$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft File: NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft (raw, json) Hash identifier: vICJ87fvKu8a73+EadCxIOvzVYQyhz93s9WySsvt7z4= Subject key identifier: F3:B6:A1:08:64:9E:BC:13:EE:84:D8:A6:CC:0E:E9:0B:06:68:67:10 Authority key identifier: 35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 Certificate issuer: /CN=A917FACB/serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft Manifest number: 0111 Signing time: Mon 11 May 2026 06:07:20 +0000 Manifest this update: Mon 11 May 2026 06:07:19 +0000 Manifest next update: Mon 18 May 2026 06:07:19 +0000 Files and hashes: 1: NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl (hash: QapYmzVvsbVj96jJ5IArWCp/cBZynsxV6/NLcMIt9tY=) 2: 81FC16A6B46511EF86BEAC6BC4F9AE02.roa (hash: 5VO9AYfUls793WW6aylahYoLQQVtZJJZe9EelPOo2yw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 06:07:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Validity Not Before: May 11 06:07:19 2026 GMT Not After : May 18 06:07:19 2026 GMT Subject: CN=6a017218-5d39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a5:ba:93:ff:a9:6e:6a:10:d3:87:11:4a:85: fb:aa:cc:b1:72:88:d0:bf:3d:45:75:b2:00:d2:b5: f3:2b:68:45:2b:cc:a5:23:fa:67:6e:82:9f:65:6b: 6d:05:39:e4:ca:f3:34:89:77:58:04:a6:0e:d9:98: 48:e5:4a:ea:79:f0:d1:00:19:c7:bb:1b:06:46:d6: 44:0b:c1:65:f8:4b:3c:f5:22:b0:4e:8c:83:18:a2: 45:2f:a7:60:0a:e0:73:5a:b5:e0:6c:36:42:a8:97: b7:7d:d3:2c:5e:a4:db:57:45:6a:71:03:e5:c7:a8: 88:da:a8:91:19:0b:0b:cf:82:b9:94:ea:28:c3:57: ea:6f:6c:15:7b:83:e2:5f:8e:f6:2b:64:70:92:d7: 30:38:1a:48:75:6f:cd:50:6f:ad:d4:3b:09:9d:a7: 74:a0:6d:d1:aa:b2:16:3d:05:2e:39:37:6f:f6:79: 13:65:ba:d1:8c:c6:89:25:f6:2f:2b:8e:58:04:49: 7b:aa:96:46:c6:e5:e8:b6:22:47:af:a5:e1:d2:07: aa:52:2d:17:98:f7:4e:4f:ac:af:ab:d0:d3:ed:81: da:ca:52:62:c4:e4:56:5d:10:10:75:0e:2a:50:16: ec:9e:43:ef:c8:07:67:00:64:c9:5b:cb:b4:c4:a0: 9d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:B6:A1:08:64:9E:BC:13:EE:84:D8:A6:CC:0E:E9:0B:06:68:67:10 X509v3 Authority Key Identifier: keyid:35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:bb:3b:fb:3e:27:f4:33:df:9b:e7:22:ca:27:fb:72:ae:c6: 9e:ca:5d:ab:63:0a:5a:b6:8a:7f:a5:c2:ce:7b:cc:f5:52:c2: d1:d2:62:c3:d5:28:f4:18:0a:ef:e8:3e:f2:22:6e:5a:f2:1c: 6e:77:eb:ed:63:40:3d:23:47:e0:8c:12:54:46:b2:d0:4a:55: e9:a0:df:5b:03:97:46:db:e6:9f:ab:6e:60:24:20:bf:d2:4b: fc:91:df:12:01:3a:43:0e:9d:db:49:38:58:98:a9:e5:6a:13: 2e:b9:1f:b0:5a:9f:5e:00:76:81:88:1a:6f:92:68:d0:00:42: 2e:2c:70:cc:6e:04:93:13:69:8c:a9:04:dc:4f:78:6e:4a:92: 90:3d:5b:4a:5c:e2:78:3f:9f:44:4f:15:49:38:3a:f4:a2:56: c7:79:6b:22:3b:8c:a5:98:9e:e0:79:86:23:f4:d9:7b:9d:e4: d1:ca:88:72:17:6b:80:db:dd:75:20:46:41:54:fb:95:13:7d: d9:0f:ce:90:6a:ac:32:af:96:df:42:4d:80:f2:2a:0a:fe:e2: 96:9f:9e:1a:57:88:be:c3:f4:63:5b:67:38:4f:5f:da:1d:83: 1b:74:df:f3:df:eb:b3:f1:60:de:d7:96:df:cf:4b:f1:bb:11: 96:99:e6:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZBQ0IxMTAvBgNVBAUTKDM1ODE0QjE1RkI4MzQ5MzlFRUE4NUNDNEE2N0M0RTFB NkE4NUE0RjUwHhcNMjYwNTExMDYwNzE5WhcNMjYwNTE4MDYwNzE5WjAYMRYwFAYD VQQDEw02YTAxNzIxOC01ZDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKW6k/+pbmoQ04cRSoX7qsyxcojQvz1FdbIA0rXzK2hFK8ylI/pnboKfZWtt BTnkyvM0iXdYBKYO2ZhI5UrqefDRABnHuxsGRtZEC8Fl+Es89SKwToyDGKJFL6dg CuBzWrXgbDZCqJe3fdMsXqTbV0VqcQPlx6iI2qiRGQsLz4K5lOoow1fqb2wVe4Pi X472K2RwktcwOBpIdW/NUG+t1DsJnad0oG3RqrIWPQUuOTdv9nkTZbrRjMaJJfYv K45YBEl7qpZGxuXotiJHr6Xh0geqUi0XmPdOT6yvq9DT7YHaylJixORWXRAQdQ4q UBbsnkPvyAdnAGTJW8u0xKCd0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPO2oQhk nrwT7oTYpswO6QsGaGcQMB8GA1UdIwQYMBaAFDWBSxX7g0k57qhcxKZ8ThpqhaT1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkFDQi8yNUQxMTg4NkI0 NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9OWUZMRmZ1RFNUbnVxRnpFcG54T0dtcUZw UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05ZRkxGZnVEU1RudXFGekVwbnhPR21xRnBQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkFDQi8yNUQxMTg4NkI0NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9OWUZMRmZ1RFNU bnVxRnpFcG54T0dtcUZwUFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAors7+z4n9DPfm+ciyif7cq7Gnspdq2MKWraKf6XCznvM9VLC0dJiw9Uo9BgK 7+g+8iJuWvIcbnfr7WNAPSNH4IwSVEay0EpV6aDfWwOXRtvmn6tuYCQgv9JL/JHf EgE6Qw6d20k4WJip5WoTLrkfsFqfXgB2gYgab5Jo0ABCLixwzG4EkxNpjKkE3E94 bkqSkD1bSlzieD+fRE8VSTg69KJWx3lrIjuMpZie4HmGI/TZe53k0cqIchdrgNvd dSBGQVT7lRN92Q/OkGqsMq+W30JNgPIqCv7ilp+eGleIvsP0Y1tnOE9f2h2DG3Tf 89/rs/Fg3teW389L8bsRlpnmQw== -----END CERTIFICATE-----Generated at Wed May 13 04:39:55 2026 by rpki-client