$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft File: NyCB99vi7xGkQRvU5q-G8yaYyvo.mft (raw, json) Hash identifier: aj7rUdqWohoIjsMvyO8dLVmyL2Y13RJms6tIK52ubMU= Subject key identifier: D1:99:76:FB:9F:CA:AF:E7:DB:7F:CB:3B:7B:77:C5:09:37:30:D6:F1 Authority key identifier: 37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA Certificate issuer: /CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft Manifest number: D5 Signing time: Tue 01 Jul 2025 06:11:39 +0000 Manifest this update: Tue 01 Jul 2025 06:11:38 +0000 Manifest next update: Tue 08 Jul 2025 06:11:38 +0000 Files and hashes: 1: NyCB99vi7xGkQRvU5q-G8yaYyvo.crl (hash: xEIMi12lXxldnXu5vWKAwXtCr2zhQAO8oMtulPrleGY=) 2: 680CA022140F11EF99D47F17C4F9AE02.roa (hash: D5rGbzNBp0qpzKteB7pJY43rBzORSmVBVYcN6zCKrOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:11:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E19, serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Validity Not Before: Jul 1 06:11:38 2025 GMT Not After : Jul 8 06:11:38 2025 GMT Subject: CN=68637c1a-f798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:ba:e4:bd:12:a6:43:a8:60:b5:5e:66:98:fc: 73:d9:f4:23:50:3e:94:b2:62:e0:af:0a:b3:16:f8: 6f:1b:9a:89:b5:66:6f:06:7a:51:63:2c:bc:14:d0: 43:3f:52:2c:35:d8:fc:36:82:d7:28:1f:2b:ec:11: 13:f4:be:19:3a:ed:8c:ce:24:ba:37:95:8e:46:3c: 3a:6e:21:3d:a9:3a:c8:b7:98:fe:6a:42:83:38:b2: bf:6d:df:fd:c2:29:18:10:c6:75:83:36:a1:ca:10: 8d:93:95:4a:bb:77:90:d7:c6:7a:58:23:a7:21:80: 4d:75:67:49:53:6a:32:41:c3:3c:75:9e:44:79:8b: 77:1e:46:21:c6:4a:81:ed:ef:b8:3d:34:44:b0:84: 0e:ce:e2:a3:5a:b2:f2:ae:ef:27:6d:65:89:1e:77: d9:6b:c1:8d:0a:fc:58:25:84:79:2d:6f:84:1b:f1: a5:f0:42:37:4d:16:45:c2:81:39:e6:a9:98:3a:81: a5:ba:35:32:a3:ed:66:7c:ee:b1:9d:a7:dc:a3:4d: c5:18:81:6c:e9:88:4e:4c:9c:2e:b4:13:f8:f5:e5: a1:a1:ad:85:bd:cc:21:e1:56:20:8c:bd:f6:9d:eb: 7b:b1:ca:6e:aa:01:0d:a1:60:4a:d6:e8:16:3d:02: 83:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:99:76:FB:9F:CA:AF:E7:DB:7F:CB:3B:7B:77:C5:09:37:30:D6:F1 X509v3 Authority Key Identifier: keyid:37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:fd:8a:80:b0:ef:59:a9:ba:f1:d8:23:95:f6:6c:d0:27:85: 1c:a1:91:bf:1a:2a:d2:0b:fa:84:ee:88:74:67:3c:99:87:e3: 96:35:4d:cf:74:e5:f8:0e:22:39:b5:c5:3f:02:56:5d:36:3e: 5c:c2:00:1a:90:60:0e:75:ff:3f:dd:be:3a:9a:0b:b7:e1:59: dd:e0:2b:9d:04:d0:40:af:55:40:f3:49:4b:e8:c7:25:e9:bd: 8e:11:e9:0d:74:ee:a9:75:6a:b7:16:a0:16:b5:b2:95:0b:5c: 42:aa:f0:0c:cc:e6:b6:37:5b:fc:24:33:02:68:23:7a:3a:ee: 5d:d1:0f:a8:6b:7c:74:59:f2:1e:3b:11:c0:49:55:84:cb:75: 59:eb:a9:55:50:3d:cf:2e:43:d2:de:fd:1b:ef:66:9a:94:02: 76:bd:55:ed:3b:30:61:73:cd:86:f8:b0:9f:d2:77:ea:8b:16: 44:70:f2:f4:ad:fd:54:e0:52:23:49:0b:43:73:e8:2e:59:88: 2e:41:33:44:60:7a:06:8d:42:99:45:af:de:46:66:76:dc:c4: f8:09:a0:9a:fe:b3:8f:33:61:1d:b0:b0:b7:c6:34:e6:64:fb: f4:15:85:e7:6d:a8:5b:1e:83:08:ce:ab:0c:9f:b0:48:a1:5c: 48:32:b6:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMTkxMTAvBgNVBAUTKDM3MjA4MUY3REJFMkVGMTFBNDQxMUJENEU2QUY4NkYz MjY5OENBRkEwHhcNMjUwNzAxMDYxMTM4WhcNMjUwNzA4MDYxMTM4WjAYMRYwFAYD VQQDEw02ODYzN2MxYS1mNzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+rrkvRKmQ6hgtV5mmPxz2fQjUD6UsmLgrwqzFvhvG5qJtWZvBnpRYyy8FNBD P1IsNdj8NoLXKB8r7BET9L4ZOu2MziS6N5WORjw6biE9qTrIt5j+akKDOLK/bd/9 wikYEMZ1gzahyhCNk5VKu3eQ18Z6WCOnIYBNdWdJU2oyQcM8dZ5EeYt3HkYhxkqB 7e+4PTREsIQOzuKjWrLyru8nbWWJHnfZa8GNCvxYJYR5LW+EG/Gl8EI3TRZFwoE5 5qmYOoGlujUyo+1mfO6xnafco03FGIFs6YhOTJwutBP49eWhoa2Fvcwh4VYgjL32 net7scpuqgENoWBK1ugWPQKDQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGZdvuf yq/n23/LO3t3xQk3MNbxMB8GA1UdIwQYMBaAFDcggffb4u8RpEEb1OavhvMmmMr6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUxOS8xMEM3RjBBQTE0 MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4R2tRUnZVNXEtRzh5YVl5 dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055Q0I5OXZpN3hHa1FSdlU1cS1HOHlhWXl2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUUxOS8xMEM3RjBBQTE0MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4 R2tRUnZVNXEtRzh5YVl5dm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS/YqAsO9Zqbrx2COV9mzQJ4UcoZG/GirSC/qE7oh0ZzyZh+OWNU3P dOX4DiI5tcU/AlZdNj5cwgAakGAOdf8/3b46mgu34Vnd4CudBNBAr1VA80lL6Mcl 6b2OEekNdO6pdWq3FqAWtbKVC1xCqvAMzOa2N1v8JDMCaCN6Ou5d0Q+oa3x0WfIe OxHASVWEy3VZ66lVUD3PLkPS3v0b72aalAJ2vVXtOzBhc82G+LCf0nfqixZEcPL0 rf1U4FIjSQtDc+guWYguQTNEYHoGjUKZRa/eRmZ23MT4CaCa/rOPM2EdsLC3xjTm ZPv0FYXnbahbHoMIzqsMn7BIoVxIMraO -----END CERTIFICATE-----Generated at Wed Jul 2 22:45:01 2025 by rpki-client