$ rpki-client -vvf rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft File: bycituUTNGUloqmUZBtOJ_BNU1Y.mft (raw, json) Hash identifier: tv/aJqm/KQ0Fy6cdtSVLKek69imPxOlQVxxECfGrL4U= Subject key identifier: DD:79:E0:FD:99:8C:C7:D5:DC:64:5B:16:B3:EA:63:C0:5E:31:C1:D4 Authority key identifier: 6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 Certificate issuer: /CN=A91870B9/serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Certificate serial: 02B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft Manifest number: 02B2 Signing time: Thu 21 Aug 2025 01:39:19 +0000 Manifest this update: Thu 21 Aug 2025 01:39:19 +0000 Manifest next update: Thu 28 Aug 2025 01:39:19 +0000 Files and hashes: 1: bycituUTNGUloqmUZBtOJ_BNU1Y.crl (hash: qnHPH6UZlcgKSJFmOMfJ7SVOm2xG6WYysr2JI9lCED4=) 2: A48AD700072111ED91EABE39C4F9AE02.roa (hash: tggayaLto8CAWEhkFDTMAXvd1HSZb+GtdD7dZmQyKpM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 01:39:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 694 (0x2b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91870B9, serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Validity Not Before: Aug 21 01:39:19 2025 GMT Not After : Aug 28 01:39:19 2025 GMT Subject: CN=68a678c7-1aec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:81:08:c9:ae:dc:3b:6e:7b:4c:ad:df:76:5d: ec:2c:34:98:99:94:35:6b:07:c2:93:c8:c1:70:f2: 47:46:d8:ea:85:55:5b:3f:35:b1:24:63:49:aa:69: 5a:dd:c5:1d:bf:14:af:e1:30:99:8b:5f:e5:25:c3: bb:eb:a0:af:51:88:2c:e5:24:1d:6d:37:ca:94:3b: ed:f2:6b:37:c0:19:35:da:4a:7a:ca:bd:52:8c:cd: a5:fc:c5:60:1c:7b:33:21:73:e9:df:79:fa:62:d7: 7c:c5:b6:c1:2a:70:6b:53:8b:cf:72:ac:80:52:f6: ae:99:4a:82:f5:df:6f:ff:fe:0d:8d:00:35:09:78: 21:ee:78:d5:89:55:80:79:1a:3f:b4:a0:2c:52:ae: e9:db:e4:e6:fb:2e:31:fd:17:ab:ee:19:a5:35:4e: 35:9c:00:82:59:c4:8f:f6:c5:a6:c3:1e:8a:6e:8a: f2:7b:e3:ca:6d:20:68:56:5a:a1:fe:bb:0a:f6:ac: c1:6a:d9:7d:de:5a:86:1e:6d:a8:ed:fc:30:11:ba: 3f:b1:9f:71:df:71:18:cd:6d:b1:c7:55:12:ac:08: b5:ff:ed:b1:e9:85:f8:f1:4b:50:bb:df:c9:17:dc: c9:e4:d7:25:15:ef:68:5c:35:22:71:ea:27:f1:6e: 67:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:79:E0:FD:99:8C:C7:D5:DC:64:5B:16:B3:EA:63:C0:5E:31:C1:D4 X509v3 Authority Key Identifier: keyid:6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:78:44:0a:35:32:5f:97:ab:f5:32:ed:2e:08:0f:7c:d6:9b: 88:35:f9:19:6b:30:bf:53:cb:24:fe:e7:ca:63:43:b0:3c:65: ed:e2:7f:4a:06:b2:7b:1b:0c:22:de:5d:24:67:3f:25:be:a8: 30:fd:e2:0f:1d:31:76:bc:4a:b5:d3:ea:4e:d8:a0:c2:c2:3b: c0:48:73:2f:93:fc:c2:df:df:0a:0d:69:45:3c:41:d0:bc:4d: 42:c2:ff:a7:7a:06:20:3b:58:f1:a1:d6:89:8d:79:eb:64:d9: c3:00:70:c6:e9:c3:63:1c:92:7e:1b:45:99:3a:b7:0f:c8:b3: 1d:de:ae:9a:6b:20:c1:43:8d:75:60:73:6f:4e:55:4f:10:3a: c6:14:93:4d:cb:96:7c:fc:92:6d:7d:11:d5:b3:d6:4c:60:91: b6:09:bf:a6:32:6d:b0:3e:07:e2:1c:a3:36:d7:5c:2d:43:e2: 6f:4b:81:41:b2:87:74:f3:69:12:ca:e4:7d:14:97:04:0c:81: a2:76:28:b5:ec:4d:fa:8f:18:19:5f:19:1d:6a:45:09:6d:79: 00:cf:c3:5c:14:b1:a2:ee:84:b5:2a:13:fe:11:66:69:05:8e: de:10:ec:d0:31:65:c8:b2:0f:8c:14:ca:82:37:65:8d:14:f1: 13:8c:23:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcwQjkxMTAvBgNVBAUTKDZGMjcyMkI2RTUxMzM0NjUyNUEyQTk5NDY0MUI0RTI3 RjA0RDUzNTYwHhcNMjUwODIxMDEzOTE5WhcNMjUwODI4MDEzOTE5WjAYMRYwFAYD VQQDEw02OGE2NzhjNy0xYWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4EIya7cO257TK3fdl3sLDSYmZQ1awfCk8jBcPJHRtjqhVVbPzWxJGNJqmla 3cUdvxSv4TCZi1/lJcO766CvUYgs5SQdbTfKlDvt8ms3wBk12kp6yr1SjM2l/MVg HHszIXPp33n6Ytd8xbbBKnBrU4vPcqyAUvaumUqC9d9v//4NjQA1CXgh7njViVWA eRo/tKAsUq7p2+Tm+y4x/Rer7hmlNU41nACCWcSP9sWmwx6Kborye+PKbSBoVlqh /rsK9qzBatl93lqGHm2o7fwwEbo/sZ9x33EYzW2xx1USrAi1/+2x6YX48UtQu9/J F9zJ5NclFe9oXDUiceon8W5nUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN154P2Z jMfV3GRbFrPqY8BeMcHUMB8GA1UdIwQYMBaAFG8nIrblEzRlJaKplGQbTifwTVNW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzBCOS83QzhDODkwRTA3 MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5HVWxvcW1VWkJ0T0pfQk5V MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5Y2l0dVVUTkdVbG9xbVVaQnRPSl9CTlUxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzBCOS83QzhDODkwRTA3MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5H VWxvcW1VWkJ0T0pfQk5VMVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIeEQKNTJfl6v1Mu0uCA981puINfkZazC/U8sk/ufKY0OwPGXt4n9K BrJ7Gwwi3l0kZz8lvqgw/eIPHTF2vEq10+pO2KDCwjvASHMvk/zC398KDWlFPEHQ vE1Cwv+negYgO1jxodaJjXnrZNnDAHDG6cNjHJJ+G0WZOrcPyLMd3q6aayDBQ411 YHNvTlVPEDrGFJNNy5Z8/JJtfRHVs9ZMYJG2Cb+mMm2wPgfiHKM211wtQ+JvS4FB sod082kSyuR9FJcEDIGidii17E36jxgZXxkdakUJbXkAz8NcFLGi7oS1KhP+EWZp BY7eEOzQMWXIsg+MFMqCN2WNFPETjCOc -----END CERTIFICATE-----Generated at Fri Aug 22 16:32:11 2025 by rpki-client