$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft File: NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft (raw, json) Hash identifier: JN1BH/nekkK4Gf6+EgNfdxrZuIQSF/5V05uqa9XelvM= Subject key identifier: AE:15:7A:91:6A:94:5D:12:33:80:ED:13:CD:52:BE:7E:35:69:1B:09 Authority key identifier: 35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 Certificate issuer: /CN=A917FACB/serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft Manifest number: 64 Signing time: Sun 15 Jun 2025 06:10:06 +0000 Manifest this update: Sun 15 Jun 2025 06:10:06 +0000 Manifest next update: Sun 22 Jun 2025 06:10:06 +0000 Files and hashes: 1: NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl (hash: NI07thJTkPceYC0ICL9MwpA9AK/VMB3E8qwPnShFi1E=) 2: 81FC16A6B46511EF86BEAC6BC4F9AE02.roa (hash: 3WNjmfHJVoQBd0rENGvmjv5pVSXIpaYmoJ+4Year8YI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Validity Not Before: Jun 15 06:10:06 2025 GMT Not After : Jun 22 06:10:06 2025 GMT Subject: CN=684e63be-c9a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4e:7b:33:77:7e:15:4b:86:18:26:45:97:f6: 79:f4:c4:79:b8:fa:ca:ec:51:b3:c4:db:66:6d:9e: 9f:47:e8:08:21:02:16:c4:b2:d0:fd:56:1c:a4:2d: fa:07:8a:3b:a9:07:24:a1:40:8b:ee:af:37:59:e5: f8:a1:c1:0f:b1:d7:e9:ed:73:41:1c:66:1d:8c:eb: ab:66:5c:96:31:a5:e5:cd:98:7d:db:60:38:26:c4: 08:09:f0:17:e6:b1:9c:f4:8a:bb:6a:29:3f:92:51: ba:8c:a3:ae:60:b5:1c:ed:21:d6:59:20:99:3c:4c: bc:8f:09:c3:ec:cb:0f:76:3c:21:f4:24:87:79:6e: 7a:d4:fe:71:19:88:a9:4f:82:f6:96:6b:91:bb:fa: 07:cd:54:81:24:f6:c1:35:e5:03:19:9a:ae:e0:11: fe:88:41:ac:6f:0f:45:30:a7:09:71:8a:87:a9:39: bc:f8:bb:a6:1b:8b:3e:d1:67:27:96:e8:77:30:db: 4d:e1:2b:19:d4:de:8d:7e:ac:59:7a:d0:86:52:20: ee:3c:a5:3e:df:cb:9f:06:05:36:2a:58:e6:37:70: 18:f1:11:1a:c6:d9:7d:09:7b:ef:a9:dc:1b:ad:34: 61:95:9c:31:4e:36:d1:e0:a2:bc:c1:a4:b5:2d:e6: 5f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:15:7A:91:6A:94:5D:12:33:80:ED:13:CD:52:BE:7E:35:69:1B:09 X509v3 Authority Key Identifier: keyid:35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:ed:e5:0f:62:79:20:94:48:bd:09:78:7a:4b:6e:46:20:9c: 60:7d:2c:6e:9b:73:45:b7:b1:5a:63:2f:38:b5:b6:cb:40:15: fe:8f:ef:b8:72:6d:37:c6:76:2b:af:5b:aa:01:89:00:12:a5: 18:9b:f8:6c:53:1b:74:0b:4c:e7:91:ac:2c:5d:f9:63:05:ce: 3f:30:ef:81:42:3f:64:33:41:09:fb:af:dd:b3:82:89:9f:9b: 95:d3:c1:e8:74:46:eb:af:7d:23:75:24:ff:fa:4b:08:6d:47: cb:06:a2:b0:0f:7b:d9:c0:ef:30:c2:2b:53:c6:a8:a1:d5:c7: 78:a3:4f:c4:da:ab:03:6c:9b:7b:a1:41:7e:c4:9a:07:da:5a: 9f:11:bf:5e:18:fd:84:de:93:ef:6c:b1:8f:8c:e0:8e:09:a3: a0:e8:4d:10:96:bc:23:aa:c1:d3:18:22:55:34:ed:a6:01:86: c7:03:a6:92:d3:bd:8b:ea:a8:aa:b4:52:19:af:2f:53:38:2d: 74:9b:85:b6:f3:da:8c:74:5b:83:17:2b:a5:ae:62:04:88:fe: fc:a1:36:c7:b7:90:7e:06:7f:b8:8a:7e:4b:63:f6:9d:74:b0: 75:04:9c:7b:b3:2e:16:d3:86:ca:0a:8f:13:02:48:02:a5:aa: a9:cf:80:e0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RkFDQjExMC8GA1UEBRMoMzU4MTRCMTVGQjgzNDkzOUVFQTg1Q0M0QTY3QzRFMUE2 QTg1QTRGNTAeFw0yNTA2MTUwNjEwMDZaFw0yNTA2MjIwNjEwMDZaMBgxFjAUBgNV BAMTDTY4NGU2M2JlLWM5YTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDATnszd34VS4YYJkWX9nn0xHm4+srsUbPE22Ztnp9H6AghAhbEstD9VhykLfoH ijupByShQIvurzdZ5fihwQ+x1+ntc0EcZh2M66tmXJYxpeXNmH3bYDgmxAgJ8Bfm sZz0irtqKT+SUbqMo65gtRztIdZZIJk8TLyPCcPsyw92PCH0JId5bnrU/nEZiKlP gvaWa5G7+gfNVIEk9sE15QMZmq7gEf6IQaxvD0UwpwlxioepObz4u6Ybiz7RZyeW 6Hcw203hKxnU3o1+rFl60IZSIO48pT7fy58GBTYqWOY3cBjxERrG2X0Je++p3But NGGVnDFONtHgorzBpLUt5l9nAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrhV6kWqU XRIzgO0TzVK+fjVpGwkwHwYDVR0jBBgwFoAUNYFLFfuDSTnuqFzEpnxOGmqFpPUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGQUNCLzI1RDExODg2QjQ2 NTExRUY5QkZCQUE2N0M0RjlBRTAyL05ZRkxGZnVEU1RudXFGekVwbnhPR21xRnBQ VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTllGTEZmdURTVG51cUZ6RXBueE9HbXFGcFBVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdG QUNCLzI1RDExODg2QjQ2NTExRUY5QkZCQUE2N0M0RjlBRTAyL05ZRkxGZnVEU1Ru dXFGekVwbnhPR21xRnBQVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIjt5Q9ieSCUSL0JeHpLbkYgnGB9LG6bc0W3sVpjLzi1tstAFf6P77hy bTfGdiuvW6oBiQASpRib+GxTG3QLTOeRrCxd+WMFzj8w74FCP2QzQQn7r92zgomf m5XTweh0RuuvfSN1JP/6SwhtR8sGorAPe9nA7zDCK1PGqKHVx3ijT8TaqwNsm3uh QX7EmgfaWp8Rv14Y/YTek+9ssY+M4I4Jo6DoTRCWvCOqwdMYIlU07aYBhscDppLT vYvqqKq0UhmvL1M4LXSbhbbz2ox0W4MXK6WuYgSI/vyhNse3kH4Gf7iKfktj9p10 sHUEnHuzLhbThsoKjxMCSAKlqqnPgOA= -----END CERTIFICATE-----Generated at Sun Jun 15 09:39:59 2025 by rpki-client