$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft File: RyCit4x4I5km_e5zRKNoDaDYBx0.mft (raw, json) Hash identifier: 78/+9LNsEbQt2o36dwp56r4qwOq0womv+ada+W2RylA= Subject key identifier: E3:AF:74:26:E4:44:7E:83:33:B8:F5:71:FE:D6:5B:0D:3F:70:69:B6 Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft Manifest number: 9C Signing time: Sat 09 Aug 2025 06:39:49 +0000 Manifest this update: Sat 09 Aug 2025 06:39:48 +0000 Manifest next update: Sat 16 Aug 2025 06:39:48 +0000 Files and hashes: 1: RyCit4x4I5km_e5zRKNoDaDYBx0.crl (hash: Ebcye7pWTjTYii1Tx/Pgh7uhIrLTZ9dlM0Sy1r44ibQ=) 2: D2D7B762995611EFADA5D754C4F9AE02.roa (hash: P8Uz392/KpNavGqAZa2GAkqPLrN5Wfcp0qzBrJpnBuA=) 3: 003589503F8311F0AA4DF254C4F9AE02.roa (hash: 8eqt950PmXpP3Mdx7FgJY/zBuBaFJX67pkKFWKR83KI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: Aug 9 06:39:48 2025 GMT Not After : Aug 16 06:39:48 2025 GMT Subject: CN=6896ed35-a022 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b2:4a:2a:9d:81:e4:cc:2a:1f:ae:90:53:31: 9b:fc:ed:42:33:ee:fe:07:27:ee:43:5d:0a:01:6e: f4:cc:10:e5:de:52:f8:65:88:dc:6c:62:85:aa:77: 5d:db:b4:1d:13:39:d0:fd:1d:41:1b:46:a0:aa:df: b4:12:62:19:f7:c0:23:37:66:ac:d8:6c:80:d9:e7: 29:5c:05:50:fa:68:bd:e2:68:92:bf:29:9a:eb:ad: 5c:43:05:8c:ae:ce:01:7e:1b:fd:32:30:64:06:30: bb:21:42:41:6d:ee:af:3c:2c:e3:ae:aa:ce:1a:6a: 2f:5a:d1:a5:2f:e1:6a:b7:81:89:a5:9d:05:33:0c: cd:3e:6d:f3:9f:6f:85:af:78:41:c0:9d:d9:cc:5c: 0e:bf:34:12:f6:ac:29:d9:c0:18:32:bd:52:a0:d9: 4f:20:d9:f7:97:72:ee:24:57:c6:b2:bc:e2:00:36: c1:5f:2e:53:23:13:2d:b2:ca:9c:d1:ff:c9:81:96: ca:98:a9:62:f2:0b:4b:7c:cc:1e:61:85:b9:b0:ab: 13:53:a1:72:62:04:16:36:81:99:e8:38:2b:f3:e1: e0:14:f5:b3:bf:81:a7:00:b1:8b:af:ba:34:79:39: 0b:b9:f7:d9:c8:ba:15:9e:0f:cf:86:4e:76:70:b6: bb:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:AF:74:26:E4:44:7E:83:33:B8:F5:71:FE:D6:5B:0D:3F:70:69:B6 X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:36:36:bd:18:cd:6c:c9:6f:c7:c1:c1:a1:3b:71:6c:9f:b2: 0d:ed:ca:a3:9f:16:4f:fd:c4:69:aa:aa:36:49:07:f9:e9:5e: 6e:e6:a1:8d:a5:16:13:db:1e:bc:37:45:44:23:c8:55:bc:19: 6e:77:25:03:e3:93:1d:36:71:a4:d1:f5:e8:36:4e:be:8f:db: 3f:13:a1:55:b1:f7:19:c4:9f:7e:41:d5:46:0a:d3:24:31:ce: 67:eb:e5:90:a2:32:a4:41:61:50:f2:03:e2:b4:d1:f1:38:22: f9:5c:1c:01:2a:c6:42:85:d0:7a:6b:7a:d2:51:3e:fa:e4:e2: 22:f0:47:ab:1d:b7:3d:37:e3:67:04:ac:b4:01:84:d5:9c:c8: 1f:3f:87:c8:b4:e0:6f:3b:e7:10:23:9c:0c:44:5c:58:64:5a: 3c:a9:7b:53:f8:02:b2:e5:d3:83:92:8a:26:48:02:63:bd:4c: 03:c5:04:57:e2:a9:c9:05:c9:9a:fb:c3:51:13:e5:df:37:d5: 67:34:d6:69:c0:a2:b5:6a:02:98:fc:02:bd:5e:8d:71:a0:dc: 44:18:dc:20:7b:d2:cd:68:49:9b:e7:9f:54:2b:36:f7:b3:5a: fa:f9:7c:0a:dd:a8:8e:e2:7c:48:41:65:b7:fb:b2:fd:1d:00: cc:74:2c:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDQ3MjBBMkI3OEM3ODIzOTkyNkZERUU3MzQ0QTM2ODBE QTBEODA3MUQwHhcNMjUwODA5MDYzOTQ4WhcNMjUwODE2MDYzOTQ4WjAYMRYwFAYD VQQDEw02ODk2ZWQzNS1hMDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubJKKp2B5MwqH66QUzGb/O1CM+7+ByfuQ10KAW70zBDl3lL4ZYjcbGKFqndd 27QdEznQ/R1BG0agqt+0EmIZ98AjN2as2GyA2ecpXAVQ+mi94miSvyma661cQwWM rs4Bfhv9MjBkBjC7IUJBbe6vPCzjrqrOGmovWtGlL+Fqt4GJpZ0FMwzNPm3zn2+F r3hBwJ3ZzFwOvzQS9qwp2cAYMr1SoNlPINn3l3LuJFfGsrziADbBXy5TIxMtssqc 0f/JgZbKmKli8gtLfMweYYW5sKsTU6FyYgQWNoGZ6Dgr8+HgFPWzv4GnALGLr7o0 eTkLuffZyLoVng/Phk52cLa7+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOOvdCbk RH6DM7j1cf7WWw0/cGm2MB8GA1UdIwQYMBaAFEcgoreMeCOZJv3uc0SjaA2g2Acd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi8yN0UzRURBNDk4 MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1a21fZTV6UktOb0RhRFlC eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJERi8yN0UzRURBNDk4MzMxMUVGODMxODlBNTdDNEY5QUUwMi9SeUNpdDR4NEk1 a21fZTV6UktOb0RhRFlCeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcNja9GM1syW/HwcGhO3Fsn7IN7cqjnxZP/cRpqqo2SQf56V5u5qGN pRYT2x68N0VEI8hVvBludyUD45MdNnGk0fXoNk6+j9s/E6FVsfcZxJ9+QdVGCtMk Mc5n6+WQojKkQWFQ8gPitNHxOCL5XBwBKsZChdB6a3rSUT765OIi8EerHbc9N+Nn BKy0AYTVnMgfP4fItOBvO+cQI5wMRFxYZFo8qXtT+AKy5dODkoomSAJjvUwDxQRX 4qnJBcma+8NRE+XfN9VnNNZpwKK1agKY/AK9Xo1xoNxEGNwge9LNaEmb559UKzb3 s1r6+XwK3aiO4nxIQWW3+7L9HQDMdCyq -----END CERTIFICATE-----Generated at Sat Aug 9 15:06:41 2025 by rpki-client