8fsihHZX4hkQ1BmmXOyig5k+A Fh2T5saB/cixIK5/oP7hwVSqYcIQzA0mVEyYAnoeXlwxwYDHn+wHlFfiVI/zTzrf f8gwDdmYy0HG7xK5AH+Jw+Ummqry4RTpplAesHh2YMd37TSLzGk27TijW30suPLa rgutkJlRANsMFjYOiHwBnnDCoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLj1YxwT 2qbixfKnwAynBeZ2VKzsMB8GA1UdIwQYMBaAFG8nIrblEzRlJaKplGQbTifwTVNW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzBCOS83QzhDODkwRTA3 MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5HVWxvcW1VWkJ0T0pfQk5V MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5Y2l0dVVUTkdVbG9xbVVaQnRPSl9CTlUxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzBCOS83QzhDODkwRTA3MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5H VWxvcW1VWkJ0T0pfQk5VMVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4haZema6QxXChGPhgWhxe7KUDklLMkqySsFRGJZDORtwmQ16/eMY3 T7GKYC+iQw8DMIkwkUpuQ9p1gwURBuAW93ZG2KhNgFx8fccDmmX11Qvs1lXbrc18 TbWzqSq5aXwgcnEkpJ2kUSbL7ipVKgUaPO+B0WJbJrkEC5CjAp5rn2eg8R58PWEu scnwxmjB4wNt6aNHrLAPH3ybW9QPbCdaz3tMLRCfIFhG+njI2hW+mBjBl9DqjSAU J7xDVDHxBXgZyLAnZfgE3wLiutFeFutUkWpBL2y+FDc360VpF2WQHciVcs7vopp9 my5iCiI006RxwD9MONCdLG8Pgf9of9UF -----END CERTIFICATE-----Generated at Sun Aug 24 03:35:13 2025 by rpki-client