$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft File: RyCit4x4I5km_e5zRKNoDaDYBx0.mft (raw, json) Hash identifier: iNGoD/pfYzJ+TMrazYY1nvAE3zgVspQuWXQLFvGIJyk= Subject key identifier: 3A:A9:8E:42:10:82:62:02:C8:B2:A9:0D:4F:2F:FB:E6:AA:95:FE:FE Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft Manifest number: C0 Signing time: Sun 19 Oct 2025 08:53:11 +0000 Manifest this update: Sun 19 Oct 2025 08:53:10 +0000 Manifest next update: Sun 26 Oct 2025 08:53:10 +0000 Files and hashes: 1: RyCit4x4I5km_e5zRKNoDaDYBx0.crl (hash: kUpNR3lis4KH1N2G51W3maJGoy11Od1avRZfZWYvhT0=) 2: D2D7B762995611EFADA5D754C4F9AE02.roa (hash: P8Uz392/KpNavGqAZa2GAkqPLrN5Wfcp0qzBrJpnBuA=) 3: 003589503F8311F0AA4DF254C4F9AE02.roa (hash: 8eqt950PmXpP3Mdx7FgJY/zBuBaFJX67pkKFWKR83KI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: Oct 19 08:53:10 2025 GMT Not After : Oct 26 08:53:10 2025 GMT Subject: CN=68f4a6f7-eb1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:87:3b:86:98:9a:40:02:0d:fc:21:bd:bf:82: 98:b1:6c:4c:4a:eb:25:b7:bf:d1:58:f1:14:94:1f: 4d:bf:fd:e0:25:68:66:5e:49:b7:c7:11:4b:d1:c8: 2f:5f:c6:42:a0:37:7e:eb:fb:95:78:39:07:a7:8e: 3a:9a:72:2d:c8:7a:ad:17:60:a0:65:99:45:26:f5: 32:a5:b4:c3:a1:38:de:45:fe:75:fb:50:0c:ca:61: 81:88:6f:f2:08:d7:58:62:64:23:6e:6c:45:96:bb: c2:54:2e:91:4c:93:2d:fb:49:a7:2a:8c:4d:03:18: b2:81:d1:84:46:d8:55:ba:38:ef:30:4d:e4:b4:c6: 89:3a:88:f0:30:f1:88:96:2b:ab:3b:04:23:5d:d1: ef:87:6f:31:b9:b5:35:14:1f:e1:94:9f:87:2d:05: a8:86:32:0b:d8:c8:4b:19:7e:e5:63:35:07:49:af: 63:4e:1b:80:60:af:12:9b:38:43:cf:ce:45:ca:c2: 3e:41:4f:ae:c5:02:30:8c:a4:b9:ae:95:d1:a9:26: 9c:be:63:25:96:61:fc:df:97:70:91:8e:6c:8d:b8: 20:cb:be:5b:a9:32:55:87:32:4d:f7:52:5c:f6:01: 93:de:b5:b8:df:c2:11:be:a7:dc:54:be:d6:c7:26: fd:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:A9:8E:42:10:82:62:02:C8:B2:A9:0D:4F:2F:FB:E6:AA:95:FE:FE X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:e9:6f:db:c3:2f:af:fd:f4:51:fc:c9:58:16:5e:83:af:3c: bd:1d:ec:9d:e5:05:0a:af:b7:ce:0f:7f:22:7f:ac:5a:b5:f7: 97:54:c0:28:d8:42:12:ad:86:cd:61:fa:79:37:12:73:96:5a: ed:e1:89:a5:94:65:c7:fa:bc:d0:76:47:b9:33:d0:8a:e1:ff: af:b2:f7:dc:71:3c:92:35:2a:00:83:b2:47:b4:a5:93:8d:d5: 6c:e3:3f:cd:32:90:ea:e6:9d:38:05:f6:c8:87:2c:88:39:a9: bf:84:32:de:ed:3e:e0:04:fa:c1:65:35:d5:a3:24:85:28:7e: 8f:2a:da:24:18:a5:f6:a3:b4:7a:29:df:2c:5d:e4:18:90:72: 44:18:1c:10:45:f2:45:d6:ac:53:0a:17:c3:d7:98:4f:a3:63: 72:cf:b7:ac:50:7a:73:cc:91:b6:66:13:85:67:72:5b:5e:05: 19:ea:f2:3a:04:36:05:8c:b7:98:38:d3:a2:a9:19:74:28:f4: 96:c2:3d:74:30:0f:45:55:f7:7d:a2:17:b4:ea:9f:a5:c6:59: b5:ba:d7:f6:bd:fc:cf:37:11:2f:fc:b6:4e:2d:ef:11:17:3e: b5:4d:0b:8a:88:18:ae:59:fd:37:8c:53:22:26:7c:23:da:96: 9e:38:dd:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDQ3MjBBMkI3OEM3ODIzOTkyNkZERUU3MzQ0QTM2ODBE QTBEODA3MUQwHhcNMjUxMDE5MDg1MzEwWhcNMjUxMDI2MDg1MzEwWjAYMRYwFAYD VQQDEw02OGY0YTZmNy1lYjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsoc7hpiaQAIN/CG9v4KYsWxMSuslt7/RWPEUlB9Nv/3gJWhmXkm3xxFL0cgv X8ZCoDd+6/uVeDkHp446mnItyHqtF2CgZZlFJvUypbTDoTjeRf51+1AMymGBiG/y CNdYYmQjbmxFlrvCVC6RTJMt+0mnKoxNAxiygdGERthVujjvME3ktMaJOojwMPGI liurOwQjXdHvh28xubU1FB/hlJ+HLQWohjIL2MhLGX7lYzUHSa9jThuAYK8SmzhD z85FysI+QU+uxQIwjKS5rpXRqSacvmMllmH835dwkY5sjbggy75bqTJVhzJN91Jc 9gGT3rW438IRvqfcVL7Wxyb9NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDqpjkIQ gmICyLKpDU8v++aqlf7+MB8GA1UdIwQYMBaAFEcgoreMeCOZJv3uc0SjaA2g2Acd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi8yN0UzRURBNDk4 MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1a21fZTV6UktOb0RhRFlC eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJERi8yN0UzRURBNDk4MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1 a21fZTV6UktOb0RhRFlCeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg6W/bwy+v/fRR/MlYFl6Drzy9Heyd5QUKr7fOD38if6xatfeXVMAo 2EISrYbNYfp5NxJzllrt4YmllGXH+rzQdke5M9CK4f+vsvfccTySNSoAg7JHtKWT jdVs4z/NMpDq5p04BfbIhyyIOam/hDLe7T7gBPrBZTXVoySFKH6PKtokGKX2o7R6 Kd8sXeQYkHJEGBwQRfJF1qxTChfD15hPo2Nyz7esUHpzzJG2ZhOFZ3JbXgUZ6vI6 BDYFjLeYONOiqRl0KPSWwj10MA9FVfd9ohe06p+lxlm1utf2vfzPNxEv/LZOLe8R Fz61TQuKiBiuWf03jFMiJnwj2paeON0R -----END CERTIFICATE-----Generated at Tue Oct 21 11:40:30 2025 by rpki-client