$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft File: NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft (raw, json) Hash identifier: usSkpy/uQakBeGwHS5ac3g2B2J6057/oimjLo/tfbT8= Subject key identifier: AF:89:70:57:9B:07:01:FD:24:02:87:6D:00:5C:F1:D1:A9:F4:50:3F Authority key identifier: 35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 Certificate issuer: /CN=A917FACB/serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft Manifest number: 82 Signing time: Sat 09 Aug 2025 07:11:38 +0000 Manifest this update: Sat 09 Aug 2025 07:11:37 +0000 Manifest next update: Sat 16 Aug 2025 07:11:37 +0000 Files and hashes: 1: NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl (hash: PT2I3FrhnM2ZmqsefOcDIYywiqhzUBbzQY32/RXV90s=) 2: 81FC16A6B46511EF86BEAC6BC4F9AE02.roa (hash: QN39p9nWye6EQeabDpHZSKPOLSlCBZhTa4JYZW8B/+k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Validity Not Before: Aug 9 07:11:37 2025 GMT Not After : Aug 16 07:11:37 2025 GMT Subject: CN=6896f4a9-158a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:1a:ec:b7:31:3a:e0:dc:f4:40:a4:3f:14:95: 8c:74:8a:b6:50:b0:17:b3:9f:b4:5e:0f:c9:49:3d: 50:e5:99:d8:9c:41:47:b0:cc:04:35:2e:17:4b:5e: 9d:a3:39:77:2f:61:7d:ff:43:b8:89:71:62:bb:0d: fa:83:6e:68:b4:0d:88:76:06:c3:e7:83:03:7e:72: a4:ad:d9:d4:11:3d:a2:43:96:be:63:66:cb:d0:a1: a2:65:4e:06:06:f1:47:cd:5f:07:34:cd:74:83:64: 8a:1e:38:72:65:25:48:6c:8b:78:d9:32:7a:2c:d0: 0a:37:f0:48:ba:65:01:98:b8:9d:a1:cc:d7:3a:2b: f5:66:ca:f6:d5:20:a5:bd:90:91:d1:22:36:51:ab: 70:b3:11:f9:b3:dd:df:ed:51:8e:8f:9f:b5:26:ab: 9d:90:4d:cb:35:5e:3e:4f:cc:0e:9a:99:66:9a:8b: dc:ba:0d:25:0e:3e:21:ed:56:58:45:ac:fb:68:a4: 59:30:6c:12:53:80:8d:00:a3:bf:ae:ac:d6:d8:b0: bb:3c:7d:2d:a2:e2:f4:e6:4a:ef:a1:98:85:4d:6f: 9a:db:09:74:ba:93:80:6e:3e:fa:f9:af:4c:4a:19: 6a:f7:18:a4:0c:01:23:b7:7c:75:1b:e1:b4:41:1e: 2c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:89:70:57:9B:07:01:FD:24:02:87:6D:00:5C:F1:D1:A9:F4:50:3F X509v3 Authority Key Identifier: keyid:35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:44:a5:3d:30:15:55:fb:b3:e8:5c:11:4c:bd:d6:f6:2a:bc: 97:36:cb:99:1a:23:03:f0:dc:54:06:e5:2d:a5:00:e8:15:35: 6f:9b:8d:d2:fd:36:4b:dd:d5:b0:23:05:b4:72:d2:d4:18:25: 43:33:72:26:67:80:85:a6:9c:b9:70:de:4a:a7:60:98:48:69: 09:4d:02:b1:79:9a:e4:95:4d:12:c2:22:59:c3:2d:8f:0b:9d: ab:7a:84:6f:cd:7c:1c:72:58:83:5d:47:5c:85:fb:ce:8c:87: ac:37:f2:82:5a:9b:55:4d:c0:21:da:62:63:61:6c:0f:5d:f4: c2:84:fc:7b:2a:c9:21:74:95:6d:9c:e2:1d:2d:c7:1b:f0:c3: dd:e4:74:1a:6a:78:86:19:04:84:68:76:d0:05:fe:4c:51:16: bd:12:74:7e:12:4a:ed:dd:d8:19:04:cc:27:9e:f7:17:84:6e: ca:7b:74:e6:39:60:22:09:81:ea:d0:95:c0:f2:4d:f2:8e:24: c9:f2:41:37:9f:42:fe:cb:fb:7a:34:3c:c7:fb:ef:79:a2:17: 91:a8:9b:6b:55:ab:95:62:7d:67:3c:2d:7e:1f:51:de:f6:7d: 3f:c8:7a:31:98:48:58:0a:83:51:7b:b8:cd:6d:ef:31:4d:cc: d8:1a:cb:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZBQ0IxMTAvBgNVBAUTKDM1ODE0QjE1RkI4MzQ5MzlFRUE4NUNDNEE2N0M0RTFB NkE4NUE0RjUwHhcNMjUwODA5MDcxMTM3WhcNMjUwODE2MDcxMTM3WjAYMRYwFAYD VQQDEw02ODk2ZjRhOS0xNThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArRrstzE64Nz0QKQ/FJWMdIq2ULAXs5+0Xg/JST1Q5ZnYnEFHsMwENS4XS16d ozl3L2F9/0O4iXFiuw36g25otA2IdgbD54MDfnKkrdnUET2iQ5a+Y2bL0KGiZU4G BvFHzV8HNM10g2SKHjhyZSVIbIt42TJ6LNAKN/BIumUBmLidoczXOiv1Zsr21SCl vZCR0SI2UatwsxH5s93f7VGOj5+1JqudkE3LNV4+T8wOmplmmovcug0lDj4h7VZY Raz7aKRZMGwSU4CNAKO/rqzW2LC7PH0touL05krvoZiFTW+a2wl0upOAbj76+a9M Shlq9xikDAEjt3x1G+G0QR4s5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+JcFeb BwH9JAKHbQBc8dGp9FA/MB8GA1UdIwQYMBaAFDWBSxX7g0k57qhcxKZ8ThpqhaT1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkFDQi8yNUQxMTg4NkI0 NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9OWUZMRmZ1RFNUbnVxRnpFcG54T0dtcUZw UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05ZRkxGZnVEU1RudXFGekVwbnhPR21xRnBQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkFDQi8yNUQxMTg4NkI0NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9OWUZMRmZ1RFNU bnVxRnpFcG54T0dtcUZwUFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxRKU9MBVV+7PoXBFMvdb2KryXNsuZGiMD8NxUBuUtpQDoFTVvm43S /TZL3dWwIwW0ctLUGCVDM3ImZ4CFppy5cN5Kp2CYSGkJTQKxeZrklU0SwiJZwy2P C52reoRvzXwccliDXUdchfvOjIesN/KCWptVTcAh2mJjYWwPXfTChPx7KskhdJVt nOIdLccb8MPd5HQaaniGGQSEaHbQBf5MURa9EnR+Ekrt3dgZBMwnnvcXhG7Ke3Tm OWAiCYHq0JXA8k3yjiTJ8kE3n0L+y/t6NDzH++95oheRqJtrVauVYn1nPC1+H1He 9n0/yHoxmEhYCoNRe7jNbe8xTczYGsvA -----END CERTIFICATE-----Generated at Sun Aug 10 04:28:24 2025 by rpki-client