$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft File: LYC7UpVYC-No2mj7jQPqtI16xss.mft (raw, json) Hash identifier: h4NmAV3VDutuCiu0BeBkHCMOPOTKt48kLbWdnpPgwfM= Subject key identifier: 40:4A:3A:92:E5:AE:BC:D4:7F:D7:4B:5F:AC:1B:9B:64:F2:51:EB:9B Authority key identifier: 2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB Certificate issuer: /CN=A91B7948/serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft Manifest number: D0 Signing time: Sat 09 Aug 2025 06:03:26 +0000 Manifest this update: Sat 09 Aug 2025 06:03:25 +0000 Manifest next update: Sat 16 Aug 2025 06:03:25 +0000 Files and hashes: 1: LYC7UpVYC-No2mj7jQPqtI16xss.crl (hash: aPyDlD5G/QDcZYeoZmLsYWc9Q5iZuSDaDEx2AcwaUoQ=) 2: 70ED9D2837D111EF99A8011CC4F9AE02.roa (hash: ON0MiwZBInBHM7jc0lp0894BhHXsr6LrKE7baf75anU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7948, serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB Validity Not Before: Aug 9 06:03:25 2025 GMT Not After : Aug 16 06:03:25 2025 GMT Subject: CN=6896e4ae-57ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:90:3f:bd:11:6a:66:89:d8:39:6e:5f:ea:1d: af:da:84:ca:58:bb:10:3f:11:16:91:f4:5c:37:ef: ed:e2:7f:d1:ce:c4:af:4b:57:52:c9:40:bd:57:f4: 18:bf:e8:7d:bf:b9:bc:37:ab:fd:22:d6:aa:bf:19: da:a8:41:fc:f9:d3:75:86:03:ea:f4:6f:6b:b7:97: b7:c9:db:cc:f3:97:ef:a4:c8:b2:86:72:30:e6:84: 8b:a5:9d:f7:f6:a3:1f:41:c3:f1:a3:6d:d2:c7:66: d0:18:5b:83:59:fa:e7:e7:d1:84:d1:36:fe:45:1c: 7f:1e:57:41:10:e2:6f:fe:bb:a9:42:33:b5:77:5c: 4d:22:88:06:dc:55:73:24:42:13:1a:64:ac:41:00: 1e:29:39:6b:ae:13:14:1c:b8:f0:7b:45:67:f0:10: 0e:53:04:b1:90:4a:8a:63:12:d0:c4:f0:4d:b4:dd: ec:f5:4c:eb:a2:9e:a5:84:ab:b5:1a:22:b0:8c:3e: 30:e3:d9:44:9b:3f:34:f9:80:a6:ef:b4:9e:04:ed: a3:e5:3c:aa:ce:10:66:28:6c:5e:a3:c1:24:cc:c8: ba:bc:2f:fd:ae:be:9e:0e:7f:b3:eb:03:71:2d:05: 6b:06:0f:92:1c:5e:70:96:06:88:98:0a:87:33:2e: 21:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:4A:3A:92:E5:AE:BC:D4:7F:D7:4B:5F:AC:1B:9B:64:F2:51:EB:9B X509v3 Authority Key Identifier: keyid:2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:77:21:eb:b7:12:77:bb:2f:16:b9:2f:2a:18:9a:10:b4:2c: fe:71:bb:aa:af:de:cc:3c:01:da:9f:22:aa:47:88:80:03:46: 42:98:bf:80:6c:58:37:65:4e:62:07:5a:a3:ee:36:e7:1c:cc: 36:93:2e:a0:cb:36:67:96:40:89:cc:a6:4e:d6:f1:67:5c:cb: bc:20:61:7e:b0:17:b0:d3:68:b8:ec:d4:73:f9:95:01:7b:03: 50:00:d0:e3:91:d0:e8:f7:5f:5d:02:db:7b:09:db:4c:97:75: 79:cd:b3:8f:a8:a8:41:59:26:60:b9:66:aa:37:55:89:9c:79: 8b:3f:6c:90:8b:f3:f6:d4:52:3c:34:11:1d:6a:93:86:9c:8d: 7b:34:ab:5f:b2:1c:f5:b1:6b:ba:f3:13:35:a0:5d:71:5d:65: 70:8b:b2:2c:b3:6e:2a:35:78:6c:c3:8c:39:e7:63:11:10:40: 0f:97:55:cd:16:8f:c6:a9:c1:93:ab:ed:f3:aa:6b:a5:21:fa: 90:c6:3b:1c:65:66:d1:b0:27:99:3d:f9:9e:77:74:75:e5:23: 28:2d:84:83:49:00:3a:ea:14:b7:b5:fd:5b:4d:60:82:e0:43: 68:19:32:f5:2a:c4:63:a5:51:a8:ee:e8:16:b0:42:71:5b:ae: 8f:c0:c8:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc5NDgxMTAvBgNVBAUTKDJEODBCQjUyOTU1ODBCRTM2OERBNjhGQjhEMDNFQUI0 OEQ3QUM2Q0IwHhcNMjUwODA5MDYwMzI1WhcNMjUwODE2MDYwMzI1WjAYMRYwFAYD VQQDEw02ODk2ZTRhZS01N2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15A/vRFqZonYOW5f6h2v2oTKWLsQPxEWkfRcN+/t4n/RzsSvS1dSyUC9V/QY v+h9v7m8N6v9ItaqvxnaqEH8+dN1hgPq9G9rt5e3ydvM85fvpMiyhnIw5oSLpZ33 9qMfQcPxo23Sx2bQGFuDWfrn59GE0Tb+RRx/HldBEOJv/rupQjO1d1xNIogG3FVz JEITGmSsQQAeKTlrrhMUHLjwe0Vn8BAOUwSxkEqKYxLQxPBNtN3s9Uzrop6lhKu1 GiKwjD4w49lEmz80+YCm77SeBO2j5TyqzhBmKGxeo8EkzMi6vC/9rr6eDn+z6wNx LQVrBg+SHF5wlgaImAqHMy4hwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEBKOpLl rrzUf9dLX6wbm2TyUeubMB8GA1UdIwQYMBaAFC2Au1KVWAvjaNpo+40D6rSNesbL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzk0OC80NkRDNkIwQTM3 RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi9MWUM3VXBWWUMtTm8ybWo3alFQcXRJMTZ4 c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xZQzdVcFZZQy1ObzJtajdqUVBxdEkxNnhzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzk0OC80NkRDNkIwQTM3RDAxMUVGODk0NTQ3MUFDNEY5QUUwMi9MWUM3VXBWWUMt Tm8ybWo3alFQcXRJMTZ4c3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzdyHrtxJ3uy8WuS8qGJoQtCz+cbuqr97MPAHanyKqR4iAA0ZCmL+A bFg3ZU5iB1qj7jbnHMw2ky6gyzZnlkCJzKZO1vFnXMu8IGF+sBew02i47NRz+ZUB ewNQANDjkdDo919dAtt7CdtMl3V5zbOPqKhBWSZguWaqN1WJnHmLP2yQi/P21FI8 NBEdapOGnI17NKtfshz1sWu68xM1oF1xXWVwi7Iss24qNXhsw4w552MREEAPl1XN Fo/GqcGTq+3zqmulIfqQxjscZWbRsCeZPfmed3R15SMoLYSDSQA66hS3tf1bTWCC 4ENoGTL1KsRjpVGo7ugWsEJxW66PwMhE -----END CERTIFICATE-----Generated at Sat Aug 9 10:49:14 2025 by rpki-client