$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft File: ny5XiO95WFurdhmHfTlierLl1Rk.mft (raw, json) Hash identifier: Pnp5YI7eX7UW0r3Asrax0R0i+CuBRuit1tpO1vnXoEk= Subject key identifier: 00:B9:7D:F8:94:80:7C:65:25:FD:16:FC:97:E1:16:92:F6:C6:66:EE Authority key identifier: 9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 Certificate issuer: /CN=A913A7A6/serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Certificate serial: 0A3F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft Manifest number: 0A38 Signing time: Fri 22 Aug 2025 19:51:39 +0000 Manifest this update: Fri 22 Aug 2025 19:51:39 +0000 Manifest next update: Fri 29 Aug 2025 19:51:38 +0000 Files and hashes: 1: ny5XiO95WFurdhmHfTlierLl1Rk.crl (hash: EaMvf1DzbLnZrpQOBvkLTtdBQxoSu+lANSv1q64oieY=) 2: 4DAFC184ADC011ED897A4050C4F9AE02.roa (hash: /BGVJbRRDfivu1c+fyECLgKysqOT6aaM0UL54g9lwQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2623 (0xa3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Validity Not Before: Aug 22 19:51:39 2025 GMT Not After : Aug 29 19:51:38 2025 GMT Subject: CN=68a8ca4b-0a53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:94:ac:7e:88:59:0f:9a:41:b6:5b:94:22:42: 4f:d4:36:c1:e4:be:3b:a2:62:62:bf:74:cc:52:a6: 1a:b9:90:64:9f:c8:56:04:3b:26:ef:25:30:a3:61: 2e:15:f4:32:76:b2:71:2d:ea:f4:fc:c4:10:c2:7d: 6d:bc:e6:27:e2:fd:a7:f7:3c:78:4a:e1:97:16:07: 02:db:7a:30:eb:85:c8:d3:3a:5c:3f:44:44:ca:d5: fc:64:c2:d9:2b:aa:e8:e2:6d:71:53:df:d8:c0:cc: 05:88:62:ca:5e:03:03:64:00:c1:f6:89:d1:a6:2a: 38:38:a8:05:13:b4:0f:56:f4:1a:d6:f8:8a:b9:60: c9:45:01:95:88:d5:71:90:0a:5c:25:ad:77:a0:0a: d4:88:5e:46:29:65:9c:84:23:e6:7a:34:47:1f:c8: 10:24:64:de:9d:2b:6f:8f:51:d4:31:a2:42:27:2f: 46:1c:7c:83:60:19:3a:a1:19:59:57:21:8c:b4:95: 55:be:e9:07:51:22:ba:c4:b8:d8:6c:22:f4:c1:00: 78:2e:8e:f4:94:8b:de:e3:3e:f8:af:9e:54:6c:73: e7:d8:93:4c:03:fc:09:9a:45:fa:6b:19:46:98:ed: 20:9c:8a:fb:1d:0f:a2:48:ea:45:9a:e2:bc:21:2a: 5e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:B9:7D:F8:94:80:7C:65:25:FD:16:FC:97:E1:16:92:F6:C6:66:EE X509v3 Authority Key Identifier: keyid:9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:74:9d:87:f7:8a:82:26:23:37:02:bc:21:9b:e8:f4:c5:fa: 18:34:71:50:30:34:89:39:a2:9d:30:e4:4d:e2:ac:6f:ab:b8: 9d:13:1f:f3:01:c9:ed:eb:e3:14:d5:1a:e6:6d:b3:ec:f0:45: b5:81:f0:0a:3b:f4:6f:71:68:d3:be:22:9d:ba:fb:90:37:89: 2e:ef:94:55:7d:52:07:0f:4a:27:70:5b:14:34:25:02:33:a1: 0e:1e:2e:f1:4e:1a:c3:d2:5a:7c:c8:32:37:01:0f:18:8d:f6: d4:18:6a:81:c8:3e:60:e7:f8:a6:25:2b:dc:23:26:bb:05:63: 64:ef:f3:d1:52:ea:42:6b:b7:e7:75:99:5c:98:d5:43:23:b6: 0f:75:c7:f0:90:0c:45:d8:d8:dd:f3:82:b4:8a:b9:39:3a:44: 15:8e:60:2a:59:90:45:a9:51:40:2b:1d:7f:a6:0c:ba:ce:fd: 70:fe:24:ae:2b:3f:03:3d:4d:a8:d6:84:2e:a3:44:d1:09:3c: 29:dd:af:24:7a:3c:a2:67:90:17:64:bf:6c:a0:6f:6e:46:2a: 40:b8:b9:24:3e:dc:53:28:17:a0:97:36:4e:8f:80:83:75:ab: d6:65:ba:0b:f9:b0:fa:1e:68:4c:94:c7:76:ef:27:d9:10:25: 3d:c7:c5:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDlGMkU1Nzg4RUY3OTU4NUJBQjc2MTk4NzdEMzk2MjdB QjJFNUQ1MTkwHhcNMjUwODIyMTk1MTM5WhcNMjUwODI5MTk1MTM4WjAYMRYwFAYD VQQDEw02OGE4Y2E0Yi0wYTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAopSsfohZD5pBtluUIkJP1DbB5L47omJiv3TMUqYauZBkn8hWBDsm7yUwo2Eu FfQydrJxLer0/MQQwn1tvOYn4v2n9zx4SuGXFgcC23ow64XI0zpcP0REytX8ZMLZ K6ro4m1xU9/YwMwFiGLKXgMDZADB9onRpio4OKgFE7QPVvQa1viKuWDJRQGViNVx kApcJa13oArUiF5GKWWchCPmejRHH8gQJGTenStvj1HUMaJCJy9GHHyDYBk6oRlZ VyGMtJVVvukHUSK6xLjYbCL0wQB4Lo70lIve4z74r55UbHPn2JNMA/wJmkX6axlG mO0gnIr7HQ+iSOpFmuK8ISpe3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAC5ffiU gHxlJf0W/JfhFpL2xmbuMB8GA1UdIwQYMBaAFJ8uV4jveVhbq3YZh305Ynqy5dUZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80NTdBOEU4Mjcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdGdXJkaG1IZlRsaWVyTGwx UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL255NVhpTzk1V0Z1cmRobUhmVGxpZXJMbDFSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80NTdBOEU4MjczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdG dXJkaG1IZlRsaWVyTGwxUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqdJ2H94qCJiM3Arwhm+j0xfoYNHFQMDSJOaKdMORN4qxvq7idEx/z Acnt6+MU1RrmbbPs8EW1gfAKO/RvcWjTviKduvuQN4ku75RVfVIHD0oncFsUNCUC M6EOHi7xThrD0lp8yDI3AQ8YjfbUGGqByD5g5/imJSvcIya7BWNk7/PRUupCa7fn dZlcmNVDI7YPdcfwkAxF2Njd84K0irk5OkQVjmAqWZBFqVFAKx1/pgy6zv1w/iSu Kz8DPU2o1oQuo0TRCTwp3a8kejyiZ5AXZL9soG9uRipAuLkkPtxTKBeglzZOj4CD davWZboL+bD6HmhMlMd27yfZECU9x8XV -----END CERTIFICATE-----Generated at Sat Aug 23 12:44:32 2025 by rpki-client