$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft File: RyCit4x4I5km_e5zRKNoDaDYBx0.mft (raw, json) Hash identifier: psHu76/e7psE8im9bykodJFgSe/7DgQMlUok0/xeaGU= Subject key identifier: EC:D1:24:9B:38:70:71:28:48:A1:0A:4D:DC:6D:42:81:09:EB:44:5C Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft Manifest number: A3 Signing time: Sat 23 Aug 2025 06:21:43 +0000 Manifest this update: Sat 23 Aug 2025 06:21:43 +0000 Manifest next update: Sat 30 Aug 2025 06:21:43 +0000 Files and hashes: 1: RyCit4x4I5km_e5zRKNoDaDYBx0.crl (hash: zRz2B2ve9CZKXk3VmyrNcLe/dMkz/11ULOmi9Sqcsm0=) 2: D2D7B762995611EFADA5D754C4F9AE02.roa (hash: P8Uz392/KpNavGqAZa2GAkqPLrN5Wfcp0qzBrJpnBuA=) 3: 003589503F8311F0AA4DF254C4F9AE02.roa (hash: 8eqt950PmXpP3Mdx7FgJY/zBuBaFJX67pkKFWKR83KI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:21:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: Aug 23 06:21:43 2025 GMT Not After : Aug 30 06:21:43 2025 GMT Subject: CN=68a95df7-53c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e9:b6:e8:27:91:31:c6:c1:c7:95:ef:8d:dc: 19:b2:30:67:06:40:72:38:3f:23:f0:16:33:83:e9: 62:68:a4:77:3f:46:85:65:80:97:e5:25:d2:72:35: bb:76:14:92:6d:40:12:a5:d4:c7:f1:42:b6:c5:fa: bc:33:2a:ac:b6:bf:a0:49:91:5b:1f:28:e6:e6:c4: 37:84:41:3a:31:9d:b9:6d:db:ce:f7:ee:b4:ab:97: df:e6:87:fd:96:7f:79:4f:46:2b:a9:e7:2b:53:02: eb:86:8a:e8:ec:be:51:11:d6:6f:e1:f0:41:57:3e: 7a:09:89:94:d3:96:2f:48:5f:39:82:99:36:a6:2f: bb:f0:04:e7:a5:0d:9e:8f:3f:d4:9e:94:86:c1:0d: 04:44:54:58:65:e1:fa:f9:bc:b5:50:2b:93:67:5f: 03:47:f8:71:f8:fd:38:2c:4e:40:71:7d:2e:61:76: 58:37:61:66:6f:8e:a3:b3:43:b4:bc:a7:45:8f:7f: 7d:28:f4:c4:43:3c:54:f7:4d:e1:06:f6:27:c3:c7: 6d:a9:24:18:fa:47:83:fe:5e:8a:2d:c4:cb:5c:07: 01:a0:6f:9f:87:f4:2c:03:ca:29:80:40:d0:ab:91: 45:cc:62:ce:ce:af:1e:90:87:4d:49:d1:13:2e:23: 3f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:D1:24:9B:38:70:71:28:48:A1:0A:4D:DC:6D:42:81:09:EB:44:5C X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:46:e8:01:3c:9d:32:db:44:d8:50:27:f1:28:d4:3a:c8:de: f8:01:d5:09:db:15:f6:33:21:c5:a9:1d:fd:dd:cb:57:ac:df: 21:b5:44:2a:b1:6c:5f:3c:fe:53:94:0f:f2:3f:fb:d0:63:24: ad:40:1c:32:88:c6:5e:91:8a:1d:eb:9d:f9:39:0e:60:14:c2: a3:8c:16:36:b2:6b:dd:b1:98:56:46:38:c6:c5:26:7f:a3:65: 24:4b:ad:82:26:1d:87:8e:48:85:c9:e5:87:64:5c:3c:aa:01: a6:63:dc:8c:20:65:e1:f6:c0:62:21:a8:ea:34:0f:aa:ec:67: 1c:1b:61:a5:a8:94:7c:48:df:4d:e0:5f:b3:a9:01:f9:4a:93: 47:67:fc:24:e7:f0:d3:35:2d:0a:30:d3:ce:9b:0e:74:8b:fb: 86:3e:dd:c4:e8:5f:15:ce:6b:cc:37:bd:9b:3d:b4:fa:57:54: c6:81:bd:07:06:22:22:b5:55:a4:ba:3a:20:64:0a:2d:f2:5d: d8:d9:ce:34:ca:56:fa:1b:63:92:7d:97:a8:e5:4f:f6:f2:47: e4:eb:d2:69:1c:2f:cd:a6:ae:0d:f0:14:3a:ca:e7:14:25:0f: 30:52:4d:11:af:0d:4a:8f:44:cc:7e:50:65:c3:5a:e6:41:73: 72:ec:c2:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDQ3MjBBMkI3OEM3ODIzOTkyNkZERUU3MzQ0QTM2ODBE QTBEODA3MUQwHhcNMjUwODIzMDYyMTQzWhcNMjUwODMwMDYyMTQzWjAYMRYwFAYD VQQDEw02OGE5NWRmNy01M2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+m26CeRMcbBx5XvjdwZsjBnBkByOD8j8BYzg+liaKR3P0aFZYCX5SXScjW7 dhSSbUASpdTH8UK2xfq8Myqstr+gSZFbHyjm5sQ3hEE6MZ25bdvO9+60q5ff5of9 ln95T0YrqecrUwLrhoro7L5REdZv4fBBVz56CYmU05YvSF85gpk2pi+78ATnpQ2e jz/UnpSGwQ0ERFRYZeH6+by1UCuTZ18DR/hx+P04LE5AcX0uYXZYN2Fmb46js0O0 vKdFj399KPTEQzxU903hBvYnw8dtqSQY+keD/l6KLcTLXAcBoG+fh/QsA8opgEDQ q5FFzGLOzq8ekIdNSdETLiM/vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOzRJJs4 cHEoSKEKTdxtQoEJ60RcMB8GA1UdIwQYMBaAFEcgoreMeCOZJv3uc0SjaA2g2Acd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi8yN0UzRURBNDk4 MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1a21fZTV6UktOb0RhRFlC eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJERi8yN0UzRURBNDk4MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1 a21fZTV6UktOb0RhRFlCeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZRugBPJ0y20TYUCfxKNQ6yN74AdUJ2xX2MyHFqR393ctXrN8htUQq sWxfPP5TlA/yP/vQYyStQBwyiMZekYod6535OQ5gFMKjjBY2smvdsZhWRjjGxSZ/ o2UkS62CJh2HjkiFyeWHZFw8qgGmY9yMIGXh9sBiIajqNA+q7GccG2GlqJR8SN9N 4F+zqQH5SpNHZ/wk5/DTNS0KMNPOmw50i/uGPt3E6F8VzmvMN72bPbT6V1TGgb0H BiIitVWkujogZAot8l3Y2c40ylb6G2OSfZeo5U/28kfk69JpHC/Npq4N8BQ6yucU JQ8wUk0Rrw1Kj0TMflBlw1rmQXNy7MJd -----END CERTIFICATE-----Generated at Sat Aug 23 12:40:24 2025 by rpki-client