$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft File: LYC7UpVYC-No2mj7jQPqtI16xss.mft (raw, json) Hash identifier: mGDNN13vANdXm9bgesXX7C1PdE7RFj5Fswo//ptBe6g= Subject key identifier: E2:D8:A5:73:AF:10:EF:9C:4A:7D:C7:C9:8F:32:5C:7C:95:C8:C4:1C Authority key identifier: 2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB Certificate issuer: /CN=A91B7948/serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft Manifest number: B3 Signing time: Tue 17 Jun 2025 04:54:55 +0000 Manifest this update: Tue 17 Jun 2025 04:54:55 +0000 Manifest next update: Tue 24 Jun 2025 04:54:55 +0000 Files and hashes: 1: LYC7UpVYC-No2mj7jQPqtI16xss.crl (hash: WYKrur0bMhH0s+4b+7c7yHhHTA85QJktW3AO7o/USCs=) 2: 70ED9D2837D111EF99A8011CC4F9AE02.roa (hash: XcL7vfDB7+jSL63SdSHmjhv1kS+M1yfgUS1Jg2qNUac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 04:54:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7948, serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Validity Not Before: Jun 17 04:54:55 2025 GMT Not After : Jun 24 04:54:55 2025 GMT Subject: CN=6850f51f-edc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:16:1f:c4:91:2c:56:10:9f:81:25:09:1e:fe: d0:e3:4e:89:74:0e:15:50:07:f6:17:9b:40:1f:e8: 75:c0:e6:2e:03:b9:e2:84:7c:f9:eb:36:db:5d:92: cb:ed:ac:e0:7c:fe:32:40:b8:93:09:00:1d:67:ca: ba:25:a4:38:fe:ac:98:e5:85:21:67:9b:ba:25:c6: df:62:ad:a0:a4:31:49:05:0b:6e:0b:38:6c:17:4a: 56:53:e7:b1:66:f4:e5:a2:c8:c5:21:58:3c:d2:bd: 74:91:20:18:6b:8b:d0:2c:89:52:ff:3b:29:de:e2: bc:e8:20:13:55:2e:4b:3e:c4:53:da:47:1c:84:1b: 48:7e:d9:89:48:f0:93:ac:9b:89:db:89:15:65:d7: 62:3e:3f:d5:c3:64:f7:2d:5d:62:e9:50:ce:50:66: 4e:e8:e2:3a:f4:59:03:ec:87:38:6c:7d:b8:dd:9a: 13:41:a3:13:c5:85:6e:1d:82:16:d8:73:1d:60:07: eb:89:5a:72:57:cf:13:2f:ac:93:a9:63:e3:2e:95: 36:26:0e:6b:46:d6:7b:e3:97:b1:d7:5c:14:d4:0d: 94:ea:13:25:b0:a4:cb:97:e5:22:ba:22:29:2f:83: c4:de:10:86:a0:22:a6:d3:3e:6c:2e:e6:b2:90:12: 52:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:D8:A5:73:AF:10:EF:9C:4A:7D:C7:C9:8F:32:5C:7C:95:C8:C4:1C X509v3 Authority Key Identifier: keyid:2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:8f:03:39:e8:31:86:2a:c8:5c:bc:da:10:5c:a6:6e:cc:8a: 97:55:bc:3f:fd:27:7d:9c:a4:39:3b:4d:64:51:32:e7:43:e4: 88:bc:38:4f:54:f3:de:ab:19:f1:31:de:e4:d0:f8:75:61:76: bf:79:b3:70:28:73:8f:e2:fc:f2:52:95:f4:05:7d:6b:57:22: 02:45:48:05:f6:fd:8b:e2:df:e9:19:a5:9d:67:ee:08:9c:13: 15:37:72:68:e7:c0:a9:5b:5f:b7:5d:bf:54:79:fd:54:58:77: 59:45:53:90:7e:1b:01:e6:d0:4c:4d:ed:c9:d6:0e:50:92:0a: 51:8c:27:b3:69:c6:bb:41:43:d0:53:11:94:30:89:dd:c0:76: 7d:9e:84:c3:c4:9c:20:bf:c6:0a:66:e7:52:11:ce:3e:83:b8: 45:0c:df:c2:6a:87:cd:6c:48:b3:9d:51:58:e7:ec:02:b9:d3: 84:25:1d:50:c9:36:59:95:aa:1b:af:8d:92:6f:e6:48:f0:a6: 47:4e:4a:3d:4a:8c:0c:e5:f7:63:54:8f:84:b3:e5:ae:cb:f6: a1:12:78:23:2f:a7:c0:de:a3:82:e0:02:12:3d:fd:5a:88:be: 79:a9:0f:a4:6d:65:70:45:1e:a8:f6:a7:9f:97:1f:36:2a:a1: 7c:c3:ea:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc5NDgxMTAvBgNVBAUTKDJEODBCQjUyOTU1ODBCRTM2OERBNjhGQjhEMDNFQUI0 OEQ3QUM2Q0IwHhcNMjUwNjE3MDQ1NDU1WhcNMjUwNjI0MDQ1NDU1WjAYMRYwFAYD VQQDEw02ODUwZjUxZi1lZGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRYfxJEsVhCfgSUJHv7Q406JdA4VUAf2F5tAH+h1wOYuA7nihHz56zbbXZLL 7azgfP4yQLiTCQAdZ8q6JaQ4/qyY5YUhZ5u6JcbfYq2gpDFJBQtuCzhsF0pWU+ex ZvTlosjFIVg80r10kSAYa4vQLIlS/zsp3uK86CATVS5LPsRT2kcchBtIftmJSPCT rJuJ24kVZddiPj/Vw2T3LV1i6VDOUGZO6OI69FkD7Ic4bH243ZoTQaMTxYVuHYIW 2HMdYAfriVpyV88TL6yTqWPjLpU2Jg5rRtZ745ex11wU1A2U6hMlsKTLl+UiuiIp L4PE3hCGoCKm0z5sLuaykBJSJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLYpXOv EO+cSn3HyY8yXHyVyMQcMB8GA1UdIwQYMBaAFC2Au1KVWAvjaNpo+40D6rSNesbL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzk0OC80NkRDNkIwQTM3 RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi9MWUM3VXBWWUMtTm8ybWo3alFQcXRJMTZ4 c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xZQzdVcFZZQy1ObzJtajdqUVBxdEkxNnhzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzk0OC80NkRDNkIwQTM3RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi9MWUM3VXBWWUMt Tm8ybWo3alFQcXRJMTZ4c3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZjwM56DGGKshcvNoQXKZuzIqXVbw//Sd9nKQ5O01kUTLnQ+SIvDhP VPPeqxnxMd7k0Ph1YXa/ebNwKHOP4vzyUpX0BX1rVyICRUgF9v2L4t/pGaWdZ+4I nBMVN3Jo58CpW1+3Xb9Uef1UWHdZRVOQfhsB5tBMTe3J1g5QkgpRjCezaca7QUPQ UxGUMIndwHZ9noTDxJwgv8YKZudSEc4+g7hFDN/CaofNbEiznVFY5+wCudOEJR1Q yTZZlaobr42Sb+ZI8KZHTko9SowM5fdjVI+Es+Wuy/ahEngjL6fA3qOC4AISPf1a iL55qQ+kbWVwRR6o9qeflx82KqF8w+pa -----END CERTIFICATE-----Generated at Wed Jun 18 20:08:00 2025 by rpki-client