$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft File: RyCit4x4I5km_e5zRKNoDaDYBx0.mft (raw, json) Hash identifier: hHRG9DvvcGQSkDsmx8slYe2GT1CY/HbuV55q1D/tJU8= Subject key identifier: F8:6A:86:78:81:F6:B1:79:59:E7:3D:F9:5A:39:A9:28:7C:38:57:FA Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft Manifest number: 89 Signing time: Thu 03 Jul 2025 06:38:54 +0000 Manifest this update: Thu 03 Jul 2025 06:38:53 +0000 Manifest next update: Thu 10 Jul 2025 06:38:53 +0000 Files and hashes: 1: RyCit4x4I5km_e5zRKNoDaDYBx0.crl (hash: u/ywBTy6IgEo1PqHR5eOSFdUrUwTdPWXsRIXWMIhtlU=) 2: D2D7B762995611EFADA5D754C4F9AE02.roa (hash: P8Uz392/KpNavGqAZa2GAkqPLrN5Wfcp0qzBrJpnBuA=) 3: 003589503F8311F0AA4DF254C4F9AE02.roa (hash: 8eqt950PmXpP3Mdx7FgJY/zBuBaFJX67pkKFWKR83KI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: Jul 3 06:38:53 2025 GMT Not After : Jul 10 06:38:53 2025 GMT Subject: CN=6866257d-3725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a3:cd:42:f6:16:e3:96:71:81:5b:3f:1b:27: 1b:15:eb:29:aa:cc:d0:89:4d:ef:52:1e:9b:22:30: 02:38:ec:03:cc:eb:2f:9d:6c:36:b2:db:39:d5:ac: ac:b1:ec:66:74:f3:3a:40:77:b9:3c:63:46:55:37: fc:eb:b7:9b:f3:77:7d:a7:12:1a:c2:ec:91:7e:79: b2:d3:c9:2d:a8:75:94:02:98:7b:08:9c:ef:7c:41: 63:14:96:df:9b:f4:32:c9:27:2d:53:0f:cc:33:fd: ef:bf:99:a9:90:56:fd:e6:35:66:f0:76:3f:48:00: ba:d4:bd:1d:21:c5:06:d3:dd:40:8a:58:cc:58:b9: 65:63:15:ef:93:d8:3e:72:b5:d9:12:5b:41:09:0e: 50:09:a7:f9:9f:a8:3f:25:df:37:81:38:07:2e:11: 2d:87:76:8c:72:a2:af:c6:71:aa:28:c2:68:e7:08: 0f:ee:fc:41:31:dd:28:ef:02:85:09:fb:cd:63:8f: 40:93:21:4d:30:06:d4:17:ae:11:39:63:a2:01:61: 76:65:a6:63:48:f9:f5:f2:52:97:19:d6:81:17:12: f0:eb:0e:75:21:c1:85:d1:0f:82:f3:04:70:3b:b4: dc:e2:20:0b:31:50:14:e0:58:e3:2e:c3:a8:71:70: 33:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:6A:86:78:81:F6:B1:79:59:E7:3D:F9:5A:39:A9:28:7C:38:57:FA X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:e0:64:ab:43:c4:0a:00:c6:54:0d:96:69:9b:52:96:a9:cb: b6:f3:8a:4a:ad:47:0f:cb:ed:8e:31:2d:54:01:60:b7:0f:f8: c3:70:9e:42:f3:7e:3b:f6:f7:65:a0:00:55:da:b0:a9:65:45: 91:54:96:e6:cf:e1:f6:99:34:73:90:a2:fa:1f:74:06:6c:1e: 85:8f:1b:15:22:30:9b:f4:ea:e4:b4:cc:ea:ec:06:54:75:89: dc:7f:b2:9a:e9:0f:d9:0a:16:2a:c4:8a:9d:58:7f:55:98:a0: 9f:db:b9:ac:38:70:cd:05:9d:dd:60:fe:2c:07:d8:8e:6c:b1: 29:8b:16:e8:c9:94:4d:c3:0d:0a:4e:6e:d2:0b:be:95:03:d6: 18:9c:4f:1b:8e:dc:25:61:d6:7b:e2:6e:98:a7:70:4e:39:17: ca:e6:e5:af:9e:a2:4c:69:0b:8d:fd:bd:ee:2e:00:2b:dd:e1: 5b:86:be:7a:d9:6c:16:61:52:6b:26:a0:63:43:d4:a3:c7:52: a7:b8:bc:fe:6c:8c:c5:2d:c3:98:cb:dc:7d:e2:1c:e4:13:b0: 46:bf:37:72:ce:bd:0e:a2:eb:0e:5d:c3:fa:70:f3:05:88:a0: ff:a6:4b:bb:9f:9e:18:8d:eb:78:a5:6b:88:ed:87:5d:f0:a1: 86:72:ce:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDQ3MjBBMkI3OEM3ODIzOTkyNkZERUU3MzQ0QTM2ODBE QTBEODA3MUQwHhcNMjUwNzAzMDYzODUzWhcNMjUwNzEwMDYzODUzWjAYMRYwFAYD VQQDEw02ODY2MjU3ZC0zNzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnKPNQvYW45ZxgVs/GycbFespqszQiU3vUh6bIjACOOwDzOsvnWw2sts51ays sexmdPM6QHe5PGNGVTf867eb83d9pxIawuyRfnmy08ktqHWUAph7CJzvfEFjFJbf m/QyySctUw/MM/3vv5mpkFb95jVm8HY/SAC61L0dIcUG091AiljMWLllYxXvk9g+ crXZEltBCQ5QCaf5n6g/Jd83gTgHLhEth3aMcqKvxnGqKMJo5wgP7vxBMd0o7wKF CfvNY49AkyFNMAbUF64ROWOiAWF2ZaZjSPn18lKXGdaBFxLw6w51IcGF0Q+C8wRw O7Tc4iALMVAU4FjjLsOocXAzHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhqhniB 9rF5Wec9+Vo5qSh8OFf6MB8GA1UdIwQYMBaAFEcgoreMeCOZJv3uc0SjaA2g2Acd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi8yN0UzRURBNDk4 MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1a21fZTV6UktOb0RhRFlC eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJERi8yN0UzRURBNDk4MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1 a21fZTV6UktOb0RhRFlCeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg4GSrQ8QKAMZUDZZpm1KWqcu284pKrUcPy+2OMS1UAWC3D/jDcJ5C 83479vdloABV2rCpZUWRVJbmz+H2mTRzkKL6H3QGbB6FjxsVIjCb9OrktMzq7AZU dYncf7Ka6Q/ZChYqxIqdWH9VmKCf27msOHDNBZ3dYP4sB9iObLEpixboyZRNww0K Tm7SC76VA9YYnE8bjtwlYdZ74m6Yp3BOORfK5uWvnqJMaQuN/b3uLgAr3eFbhr56 2WwWYVJrJqBjQ9Sjx1KnuLz+bIzFLcOYy9x94hzkE7BGvzdyzr0OousOXcP6cPMF iKD/pku7n54Yjet4pWuI7Ydd8KGGcs7f -----END CERTIFICATE-----Generated at Thu Jul 3 23:22:40 2025 by rpki-client