$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft File: NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft (raw, json) Hash identifier: 95GJ2lp+zMDeYUUP3GTP1uwUyAdQ6p2uAFuOyJseiUk= Subject key identifier: CD:11:CE:62:02:3D:B8:3F:84:B0:95:12:35:E3:69:6E:65:31:87:11 Authority key identifier: 35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 Certificate issuer: /CN=A917FACB/serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft Manifest number: 54 Signing time: Tue 13 May 2025 06:28:20 +0000 Manifest this update: Tue 13 May 2025 06:28:20 +0000 Manifest next update: Tue 20 May 2025 06:28:20 +0000 Files and hashes: 1: NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl (hash: 32756cL+9/j36l6ASDUzGskJYMSzKYO2e3aBua1yvd4=) 2: 81FC16A6B46511EF86BEAC6BC4F9AE02.roa (hash: 3WNjmfHJVoQBd0rENGvmjv5pVSXIpaYmoJ+4Year8YI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:28:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Validity Not Before: May 13 06:28:20 2025 GMT Not After : May 20 06:28:20 2025 GMT Subject: CN=6822e684-c7fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:5b:48:73:f0:6e:a5:5b:f9:38:26:41:bb:ce: ee:71:cf:e2:96:94:bd:63:11:cd:25:e9:99:7d:b8: 10:2d:54:b3:17:10:33:e3:cd:9f:d0:bf:44:83:92: 60:6b:ab:aa:2f:df:2f:5f:70:c0:20:63:78:f3:5c: 14:64:92:a9:e7:de:89:c9:48:36:7b:ab:95:9c:dc: ca:f2:48:ef:3d:3e:ee:53:28:c2:6a:2e:b6:23:cc: 8d:5e:75:1d:86:0f:bf:3a:32:46:e6:c9:ac:74:b1: fe:cd:54:03:32:75:ca:0f:61:d3:49:6b:84:d7:8a: 0d:42:c1:2e:ac:c4:94:c9:d4:bb:f0:75:5e:4b:1f: 95:96:9e:10:f9:f3:28:0f:a1:d9:b9:59:bb:87:70: 44:eb:66:f8:37:fc:d8:d4:52:1b:db:81:c0:b3:31: d8:79:36:9d:1c:20:fe:a2:f7:6e:c5:75:c2:b1:be: 40:ac:5d:67:21:33:dc:61:96:98:36:69:3f:9b:ef: 23:7d:9b:85:d5:1e:f7:d0:7c:93:1a:02:1b:7e:52: a8:c2:85:15:eb:b7:9f:78:29:9c:d7:df:75:b2:06: 98:5e:a4:95:34:d3:42:13:65:c6:8d:6f:59:59:4e: 16:b3:9a:cd:54:9e:1f:d5:ab:8b:76:81:65:5e:84: 80:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:11:CE:62:02:3D:B8:3F:84:B0:95:12:35:E3:69:6E:65:31:87:11 X509v3 Authority Key Identifier: keyid:35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:62:51:43:bc:e3:9b:34:01:bf:3f:6c:df:ec:3f:de:9d:b9: 2d:ea:f2:9f:f8:d3:6e:9b:04:0c:04:68:de:05:87:2d:2c:22: ed:a1:9f:1a:26:7a:e0:6e:45:50:21:09:79:65:3d:7c:d9:09: 14:7f:83:48:47:a3:2a:6c:07:8b:0f:2a:5f:e0:63:e4:7c:5d: 47:92:d3:f0:cd:d7:d2:e0:2b:24:3b:66:b9:8b:42:12:be:6c: ce:0c:67:e5:b2:f6:49:23:a2:e8:a1:14:6d:4b:19:70:b9:7d: 2c:3d:db:87:1d:1d:c2:99:09:df:a2:46:b5:b0:84:53:a0:3e: 9c:e8:9d:be:b4:9c:79:8c:6d:85:d7:93:aa:99:28:42:cf:7e: de:be:ed:d6:1d:32:88:00:8a:cb:a3:8c:47:35:b4:81:2d:75: 28:4e:e8:93:bb:e0:a0:c9:bc:12:3b:4b:12:19:e7:10:96:fd: e5:6f:e4:8f:f6:24:0a:c3:0e:63:5e:92:5d:46:71:3f:0b:24: e1:f7:3f:11:cd:3a:18:b0:5f:c5:ee:a7:97:f7:c8:1b:cb:0a: e2:e5:5a:3c:bb:b1:26:36:dd:84:d3:9d:b0:9b:d0:b6:6f:e1: e8:7f:60:95:5a:67:d2:c9:fc:00:5b:09:22:e5:88:a1:06:8c: 27:61:9c:e0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RkFDQjExMC8GA1UEBRMoMzU4MTRCMTVGQjgzNDkzOUVFQTg1Q0M0QTY3QzRFMUE2 QTg1QTRGNTAeFw0yNTA1MTMwNjI4MjBaFw0yNTA1MjAwNjI4MjBaMBgxFjAUBgNV BAMTDTY4MjJlNjg0LWM3ZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD9W0hz8G6lW/k4JkG7zu5xz+KWlL1jEc0l6Zl9uBAtVLMXEDPjzZ/Qv0SDkmBr q6ov3y9fcMAgY3jzXBRkkqnn3onJSDZ7q5Wc3MrySO89Pu5TKMJqLrYjzI1edR2G D786Mkbmyax0sf7NVAMydcoPYdNJa4TXig1CwS6sxJTJ1LvwdV5LH5WWnhD58ygP odm5WbuHcETrZvg3/NjUUhvbgcCzMdh5Np0cIP6i927FdcKxvkCsXWchM9xhlpg2 aT+b7yN9m4XVHvfQfJMaAht+UqjChRXrt594KZzX33WyBphepJU000ITZcaNb1lZ Thazms1Unh/Vq4t2gWVehIAHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzRHOYgI9 uD+EsJUSNeNpbmUxhxEwHwYDVR0jBBgwFoAUNYFLFfuDSTnuqFzEpnxOGmqFpPUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGQUNCLzI1RDExODg2QjQ2 NTExRUY5QkZCQUE2N0M0RjlBRTAyL05ZRkxGZnVEU1RudXFGekVwbnhPR21xRnBQ VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTllGTEZmdURTVG51cUZ6RXBueE9HbXFGcFBVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdG QUNCLzI1RDExODg2QjQ2NTExRUY5QkZCQUE2N0M0RjlBRTAyL05ZRkxGZnVEU1Ru dXFGekVwbnhPR21xRnBQVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJViUUO845s0Ab8/bN/sP96duS3q8p/4026bBAwEaN4Fhy0sIu2hnxom euBuRVAhCXllPXzZCRR/g0hHoypsB4sPKl/gY+R8XUeS0/DN19LgKyQ7ZrmLQhK+ bM4MZ+Wy9kkjouihFG1LGXC5fSw924cdHcKZCd+iRrWwhFOgPpzonb60nHmMbYXX k6qZKELPft6+7dYdMogAisujjEc1tIEtdShO6JO74KDJvBI7SxIZ5xCW/eVv5I/2 JArDDmNekl1GcT8LJOH3PxHNOhiwX8Xup5f3yBvLCuLlWjy7sSY23YTTnbCb0LZv 4eh/YJVaZ9LJ/ABbCSLliKEGjCdhnOA= -----END CERTIFICATE-----Generated at Wed May 14 15:28:17 2025 by rpki-client