$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft File: LYC7UpVYC-No2mj7jQPqtI16xss.mft (raw, json) Hash identifier: hO7z5ZKLz9cTa70boTraX9aGPDB4UzPe6SwanZcaDno= Subject key identifier: 29:BF:27:C1:2F:74:6C:1F:CB:5F:85:F1:3E:38:5E:B6:CB:4A:97:F3 Authority key identifier: 2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB Certificate issuer: /CN=A91B7948/serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Certificate serial: FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft Manifest number: FB Signing time: Mon 03 Nov 2025 05:07:31 +0000 Manifest this update: Mon 03 Nov 2025 05:07:31 +0000 Manifest next update: Mon 10 Nov 2025 05:07:31 +0000 Files and hashes: 1: LYC7UpVYC-No2mj7jQPqtI16xss.crl (hash: vhj/19pl8cvHh85x7ePgKtFqSsq0ao0zmRQlnnYqvhQ=) 2: 70ED9D2837D111EF99A8011CC4F9AE02.roa (hash: ON0MiwZBInBHM7jc0lp0894BhHXsr6LrKE7baf75anU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7948, serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Validity Not Before: Nov 3 05:07:31 2025 GMT Not After : Nov 10 05:07:31 2025 GMT Subject: CN=69083893-7f2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ee:52:66:ff:d2:71:56:91:c6:16:a7:13:f2: a7:23:5b:9d:dd:10:e1:cd:ea:71:2c:2e:c9:5f:16: 69:bb:2d:40:5e:52:50:e9:e2:c6:4f:43:03:56:8e: c5:05:e5:61:cb:15:ad:7c:59:00:74:c3:58:c2:51: 06:ec:5f:ea:67:93:85:de:d9:80:0e:74:a4:64:36: 8c:83:6b:64:8c:b7:69:29:bc:bc:ec:3f:a8:d2:80: 59:c1:2a:2e:69:fd:94:27:4a:08:d0:95:57:bd:7d: 44:8f:05:c3:71:f8:07:db:38:fa:42:d5:a2:b7:b8: 2c:30:ea:c6:7c:a6:4a:96:a8:d8:ed:0c:62:ee:33: 7d:70:3d:d1:99:54:56:82:12:60:5c:14:ae:50:0d: bf:35:89:1f:56:af:2f:a0:9f:f5:00:e6:8c:e0:45: d2:93:e8:17:bb:7c:22:f6:71:b0:13:ac:1a:2a:4f: eb:e0:8d:8a:07:b1:86:34:05:57:1c:75:4b:7f:c4: c7:00:e8:a5:14:9d:72:71:6c:c0:69:5e:54:43:ec: 51:24:c7:39:6b:be:44:6e:e8:04:92:e6:ff:c3:40: 0e:46:55:c7:91:0c:91:a5:86:ff:79:6b:78:79:93: 4c:4b:b3:47:69:3a:7c:9b:16:e6:ea:b8:07:e8:a2: 52:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:BF:27:C1:2F:74:6C:1F:CB:5F:85:F1:3E:38:5E:B6:CB:4A:97:F3 X509v3 Authority Key Identifier: keyid:2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:94:7e:11:39:70:78:5a:1a:98:e7:f4:a9:cb:49:cf:c0:57: ff:f5:63:ec:a8:5d:f3:e9:a5:17:31:2c:6f:42:73:9b:e8:15: 75:66:63:b7:ff:78:81:49:92:32:f9:b5:70:ef:63:58:1b:22: a9:e9:e0:92:42:35:d5:95:19:f4:c8:e6:56:68:73:f0:3a:a1: 6d:92:eb:20:ff:57:11:06:c4:11:1d:d9:7d:86:b0:e1:41:77: 83:26:47:ce:6c:78:9f:bb:52:eb:00:c8:8d:fd:a2:d0:1f:9f: 64:33:8a:52:03:16:08:8c:3e:df:ab:7e:9f:c6:cd:a3:49:7d: 9a:6e:36:56:3e:94:c3:48:7e:b1:c3:cd:c5:6d:7a:d6:e5:dc: d8:85:a7:eb:0b:06:3a:6d:08:31:e0:ae:80:e0:53:d4:75:f2: ee:03:a4:46:1e:aa:e8:cf:e5:86:18:f0:e7:3f:d1:ec:79:92: d0:f5:7c:0d:29:0b:e4:d1:e6:e8:d0:d1:e0:b2:4c:23:30:49: b5:13:72:f5:7a:d2:09:08:0d:ea:cc:66:95:87:57:32:33:e9: 90:1a:18:f1:31:a7:b9:9f:48:84:c4:41:d2:5b:f1:5e:57:9d: 78:b2:f9:d8:61:56:a2:d2:7a:48:30:f3:e6:94:56:64:2f:8f: ad:c7:f0:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc5NDgxMTAvBgNVBAUTKDJEODBCQjUyOTU1ODBCRTM2OERBNjhGQjhEMDNFQUI0 OEQ3QUM2Q0IwHhcNMjUxMTAzMDUwNzMxWhcNMjUxMTEwMDUwNzMxWjAYMRYwFAYD VQQDEw02OTA4Mzg5My03ZjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4O5SZv/ScVaRxhanE/KnI1ud3RDhzepxLC7JXxZpuy1AXlJQ6eLGT0MDVo7F BeVhyxWtfFkAdMNYwlEG7F/qZ5OF3tmADnSkZDaMg2tkjLdpKby87D+o0oBZwSou af2UJ0oI0JVXvX1EjwXDcfgH2zj6QtWit7gsMOrGfKZKlqjY7Qxi7jN9cD3RmVRW ghJgXBSuUA2/NYkfVq8voJ/1AOaM4EXSk+gXu3wi9nGwE6waKk/r4I2KB7GGNAVX HHVLf8THAOilFJ1ycWzAaV5UQ+xRJMc5a75EbugEkub/w0AORlXHkQyRpYb/eWt4 eZNMS7NHaTp8mxbm6rgH6KJSBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCm/J8Ev dGwfy1+F8T44XrbLSpfzMB8GA1UdIwQYMBaAFC2Au1KVWAvjaNpo+40D6rSNesbL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzk0OC80NkRDNkIwQTM3 RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi9MWUM3VXBWWUMtTm8ybWo3alFQcXRJMTZ4 c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xZQzdVcFZZQy1ObzJtajdqUVBxdEkxNnhzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzk0OC80NkRDNkIwQTM3RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi9MWUM3VXBWWUMt Tm8ybWo3alFQcXRJMTZ4c3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCglH4ROXB4WhqY5/Spy0nPwFf/9WPsqF3z6aUXMSxvQnOb6BV1ZmO3 /3iBSZIy+bVw72NYGyKp6eCSQjXVlRn0yOZWaHPwOqFtkusg/1cRBsQRHdl9hrDh QXeDJkfObHifu1LrAMiN/aLQH59kM4pSAxYIjD7fq36fxs2jSX2abjZWPpTDSH6x w83FbXrW5dzYhafrCwY6bQgx4K6A4FPUdfLuA6RGHqroz+WGGPDnP9HseZLQ9XwN KQvk0ebo0NHgskwjMEm1E3L1etIJCA3qzGaVh1cyM+mQGhjxMae5n0iExEHSW/Fe V514svnYYVai0npIMPPmlFZkL4+tx/Ck -----END CERTIFICATE-----Generated at Tue Nov 4 21:32:03 2025 by rpki-client