$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft File: LYC7UpVYC-No2mj7jQPqtI16xss.mft (raw, json) Hash identifier: lB7E+6d992bvnZm2/OKLdWghflbV43V+2iUk+QvKBmc= Subject key identifier: 5C:DB:1E:7A:63:6E:0B:16:60:2A:E7:6A:A8:03:65:8E:A2:0F:15:D5 Authority key identifier: 2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB Certificate issuer: /CN=A91B7948/serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft Manifest number: 99 Signing time: Fri 25 Apr 2025 05:17:53 +0000 Manifest this update: Fri 25 Apr 2025 05:17:53 +0000 Manifest next update: Fri 02 May 2025 05:17:52 +0000 Files and hashes: 1: LYC7UpVYC-No2mj7jQPqtI16xss.crl (hash: SrQX38ALyZYC+kx5UwtdN7GZxChbxFwReTaeB6gdWqs=) 2: 70ED9D2837D111EF99A8011CC4F9AE02.roa (hash: XcL7vfDB7+jSL63SdSHmjhv1kS+M1yfgUS1Jg2qNUac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:17:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7948, serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Validity Not Before: Apr 25 05:17:53 2025 GMT Not After : May 2 05:17:52 2025 GMT Subject: CN=680b1b01-c090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f9:16:81:00:95:c1:da:9f:8a:50:13:0e:fd: c0:a9:2f:aa:2d:74:76:9a:a6:3b:05:a7:6a:fe:c1: de:2c:84:44:fc:52:ba:7a:5a:ec:25:50:6a:f7:f4: 1e:f1:e7:bb:2a:a5:f3:85:bd:15:c7:43:1a:92:a4: 96:7b:c0:9c:39:b3:d3:97:95:26:18:1e:a2:4e:a8: 89:c8:8f:70:b2:93:87:a6:13:26:0c:61:38:74:0a: 1e:fb:c2:f3:c1:b5:22:00:05:50:ed:56:a8:dc:cf: 11:69:65:13:9a:a2:b4:26:fa:4b:05:e4:e2:11:90: 1f:75:7d:e7:7a:2a:ed:d3:1f:73:43:94:6d:75:fa: 80:3e:58:b5:90:fe:5d:cd:f5:de:56:d7:df:93:7f: 5d:eb:d1:51:cd:25:25:19:f6:8a:c5:02:c3:89:89: db:e4:d7:2f:2f:95:87:f4:fd:93:21:d5:ee:a3:8b: 14:bd:84:9a:41:d6:48:c7:f5:d1:5b:5f:2c:43:83: b4:b7:d6:83:69:46:16:a8:30:f0:ff:cc:6d:b8:68: 94:d7:1d:13:1d:ef:28:47:03:ae:94:f6:4d:ad:38: b1:05:dc:74:1d:49:18:91:9d:1c:30:b3:69:fe:89: 21:a1:aa:4a:5e:93:19:44:bd:4c:10:9a:4f:cc:9e: 45:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:DB:1E:7A:63:6E:0B:16:60:2A:E7:6A:A8:03:65:8E:A2:0F:15:D5 X509v3 Authority Key Identifier: keyid:2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:82:32:06:73:61:50:d1:8f:c9:16:44:37:81:e5:d0:79:a4: ee:ef:19:3a:e3:89:8e:fb:38:4c:65:15:ad:ea:83:4b:4c:15: 4c:b0:7e:ed:fa:91:0a:5f:fb:c4:2a:4b:fe:a7:90:b6:45:09: dd:46:37:af:2f:67:98:c4:a3:1d:a6:91:44:d2:f5:47:54:46: 2a:f8:4b:ca:d3:c9:1c:3e:8b:5b:85:7e:58:98:85:8c:9e:74: 9e:2e:7f:09:bf:a1:40:82:2f:7e:cb:25:72:81:3a:78:3b:7b: 49:b1:a7:fe:bd:8d:7d:47:ed:54:df:8a:c0:2b:fb:69:20:17: ba:4a:1d:12:5a:40:a2:41:e5:af:e3:30:e7:7a:26:dd:78:7f: 96:b4:c3:1f:0a:92:e7:3e:6f:72:7c:ce:1d:98:0c:c1:d7:d0: 91:41:fd:e2:73:2e:3d:14:ba:0e:f7:ec:8d:e7:87:c6:1c:a0: 08:98:3b:a9:04:ae:b0:a5:a1:c1:05:3b:18:ce:d8:66:b9:90: 8d:2e:ed:73:4b:52:fc:15:db:3e:24:ea:05:af:ae:ee:1f:a9: 3f:c1:c1:e9:3f:5a:24:c4:93:8a:d1:1b:a5:09:81:7a:51:1a: 01:a6:eb:50:7c:3e:89:a8:c7:f3:db:9a:52:68:b0:fb:a9:dd: 78:d3:e5:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc5NDgxMTAvBgNVBAUTKDJEODBCQjUyOTU1ODBCRTM2OERBNjhGQjhEMDNFQUI0 OEQ3QUM2Q0IwHhcNMjUwNDI1MDUxNzUzWhcNMjUwNTAyMDUxNzUyWjAYMRYwFAYD VQQDEw02ODBiMWIwMS1jMDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfkWgQCVwdqfilATDv3AqS+qLXR2mqY7Badq/sHeLIRE/FK6elrsJVBq9/Qe 8ee7KqXzhb0Vx0MakqSWe8CcObPTl5UmGB6iTqiJyI9wspOHphMmDGE4dAoe+8Lz wbUiAAVQ7Vao3M8RaWUTmqK0JvpLBeTiEZAfdX3neirt0x9zQ5RtdfqAPli1kP5d zfXeVtffk39d69FRzSUlGfaKxQLDiYnb5NcvL5WH9P2TIdXuo4sUvYSaQdZIx/XR W18sQ4O0t9aDaUYWqDDw/8xtuGiU1x0THe8oRwOulPZNrTixBdx0HUkYkZ0cMLNp /okhoapKXpMZRL1MEJpPzJ5FKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFzbHnpj bgsWYCrnaqgDZY6iDxXVMB8GA1UdIwQYMBaAFC2Au1KVWAvjaNpo+40D6rSNesbL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzk0OC80NkRDNkIwQTM3 RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi9MWUM3VXBWWUMtTm8ybWo3alFQcXRJMTZ4 c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xZQzdVcFZZQy1ObzJtajdqUVBxdEkxNnhzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzk0OC80NkRDNkIwQTM3RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi9MWUM3VXBWWUMt Tm8ybWo3alFQcXRJMTZ4c3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSgjIGc2FQ0Y/JFkQ3geXQeaTu7xk644mO+zhMZRWt6oNLTBVMsH7t +pEKX/vEKkv+p5C2RQndRjevL2eYxKMdppFE0vVHVEYq+EvK08kcPotbhX5YmIWM nnSeLn8Jv6FAgi9+yyVygTp4O3tJsaf+vY19R+1U34rAK/tpIBe6Sh0SWkCiQeWv 4zDneibdeH+WtMMfCpLnPm9yfM4dmAzB19CRQf3icy49FLoO9+yN54fGHKAImDup BK6wpaHBBTsYzthmuZCNLu1zS1L8Fds+JOoFr67uH6k/wcHpP1okxJOK0RulCYF6 URoBputQfD6JqMfz25pSaLD7qd140+Xt -----END CERTIFICATE-----Generated at Sat Apr 26 12:28:35 2025 by rpki-client