$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft File: NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft (raw, json) Hash identifier: eRvLZqH8OSBRRriq4hb9qhBt6S1V1lULEdKu3mP7uxE= Subject key identifier: 07:8B:8B:62:31:A2:ED:9F:F1:5C:5A:5A:96:1F:F0:FF:80:5E:8A:D9 Authority key identifier: 35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 Certificate issuer: /CN=A917FACB/serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft Manifest number: F9 Signing time: Wed 25 Mar 2026 05:31:20 +0000 Manifest this update: Wed 25 Mar 2026 05:31:19 +0000 Manifest next update: Wed 01 Apr 2026 05:31:19 +0000 Files and hashes: 1: NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl (hash: CNH8bqa07hGu9MKsyn0BVwe6AeP43N8s/7n+NJ/0OpM=) 2: 81FC16A6B46511EF86BEAC6BC4F9AE02.roa (hash: 5VO9AYfUls793WW6aylahYoLQQVtZJJZe9EelPOo2yw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:31:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Validity Not Before: Mar 25 05:31:19 2026 GMT Not After : Apr 1 05:31:19 2026 GMT Subject: CN=69c37328-8321 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:29:33:d4:7a:f0:81:c4:25:70:f6:f5:e0:34: 7e:a9:9c:65:d2:be:b7:de:21:93:68:45:72:81:57: 1e:f7:6a:06:a0:2f:d5:51:ad:a9:0e:8d:6b:d0:53: 19:05:00:52:e8:b0:fd:5a:da:bf:22:56:57:b4:c5: 9c:06:6f:3b:ac:78:94:5c:50:c1:f6:ae:dd:10:1a: 3c:be:f1:ae:92:b5:9a:a8:90:99:2f:c0:85:14:c1: 29:34:04:18:78:4d:5c:85:99:63:8c:02:b7:c1:15: c3:c6:1a:5d:10:e1:6d:c7:b1:3b:c5:2a:60:4d:bf: cf:22:e0:80:c1:69:1b:0a:11:fd:0f:ae:52:1c:fe: 84:02:c3:12:31:a6:f4:0a:77:c5:50:72:bd:a6:c2: 46:2d:e9:ce:5f:39:85:86:a7:a6:a7:c1:21:d9:27: 46:3d:60:37:8a:a6:57:58:eb:3e:b6:73:63:33:73: ee:32:82:60:c8:e3:17:31:0b:a1:ae:e1:3e:55:8a: af:3c:57:95:60:ea:88:af:01:0e:39:3a:84:76:60: cd:56:00:eb:f0:6e:3f:a6:7d:94:52:59:5f:2b:ba: 87:6d:1d:92:d6:d6:d8:bf:42:83:dd:0f:1f:18:fd: 02:04:db:66:d3:e9:96:97:d1:a1:68:36:26:ac:27: 61:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:8B:8B:62:31:A2:ED:9F:F1:5C:5A:5A:96:1F:F0:FF:80:5E:8A:D9 X509v3 Authority Key Identifier: keyid:35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:c5:38:7d:0e:6e:98:e4:bf:52:7c:14:b3:8a:4a:18:a4:fc: 21:73:5b:b6:0f:e3:47:70:cd:a2:b7:8f:fd:8e:2a:40:bd:ce: 3b:4b:07:2a:cf:f2:35:25:61:ba:27:c8:60:5f:61:b6:8a:34: 9b:f3:06:7b:ac:ea:9e:21:72:cd:12:ae:bc:b9:73:73:ae:cd: b5:4e:b4:cb:b7:9c:6d:cd:0c:fe:f9:2a:a7:35:af:72:e8:79: 01:b6:17:6a:db:e5:05:61:11:fd:31:2b:6f:87:ad:74:06:65: d2:f7:5a:6a:c3:71:73:5e:c5:20:53:0b:91:58:e6:a9:04:9a: 9c:f9:15:ba:66:82:8d:48:5e:68:f4:9e:5c:df:b1:ea:54:d3: bd:fd:a2:fa:db:03:61:48:43:e4:9c:56:76:f5:de:9b:c7:aa: 44:1d:19:04:dc:dc:ad:ce:8c:20:e4:86:89:29:4e:9d:8d:fe: 61:67:55:95:f6:ae:7e:77:b8:8d:dc:94:a0:4c:87:3c:8a:b2: 8b:a8:00:0c:ee:5f:3f:f3:08:b0:fd:52:d9:46:ad:43:5e:27: 02:52:e4:31:d9:03:e9:35:a1:e6:5f:6f:47:aa:51:2d:87:2a: 71:b0:d0:96:df:a0:67:58:6b:03:8f:bc:0e:79:81:bc:80:10: 17:e8:fa:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZBQ0IxMTAvBgNVBAUTKDM1ODE0QjE1RkI4MzQ5MzlFRUE4NUNDNEE2N0M0RTFB NkE4NUE0RjUwHhcNMjYwMzI1MDUzMTE5WhcNMjYwNDAxMDUzMTE5WjAYMRYwFAYD VQQDEw02OWMzNzMyOC04MzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSkz1HrwgcQlcPb14DR+qZxl0r633iGTaEVygVce92oGoC/VUa2pDo1r0FMZ BQBS6LD9Wtq/IlZXtMWcBm87rHiUXFDB9q7dEBo8vvGukrWaqJCZL8CFFMEpNAQY eE1chZljjAK3wRXDxhpdEOFtx7E7xSpgTb/PIuCAwWkbChH9D65SHP6EAsMSMab0 CnfFUHK9psJGLenOXzmFhqemp8Eh2SdGPWA3iqZXWOs+tnNjM3PuMoJgyOMXMQuh ruE+VYqvPFeVYOqIrwEOOTqEdmDNVgDr8G4/pn2UUllfK7qHbR2S1tbYv0KD3Q8f GP0CBNtm0+mWl9GhaDYmrCdhLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAeLi2Ix ou2f8VxaWpYf8P+AXorZMB8GA1UdIwQYMBaAFDWBSxX7g0k57qhcxKZ8ThpqhaT1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkFDQi8yNUQxMTg4NkI0 NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9OWUZMRmZ1RFNUbnVxRnpFcG54T0dtcUZw UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05ZRkxGZnVEU1RudXFGekVwbnhPR21xRnBQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkFDQi8yNUQxMTg4NkI0NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9OWUZMRmZ1RFNU bnVxRnpFcG54T0dtcUZwUFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALsU4fQ5umOS/UnwUs4pKGKT8IXNbtg/jR3DNoreP/Y4qQL3OO0sHKs/yNSVh uifIYF9htoo0m/MGe6zqniFyzRKuvLlzc67NtU60y7ecbc0M/vkqpzWvcuh5AbYX atvlBWER/TErb4etdAZl0vdaasNxc17FIFMLkVjmqQSanPkVumaCjUheaPSeXN+x 6lTTvf2i+tsDYUhD5JxWdvXem8eqRB0ZBNzcrc6MIOSGiSlOnY3+YWdVlfaufne4 jdyUoEyHPIqyi6gADO5fP/MIsP1S2UatQ14nAlLkMdkD6TWh5l9vR6pRLYcqcbDQ lt+gZ1hrA4+8DnmBvIAQF+j6TA== -----END CERTIFICATE-----Generated at Thu Mar 26 08:57:10 2026 by rpki-client