$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft File: LYC7UpVYC-No2mj7jQPqtI16xss.mft (raw, json) Hash identifier: A9+24orhdGwXIvskTjtTv625WJgDtcNiTShQxIwV/RU= Subject key identifier: 5E:40:02:10:B1:06:FE:69:DD:6E:69:33:4A:CC:04:2B:D8:EB:F8:A7 Authority key identifier: 2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB Certificate issuer: /CN=A91B7948/serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft Manifest number: AB Signing time: Sun 01 Jun 2025 05:46:42 +0000 Manifest this update: Sun 01 Jun 2025 05:46:41 +0000 Manifest next update: Sun 08 Jun 2025 05:46:41 +0000 Files and hashes: 1: LYC7UpVYC-No2mj7jQPqtI16xss.crl (hash: 9KXlgdp3PHUgZhFfVpTmTFzh/l14Vh31ecmzzLh0da8=) 2: 70ED9D2837D111EF99A8011CC4F9AE02.roa (hash: XcL7vfDB7+jSL63SdSHmjhv1kS+M1yfgUS1Jg2qNUac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7948, serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Validity Not Before: Jun 1 05:46:41 2025 GMT Not After : Jun 8 05:46:41 2025 GMT Subject: CN=683be941-4204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:10:e2:32:e3:5e:ff:fa:b6:4d:38:42:79:b4: ea:c7:da:57:87:a0:39:f7:df:ca:13:42:b4:a1:36: f2:23:ce:dc:fd:c2:a8:52:a4:43:28:57:9a:23:68: d4:47:46:1f:9c:e5:62:96:d1:98:af:d3:d6:0e:03: 84:07:d0:a0:85:3d:b6:64:71:d0:c7:6c:76:19:83: 78:42:50:7a:33:9e:66:d3:4c:c6:ef:71:03:aa:ec: d6:f4:0e:f0:e5:fb:b1:9d:8a:0e:df:14:e7:b1:4a: 1b:3b:32:db:e2:bd:b4:9d:6b:e4:20:da:05:d4:88: 61:96:5d:45:72:6b:47:a4:1a:ee:f5:bc:b7:33:ae: a7:14:58:df:93:a7:3c:12:73:80:bb:a0:f8:4a:8c: 6e:88:03:9c:c5:df:42:0e:93:21:7e:39:4f:8b:6b: 93:7f:8c:36:69:a8:56:a0:ce:bf:5d:48:ab:e1:c9: 1b:42:03:44:ed:f1:c1:24:38:38:b9:6b:cf:d8:65: 7a:6a:21:7d:d0:96:a5:a7:33:a4:fe:20:8c:db:d3: c9:f8:7d:42:d8:c8:38:35:4d:9c:e7:5a:46:56:8f: ef:40:d6:36:af:ca:e2:ea:63:b1:f3:f8:54:56:83: d2:ee:43:23:b8:b7:72:a4:07:eb:7c:d5:2f:bb:9c: 60:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:40:02:10:B1:06:FE:69:DD:6E:69:33:4A:CC:04:2B:D8:EB:F8:A7 X509v3 Authority Key Identifier: keyid:2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:f9:ea:35:06:d9:8f:d0:32:62:a1:84:fc:fd:c6:e4:84:ae: e7:b1:52:eb:ce:20:eb:60:2c:9b:82:51:96:18:a2:55:92:ba: e1:30:df:c2:22:59:d4:7b:b2:ab:a6:a9:8c:f4:8d:2e:e6:1a: c1:28:02:de:e1:80:eb:eb:8b:df:6f:66:f0:78:0e:2d:65:6e: bc:f6:c0:e3:06:33:f7:0c:a0:d4:3f:f1:80:be:11:a7:10:25: 72:48:95:7b:7f:4b:6d:2c:8b:dc:27:a4:e8:6b:9e:b0:12:bf: 1b:dc:05:53:97:29:e8:ae:ba:f1:01:06:09:6e:13:58:32:2e: d4:c0:78:89:da:d9:89:28:e9:86:20:d8:4d:07:01:7b:4d:5d: f6:ca:4a:cc:ff:6b:6b:27:49:f0:7a:f5:b8:16:06:5b:51:9e: ed:32:1c:2c:5f:68:14:ed:a9:33:69:f1:2d:db:d0:dc:ba:60: 8d:60:6c:d2:5c:10:a0:f3:e0:52:b8:d4:95:3a:e1:93:93:ef: 9d:d3:cf:12:0c:4a:3d:41:75:14:c4:23:7d:c7:68:99:02:2f: 38:16:c9:b3:0c:a0:ca:a3:74:4d:1f:76:17:62:50:7b:c6:e5: 0e:48:c3:62:af:c2:2e:78:27:f8:33:8f:74:94:80:1e:3e:2b: 1d:24:e0:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc5NDgxMTAvBgNVBAUTKDJEODBCQjUyOTU1ODBCRTM2OERBNjhGQjhEMDNFQUI0 OEQ3QUM2Q0IwHhcNMjUwNjAxMDU0NjQxWhcNMjUwNjA4MDU0NjQxWjAYMRYwFAYD VQQDEw02ODNiZTk0MS00MjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoRDiMuNe//q2TThCebTqx9pXh6A599/KE0K0oTbyI87c/cKoUqRDKFeaI2jU R0YfnOViltGYr9PWDgOEB9CghT22ZHHQx2x2GYN4QlB6M55m00zG73EDquzW9A7w 5fuxnYoO3xTnsUobOzLb4r20nWvkINoF1Ihhll1FcmtHpBru9by3M66nFFjfk6c8 EnOAu6D4SoxuiAOcxd9CDpMhfjlPi2uTf4w2aahWoM6/XUir4ckbQgNE7fHBJDg4 uWvP2GV6aiF90JalpzOk/iCM29PJ+H1C2Mg4NU2c51pGVo/vQNY2r8ri6mOx8/hU VoPS7kMjuLdypAfrfNUvu5xghQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF5AAhCx Bv5p3W5pM0rMBCvY6/inMB8GA1UdIwQYMBaAFC2Au1KVWAvjaNpo+40D6rSNesbL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzk0OC80NkRDNkIwQTM3 RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi9MWUM3VXBWWUMtTm8ybWo3alFQcXRJMTZ4 c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xZQzdVcFZZQy1ObzJtajdqUVBxdEkxNnhzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzk0OC80NkRDNkIwQTM3RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi9MWUM3VXBWWUMt Tm8ybWo3alFQcXRJMTZ4c3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj+eo1BtmP0DJioYT8/cbkhK7nsVLrziDrYCybglGWGKJVkrrhMN/C IlnUe7KrpqmM9I0u5hrBKALe4YDr64vfb2bweA4tZW689sDjBjP3DKDUP/GAvhGn ECVySJV7f0ttLIvcJ6Toa56wEr8b3AVTlynorrrxAQYJbhNYMi7UwHiJ2tmJKOmG INhNBwF7TV32ykrM/2trJ0nwevW4FgZbUZ7tMhwsX2gU7akzafEt29DcumCNYGzS XBCg8+BSuNSVOuGTk++d088SDEo9QXUUxCN9x2iZAi84FsmzDKDKo3RNH3YXYlB7 xuUOSMNir8IueCf4M490lIAePisdJOAM -----END CERTIFICATE-----Generated at Mon Jun 2 18:49:08 2025 by rpki-client