$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft File: NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft (raw, json) Hash identifier: 3nwbCpRhBm7nj0iF3iGL4FSyzciYByiBjmMZDHVrIKc= Subject key identifier: 7E:0D:86:B7:74:F2:1F:86:16:B8:F0:81:AB:42:F7:74:1A:71:3B:4C Authority key identifier: 35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 Certificate issuer: /CN=A917FACB/serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft Manifest number: A8 Signing time: Sun 19 Oct 2025 09:29:55 +0000 Manifest this update: Sun 19 Oct 2025 09:29:54 +0000 Manifest next update: Sun 26 Oct 2025 09:29:54 +0000 Files and hashes: 1: NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl (hash: DlSxvxK3nzO8q8T7V9bWe50AqcgBWGm8zeHrYTv5yyo=) 2: 81FC16A6B46511EF86BEAC6BC4F9AE02.roa (hash: oF9pzHgXgFgT7pclB8+4buU+FpQCxpT9fP80ypai+xo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:29:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Validity Not Before: Oct 19 09:29:54 2025 GMT Not After : Oct 26 09:29:54 2025 GMT Subject: CN=68f4af92-7a38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:12:82:e9:d2:f6:72:9b:28:83:f0:a4:4d:95: c5:36:74:9f:46:45:88:81:3e:94:74:d5:c7:5c:a9: 85:c6:ae:21:10:08:a4:ed:80:78:2d:37:b0:59:8a: ce:fe:5f:75:4f:87:8e:52:4b:9b:ce:84:ec:95:28: 40:25:2f:7a:d0:3e:1d:87:1e:e0:52:64:fd:a0:16: 7c:6d:d7:21:32:77:49:44:67:9a:5b:4c:5c:bc:ae: 1f:e2:85:f6:04:25:4f:1b:df:44:47:ac:f4:ec:30: ad:f2:6a:53:a0:70:2d:98:9f:be:9f:0c:b6:fd:99: d7:0f:4e:1f:4d:d3:0b:de:d0:19:2a:11:7b:5b:46: e3:84:07:76:52:56:5f:93:89:d1:b2:d8:61:51:9c: 13:55:df:02:d5:ec:5e:59:60:e6:4d:8c:59:7e:a4: 1b:86:ce:8d:d5:ac:03:3a:b3:ff:94:9b:b4:a9:88: da:d3:89:b4:33:c2:c7:34:a1:bf:19:60:7e:9e:9b: dc:33:bb:bc:76:bf:f1:c6:dc:c3:29:5c:9f:c6:a6: 4e:d7:08:84:d7:4d:da:45:b2:49:fa:56:82:57:bd: 6d:0f:f4:d0:e4:c6:a3:2f:f3:7e:4b:5d:80:bd:b3: 0b:dc:73:a9:5c:83:c0:84:66:62:2f:86:4a:ed:12: 18:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:0D:86:B7:74:F2:1F:86:16:B8:F0:81:AB:42:F7:74:1A:71:3B:4C X509v3 Authority Key Identifier: keyid:35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:32:43:69:ed:78:cb:ad:d2:ee:d3:c8:40:25:de:cb:c0:3f: a3:e1:c4:41:c9:dd:95:5c:50:ef:00:9d:cb:f1:12:97:d0:96: ae:ca:8a:1c:c4:a4:c8:9f:54:66:6c:5a:ff:8f:1f:bc:9f:db: 59:a0:75:cd:70:67:9c:43:9b:58:8c:e6:28:d3:63:ef:4d:e3: cd:a5:46:ec:1d:bf:94:6b:14:fb:ea:fa:39:0b:86:4b:de:a6: 8e:7e:de:80:b0:91:94:6f:09:c2:48:61:a3:4d:a1:4c:a7:0d: cc:13:fc:3c:7c:0c:a9:24:05:14:97:b4:d6:0d:58:fa:ba:0e: 30:26:1f:56:91:34:95:e4:df:4e:c0:9d:dd:bf:e1:4a:9e:ff: 6d:78:a4:2f:e0:47:2b:01:b8:0c:90:85:7c:8c:ae:3c:a2:d2: 73:07:05:c9:96:73:cd:d0:c2:33:d5:e5:9c:70:4a:0b:a2:b7: 45:e3:c8:f8:24:9b:9c:41:68:f4:e6:d9:eb:0c:16:8c:b8:d8: 8b:0e:9c:9c:cc:94:56:81:93:b1:3d:f9:16:23:1a:73:4e:3e: 9d:19:6e:8a:16:21:c3:03:78:0f:6c:34:36:ec:ab:43:02:f7: a7:97:3f:a6:14:bd:c0:4e:9e:e9:93:91:58:c0:a3:d9:2c:3c: 45:ad:fd:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZBQ0IxMTAvBgNVBAUTKDM1ODE0QjE1RkI4MzQ5MzlFRUE4NUNDNEE2N0M0RTFB NkE4NUE0RjUwHhcNMjUxMDE5MDkyOTU0WhcNMjUxMDI2MDkyOTU0WjAYMRYwFAYD VQQDEw02OGY0YWY5Mi03YTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0hKC6dL2cpsog/CkTZXFNnSfRkWIgT6UdNXHXKmFxq4hEAik7YB4LTewWYrO /l91T4eOUkubzoTslShAJS960D4dhx7gUmT9oBZ8bdchMndJRGeaW0xcvK4f4oX2 BCVPG99ER6z07DCt8mpToHAtmJ++nwy2/ZnXD04fTdML3tAZKhF7W0bjhAd2UlZf k4nRsthhUZwTVd8C1exeWWDmTYxZfqQbhs6N1awDOrP/lJu0qYja04m0M8LHNKG/ GWB+npvcM7u8dr/xxtzDKVyfxqZO1wiE103aRbJJ+laCV71tD/TQ5MajL/N+S12A vbML3HOpXIPAhGZiL4ZK7RIYuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH4Nhrd0 8h+GFrjwgatC93QacTtMMB8GA1UdIwQYMBaAFDWBSxX7g0k57qhcxKZ8ThpqhaT1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkFDQi8yNUQxMTg4NkI0 NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9OWUZMRmZ1RFNUbnVxRnpFcG54T0dtcUZw UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05ZRkxGZnVEU1RudXFGekVwbnhPR21xRnBQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkFDQi8yNUQxMTg4NkI0NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9OWUZMRmZ1RFNU bnVxRnpFcG54T0dtcUZwUFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfMkNp7XjLrdLu08hAJd7LwD+j4cRByd2VXFDvAJ3L8RKX0Jauyooc xKTIn1RmbFr/jx+8n9tZoHXNcGecQ5tYjOYo02PvTePNpUbsHb+UaxT76vo5C4ZL 3qaOft6AsJGUbwnCSGGjTaFMpw3ME/w8fAypJAUUl7TWDVj6ug4wJh9WkTSV5N9O wJ3dv+FKnv9teKQv4EcrAbgMkIV8jK48otJzBwXJlnPN0MIz1eWccEoLordF48j4 JJucQWj05tnrDBaMuNiLDpyczJRWgZOxPfkWIxpzTj6dGW6KFiHDA3gPbDQ27KtD Avenlz+mFL3ATp7pk5FYwKPZLDxFrf2W -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:34 2025 by rpki-client