$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft File: NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft (raw, json) Hash identifier: pNpfzHSdloXEoJE85EnMSOS1p092egKPYn/A7O+NMQ0= Subject key identifier: EC:AF:E4:DE:17:C6:0D:AE:09:CD:76:95:C0:AB:23:EF:DA:60:C0:DC Authority key identifier: 35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 Certificate issuer: /CN=A917FACB/serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft Manifest number: 6C Signing time: Tue 01 Jul 2025 07:43:43 +0000 Manifest this update: Tue 01 Jul 2025 07:43:42 +0000 Manifest next update: Tue 08 Jul 2025 07:43:42 +0000 Files and hashes: 1: NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl (hash: GpwJf/rlp2mZhvxBUo/aXUP/Cl1i+rubMM/DQ32RErE=) 2: 81FC16A6B46511EF86BEAC6BC4F9AE02.roa (hash: 3WNjmfHJVoQBd0rENGvmjv5pVSXIpaYmoJ+4Year8YI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Validity Not Before: Jul 1 07:43:42 2025 GMT Not After : Jul 8 07:43:42 2025 GMT Subject: CN=686391af-a3b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:35:c2:75:58:3b:b0:18:9a:8e:72:17:2b:be: 05:62:1a:b7:10:20:b3:d3:8a:9d:0d:6b:68:27:98: 7b:c1:db:cc:db:07:9b:ce:c8:8b:e2:28:b2:41:ed: 12:a1:a1:1f:c2:58:0e:6c:b6:d0:a0:e9:b9:d3:e1: ec:2a:4b:ad:34:23:54:44:1d:39:1c:b0:08:b4:63: d1:c0:4c:c1:2c:97:10:ba:11:08:8f:7d:b2:9f:eb: 88:a9:f2:eb:21:87:52:ba:9b:48:e9:fe:2b:99:46: d9:ab:34:78:45:5f:ee:d6:64:ee:d7:2d:5f:c0:1c: c7:af:49:3c:ea:05:f2:d5:08:55:cf:da:fa:a5:3a: e4:92:bd:be:51:1a:6f:b7:dd:36:3a:d4:dc:1d:5d: bf:3e:91:67:00:94:9c:87:8e:a4:b5:24:34:ea:21: a0:8f:31:25:cd:ec:d8:60:f9:30:8f:36:ab:d5:87: 8d:4d:99:07:29:02:58:08:c8:80:f5:50:28:dd:78: 60:91:6f:4b:11:27:47:cb:8f:1a:46:1e:10:28:d5: 0b:26:8e:bd:43:52:b9:c4:5f:91:3c:60:66:54:67: c1:75:73:a2:83:a1:91:ea:0b:b0:74:aa:7b:c3:34: c4:f5:c3:7e:a6:1c:60:37:67:b3:88:0d:39:92:83: 3a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:AF:E4:DE:17:C6:0D:AE:09:CD:76:95:C0:AB:23:EF:DA:60:C0:DC X509v3 Authority Key Identifier: keyid:35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:f8:ef:93:f3:a9:b6:99:d4:0e:b8:7d:8b:ae:a9:3f:6b:f0: c5:a5:a6:b4:6e:77:87:2c:22:ee:85:a2:5c:31:5e:dd:9e:a2: 96:2e:2d:f5:3c:ab:48:e2:12:44:38:13:b3:81:8c:6e:05:4f: e6:c6:c1:48:df:e6:87:fe:5d:5a:b4:7a:32:ca:03:f2:e4:3c: e1:cd:9b:3c:1f:6d:fb:b8:c4:00:8b:c4:84:e8:6f:95:7f:04: 59:bc:ee:7c:91:70:5e:c2:a0:bd:c5:0e:49:4c:2d:66:d2:e0: 9a:a8:0f:5f:d9:62:b4:21:a5:64:b3:2a:38:26:09:72:3b:80: 26:18:e0:28:92:bb:e8:76:58:7b:b1:48:56:cb:1c:db:b8:27: 5f:8f:fe:77:94:0c:a7:b2:44:68:a6:e8:54:b1:e6:93:f8:87: 8a:d9:63:02:2f:89:ce:f0:b2:8d:63:b0:d0:7f:fc:c3:b1:96: ac:68:97:4a:e8:e1:48:99:85:44:bd:dc:7a:e3:a7:15:7c:4a: b3:af:e2:7e:a8:e3:9c:d7:36:9f:55:9e:d0:57:eb:10:e6:7f: af:e2:dd:82:21:a4:36:8e:b1:2f:0b:53:f5:90:28:df:44:7d: 1f:1a:95:47:a1:71:80:03:dc:77:e5:bd:a9:11:dd:40:5a:22: 0d:c3:29:be -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RkFDQjExMC8GA1UEBRMoMzU4MTRCMTVGQjgzNDkzOUVFQTg1Q0M0QTY3QzRFMUE2 QTg1QTRGNTAeFw0yNTA3MDEwNzQzNDJaFw0yNTA3MDgwNzQzNDJaMBgxFjAUBgNV BAMTDTY4NjM5MWFmLWEzYjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoNcJ1WDuwGJqOchcrvgViGrcQILPTip0Na2gnmHvB28zbB5vOyIviKLJB7RKh oR/CWA5sttCg6bnT4ewqS600I1REHTkcsAi0Y9HATMEslxC6EQiPfbKf64ip8ush h1K6m0jp/iuZRtmrNHhFX+7WZO7XLV/AHMevSTzqBfLVCFXP2vqlOuSSvb5RGm+3 3TY61NwdXb8+kWcAlJyHjqS1JDTqIaCPMSXN7Nhg+TCPNqvVh41NmQcpAlgIyID1 UCjdeGCRb0sRJ0fLjxpGHhAo1Qsmjr1DUrnEX5E8YGZUZ8F1c6KDoZHqC7B0qnvD NMT1w36mHGA3Z7OIDTmSgzoVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7K/k3hfG Da4JzXaVwKsj79pgwNwwHwYDVR0jBBgwFoAUNYFLFfuDSTnuqFzEpnxOGmqFpPUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGQUNCLzI1RDExODg2QjQ2 NTExRUY5QkZCQUE2N0M0RjlBRTAyL05ZRkxGZnVEU1RudXFGekVwbnhPR21xRnBQ VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTllGTEZmdURTVG51cUZ6RXBueE9HbXFGcFBVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdG QUNCLzI1RDExODg2QjQ2NTExRUY5QkZCQUE2N0M0RjlBRTAyL05ZRkxGZnVEU1Ru dXFGekVwbnhPR21xRnBQVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKr475PzqbaZ1A64fYuuqT9r8MWlprRud4csIu6FolwxXt2eopYuLfU8 q0jiEkQ4E7OBjG4FT+bGwUjf5of+XVq0ejLKA/LkPOHNmzwfbfu4xACLxITob5V/ BFm87nyRcF7CoL3FDklMLWbS4JqoD1/ZYrQhpWSzKjgmCXI7gCYY4CiSu+h2WHux SFbLHNu4J1+P/neUDKeyRGim6FSx5pP4h4rZYwIvic7wso1jsNB//MOxlqxol0ro 4UiZhUS93HrjpxV8SrOv4n6o45zXNp9VntBX6xDmf6/i3YIhpDaOsS8LU/WQKN9E fR8alUehcYAD3HflvakR3UBaIg3DKb4= -----END CERTIFICATE-----Generated at Thu Jul 3 00:23:08 2025 by rpki-client