$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft File: RyCit4x4I5km_e5zRKNoDaDYBx0.mft (raw, json) Hash identifier: lyzVDsNZsSSi9ruQ9PetQ68HIJlCPPFTGb3K2CCB3fk= Subject key identifier: 46:1C:29:4A:48:56:DA:8D:AA:84:64:C4:F8:B6:A8:65:8E:C6:61:1B Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft Manifest number: 91 Signing time: Sat 19 Jul 2025 06:34:29 +0000 Manifest this update: Sat 19 Jul 2025 06:34:28 +0000 Manifest next update: Sat 26 Jul 2025 06:34:28 +0000 Files and hashes: 1: RyCit4x4I5km_e5zRKNoDaDYBx0.crl (hash: VKmXfYrK7WQfhqcphrlRWktESKJ/Yy4FE6SUQiVed1M=) 2: D2D7B762995611EFADA5D754C4F9AE02.roa (hash: P8Uz392/KpNavGqAZa2GAkqPLrN5Wfcp0qzBrJpnBuA=) 3: 003589503F8311F0AA4DF254C4F9AE02.roa (hash: 8eqt950PmXpP3Mdx7FgJY/zBuBaFJX67pkKFWKR83KI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:34:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: Jul 19 06:34:28 2025 GMT Not After : Jul 26 06:34:28 2025 GMT Subject: CN=687b3c75-04ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ea:ef:eb:ef:94:76:75:c7:83:28:0f:02:e8: 5a:56:41:4d:07:97:61:e8:ad:08:4e:1a:f8:41:82: 5d:ab:f3:cb:ba:e8:ab:73:41:12:13:cb:f2:51:81: e2:c6:ab:c2:22:f2:54:56:06:1b:e6:77:90:87:4e: 5f:a9:60:28:3b:c1:41:f4:8b:91:9a:a7:24:e3:dd: bb:6f:00:00:87:9c:95:67:09:cf:fe:44:34:0c:9a: 90:58:95:2d:34:35:dc:4b:47:b2:78:b3:40:d1:ac: 48:d9:da:17:ab:dc:45:0a:d9:30:3e:95:a1:de:9b: 9f:c4:c1:8f:c8:d6:b3:f6:4d:92:b8:0a:92:f0:aa: f4:00:57:cb:96:2c:6f:0e:d2:ef:e4:b2:87:e6:91: 5d:88:05:22:90:90:66:ac:b2:c3:aa:a9:4f:87:aa: bb:2e:9a:e1:c0:b5:00:9a:c9:78:07:43:29:ec:96: a6:b3:ed:7c:28:d0:f0:1d:99:b9:d2:07:da:d2:59: 34:7a:bd:2a:d9:72:6f:f8:eb:eb:a3:f7:a0:8c:7d: 4c:ab:4a:15:a7:b8:84:e4:49:58:73:9b:f5:d5:27: b0:c8:93:28:53:7d:fc:49:1c:ac:5b:35:f7:e3:74: 12:78:0b:34:c1:7d:ad:aa:d6:8b:d4:b9:4c:a3:cb: 8a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:1C:29:4A:48:56:DA:8D:AA:84:64:C4:F8:B6:A8:65:8E:C6:61:1B X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:97:01:de:6f:c8:2c:35:cd:c1:85:fd:52:02:45:da:0f:86: fe:f3:75:71:d7:68:05:4b:1e:15:af:a9:3f:6e:28:f8:55:e1: 1e:33:08:8b:f2:0c:9a:29:c8:6a:d2:b9:1e:d2:95:55:9f:79: fc:5c:07:d6:48:0a:9a:96:d1:65:e7:1e:66:19:60:66:9f:a9: ec:7a:6b:02:bf:e4:2c:c9:89:11:d6:e4:4c:97:22:c0:b8:e1: bf:24:e8:79:99:ad:ac:a2:11:29:d5:1b:3b:b9:b5:57:bb:3a: cf:6f:9e:33:e1:aa:8d:4b:fb:3d:18:81:f7:25:b2:dc:07:a8: 7e:9e:3a:19:ec:3a:7c:ab:84:db:a1:54:c1:8a:1d:ef:ed:2c: 52:00:31:25:d7:8d:6c:47:3d:a1:f9:e3:92:c7:85:b8:4d:4b: d5:cd:05:75:1f:48:03:f0:9d:4b:a0:28:af:86:46:3a:76:fc: 1e:a2:59:16:78:5c:b2:85:b9:b3:85:01:28:b3:17:28:6a:44: 4b:92:4f:ad:cc:84:fd:5e:29:93:f4:1d:63:5f:67:b5:42:6b: ee:58:ea:11:c1:ca:0c:2b:b9:60:3b:91:47:a4:65:0f:cb:c3: 94:90:6a:3f:c5:b6:29:8e:26:e1:ff:b8:45:b7:38:db:8a:34: f9:24:40:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDQ3MjBBMkI3OEM3ODIzOTkyNkZERUU3MzQ0QTM2ODBE QTBEODA3MUQwHhcNMjUwNzE5MDYzNDI4WhcNMjUwNzI2MDYzNDI4WjAYMRYwFAYD VQQDEw02ODdiM2M3NS0wNGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuurv6++UdnXHgygPAuhaVkFNB5dh6K0IThr4QYJdq/PLuuirc0ESE8vyUYHi xqvCIvJUVgYb5neQh05fqWAoO8FB9IuRmqck4927bwAAh5yVZwnP/kQ0DJqQWJUt NDXcS0eyeLNA0axI2doXq9xFCtkwPpWh3pufxMGPyNaz9k2SuAqS8Kr0AFfLlixv DtLv5LKH5pFdiAUikJBmrLLDqqlPh6q7LprhwLUAmsl4B0Mp7Jams+18KNDwHZm5 0gfa0lk0er0q2XJv+Ovro/egjH1Mq0oVp7iE5ElYc5v11SewyJMoU338SRysWzX3 43QSeAs0wX2tqtaL1LlMo8uKfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYcKUpI VtqNqoRkxPi2qGWOxmEbMB8GA1UdIwQYMBaAFEcgoreMeCOZJv3uc0SjaA2g2Acd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi8yN0UzRURBNDk4 MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1a21fZTV6UktOb0RhRFlC eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJERi8yN0UzRURBNDk4MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1 a21fZTV6UktOb0RhRFlCeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMlwHeb8gsNc3Bhf1SAkXaD4b+83Vx12gFSx4Vr6k/bij4VeEeMwiL 8gyaKchq0rke0pVVn3n8XAfWSAqaltFl5x5mGWBmn6nsemsCv+QsyYkR1uRMlyLA uOG/JOh5ma2sohEp1Rs7ubVXuzrPb54z4aqNS/s9GIH3JbLcB6h+njoZ7Dp8q4Tb oVTBih3v7SxSADEl141sRz2h+eOSx4W4TUvVzQV1H0gD8J1LoCivhkY6dvweolkW eFyyhbmzhQEosxcoakRLkk+tzIT9XimT9B1jX2e1QmvuWOoRwcoMK7lgO5FHpGUP y8OUkGo/xbYpjibh/7hFtzjbijT5JEBB -----END CERTIFICATE-----Generated at Sun Jul 20 18:51:10 2025 by rpki-client