$ rpki-client -vvf rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft File: bycituUTNGUloqmUZBtOJ_BNU1Y.mft (raw, json) Hash identifier: ttBW8s5gsdLyPMu9mmdq4PKrQU47mh8ZX/9LMH6A5/8= Subject key identifier: 63:E3:73:F2:F8:F4:FD:54:09:F9:31:04:24:E6:34:78:8B:25:04:ED Authority key identifier: 6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 Certificate issuer: /CN=A91870B9/serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Certificate serial: 0290 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft Manifest number: 028D Signing time: Fri 13 Jun 2025 01:06:10 +0000 Manifest this update: Fri 13 Jun 2025 01:06:10 +0000 Manifest next update: Fri 20 Jun 2025 01:06:10 +0000 Files and hashes: 1: bycituUTNGUloqmUZBtOJ_BNU1Y.crl (hash: mtnGw2YBbSnDbYv/uiFxUKe84C4bvgyycOm1asX49f4=) 2: A48AD700072111ED91EABE39C4F9AE02.roa (hash: LYlnmY38WC+/5pBo6/8yuliMtbU1c9X35OeWacBJJcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:06:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 656 (0x290) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91870B9, serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Validity Not Before: Jun 13 01:06:10 2025 GMT Not After : Jun 20 01:06:10 2025 GMT Subject: CN=684b7982-a867 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:26:00:c9:fd:f4:1c:38:cc:81:1d:cb:ca:b9: 4b:db:ac:8b:7c:9b:7d:5d:95:e4:87:21:36:e4:41: e1:b4:b7:3c:b0:63:65:a9:3e:d8:0f:a0:8d:70:ae: 84:84:c2:0b:2e:00:3c:12:89:50:21:98:e1:bf:bb: 47:be:3b:2e:5f:f7:8f:73:1a:bd:ec:61:e3:ac:3a: 95:d1:bf:a6:4d:ce:28:0d:f2:16:3e:43:f6:56:c7: 09:bc:b4:65:63:80:da:59:9d:a4:5c:17:00:f5:0a: 01:4b:ac:6e:96:c8:90:ab:cd:67:c3:c8:91:4a:b5: 29:a0:80:74:89:4e:d1:c5:ce:91:b4:e8:1e:c0:62: a8:1b:5e:fc:90:39:ab:02:58:5b:8f:48:1f:db:79: c2:7d:a2:07:d4:13:f9:d2:a7:59:8b:c4:22:ff:46: 4f:c6:37:8b:55:f2:28:f5:24:60:b5:d7:63:ca:29: e4:7b:21:d6:b5:a8:41:d2:5f:4b:1c:53:59:31:46: 6c:41:2e:77:01:51:b5:a7:c9:c7:4a:67:28:05:cb: c0:1e:55:52:36:dd:0e:5f:18:ea:b9:68:c1:e4:95: 27:85:ee:54:8c:0f:ef:0a:a4:f0:f2:90:2c:fe:5f: 39:a1:5e:1e:9c:c1:17:1d:cb:64:c5:fb:67:62:51: 85:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:E3:73:F2:F8:F4:FD:54:09:F9:31:04:24:E6:34:78:8B:25:04:ED X509v3 Authority Key Identifier: keyid:6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:ba:ed:8d:ea:57:e9:a2:1f:d6:44:bf:da:41:17:54:71:27: fb:77:e0:36:74:c1:f2:36:3c:fc:e0:f3:87:de:ab:74:80:af: 4f:99:73:4d:c3:64:eb:50:ae:96:73:ed:fb:e6:60:4c:3b:6c: d3:b6:4d:47:4c:fd:dd:f3:49:97:f3:d5:ba:76:e3:62:08:27: ab:a5:78:de:77:fe:f6:1a:0e:f1:3c:98:99:a7:6f:93:96:f3: a0:9b:d1:72:89:25:55:b3:5f:94:7b:29:02:84:d9:f4:16:2b: 45:ee:07:2b:72:e3:1a:05:a0:c0:7f:bf:d6:3b:21:f8:c5:f1: 06:bc:36:57:1d:9e:bf:ad:b1:f7:a7:83:c1:81:d3:93:cc:cb: 2c:d7:61:61:75:84:a5:5b:d4:b5:72:d8:2b:b1:63:41:3f:8f: 09:0a:8a:af:80:af:22:dd:d5:d9:3a:de:65:e1:2c:33:6d:0c: 2c:a6:a9:74:12:43:9a:84:31:c4:a3:4f:ed:46:c2:80:15:51: 6f:7d:1f:96:1b:1b:a5:3d:76:2e:6a:5a:5b:90:fb:36:44:7b: 84:3b:f5:a2:c7:24:15:d7:fe:47:df:9d:d6:80:fb:75:ad:7d: 05:fa:4d:f6:92:46:c3:e5:19:1e:75:4b:f8:bd:33:85:0d:bc: ef:19:53:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcwQjkxMTAvBgNVBAUTKDZGMjcyMkI2RTUxMzM0NjUyNUEyQTk5NDY0MUI0RTI3 RjA0RDUzNTYwHhcNMjUwNjEzMDEwNjEwWhcNMjUwNjIwMDEwNjEwWjAYMRYwFAYD VQQDEw02ODRiNzk4Mi1hODY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCYAyf30HDjMgR3LyrlL26yLfJt9XZXkhyE25EHhtLc8sGNlqT7YD6CNcK6E hMILLgA8EolQIZjhv7tHvjsuX/ePcxq97GHjrDqV0b+mTc4oDfIWPkP2VscJvLRl Y4DaWZ2kXBcA9QoBS6xulsiQq81nw8iRSrUpoIB0iU7Rxc6RtOgewGKoG178kDmr Alhbj0gf23nCfaIH1BP50qdZi8Qi/0ZPxjeLVfIo9SRgtddjyinkeyHWtahB0l9L HFNZMUZsQS53AVG1p8nHSmcoBcvAHlVSNt0OXxjquWjB5JUnhe5UjA/vCqTw8pAs /l85oV4enMEXHctkxftnYlGFsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPjc/L4 9P1UCfkxBCTmNHiLJQTtMB8GA1UdIwQYMBaAFG8nIrblEzRlJaKplGQbTifwTVNW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzBCOS83QzhDODkwRTA3 MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5HVWxvcW1VWkJ0T0pfQk5V MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5Y2l0dVVUTkdVbG9xbVVaQnRPSl9CTlUxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzBCOS83QzhDODkwRTA3MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5H VWxvcW1VWkJ0T0pfQk5VMVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBouu2N6lfpoh/WRL/aQRdUcSf7d+A2dMHyNjz84POH3qt0gK9PmXNN w2TrUK6Wc+375mBMO2zTtk1HTP3d80mX89W6duNiCCerpXjed/72Gg7xPJiZp2+T lvOgm9FyiSVVs1+UeykChNn0FitF7gcrcuMaBaDAf7/WOyH4xfEGvDZXHZ6/rbH3 p4PBgdOTzMss12FhdYSlW9S1ctgrsWNBP48JCoqvgK8i3dXZOt5l4SwzbQwspql0 EkOahDHEo0/tRsKAFVFvfR+WGxulPXYualpbkPs2RHuEO/WixyQV1/5H353WgPt1 rX0F+k32kkbD5RkedUv4vTOFDbzvGVNp -----END CERTIFICATE-----Generated at Sat Jun 14 04:21:39 2025 by rpki-client