$ rpki-client -vvf rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft File: bycituUTNGUloqmUZBtOJ_BNU1Y.mft (raw, json) Hash identifier: AN7gFTsyTi6Yq8iHhMVXsJFDfMTyoGqEY5wIjm/UJEM= Subject key identifier: E3:8C:1C:45:78:66:7E:17:FB:CA:21:D5:75:DE:45:B9:AE:26:19:77 Authority key identifier: 6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 Certificate issuer: /CN=A91870B9/serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Certificate serial: 028E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft Manifest number: 028B Signing time: Mon 09 Jun 2025 01:09:29 +0000 Manifest this update: Mon 09 Jun 2025 01:09:29 +0000 Manifest next update: Mon 16 Jun 2025 01:09:29 +0000 Files and hashes: 1: bycituUTNGUloqmUZBtOJ_BNU1Y.crl (hash: c7OWhr0g6pM5isCISJZMWN21Pvfv2MEU4k4BgZ3h4gA=) 2: A48AD700072111ED91EABE39C4F9AE02.roa (hash: LYlnmY38WC+/5pBo6/8yuliMtbU1c9X35OeWacBJJcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 01:09:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 654 (0x28e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91870B9, serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Validity Not Before: Jun 9 01:09:29 2025 GMT Not After : Jun 16 01:09:29 2025 GMT Subject: CN=68463449-0e13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:db:a7:d8:f6:05:fe:6f:ab:a8:20:7c:d5:c6: 92:3e:92:38:5d:60:78:f0:31:22:ca:93:1a:89:68: 3a:84:1d:80:17:81:5f:30:12:28:77:76:0a:a9:4d: ac:f3:c5:1a:02:8a:68:8b:08:b5:06:08:1b:9c:32: b7:0f:0c:d5:89:e7:18:de:29:59:3a:65:ba:2a:8a: b6:64:b2:8a:be:18:88:7e:52:c4:2c:76:1e:e2:f8: 6a:4e:c0:bf:13:56:6f:36:8b:44:95:08:d5:e7:6a: 04:45:a7:b7:5e:72:1a:3e:9e:a3:6b:e4:be:68:a3: e5:70:14:43:d8:97:60:d9:a2:2f:89:38:8b:65:8e: 2e:5d:be:a5:d1:af:a1:e5:1a:63:fa:ca:5e:32:fc: b5:12:f9:79:b6:2f:df:5e:81:65:ea:8b:de:dc:bd: 8f:28:93:fe:82:f5:0f:d0:fa:5f:1f:d5:e1:7f:d1: 81:12:f6:db:df:f9:b1:49:2d:39:5d:2a:9e:05:3e: 1e:95:7c:0b:fe:fb:a7:a3:54:ac:bd:fb:27:6c:85: 12:3a:c4:d1:1d:01:fa:ba:19:5e:d6:9b:d8:77:d7: bd:3e:0a:f4:4f:68:b5:51:c8:44:8e:8f:99:62:6a: 00:1c:cd:6b:4c:69:37:a4:3b:16:6e:d1:71:61:02: 1e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:8C:1C:45:78:66:7E:17:FB:CA:21:D5:75:DE:45:B9:AE:26:19:77 X509v3 Authority Key Identifier: keyid:6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:a4:5f:dc:3f:61:97:90:15:54:c8:31:55:0e:60:9c:21:8b: cd:79:f5:3b:06:f5:4f:cb:7f:46:d1:b8:9c:91:9b:d2:9a:34: cd:6e:f1:62:98:ea:cb:27:51:09:1e:4d:f5:9b:a6:81:69:53: 15:ba:e3:97:df:5b:49:42:90:0f:28:e9:96:18:50:e9:91:b0: 85:29:35:b0:44:47:f9:a8:e3:b5:a2:95:38:7a:fa:bf:f4:84: cc:9d:2e:0a:f6:c2:fa:f2:e6:c2:bf:eb:6e:25:ef:28:07:24: de:3c:48:42:82:f7:5d:6c:2e:4d:36:e0:e5:92:35:70:08:7b: 17:07:48:c5:10:ec:c6:3f:cc:45:be:99:e7:1e:f6:3e:d9:a2: a6:ac:ac:15:39:ce:f4:b8:d7:f6:3b:72:27:a2:40:8d:41:6e: 7f:3c:e3:7e:db:c8:ae:2e:12:87:d3:65:9c:db:df:46:03:33: 0a:df:7d:ac:38:85:92:91:38:a8:de:23:d0:09:5d:d8:ad:90: 0f:07:e9:b7:71:99:49:3c:b8:16:6a:a2:85:b9:8c:08:2d:c1: 16:19:19:c8:30:07:73:f0:89:44:9b:8e:2b:7e:9e:22:5a:63: 15:75:29:2f:e1:05:dd:33:f8:ac:ef:ff:f6:f8:8f:01:a4:0b: aa:a0:ad:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcwQjkxMTAvBgNVBAUTKDZGMjcyMkI2RTUxMzM0NjUyNUEyQTk5NDY0MUI0RTI3 RjA0RDUzNTYwHhcNMjUwNjA5MDEwOTI5WhcNMjUwNjE2MDEwOTI5WjAYMRYwFAYD VQQDEw02ODQ2MzQ0OS0wZTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotun2PYF/m+rqCB81caSPpI4XWB48DEiypMaiWg6hB2AF4FfMBIod3YKqU2s 88UaAopoiwi1BggbnDK3DwzViecY3ilZOmW6Koq2ZLKKvhiIflLELHYe4vhqTsC/ E1ZvNotElQjV52oERae3XnIaPp6ja+S+aKPlcBRD2Jdg2aIviTiLZY4uXb6l0a+h 5Rpj+speMvy1Evl5ti/fXoFl6ove3L2PKJP+gvUP0PpfH9Xhf9GBEvbb3/mxSS05 XSqeBT4elXwL/vuno1SsvfsnbIUSOsTRHQH6uhle1pvYd9e9Pgr0T2i1UchEjo+Z YmoAHM1rTGk3pDsWbtFxYQIe7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOOMHEV4 Zn4X+8oh1XXeRbmuJhl3MB8GA1UdIwQYMBaAFG8nIrblEzRlJaKplGQbTifwTVNW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzBCOS83QzhDODkwRTA3 MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5HVWxvcW1VWkJ0T0pfQk5V MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5Y2l0dVVUTkdVbG9xbVVaQnRPSl9CTlUxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzBCOS83QzhDODkwRTA3MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5H VWxvcW1VWkJ0T0pfQk5VMVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCopF/cP2GXkBVUyDFVDmCcIYvNefU7BvVPy39G0bickZvSmjTNbvFi mOrLJ1EJHk31m6aBaVMVuuOX31tJQpAPKOmWGFDpkbCFKTWwREf5qOO1opU4evq/ 9ITMnS4K9sL68ubCv+tuJe8oByTePEhCgvddbC5NNuDlkjVwCHsXB0jFEOzGP8xF vpnnHvY+2aKmrKwVOc70uNf2O3InokCNQW5/PON+28iuLhKH02Wc299GAzMK332s OIWSkTio3iPQCV3YrZAPB+m3cZlJPLgWaqKFuYwILcEWGRnIMAdz8IlEm44rfp4i WmMVdSkv4QXdM/is7//2+I8BpAuqoK3E -----END CERTIFICATE-----Generated at Mon Jun 9 21:47:39 2025 by rpki-client