$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft File: RyCit4x4I5km_e5zRKNoDaDYBx0.mft (raw, json) Hash identifier: +F2/EfoOZXjXrqlfUsT5MBiHOI880fb1Q3z4IPDDrvk= Subject key identifier: 76:D6:AA:C1:0B:16:1C:27:02:81:D2:72:51:BB:B5:C3:6F:36:E8:AB Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft Manifest number: 7A Signing time: Tue 03 Jun 2025 09:20:41 +0000 Manifest this update: Tue 03 Jun 2025 09:20:40 +0000 Manifest next update: Tue 10 Jun 2025 09:20:40 +0000 Files and hashes: 1: RyCit4x4I5km_e5zRKNoDaDYBx0.crl (hash: mIWyY/vkrveT2xwUr2rWpAa9lyWdLRC5nFNt/wfURl0=) 2: D2D7B762995611EFADA5D754C4F9AE02.roa (hash: P8Uz392/KpNavGqAZa2GAkqPLrN5Wfcp0qzBrJpnBuA=) 3: 003589503F8311F0AA4DF254C4F9AE02.roa (hash: 8eqt950PmXpP3Mdx7FgJY/zBuBaFJX67pkKFWKR83KI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 09:20:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: Jun 3 09:20:40 2025 GMT Not After : Jun 10 09:20:40 2025 GMT Subject: CN=683ebe69-5da4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:db:cf:b7:99:74:6c:55:30:c2:9c:5a:96:03: 88:11:3c:95:74:db:44:e3:40:07:6c:03:76:4d:94: 1b:67:d3:df:c7:90:65:50:10:9b:bb:11:6b:d4:52: 27:80:e3:2a:67:65:9a:37:1c:55:3f:83:45:62:28: ce:01:69:3a:3e:71:ad:83:b5:32:ae:a2:9d:73:56: bf:c5:7f:73:a5:5d:f5:cb:c5:6e:9c:ad:21:54:c2: 42:89:32:e9:48:d8:03:46:5e:2f:c7:9c:ca:b8:ba: 1e:8d:3d:3b:49:53:50:c9:d8:57:7d:2a:b8:b5:c9: 0d:df:d0:a8:9e:0e:f4:d3:1e:58:27:72:d4:e9:53: 92:17:d5:2c:75:ba:ed:67:54:c2:00:a3:39:bf:39: 58:78:a8:18:3a:ce:94:b5:6a:93:0d:f4:53:49:79: a7:bd:ab:74:8f:89:b3:b3:56:3a:69:58:55:fd:a4: a5:aa:a6:c0:aa:ac:a4:3e:45:ea:e3:66:72:32:50: e5:5f:48:f8:2f:1d:36:88:69:5c:06:b8:81:10:c8: 72:13:df:41:a5:bd:e2:64:36:31:33:55:01:56:9b: 8e:e3:2e:2c:ce:c8:c6:81:9e:ae:73:63:01:ce:d4: 7e:47:9d:d5:00:ca:03:1e:b6:a4:ad:e1:df:81:45: 55:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:D6:AA:C1:0B:16:1C:27:02:81:D2:72:51:BB:B5:C3:6F:36:E8:AB X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:f4:6c:6e:48:84:38:2b:8f:6e:35:a1:ae:9f:48:2e:00:7d: 6a:63:15:c0:62:3e:c4:80:42:1a:18:30:9e:f6:c8:0d:c0:a2: a3:60:4b:9a:69:2b:25:8d:f4:68:d7:c4:0d:f5:cb:07:09:1c: 02:d0:01:fb:16:b0:30:60:b1:b1:40:3e:69:98:0c:23:f9:56: 58:9d:9a:ec:cd:a2:98:0b:0d:cd:90:37:23:be:aa:19:8f:39: fe:6d:f9:2b:27:f2:60:5f:61:b5:45:a3:5f:30:ad:aa:cd:f8: 56:d0:b1:a8:50:fe:55:0d:c4:5e:9d:0f:a5:68:8e:71:79:68: 53:8b:53:01:c1:29:d2:d9:d9:db:e6:ba:63:c9:80:81:f3:14: e0:4b:71:e5:80:62:ff:5c:f3:9a:a5:0d:f9:d1:4f:8e:34:d1: 5c:59:29:3f:09:c6:1f:bc:ce:6c:cb:6a:b0:3f:56:88:93:23: e8:db:04:c8:35:e1:14:4e:20:d1:e9:98:1d:04:98:cf:b1:bc: 62:06:24:86:92:c9:b1:85:66:6b:e8:f7:92:33:98:39:f8:81: db:78:1a:0c:cd:49:78:df:d5:22:0c:56:aa:6a:cf:45:e8:56: 2b:e4:f7:bf:1f:1c:e7:d4:f9:40:ff:76:eb:b7:ea:d4:8d:17: 45:1a:4c:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDQ3MjBBMkI3OEM3ODIzOTkyNkZERUU3MzQ0QTM2ODBE QTBEODA3MUQwHhcNMjUwNjAzMDkyMDQwWhcNMjUwNjEwMDkyMDQwWjAYMRYwFAYD VQQDEw02ODNlYmU2OS01ZGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0dvPt5l0bFUwwpxalgOIETyVdNtE40AHbAN2TZQbZ9Pfx5BlUBCbuxFr1FIn gOMqZ2WaNxxVP4NFYijOAWk6PnGtg7UyrqKdc1a/xX9zpV31y8VunK0hVMJCiTLp SNgDRl4vx5zKuLoejT07SVNQydhXfSq4tckN39Cong700x5YJ3LU6VOSF9Usdbrt Z1TCAKM5vzlYeKgYOs6UtWqTDfRTSXmnvat0j4mzs1Y6aVhV/aSlqqbAqqykPkXq 42ZyMlDlX0j4Lx02iGlcBriBEMhyE99Bpb3iZDYxM1UBVpuO4y4szsjGgZ6uc2MB ztR+R53VAMoDHrakreHfgUVVfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbWqsEL FhwnAoHSclG7tcNvNuirMB8GA1UdIwQYMBaAFEcgoreMeCOZJv3uc0SjaA2g2Acd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi8yN0UzRURBNDk4 MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1a21fZTV6UktOb0RhRFlC eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJERi8yN0UzRURBNDk4MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1 a21fZTV6UktOb0RhRFlCeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj9GxuSIQ4K49uNaGun0guAH1qYxXAYj7EgEIaGDCe9sgNwKKjYEua aSsljfRo18QN9csHCRwC0AH7FrAwYLGxQD5pmAwj+VZYnZrszaKYCw3NkDcjvqoZ jzn+bfkrJ/JgX2G1RaNfMK2qzfhW0LGoUP5VDcRenQ+laI5xeWhTi1MBwSnS2dnb 5rpjyYCB8xTgS3HlgGL/XPOapQ350U+ONNFcWSk/CcYfvM5sy2qwP1aIkyPo2wTI NeEUTiDR6ZgdBJjPsbxiBiSGksmxhWZr6PeSM5g5+IHbeBoMzUl439UiDFaqas9F 6FYr5Pe/Hxzn1PlA/3brt+rUjRdFGkyr -----END CERTIFICATE-----Generated at Tue Jun 3 23:56:10 2025 by rpki-client