$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft File: RyCit4x4I5km_e5zRKNoDaDYBx0.mft (raw, json) Hash identifier: wnHHVwMxYOCi+xX5KAuxgLlkhPpriKcR5nS7EtLpmBo= Subject key identifier: C7:94:F2:B0:60:FD:02:6A:2B:3C:B1:EB:71:5E:90:92:95:74:18:A4 Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft Manifest number: AC Signing time: Tue 09 Sep 2025 06:08:20 +0000 Manifest this update: Tue 09 Sep 2025 06:08:19 +0000 Manifest next update: Tue 16 Sep 2025 06:08:19 +0000 Files and hashes: 1: RyCit4x4I5km_e5zRKNoDaDYBx0.crl (hash: 45FAWXifIYmKKNJDf8hZuKnkS7ITcdFGo6lIBVJtSxk=) 2: D2D7B762995611EFADA5D754C4F9AE02.roa (hash: P8Uz392/KpNavGqAZa2GAkqPLrN5Wfcp0qzBrJpnBuA=) 3: 003589503F8311F0AA4DF254C4F9AE02.roa (hash: 8eqt950PmXpP3Mdx7FgJY/zBuBaFJX67pkKFWKR83KI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 06:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: Sep 9 06:08:19 2025 GMT Not After : Sep 16 06:08:19 2025 GMT Subject: CN=68bfc454-0751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:9a:2a:ed:42:a8:89:31:84:74:80:65:03:39: a3:87:42:da:18:40:e0:60:9c:5c:79:28:36:1c:c9: 17:2e:aa:4a:66:29:ea:ae:10:c5:5f:cd:0a:07:5b: 7c:5b:f6:1b:f0:b9:3d:51:a0:8d:e6:0a:53:87:7a: 5e:98:70:fa:5b:f9:8a:85:6e:0b:f9:25:5a:42:a3: 31:a3:5c:6e:33:9c:14:c4:ff:7a:1c:61:94:5a:fc: 01:92:44:e7:18:14:b3:35:e2:42:24:bb:62:c8:b4: 89:7f:7b:a9:b4:ef:f2:d1:a4:44:66:ae:92:3a:0a: 45:26:6c:61:1c:16:e7:09:cd:bc:fe:7c:4b:83:0b: f1:f7:7d:5a:74:6f:0a:4e:00:79:d1:1f:1d:e1:12: 08:ad:a5:3f:cd:af:86:d6:71:33:8d:4b:ef:ad:7e: 6d:96:08:37:1b:1f:d8:61:91:e8:2e:2a:f1:9e:6b: 98:1d:65:84:30:b0:44:88:bc:44:41:a1:47:c8:ef: b2:37:d9:6c:a8:a0:3d:f8:46:c9:a6:37:c2:38:af: d0:b5:a4:47:54:2d:f9:e3:5e:55:69:81:1e:c6:0b: 4d:8a:13:07:3a:a4:2a:ac:46:bc:e1:0a:5c:67:61: f7:84:9a:30:65:d3:eb:7d:9f:64:16:9c:06:1a:52: dd:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:94:F2:B0:60:FD:02:6A:2B:3C:B1:EB:71:5E:90:92:95:74:18:A4 X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:91:81:b1:d8:51:4f:98:0d:80:52:0b:27:2f:31:6b:a0:54: 00:33:25:a2:63:7f:dd:f3:b6:af:43:c4:a3:32:e4:6c:63:af: 54:a1:2d:bc:d8:f8:1b:27:36:5b:66:ac:57:41:02:bc:13:df: d1:4f:74:de:8a:33:31:02:e2:06:d9:8f:d0:4b:8d:64:2b:5d: 75:c9:db:02:f3:ad:38:e0:ec:89:97:15:a8:09:55:83:bf:5f: 1c:7e:fe:f1:4e:ca:d5:22:74:f4:e9:e0:92:2b:0c:fa:c1:73: c8:ac:3e:26:9a:4b:fd:4c:1c:2b:93:30:cf:30:69:17:53:a2: 38:66:ca:e8:a4:74:3d:8a:b5:11:14:7d:0b:de:84:51:c4:a5: 71:75:a0:c3:bb:06:d9:92:50:e1:5c:5b:f4:60:74:f9:d1:4e: 80:2c:26:5a:2c:96:d1:17:45:75:38:96:9b:d8:4c:5e:74:5e: dc:41:0e:d2:67:1a:e7:88:87:4a:b3:1f:19:59:ec:2c:87:af: 60:22:63:be:c9:b4:9a:54:2d:bc:0e:96:05:bf:f5:8c:04:ea: 97:ee:15:39:86:0d:7d:49:64:b7:e0:98:25:c9:50:4b:96:ee: d7:9d:e2:8a:72:e5:8b:d8:e9:65:97:c4:93:01:aa:f9:18:cd: 99:2d:cd:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDQ3MjBBMkI3OEM3ODIzOTkyNkZERUU3MzQ0QTM2ODBE QTBEODA3MUQwHhcNMjUwOTA5MDYwODE5WhcNMjUwOTE2MDYwODE5WjAYMRYwFAYD VQQDEw02OGJmYzQ1NC0wNzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpoq7UKoiTGEdIBlAzmjh0LaGEDgYJxceSg2HMkXLqpKZinqrhDFX80KB1t8 W/Yb8Lk9UaCN5gpTh3pemHD6W/mKhW4L+SVaQqMxo1xuM5wUxP96HGGUWvwBkkTn GBSzNeJCJLtiyLSJf3uptO/y0aREZq6SOgpFJmxhHBbnCc28/nxLgwvx931adG8K TgB50R8d4RIIraU/za+G1nEzjUvvrX5tlgg3Gx/YYZHoLirxnmuYHWWEMLBEiLxE QaFHyO+yN9lsqKA9+EbJpjfCOK/QtaRHVC35415VaYEexgtNihMHOqQqrEa84Qpc Z2H3hJowZdPrfZ9kFpwGGlLdDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMeU8rBg /QJqKzyx63FekJKVdBikMB8GA1UdIwQYMBaAFEcgoreMeCOZJv3uc0SjaA2g2Acd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi8yN0UzRURBNDk4 MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1a21fZTV6UktOb0RhRFlC eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJERi8yN0UzRURBNDk4MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1 a21fZTV6UktOb0RhRFlCeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlkYGx2FFPmA2AUgsnLzFroFQAMyWiY3/d87avQ8SjMuRsY69UoS28 2PgbJzZbZqxXQQK8E9/RT3TeijMxAuIG2Y/QS41kK111ydsC86044OyJlxWoCVWD v18cfv7xTsrVInT06eCSKwz6wXPIrD4mmkv9TBwrkzDPMGkXU6I4ZsropHQ9irUR FH0L3oRRxKVxdaDDuwbZklDhXFv0YHT50U6ALCZaLJbRF0V1OJab2ExedF7cQQ7S ZxrniIdKsx8ZWewsh69gImO+ybSaVC28DpYFv/WMBOqX7hU5hg19SWS34JglyVBL lu7XneKKcuWL2Olll8STAar5GM2ZLc2l -----END CERTIFICATE-----Generated at Tue Sep 9 22:49:46 2025 by rpki-client