$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft File: LYC7UpVYC-No2mj7jQPqtI16xss.mft (raw, json) Hash identifier: /A3KsCzOWoPqe0v3pWU8lyb7XD7PukkPaPjSkKVIJ4E= Subject key identifier: 1E:A9:B4:CA:F4:24:8D:C5:A9:EB:6A:0C:3F:90:78:36:99:D0:F2:F6 Authority key identifier: 2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB Certificate issuer: /CN=A91B7948/serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft Manifest number: C3 Signing time: Sat 19 Jul 2025 05:58:39 +0000 Manifest this update: Sat 19 Jul 2025 05:58:39 +0000 Manifest next update: Sat 26 Jul 2025 05:58:39 +0000 Files and hashes: 1: LYC7UpVYC-No2mj7jQPqtI16xss.crl (hash: Xd9153kd4jAy+sUZ5kXjcCv5kAT8HBcvAyry6u7Z66Q=) 2: 70ED9D2837D111EF99A8011CC4F9AE02.roa (hash: XcL7vfDB7+jSL63SdSHmjhv1kS+M1yfgUS1Jg2qNUac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:58:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7948, serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Validity Not Before: Jul 19 05:58:39 2025 GMT Not After : Jul 26 05:58:39 2025 GMT Subject: CN=687b340f-0dd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a5:e0:66:1e:6b:7e:17:01:d7:fa:ba:55:52: 1c:92:ab:f1:a9:0e:c3:e1:ed:da:ee:00:56:50:a4: 77:bd:42:40:99:82:c6:f9:89:36:94:94:66:c4:7a: 7b:24:33:06:30:52:5c:56:d6:ca:9b:6b:05:28:35: f9:43:13:97:95:43:2a:d0:f0:c5:e5:93:5b:c1:b9: 9e:c0:6b:3c:74:01:66:7e:17:9d:c4:b0:f4:b3:49: c9:6c:5d:18:bb:30:95:5d:bf:53:71:8b:ad:d1:8b: 9a:96:26:f2:49:c5:7b:f1:d3:d7:98:88:37:3b:6e: 23:d9:d8:d8:ca:d9:d3:21:b2:a9:21:11:9e:78:6c: 11:14:4f:d3:2d:fa:58:aa:58:76:d3:3a:57:d4:51: 58:2b:7a:fd:2b:af:41:3c:bb:47:f7:25:47:df:e6: 6b:95:f0:2f:83:01:b8:31:fc:09:f7:fc:a2:4a:64: 12:e2:54:2b:cb:85:ab:8b:2e:01:5a:8a:92:67:48: 50:42:be:04:fe:66:a8:f4:07:3e:16:15:4a:a5:a1: ed:42:35:de:2d:a7:87:02:67:ba:03:5a:78:31:70: 58:7e:a5:fe:d4:41:fb:1e:1f:f0:c8:42:af:84:a3: ef:ef:e3:d7:b2:bd:21:ca:d5:d5:76:b6:d5:36:fe: a8:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:A9:B4:CA:F4:24:8D:C5:A9:EB:6A:0C:3F:90:78:36:99:D0:F2:F6 X509v3 Authority Key Identifier: keyid:2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:97:cb:51:13:a4:12:5a:e2:11:d2:4a:29:a1:67:d5:30:db: 79:2d:47:10:57:42:43:63:2d:07:33:21:a2:aa:ea:4c:de:ef: e6:ac:00:76:b9:d1:77:5b:bb:98:3d:cb:bd:1e:39:f8:12:0b: fb:79:cc:01:db:f8:e1:d5:1b:21:a7:59:31:b1:ee:7d:47:f0: 59:30:1d:7e:f0:37:92:9b:49:ec:c0:b8:e8:af:cc:57:aa:ff: e4:04:b7:6e:68:47:ab:d1:75:be:56:9c:64:eb:4c:cc:9c:ec: 5b:c6:8e:5c:13:5b:7f:0e:01:b2:ff:c7:36:6c:79:f3:ab:c4: 22:5b:0e:d0:9d:9b:69:95:9f:87:b4:1e:f4:fe:23:9e:03:2c: fe:2e:55:c6:2a:49:c3:4b:57:d4:39:cf:47:20:6f:e0:6b:36: 6e:e6:b9:60:e2:c1:8d:a2:fa:9f:13:70:02:4c:f1:f9:95:15: 42:be:36:c0:06:db:44:9f:9f:2e:ce:20:7b:49:90:c9:c8:2c: 6f:9f:a0:d0:5f:6b:f1:a3:38:03:18:9d:b1:94:9a:9b:ab:5f: 6c:b1:0a:6b:a6:e0:cf:1f:eb:c3:ed:b0:34:81:c6:7f:e5:f9: b1:37:c4:02:dc:5e:10:60:44:f3:c5:cc:b0:b4:48:12:dd:a3: 3f:72:1f:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc5NDgxMTAvBgNVBAUTKDJEODBCQjUyOTU1ODBCRTM2OERBNjhGQjhEMDNFQUI0 OEQ3QUM2Q0IwHhcNMjUwNzE5MDU1ODM5WhcNMjUwNzI2MDU1ODM5WjAYMRYwFAYD VQQDEw02ODdiMzQwZi0wZGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKXgZh5rfhcB1/q6VVIckqvxqQ7D4e3a7gBWUKR3vUJAmYLG+Yk2lJRmxHp7 JDMGMFJcVtbKm2sFKDX5QxOXlUMq0PDF5ZNbwbmewGs8dAFmfhedxLD0s0nJbF0Y uzCVXb9TcYut0YualibyScV78dPXmIg3O24j2djYytnTIbKpIRGeeGwRFE/TLfpY qlh20zpX1FFYK3r9K69BPLtH9yVH3+ZrlfAvgwG4MfwJ9/yiSmQS4lQry4Wriy4B WoqSZ0hQQr4E/mao9Ac+FhVKpaHtQjXeLaeHAme6A1p4MXBYfqX+1EH7Hh/wyEKv hKPv7+PXsr0hytXVdrbVNv6oFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6ptMr0 JI3FqetqDD+QeDaZ0PL2MB8GA1UdIwQYMBaAFC2Au1KVWAvjaNpo+40D6rSNesbL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzk0OC80NkRDNkIwQTM3 RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi9MWUM3VXBWWUMtTm8ybWo3alFQcXRJMTZ4 c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xZQzdVcFZZQy1ObzJtajdqUVBxdEkxNnhzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzk0OC80NkRDNkIwQTM3RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi9MWUM3VXBWWUMt Tm8ybWo3alFQcXRJMTZ4c3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAal8tRE6QSWuIR0kopoWfVMNt5LUcQV0JDYy0HMyGiqupM3u/mrAB2 udF3W7uYPcu9Hjn4Egv7ecwB2/jh1Rshp1kxse59R/BZMB1+8DeSm0nswLjor8xX qv/kBLduaEer0XW+Vpxk60zMnOxbxo5cE1t/DgGy/8c2bHnzq8QiWw7QnZtplZ+H tB70/iOeAyz+LlXGKknDS1fUOc9HIG/gazZu5rlg4sGNovqfE3ACTPH5lRVCvjbA BttEn58uziB7SZDJyCxvn6DQX2vxozgDGJ2xlJqbq19ssQprpuDPH+vD7bA0gcZ/ 5fmxN8QC3F4QYETzxcywtEgS3aM/ch8P -----END CERTIFICATE-----Generated at Sun Jul 20 22:44:42 2025 by rpki-client