$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft File: LYC7UpVYC-No2mj7jQPqtI16xss.mft (raw, json) Hash identifier: J1Yc9FXaMOnHUDiyJ4lmRS98EOaHZ5QBZ9kvnvFU9gg= Subject key identifier: 5D:12:92:A9:6D:22:38:F7:88:EB:4C:23:CB:7A:0F:B2:45:95:BE:B4 Authority key identifier: 2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB Certificate issuer: /CN=A91B7948/serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft Manifest number: DD Signing time: Wed 03 Sep 2025 06:00:19 +0000 Manifest this update: Wed 03 Sep 2025 06:00:19 +0000 Manifest next update: Wed 10 Sep 2025 06:00:19 +0000 Files and hashes: 1: LYC7UpVYC-No2mj7jQPqtI16xss.crl (hash: L3fLd0V5L3+2GQR+xaa6R/w+h1m8Rc3oGWfRvjg3TBA=) 2: 70ED9D2837D111EF99A8011CC4F9AE02.roa (hash: ON0MiwZBInBHM7jc0lp0894BhHXsr6LrKE7baf75anU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 06:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7948, serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Validity Not Before: Sep 3 06:00:19 2025 GMT Not After : Sep 10 06:00:19 2025 GMT Subject: CN=68b7d973-8ade Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:80:d1:b9:fd:cf:e6:a5:9a:1f:c6:6d:86:b2: 72:f6:b6:3c:f0:ff:d1:79:3d:ed:28:1c:24:ca:bb: 5e:48:10:25:9d:b3:4e:86:e2:86:ff:e6:7d:eb:ab: 88:11:f9:bf:ce:22:1d:67:01:ed:30:22:97:02:de: 50:3d:a1:f5:90:e5:4d:5b:c3:c6:06:51:55:2e:c9: 40:ce:1a:35:25:8c:35:74:07:0f:cf:81:1a:51:a5: a0:95:dd:48:78:b8:60:1f:e2:1b:8a:01:1e:1a:52: 01:1a:49:71:87:f2:25:a6:2e:c5:8b:3f:95:14:26: 15:c5:6c:b1:58:49:29:53:75:c5:f3:d0:43:f3:4b: 3e:12:0c:84:12:f1:ad:ba:9a:d5:3d:b5:7c:a9:bb: ca:bc:f5:43:de:72:05:d9:96:57:4f:87:a7:42:1a: 39:a7:a8:4e:87:5a:bd:4f:74:e6:1f:48:6d:95:33: ae:e6:c6:fd:c1:c9:d8:c6:00:83:20:f7:a9:a3:12: 79:10:5c:58:4c:83:9b:1f:cc:d5:5e:55:25:ea:94: 2a:6f:89:5b:b4:35:d6:be:7a:14:01:c9:db:f2:53: 65:f9:f2:46:dd:15:eb:67:31:ad:cc:49:7e:fd:b1: bc:fd:e8:c1:1d:25:c3:5e:a1:79:e2:b9:2c:3f:b5: 76:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:12:92:A9:6D:22:38:F7:88:EB:4C:23:CB:7A:0F:B2:45:95:BE:B4 X509v3 Authority Key Identifier: keyid:2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:e7:e1:9a:b0:8f:b4:bf:89:08:93:a8:1d:d8:bf:a0:55:55: 56:fd:24:a6:17:6a:70:17:53:0b:27:9b:df:3a:a2:14:66:95: cc:1c:c8:87:6f:2b:2a:81:01:17:b7:f1:ee:95:30:81:04:77: ff:cf:22:54:4e:17:b0:b0:be:7c:e7:a3:7b:6c:3c:4a:69:b6: 80:9d:7a:ca:95:87:00:a3:26:42:c3:8b:18:3c:1f:b3:d3:a9: 50:7e:cb:ee:4f:a4:9a:64:29:c2:4b:b8:27:44:05:da:8b:55: 0a:1a:19:21:a7:71:ca:ed:a0:f5:19:0a:9b:7c:34:e5:fb:e6: 12:02:aa:e7:cf:8b:b1:b1:c8:06:8a:d0:36:c5:f9:59:ed:9d: bd:1d:61:43:e8:ca:03:fe:48:b5:eb:0a:6e:04:63:0a:64:e9: f2:00:b4:84:b7:c4:67:c8:5e:3a:8e:3a:3d:f2:7c:37:00:69: c0:f7:48:fb:b7:d7:bb:c8:47:17:49:2e:10:c3:3f:ee:b6:32: de:77:77:f3:bf:87:bd:6f:61:e5:3b:89:6f:87:54:55:ba:26: c4:fb:24:c9:68:18:78:c1:51:87:da:8f:68:e1:a5:34:15:26: ea:58:93:0b:82:f8:59:bb:8f:44:3b:cc:98:6b:0a:7a:96:e3: b2:b0:a6:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc5NDgxMTAvBgNVBAUTKDJEODBCQjUyOTU1ODBCRTM2OERBNjhGQjhEMDNFQUI0 OEQ3QUM2Q0IwHhcNMjUwOTAzMDYwMDE5WhcNMjUwOTEwMDYwMDE5WjAYMRYwFAYD VQQDEw02OGI3ZDk3My04YWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4DRuf3P5qWaH8ZthrJy9rY88P/ReT3tKBwkyrteSBAlnbNOhuKG/+Z966uI Efm/ziIdZwHtMCKXAt5QPaH1kOVNW8PGBlFVLslAzho1JYw1dAcPz4EaUaWgld1I eLhgH+IbigEeGlIBGklxh/Ilpi7Fiz+VFCYVxWyxWEkpU3XF89BD80s+EgyEEvGt uprVPbV8qbvKvPVD3nIF2ZZXT4enQho5p6hOh1q9T3TmH0htlTOu5sb9wcnYxgCD IPepoxJ5EFxYTIObH8zVXlUl6pQqb4lbtDXWvnoUAcnb8lNl+fJG3RXrZzGtzEl+ /bG8/ejBHSXDXqF54rksP7V20wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF0Skqlt Ijj3iOtMI8t6D7JFlb60MB8GA1UdIwQYMBaAFC2Au1KVWAvjaNpo+40D6rSNesbL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzk0OC80NkRDNkIwQTM3 RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi9MWUM3VXBWWUMtTm8ybWo3alFQcXRJMTZ4 c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xZQzdVcFZZQy1ObzJtajdqUVBxdEkxNnhzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzk0OC80NkRDNkIwQTM3RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi9MWUM3VXBWWUMt Tm8ybWo3alFQcXRJMTZ4c3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCx5+GasI+0v4kIk6gd2L+gVVVW/SSmF2pwF1MLJ5vfOqIUZpXMHMiH bysqgQEXt/HulTCBBHf/zyJUThewsL5856N7bDxKabaAnXrKlYcAoyZCw4sYPB+z 06lQfsvuT6SaZCnCS7gnRAXai1UKGhkhp3HK7aD1GQqbfDTl++YSAqrnz4uxscgG itA2xflZ7Z29HWFD6MoD/ki16wpuBGMKZOnyALSEt8RnyF46jjo98nw3AGnA90j7 t9e7yEcXSS4Qwz/utjLed3fzv4e9b2HlO4lvh1RVuibE+yTJaBh4wVGH2o9o4aU0 FSbqWJMLgvhZu49EO8yYawp6luOysKaV -----END CERTIFICATE-----Generated at Thu Sep 4 14:01:35 2025 by rpki-client