$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft File: RyCit4x4I5km_e5zRKNoDaDYBx0.mft (raw, json) Hash identifier: YobJW/8nZDGUHvHg9LmPD5Ro7sO0LvmbH2XW6BZqJnI= Subject key identifier: 3A:8D:C7:7D:A2:F8:24:D9:38:A2:C9:7E:E2:32:08:2D:6A:13:AE:91 Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft Manifest number: 67 Signing time: Tue 13 May 2025 05:57:09 +0000 Manifest this update: Tue 13 May 2025 05:57:09 +0000 Manifest next update: Tue 20 May 2025 05:57:09 +0000 Files and hashes: 1: RyCit4x4I5km_e5zRKNoDaDYBx0.crl (hash: /T5g/cjaTDKrNFNMFD4C/0YS4aPD02QNklWbWzas9uE=) 2: A89EDBE29D2011EF85C22562C4F9AE02.roa (hash: PFCVOq6hCEE/LkUTzAqv0G5xeWtP3Mtqim+Dj4TAYwg=) 3: D2D7B762995611EFADA5D754C4F9AE02.roa (hash: leOkuh3L+EBwiYEQWHLbAuOaBMzDoG4/I9L1fdXLYok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:57:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: May 13 05:57:09 2025 GMT Not After : May 20 05:57:09 2025 GMT Subject: CN=6822df35-de43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f9:c7:2c:b1:0b:c7:3e:12:ce:5b:11:53:6e: 2a:78:f4:a4:65:6c:42:dd:d9:73:ee:08:5b:0b:76: cf:29:23:1b:17:37:60:e0:cf:55:13:ac:32:ea:ad: 68:6a:b4:1e:34:1b:0c:c3:8b:77:0e:87:2f:de:ff: 90:b2:62:98:8d:bb:99:46:84:c1:e3:f7:81:c8:bc: 40:d3:1e:80:6a:68:82:b1:79:88:16:2b:c9:d7:a4: 5f:30:8f:a3:1c:30:0e:55:90:4b:72:d9:e0:c3:37: 77:f0:c8:91:eb:df:bc:24:81:30:cd:85:85:04:69: 69:97:67:75:bd:b6:c3:ee:b8:25:ff:bd:c1:51:19: 09:bb:4b:0b:20:39:ae:27:49:51:ea:ba:62:78:ce: 6e:5b:47:38:aa:18:da:12:1d:87:33:1a:d9:81:f6: 6c:a2:1e:c5:4f:9b:0d:47:a5:93:40:0d:ad:da:40: f3:d5:ab:2b:a0:7b:f3:da:72:ce:86:36:4a:ea:06: 85:d2:0f:7b:c3:41:06:bb:dc:ea:bf:ec:66:c9:71: f4:ba:f5:b1:a1:ea:f8:fd:f2:51:b8:eb:36:ec:0d: 9b:30:05:62:5e:62:ed:13:77:fb:9a:09:07:8b:a3: ad:2c:76:ea:ea:95:24:84:81:be:8e:9f:b8:8d:07: a1:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:8D:C7:7D:A2:F8:24:D9:38:A2:C9:7E:E2:32:08:2D:6A:13:AE:91 X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:d3:3a:c6:5a:61:72:85:88:58:53:8b:5c:16:a7:51:be:e5: 2f:ad:7f:6a:cb:1e:26:92:f7:f6:b7:8c:82:16:60:8f:54:44: 37:f0:c5:34:4f:ed:a7:5f:c4:76:4a:90:cf:50:f0:3a:ab:df: e2:21:a3:bb:5a:a0:d3:64:e0:5b:75:61:b0:a5:ec:7f:55:4a: 9f:9c:65:9a:eb:c7:d6:12:28:f1:01:aa:4e:a4:1a:19:e7:d1: 74:2c:72:4f:68:70:3a:91:f3:7a:93:6b:60:a9:89:7f:e8:ea: 24:e3:f4:3c:d0:e9:d2:6d:96:d8:2c:15:2f:bc:f4:a5:22:e3: 07:0d:0d:63:a2:cd:83:a7:07:d1:3d:06:5d:ef:92:c9:c4:b7: 0b:29:37:4d:d7:cb:4c:46:92:55:a8:5e:ef:9a:de:d5:e1:50: 96:61:de:d4:1a:f2:e9:27:d1:bc:dc:f3:30:fe:5e:a8:06:0e: 07:67:52:f1:69:9a:61:08:f1:0a:2d:38:2e:63:e7:53:d5:96: 4d:10:3b:3d:5d:d7:2a:f8:84:6a:ae:34:9b:37:93:24:87:36: a5:f1:74:7b:13:88:bd:83:4f:03:cf:3c:a4:a2:f5:fe:04:c7: 40:b5:db:dc:bc:c1:e2:61:70:1d:3e:76:83:9a:cf:51:fc:e3: b1:6b:e7:33 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NzJERjExMC8GA1UEBRMoNDcyMEEyQjc4Qzc4MjM5OTI2RkRFRTczNDRBMzY4MERB MEQ4MDcxRDAeFw0yNTA1MTMwNTU3MDlaFw0yNTA1MjAwNTU3MDlaMBgxFjAUBgNV BAMTDTY4MjJkZjM1LWRlNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCs+ccssQvHPhLOWxFTbip49KRlbELd2XPuCFsLds8pIxsXN2Dgz1UTrDLqrWhq tB40GwzDi3cOhy/e/5CyYpiNu5lGhMHj94HIvEDTHoBqaIKxeYgWK8nXpF8wj6Mc MA5VkEty2eDDN3fwyJHr37wkgTDNhYUEaWmXZ3W9tsPuuCX/vcFRGQm7SwsgOa4n SVHqumJ4zm5bRziqGNoSHYczGtmB9myiHsVPmw1HpZNADa3aQPPVqyuge/Pacs6G NkrqBoXSD3vDQQa73Oq/7GbJcfS69bGh6vj98lG46zbsDZswBWJeYu0Td/uaCQeL o60sdurqlSSEgb6On7iNB6EPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOo3HfaL4 JNk4osl+4jIILWoTrpEwHwYDVR0jBBgwFoAURyCit4x4I5km/e5zRKNoDaDYBx0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3MkRGLzI3RTNFREE0OTgz MzExRUY4MzE4OUE1N0M0RjlBRTAyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUnlDaXQ0eDRJNWttX2U1elJLTm9EYURZQngwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3 MkRGLzI3RTNFREE0OTgzMzExRUY4MzE4OUE1N0M0RjlBRTAyL1J5Q2l0NHg0STVr bV9lNXpSS05vRGFEWUJ4MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKbTOsZaYXKFiFhTi1wWp1G+5S+tf2rLHiaS9/a3jIIWYI9URDfwxTRP 7adfxHZKkM9Q8Dqr3+Iho7taoNNk4Ft1YbCl7H9VSp+cZZrrx9YSKPEBqk6kGhnn 0XQsck9ocDqR83qTa2CpiX/o6iTj9DzQ6dJtltgsFS+89KUi4wcNDWOizYOnB9E9 Bl3vksnEtwspN03Xy0xGklWoXu+a3tXhUJZh3tQa8ukn0bzc8zD+XqgGDgdnUvFp mmEI8QotOC5j51PVlk0QOz1d1yr4hGquNJs3kySHNqXxdHsTiL2DTwPPPKSi9f4E x0C129y8weJhcB0+doOaz1H847Fr5zM= -----END CERTIFICATE-----Generated at Wed May 14 09:22:58 2025 by rpki-client