$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft File: NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft (raw, json) Hash identifier: hWPgsJsaCS/p1kgoB49jodtjiwOd5bbHvvMEh1bYCZw= Subject key identifier: C5:C5:D0:C1:E7:15:27:2B:4B:C2:B3:32:FE:E9:91:48:B1:66:7C:4E Authority key identifier: 35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 Certificate issuer: /CN=A917FACB/serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Certificate serial: 0112 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft Manifest number: 0105 Signing time: Fri 17 Apr 2026 05:52:13 +0000 Manifest this update: Fri 17 Apr 2026 05:52:12 +0000 Manifest next update: Fri 24 Apr 2026 05:52:12 +0000 Files and hashes: 1: NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl (hash: g/iWdH9gm8kB41BF9SNz8zus2Kbe06eidOZROLYyzVw=) 2: 81FC16A6B46511EF86BEAC6BC4F9AE02.roa (hash: 5VO9AYfUls793WW6aylahYoLQQVtZJJZe9EelPOo2yw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:52:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 274 (0x112) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Validity Not Before: Apr 17 05:52:12 2026 GMT Not After : Apr 24 05:52:12 2026 GMT Subject: CN=69e1ca8d-fef4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6f:63:2d:08:ba:f8:2d:a5:bc:2d:41:3a:5b: 85:99:0b:8f:7d:a4:72:34:51:84:32:07:7a:fb:3a: 0c:aa:d3:92:a3:5c:f3:2c:77:f4:f7:77:1e:b9:73: 6f:00:e5:8f:14:8d:a4:bc:a3:1d:bc:62:8f:7c:b0: 7b:10:74:c7:cd:8c:f1:4e:38:93:46:ce:15:e1:3f: c9:65:c7:09:49:6a:11:c1:cc:3e:14:b4:7f:f1:ac: 7c:11:77:fd:7d:9f:2e:81:aa:7f:40:5b:6f:0f:c2: a2:68:48:d1:5b:b6:a8:7b:89:ba:6f:80:d5:db:ab: 68:2e:15:f2:f9:41:f0:a8:7d:a8:b5:7e:9b:c4:c7: ba:3a:69:ae:37:ef:5a:1b:d9:a8:c2:13:57:96:0f: f3:e9:44:c7:8e:e7:79:69:9b:46:b1:b0:4c:df:d2: 94:c3:6a:d1:55:90:a2:4d:f2:e5:ee:18:b7:81:0a: e6:5b:88:a8:55:28:b9:74:d9:34:6c:6f:e8:84:10: 74:05:f8:4c:5e:da:e2:9d:b9:df:0a:6f:bc:32:b0: 98:21:e9:60:91:01:97:e5:c2:26:f9:b1:f7:6e:6c: 52:a3:48:83:c2:a6:b1:7e:9f:45:42:c7:56:27:b1: d5:61:aa:71:0e:14:5b:d5:0d:10:b6:ca:8e:9a:bf: 67:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:C5:D0:C1:E7:15:27:2B:4B:C2:B3:32:FE:E9:91:48:B1:66:7C:4E X509v3 Authority Key Identifier: keyid:35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:43:ad:a4:cd:45:80:a2:4b:ca:18:c6:80:50:c7:c7:df:41: 8d:1e:7b:c0:e9:6f:98:ec:d9:d6:1f:f3:47:c9:4a:56:00:10: 20:d0:30:91:bd:5b:b2:6f:44:4f:b8:c6:c4:02:99:13:ca:74: 51:0d:a8:d6:16:c6:f9:0d:e0:0f:31:da:e5:b6:d5:cd:39:f0: d1:2e:e3:4d:af:db:56:37:e5:95:01:7d:2a:f4:15:ff:e7:58: 91:98:a2:76:06:c0:3a:44:8f:1b:05:55:08:78:b0:34:69:2a: 92:22:53:bb:a2:80:32:ec:fa:cd:b7:02:15:5d:8d:bc:f6:16: 51:35:9b:e5:bf:25:06:27:fd:f3:07:93:a7:fa:56:47:fb:3c: 0b:18:fa:92:15:95:93:8a:e4:80:92:cb:d8:fa:b1:3a:9b:95: 3e:df:48:57:cc:be:ea:30:7b:96:91:7d:16:b5:89:62:c1:8c: cc:26:bb:e9:e4:db:13:8b:ff:9e:95:74:f9:7b:95:91:06:29: d4:89:e9:60:1c:c4:b9:05:f0:fc:8a:63:b7:be:1e:25:1e:18: a7:fe:62:cf:e1:24:e7:7c:98:55:4a:11:e3:cd:ed:0b:c7:03: 73:84:f5:5d:a3:41:74:23:ca:5d:88:5d:04:9c:4a:13:ed:9b: 93:51:1b:ac -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZBQ0IxMTAvBgNVBAUTKDM1ODE0QjE1RkI4MzQ5MzlFRUE4NUNDNEE2N0M0RTFB NkE4NUE0RjUwHhcNMjYwNDE3MDU1MjEyWhcNMjYwNDI0MDU1MjEyWjAYMRYwFAYD VQQDEw02OWUxY2E4ZC1mZWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyW9jLQi6+C2lvC1BOluFmQuPfaRyNFGEMgd6+zoMqtOSo1zzLHf093ceuXNv AOWPFI2kvKMdvGKPfLB7EHTHzYzxTjiTRs4V4T/JZccJSWoRwcw+FLR/8ax8EXf9 fZ8ugap/QFtvD8KiaEjRW7aoe4m6b4DV26toLhXy+UHwqH2otX6bxMe6OmmuN+9a G9mowhNXlg/z6UTHjud5aZtGsbBM39KUw2rRVZCiTfLl7hi3gQrmW4ioVSi5dNk0 bG/ohBB0BfhMXtrinbnfCm+8MrCYIelgkQGX5cIm+bH3bmxSo0iDwqaxfp9FQsdW J7HVYapxDhRb1Q0QtsqOmr9ncQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMXF0MHn FScrS8KzMv7pkUixZnxOMB8GA1UdIwQYMBaAFDWBSxX7g0k57qhcxKZ8ThpqhaT1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkFDQi8yNUQxMTg4NkI0 NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9OWUZMRmZ1RFNUbnVxRnpFcG54T0dtcUZw UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05ZRkxGZnVEU1RudXFGekVwbnhPR21xRnBQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkFDQi8yNUQxMTg4NkI0NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9OWUZMRmZ1RFNU bnVxRnpFcG54T0dtcUZwUFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARUOtpM1FgKJLyhjGgFDHx99BjR57wOlvmOzZ1h/zR8lKVgAQINAwkb1bsm9E T7jGxAKZE8p0UQ2o1hbG+Q3gDzHa5bbVzTnw0S7jTa/bVjfllQF9KvQV/+dYkZii dgbAOkSPGwVVCHiwNGkqkiJTu6KAMuz6zbcCFV2NvPYWUTWb5b8lBif98weTp/pW R/s8Cxj6khWVk4rkgJLL2PqxOpuVPt9IV8y+6jB7lpF9FrWJYsGMzCa76eTbE4v/ npV0+XuVkQYp1InpYBzEuQXw/Ipjt74eJR4Yp/5iz+Ek53yYVUoR483tC8cDc4T1 XaNBdCPKXYhdBJxKE+2bk1EbrA== -----END CERTIFICATE-----Generated at Fri Apr 17 11:55:22 2026 by rpki-client