$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft File: NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft (raw, json) Hash identifier: abDDMIlkbMWSEVANeqQ3urJyRuKBz+VTSdtygEHWmgg= Subject key identifier: 2D:6B:DA:09:32:C8:F3:1A:58:4A:93:2C:82:AC:C8:6F:39:DE:7E:80 Authority key identifier: 35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 Certificate issuer: /CN=A917FACB/serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft Manifest number: 89 Signing time: Sat 23 Aug 2025 06:52:20 +0000 Manifest this update: Sat 23 Aug 2025 06:52:19 +0000 Manifest next update: Sat 30 Aug 2025 06:52:19 +0000 Files and hashes: 1: NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl (hash: X9b8ta/h67XUYIOlKDtVUNlDAlvVNYTmj5U4pEcrxqE=) 2: 81FC16A6B46511EF86BEAC6BC4F9AE02.roa (hash: QN39p9nWye6EQeabDpHZSKPOLSlCBZhTa4JYZW8B/+k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:52:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Validity Not Before: Aug 23 06:52:19 2025 GMT Not After : Aug 30 06:52:19 2025 GMT Subject: CN=68a96523-302a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:71:6e:d4:81:bc:4a:18:f9:56:17:63:ba:26: 63:24:e2:70:02:af:25:8c:24:e9:87:5a:bc:51:f6: 71:01:d5:5f:d7:4e:62:67:1e:53:8a:bc:be:69:c0: bd:77:37:67:10:9f:06:86:38:a5:58:67:9e:a5:c1: 74:fe:ee:15:d9:ca:ad:5a:7c:81:0c:d7:49:18:e5: a1:52:6b:92:17:f9:9a:71:ce:97:be:2f:65:1f:fb: 5e:54:f5:f7:71:b4:58:c5:0e:0a:5d:1a:1e:f6:fc: 69:ca:7c:48:44:85:ee:b9:99:f2:e1:9a:60:ba:12: 3d:e7:38:44:cf:75:f1:77:f0:eb:56:33:4e:3c:b2: cd:75:34:0c:de:fe:8a:e5:76:9e:68:cf:7f:f8:cf: be:56:21:c4:4c:9a:5b:02:dd:48:e8:c3:2c:33:c4: d0:63:77:2e:77:e1:95:0d:53:68:7c:2e:ba:6e:0c: 59:ae:94:e0:5e:e8:15:c6:67:c0:bc:9f:52:ad:b0: 41:9e:d8:6f:e8:91:7f:c8:74:1a:50:15:1f:3a:4a: c2:b7:0c:8a:3a:49:8e:4b:00:3d:0e:2a:13:0f:f1: 55:a6:32:42:cd:96:4f:97:23:b3:6c:c0:83:10:28: 84:35:08:99:4b:af:0f:84:1d:46:2d:0c:1b:f0:43: 33:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:6B:DA:09:32:C8:F3:1A:58:4A:93:2C:82:AC:C8:6F:39:DE:7E:80 X509v3 Authority Key Identifier: keyid:35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:8a:0e:9d:e8:c9:c3:5d:df:7d:6e:00:47:29:0c:54:38:7b: d3:d0:c9:18:be:fb:fc:b4:b3:c3:13:a0:7a:05:ec:77:eb:17: 37:9d:ab:8a:56:92:fb:fe:74:35:f8:8d:b3:9f:e6:49:ec:ff: 92:73:56:bb:4e:50:e3:09:d0:0d:f6:d2:40:c1:1a:0b:49:3e: 5b:7e:9e:d6:38:5f:dd:64:08:c7:f2:0c:ce:76:6a:b1:9a:27: 97:3b:32:a1:37:d7:4e:bb:1e:03:de:6d:36:b5:8e:df:ec:82: c2:5b:1a:8d:da:ce:8e:b4:e1:0f:d4:7b:ff:e4:11:b4:13:e4: d0:ef:4a:3c:e8:5f:01:68:b2:82:26:d2:26:a2:8a:90:ae:7b: 1a:73:f8:57:86:ef:64:81:89:31:ee:11:f0:cd:c8:b4:30:d3: 67:a5:92:78:bb:a8:c3:d1:73:9e:7b:75:c9:ae:b4:28:9c:9a: e2:4f:45:e2:c3:b6:0f:84:8c:cb:ce:58:56:cc:dc:85:82:b1: 7b:56:58:f0:7b:8b:98:db:cd:c1:c7:2a:7c:ef:35:43:9f:91: ad:4c:9b:28:a2:3a:36:67:a9:62:11:89:7a:6e:bc:3a:a9:96: ea:d3:ad:52:47:04:71:e0:06:5c:44:05:a5:ab:e3:2c:b7:35: 05:d1:52:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZBQ0IxMTAvBgNVBAUTKDM1ODE0QjE1RkI4MzQ5MzlFRUE4NUNDNEE2N0M0RTFB NkE4NUE0RjUwHhcNMjUwODIzMDY1MjE5WhcNMjUwODMwMDY1MjE5WjAYMRYwFAYD VQQDEw02OGE5NjUyMy0zMDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnFu1IG8Shj5VhdjuiZjJOJwAq8ljCTph1q8UfZxAdVf105iZx5Tiry+acC9 dzdnEJ8GhjilWGeepcF0/u4V2cqtWnyBDNdJGOWhUmuSF/macc6Xvi9lH/teVPX3 cbRYxQ4KXRoe9vxpynxIRIXuuZny4ZpguhI95zhEz3Xxd/DrVjNOPLLNdTQM3v6K 5XaeaM9/+M++ViHETJpbAt1I6MMsM8TQY3cud+GVDVNofC66bgxZrpTgXugVxmfA vJ9SrbBBnthv6JF/yHQaUBUfOkrCtwyKOkmOSwA9DioTD/FVpjJCzZZPlyOzbMCD ECiENQiZS68PhB1GLQwb8EMzNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC1r2gky yPMaWEqTLIKsyG853n6AMB8GA1UdIwQYMBaAFDWBSxX7g0k57qhcxKZ8ThpqhaT1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkFDQi8yNUQxMTg4NkI0 NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9OWUZMRmZ1RFNUbnVxRnpFcG54T0dtcUZw UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05ZRkxGZnVEU1RudXFGekVwbnhPR21xRnBQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkFDQi8yNUQxMTg4NkI0NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9OWUZMRmZ1RFNU bnVxRnpFcG54T0dtcUZwUFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACig6d6MnDXd99bgBHKQxUOHvT0MkYvvv8tLPDE6B6Bex36xc3nauK VpL7/nQ1+I2zn+ZJ7P+Sc1a7TlDjCdAN9tJAwRoLST5bfp7WOF/dZAjH8gzOdmqx mieXOzKhN9dOux4D3m02tY7f7ILCWxqN2s6OtOEP1Hv/5BG0E+TQ70o86F8BaLKC JtImooqQrnsac/hXhu9kgYkx7hHwzci0MNNnpZJ4u6jD0XOee3XJrrQonJriT0Xi w7YPhIzLzlhWzNyFgrF7Vljwe4uY283Bxyp87zVDn5GtTJsoojo2Z6liEYl6brw6 qZbq061SRwRx4AZcRAWlq+MstzUF0VLV -----END CERTIFICATE-----Generated at Sat Aug 23 19:35:28 2025 by rpki-client