$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft File: NyCB99vi7xGkQRvU5q-G8yaYyvo.mft (raw, json) Hash identifier: jCvFVWgUbUXaVRYcQVeZXI6El6NWUuW/kG3BZGNWer8= Subject key identifier: D4:D8:2C:8D:00:9D:6D:AB:D2:B1:E7:07:75:62:F6:B3:05:B0:DD:37 Authority key identifier: 37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA Certificate issuer: /CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft Manifest number: E9 Signing time: Sat 09 Aug 2025 05:47:52 +0000 Manifest this update: Sat 09 Aug 2025 05:47:51 +0000 Manifest next update: Sat 16 Aug 2025 05:47:51 +0000 Files and hashes: 1: NyCB99vi7xGkQRvU5q-G8yaYyvo.crl (hash: JDDt0+N5SE7P5397z7ESJIMJGAdGd06CcW8TAuhOCLo=) 2: 680CA022140F11EF99D47F17C4F9AE02.roa (hash: D5rGbzNBp0qpzKteB7pJY43rBzORSmVBVYcN6zCKrOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E19, serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Validity Not Before: Aug 9 05:47:51 2025 GMT Not After : Aug 16 05:47:51 2025 GMT Subject: CN=6896e107-6114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4a:5b:2e:b8:5e:07:ff:34:e4:ee:e9:4b:03: 1c:07:70:94:b3:f2:27:e3:a4:21:20:9f:a9:aa:a5: 4c:ec:d6:ff:c3:3e:63:a2:94:86:7a:be:48:ec:82: fe:76:fd:2b:4b:21:02:f0:71:8b:bd:2f:72:a3:7a: 9d:8e:f6:a8:f3:22:6b:b4:6e:bf:b6:a8:f7:ce:a9: 7d:9a:46:26:89:69:ad:04:0f:97:94:3c:61:6c:c5: 6c:03:86:99:5a:82:64:b1:55:92:21:c9:93:46:f8: bc:ee:c6:5f:26:9d:70:f9:8b:f9:51:9f:13:2e:dd: ff:04:5e:e2:31:d2:71:f7:34:6e:e1:b0:8e:ca:cc: c5:ce:a2:a8:50:3f:d7:18:34:49:97:fa:22:70:dd: 82:47:00:6c:d6:ca:92:cf:d8:92:47:91:a2:7a:0d: b7:2c:a9:74:dd:5a:8a:43:ea:40:b2:65:ec:53:f4: a3:dd:fc:7b:9f:c7:be:f3:99:61:bc:8d:45:73:0c: 4e:5a:a8:bb:7a:25:9c:13:93:28:2d:a5:48:9d:ad: 3d:b2:ab:8e:72:8e:ad:67:ac:72:70:15:09:62:43: 83:ad:c7:14:1f:ed:a8:40:ad:d2:ba:e4:fe:c3:24: a8:28:8f:56:f0:67:cf:dc:c2:d9:6b:24:47:3c:27: 31:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:D8:2C:8D:00:9D:6D:AB:D2:B1:E7:07:75:62:F6:B3:05:B0:DD:37 X509v3 Authority Key Identifier: keyid:37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:75:54:5e:0b:d1:a6:85:b3:cc:f8:97:57:7a:b6:ff:76:b5: 1c:d5:69:93:1b:d0:a2:90:63:2e:e8:eb:28:c8:56:f7:a3:3a: ad:02:44:59:31:62:19:9d:b5:e6:01:ef:49:4f:05:92:8c:21: 47:d0:93:bd:2c:48:1d:19:98:78:48:63:2a:76:fc:dc:b8:28: 3d:af:51:fc:b8:c1:4e:f2:95:11:5a:6d:00:7a:dc:89:7c:3a: e8:06:f4:1c:b4:ae:25:c4:cf:91:50:a4:d0:f5:b1:4a:c7:f8: f3:45:f3:b3:94:2d:d6:0e:ad:24:8b:2a:55:b8:21:2c:e8:fc: 8e:a8:6b:34:df:84:ca:7e:7f:32:6b:9f:74:9e:d0:3a:d3:ea: c8:b1:34:97:26:d5:53:4f:15:7e:2d:b3:5b:d7:b3:37:2d:a3: 72:7d:99:16:b1:81:eb:98:26:8f:b3:cc:be:3d:5e:f0:63:3e: 7d:d8:b5:60:e0:93:4e:73:17:eb:55:99:74:c9:be:ea:a5:b4: 3b:15:b8:0a:45:08:85:56:70:4e:2c:0e:0d:37:9e:59:77:40: e7:c5:77:d5:6e:ff:94:ae:a3:c9:a5:7e:79:29:c4:3d:87:01: 55:cf:be:18:8d:5b:65:1c:df:0d:67:35:43:80:56:3c:ab:ac: be:8d:24:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMTkxMTAvBgNVBAUTKDM3MjA4MUY3REJFMkVGMTFBNDQxMUJENEU2QUY4NkYz MjY5OENBRkEwHhcNMjUwODA5MDU0NzUxWhcNMjUwODE2MDU0NzUxWjAYMRYwFAYD VQQDEw02ODk2ZTEwNy02MTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUpbLrheB/805O7pSwMcB3CUs/In46QhIJ+pqqVM7Nb/wz5jopSGer5I7IL+ dv0rSyEC8HGLvS9yo3qdjvao8yJrtG6/tqj3zql9mkYmiWmtBA+XlDxhbMVsA4aZ WoJksVWSIcmTRvi87sZfJp1w+Yv5UZ8TLt3/BF7iMdJx9zRu4bCOyszFzqKoUD/X GDRJl/oicN2CRwBs1sqSz9iSR5Gieg23LKl03VqKQ+pAsmXsU/Sj3fx7n8e+85lh vI1FcwxOWqi7eiWcE5MoLaVIna09squOco6tZ6xycBUJYkODrccUH+2oQK3SuuT+ wySoKI9W8GfP3MLZayRHPCcxKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTYLI0A nW2r0rHnB3Vi9rMFsN03MB8GA1UdIwQYMBaAFDcggffb4u8RpEEb1OavhvMmmMr6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUxOS8xMEM3RjBBQTE0 MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4R2tRUnZVNXEtRzh5YVl5 dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055Q0I5OXZpN3hHa1FSdlU1cS1HOHlhWXl2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUUxOS8xMEM3RjBBQTE0MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4 R2tRUnZVNXEtRzh5YVl5dm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAndVReC9GmhbPM+JdXerb/drUc1WmTG9CikGMu6OsoyFb3ozqtAkRZ MWIZnbXmAe9JTwWSjCFH0JO9LEgdGZh4SGMqdvzcuCg9r1H8uMFO8pURWm0AetyJ fDroBvQctK4lxM+RUKTQ9bFKx/jzRfOzlC3WDq0kiypVuCEs6PyOqGs034TKfn8y a590ntA60+rIsTSXJtVTTxV+LbNb17M3LaNyfZkWsYHrmCaPs8y+PV7wYz592LVg 4JNOcxfrVZl0yb7qpbQ7FbgKRQiFVnBOLA4NN55Zd0DnxXfVbv+UrqPJpX55KcQ9 hwFVz74YjVtlHN8NZzVDgFY8q6y+jSSF -----END CERTIFICATE-----Generated at Sun Aug 10 04:26:23 2025 by rpki-client