$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft File: LYC7UpVYC-No2mj7jQPqtI16xss.mft (raw, json) Hash identifier: AJJ0tFDa2ERAR3x7yPQxPZpNsD+hetENRiHXAvtJGAY= Subject key identifier: 72:AF:E0:B6:B0:09:15:41:02:9F:30:E8:C7:4E:10:8B:06:49:D2:42 Authority key identifier: 2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB Certificate issuer: /CN=A91B7948/serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Certificate serial: 92 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft Manifest number: 91 Signing time: Wed 09 Apr 2025 05:14:40 +0000 Manifest this update: Wed 09 Apr 2025 05:14:40 +0000 Manifest next update: Wed 16 Apr 2025 05:14:40 +0000 Files and hashes: 1: LYC7UpVYC-No2mj7jQPqtI16xss.crl (hash: teeSyRWr3oGPT+CaCuYL58eQL5B5U6/43Am31hIMXog=) 2: 70ED9D2837D111EF99A8011CC4F9AE02.roa (hash: XcL7vfDB7+jSL63SdSHmjhv1kS+M1yfgUS1Jg2qNUac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 05:14:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7948 Validity Not Before: Apr 9 05:14:40 2025 GMT Not After : Apr 16 05:14:40 2025 GMT Subject: CN=67f60240-88dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:38:a4:7f:db:76:08:10:49:da:10:09:01:0d: 66:be:43:f6:20:07:72:ea:e5:6a:b6:89:11:d5:df: 70:83:8e:a4:3e:f8:b5:5a:f5:30:59:82:cc:2c:de: 10:b5:44:bc:dd:bd:c6:89:be:c6:a6:6e:54:fa:05: ec:d0:a7:d4:5b:2c:32:a7:89:0a:3a:6c:de:ec:7c: 55:0e:19:24:e8:20:1d:89:2d:e4:93:f6:21:ce:cf: bd:19:35:12:40:e4:f1:42:60:cb:68:1a:3d:76:17: bf:4a:a0:fa:d5:48:87:17:3f:2b:a7:00:4d:59:05: ec:39:87:34:27:6b:5b:3c:93:37:66:2a:df:c4:90: 5d:66:99:03:24:a7:a1:8f:a1:29:5b:1a:71:e7:fb: d6:11:ba:ba:04:01:14:57:44:1f:dd:ec:d2:d9:fb: e1:6b:a4:95:88:bd:32:a3:32:5d:4c:25:9d:56:68: fe:93:8f:f7:09:6f:f7:96:3c:cd:b1:7a:e9:66:93: 7f:08:90:09:19:c3:9e:ae:c5:46:02:12:37:e6:6d: b4:91:15:5a:1d:fd:c7:a1:83:f8:44:60:51:cd:33: b6:8f:42:23:46:4a:7b:bf:a1:6c:b5:09:ad:26:6a: 38:f3:c7:10:ed:13:9c:8d:2b:93:4e:78:7c:ee:c2: eb:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:AF:E0:B6:B0:09:15:41:02:9F:30:E8:C7:4E:10:8B:06:49:D2:42 X509v3 Authority Key Identifier: keyid:2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:75:61:3f:06:e6:99:47:d7:34:49:be:fd:ea:f7:04:de:f8: 69:b9:86:a8:e2:cc:13:88:c4:82:3b:61:bc:ef:b4:04:08:7d: 0b:7e:4f:c6:41:bf:58:7c:4c:99:10:7b:89:87:43:cf:37:71: 6a:81:75:93:5f:f9:e0:17:98:8a:02:04:7c:18:76:34:ca:8c: c8:7a:9d:43:ee:36:d4:b3:db:f9:49:38:48:8c:c1:79:9d:2c: 6e:6e:0b:85:d9:2b:37:fc:be:6e:7c:25:be:00:b7:a3:60:f9: 65:de:c6:ec:25:31:2a:e9:b7:44:4b:21:34:a5:82:bd:b1:ef: f5:e7:c4:12:4a:dc:25:fb:c6:42:0f:f4:5e:3e:c2:ed:46:25: db:92:df:9d:d3:69:d6:70:15:e1:5f:b2:a1:a9:9c:4a:e0:1e: 6a:da:5a:a3:ee:de:b0:4b:04:6b:a1:7f:ec:21:43:92:df:09: f8:2d:b4:4d:c7:69:aa:e3:bc:6e:5b:98:d7:57:58:eb:bb:00: 83:dd:a0:bc:4d:ef:ac:23:bf:fd:48:7a:8c:11:33:6d:95:14: f3:73:e1:c2:ef:13:fc:4a:84:7b:b0:73:eb:fd:ab:7f:06:58: 4b:10:fb:c1:06:1b:e1:28:39:d8:0a:f9:49:10:95:50:7d:6d: c3:dd:9a:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc5NDgxMTAvBgNVBAUTKDJEODBCQjUyOTU1ODBCRTM2OERBNjhGQjhEMDNFQUI0 OEQ3QUM2Q0IwHhcNMjUwNDA5MDUxNDQwWhcNMjUwNDE2MDUxNDQwWjAYMRYwFAYD VQQDEw02N2Y2MDI0MC04OGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTikf9t2CBBJ2hAJAQ1mvkP2IAdy6uVqtokR1d9wg46kPvi1WvUwWYLMLN4Q tUS83b3Gib7Gpm5U+gXs0KfUWywyp4kKOmze7HxVDhkk6CAdiS3kk/Yhzs+9GTUS QOTxQmDLaBo9dhe/SqD61UiHFz8rpwBNWQXsOYc0J2tbPJM3ZirfxJBdZpkDJKeh j6EpWxpx5/vWEbq6BAEUV0Qf3ezS2fvha6SViL0yozJdTCWdVmj+k4/3CW/3ljzN sXrpZpN/CJAJGcOersVGAhI35m20kRVaHf3HoYP4RGBRzTO2j0IjRkp7v6FstQmt Jmo488cQ7ROcjSuTTnh87sLrwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHKv4Law CRVBAp8w6MdOEIsGSdJCMB8GA1UdIwQYMBaAFC2Au1KVWAvjaNpo+40D6rSNesbL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzk0OC80NkRDNkIwQTM3 RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi9MWUM3VXBWWUMtTm8ybWo3alFQcXRJMTZ4 c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xZQzdVcFZZQy1ObzJtajdqUVBxdEkxNnhzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzk0OC80NkRDNkIwQTM3RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi9MWUM3VXBWWUMt Tm8ybWo3alFQcXRJMTZ4c3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwdWE/BuaZR9c0Sb796vcE3vhpuYao4swTiMSCO2G877QECH0Lfk/G Qb9YfEyZEHuJh0PPN3FqgXWTX/ngF5iKAgR8GHY0yozIep1D7jbUs9v5SThIjMF5 nSxubguF2Ss3/L5ufCW+ALejYPll3sbsJTEq6bdESyE0pYK9se/158QSStwl+8ZC D/RePsLtRiXbkt+d02nWcBXhX7KhqZxK4B5q2lqj7t6wSwRroX/sIUOS3wn4LbRN x2mq47xuW5jXV1jruwCD3aC8Te+sI7/9SHqMETNtlRTzc+HC7xP8SoR7sHPr/at/ BlhLEPvBBhvhKDnYCvlJEJVQfW3D3ZrU -----END CERTIFICATE-----Generated at Thu Apr 10 22:09:51 2025 by rpki-client