$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft File: RyCit4x4I5km_e5zRKNoDaDYBx0.mft (raw, json) Hash identifier: UQv+o+wBSrKrjSQD/cBwaegv3SoKXV8OuQWJuA59bns= Subject key identifier: C7:60:17:96:25:DB:DD:06:1C:13:8C:02:D2:10:E1:36:A7:FA:66:60 Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft Manifest number: 82 Signing time: Thu 19 Jun 2025 05:52:52 +0000 Manifest this update: Thu 19 Jun 2025 05:52:52 +0000 Manifest next update: Thu 26 Jun 2025 05:52:52 +0000 Files and hashes: 1: RyCit4x4I5km_e5zRKNoDaDYBx0.crl (hash: xSfJXStvZBU1HSyrZR93hrxsQ2MR6gHm18Xzvoc6G5U=) 2: D2D7B762995611EFADA5D754C4F9AE02.roa (hash: P8Uz392/KpNavGqAZa2GAkqPLrN5Wfcp0qzBrJpnBuA=) 3: 003589503F8311F0AA4DF254C4F9AE02.roa (hash: 8eqt950PmXpP3Mdx7FgJY/zBuBaFJX67pkKFWKR83KI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:52:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: Jun 19 05:52:52 2025 GMT Not After : Jun 26 05:52:52 2025 GMT Subject: CN=6853a5b4-a0f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c9:4f:e1:c6:4d:8d:68:0f:0d:9f:0d:e2:e2: c4:1f:a8:cb:42:a8:43:6f:30:81:b1:2a:05:96:57: af:0d:46:1f:c0:97:54:d2:31:73:c7:b1:21:3e:96: c9:0d:ef:02:6f:23:c2:5a:0e:82:ce:15:0d:f3:04: 50:e9:0a:19:0a:78:d9:ff:26:43:bb:28:de:83:46: 00:ee:90:44:1c:90:d2:e6:c0:b4:e8:43:9d:d3:51: 6f:b1:eb:28:a4:4d:3a:a3:9b:ac:db:d8:db:c8:d3: 25:6f:5f:98:a2:ef:9e:dd:ac:0f:20:9a:ed:3a:d7: 68:d4:66:62:6e:0a:f5:91:08:ea:bc:08:8b:ce:31: e2:50:79:ba:00:42:51:13:a9:f8:64:8f:05:ca:79: 14:5d:fb:21:aa:cb:60:4f:8c:07:94:89:bc:40:c1: 3f:e7:93:2c:63:3e:26:c8:40:28:00:7e:a9:65:6d: ef:e2:df:a1:45:4b:d2:8e:fa:4b:18:62:2b:a4:66: 3f:f7:a9:57:5b:a0:a1:ab:48:01:a7:94:59:3f:e2: f7:e8:26:25:66:bf:83:82:c2:15:f4:52:06:80:d1: d6:ab:7b:25:aa:b0:0b:1c:0d:b1:b7:99:b2:3a:11: 10:fb:50:69:6a:36:a4:b3:42:50:11:11:57:7c:c9: 7d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:60:17:96:25:DB:DD:06:1C:13:8C:02:D2:10:E1:36:A7:FA:66:60 X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:d7:c0:3a:01:b8:89:a2:fe:0b:0c:31:73:84:2f:9b:9e:e1: 5d:69:a6:47:20:2b:a7:89:0b:45:1e:b9:c3:60:8d:ad:fa:67: b7:10:d8:69:0b:82:8c:8b:38:47:28:04:99:39:7d:e8:58:24: 06:d1:44:fc:d8:32:1f:56:00:2a:95:92:a1:af:2e:76:08:27: 0c:0d:9d:d5:73:1f:91:c1:f1:94:47:3d:db:c7:f1:66:57:44: 83:b2:5b:a1:06:40:31:b2:c7:1e:9e:5d:2a:37:4e:a1:f0:1b: a7:0c:d1:c6:56:23:10:79:4f:26:f5:20:3c:c4:f6:63:cc:39: 2d:59:77:61:6c:dd:bd:00:4d:36:71:75:12:20:f0:2e:a0:5d: 50:7b:0d:4c:7d:fc:f5:d7:af:d7:9b:6d:dc:fb:55:dd:7d:68: 95:f6:bf:da:de:0e:f2:e4:21:9b:6a:02:51:78:bc:51:ae:79: c0:57:d7:ff:ac:93:80:1d:77:4a:09:a6:db:c9:a5:29:44:3e: ce:5e:4e:f9:2d:a2:76:5a:0c:7a:5a:e7:b4:9f:94:5c:28:40: 98:16:42:6c:87:31:11:d6:74:88:3f:7a:6d:9b:65:17:f8:a3: 6d:bb:03:1b:0c:c8:71:e8:a8:2d:50:96:4f:63:58:d0:a2:72: df:9b:f2:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDQ3MjBBMkI3OEM3ODIzOTkyNkZERUU3MzQ0QTM2ODBE QTBEODA3MUQwHhcNMjUwNjE5MDU1MjUyWhcNMjUwNjI2MDU1MjUyWjAYMRYwFAYD VQQDEw02ODUzYTViNC1hMGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMlP4cZNjWgPDZ8N4uLEH6jLQqhDbzCBsSoFllevDUYfwJdU0jFzx7EhPpbJ De8CbyPCWg6CzhUN8wRQ6QoZCnjZ/yZDuyjeg0YA7pBEHJDS5sC06EOd01Fvseso pE06o5us29jbyNMlb1+You+e3awPIJrtOtdo1GZibgr1kQjqvAiLzjHiUHm6AEJR E6n4ZI8FynkUXfshqstgT4wHlIm8QME/55MsYz4myEAoAH6pZW3v4t+hRUvSjvpL GGIrpGY/96lXW6Chq0gBp5RZP+L36CYlZr+DgsIV9FIGgNHWq3slqrALHA2xt5my OhEQ+1Bpajaks0JQERFXfMl9BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMdgF5Yl 290GHBOMAtIQ4Tan+mZgMB8GA1UdIwQYMBaAFEcgoreMeCOZJv3uc0SjaA2g2Acd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi8yN0UzRURBNDk4 MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1a21fZTV6UktOb0RhRFlC eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJERi8yN0UzRURBNDk4MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1 a21fZTV6UktOb0RhRFlCeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZ18A6AbiJov4LDDFzhC+bnuFdaaZHICuniQtFHrnDYI2t+me3ENhp C4KMizhHKASZOX3oWCQG0UT82DIfVgAqlZKhry52CCcMDZ3Vcx+RwfGURz3bx/Fm V0SDsluhBkAxsscenl0qN06h8BunDNHGViMQeU8m9SA8xPZjzDktWXdhbN29AE02 cXUSIPAuoF1Qew1Mffz116/Xm23c+1XdfWiV9r/a3g7y5CGbagJReLxRrnnAV9f/ rJOAHXdKCabbyaUpRD7OXk75LaJ2Wgx6Wue0n5RcKECYFkJshzER1nSIP3ptm2UX +KNtuwMbDMhx6KgtUJZPY1jQonLfm/Kc -----END CERTIFICATE-----Generated at Thu Jun 19 22:50:27 2025 by rpki-client