$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft File: NyCB99vi7xGkQRvU5q-G8yaYyvo.mft (raw, json) Hash identifier: Twz9xdhEnvPnRaGDRKI4l8iLRZA+PfheheCjW0ftx+Q= Subject key identifier: 0E:4D:BF:9D:F7:1F:C5:6E:E7:65:46:A0:B0:88:EE:56:BE:C2:E6:5E Authority key identifier: 37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA Certificate issuer: /CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Certificate serial: 0119 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft Manifest number: 0112 Signing time: Sun 19 Oct 2025 07:51:26 +0000 Manifest this update: Sun 19 Oct 2025 07:51:25 +0000 Manifest next update: Sun 26 Oct 2025 07:51:25 +0000 Files and hashes: 1: NyCB99vi7xGkQRvU5q-G8yaYyvo.crl (hash: /f1n311ELClrpsL9Oacrgbufv0YCBWmyVmgAIW8A/F0=) 2: 4ABCFD508D3A11F0B6F4F46FC4F9AE02.roa (hash: N5o2mOrAAIEN4JkFArU+q/6rZ4IO6YadfTVlKFOEiVE=) 3: 82748D8A8D3A11F0833AB01AC4F9AE02.roa (hash: cwplvW7swmzZa2jvSta00RWJdejX+4mcpTxfaDMp2xI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:51:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E19, serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Validity Not Before: Oct 19 07:51:25 2025 GMT Not After : Oct 26 07:51:25 2025 GMT Subject: CN=68f4987d-6c79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ec:10:54:1e:5c:e5:ba:d6:5b:cd:09:6b:90: 12:12:20:af:f0:02:02:af:c4:19:dc:16:39:8c:62: 8a:c6:0f:bc:b5:fd:59:52:09:f9:8a:77:98:cb:ff: d7:da:f7:f1:5e:e0:66:fb:9e:ac:61:fe:c9:25:b5: b9:5e:0f:c4:56:ba:1e:83:56:a8:1f:60:b6:6f:05: 28:59:6c:ea:d7:45:a3:f9:fb:17:e7:b6:87:17:82: 86:b2:f6:95:5d:4e:d8:68:8b:01:2e:12:3e:b4:d9: 36:3e:18:45:30:f5:4f:37:2f:d9:0a:0a:f4:67:88: fe:a5:7b:07:da:63:c8:09:51:86:f5:a7:35:0d:7d: ba:f6:f9:5e:03:3f:bb:9d:6c:2c:b1:9f:01:2b:1a: 4d:e0:bf:55:24:8a:3b:7d:ee:11:71:f2:a3:b9:9b: 7e:df:1c:31:c3:ac:3f:76:65:de:26:a9:c9:45:52: 69:b8:2f:4d:ad:09:89:b8:f2:2f:77:81:4f:7a:a6: 96:96:7a:48:26:e3:fc:08:2f:24:a6:ca:88:c1:d4: b3:6b:ec:e5:3f:86:89:ae:ab:09:e0:df:c6:29:49: 0f:b9:fc:7f:01:71:d4:68:68:d3:6e:e9:bd:40:90: 24:1f:ac:7f:cf:fb:ef:36:52:7f:7c:d3:53:3a:f6: 82:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:4D:BF:9D:F7:1F:C5:6E:E7:65:46:A0:B0:88:EE:56:BE:C2:E6:5E X509v3 Authority Key Identifier: keyid:37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:33:d9:da:b7:73:2d:9c:e2:04:1c:bf:13:d0:19:d2:18:0a: d2:20:58:d8:22:d6:eb:3a:70:18:34:94:9e:57:ba:62:44:37: 9f:df:56:73:62:1d:47:2f:ac:59:80:df:9b:1e:51:0d:e2:73: 6e:b9:85:aa:6f:58:49:6f:d7:e9:95:1b:6d:3b:0a:06:de:35: 1c:3f:fc:58:d4:dc:ff:38:dd:8f:6f:ad:9a:6f:7f:59:88:f6: 9c:ad:63:a8:ff:69:73:7f:18:1f:15:af:fc:68:5d:1b:40:c1: 43:6a:26:65:ee:0f:6b:48:9b:c0:87:8c:10:33:ee:38:1f:8b: 45:fe:9c:c7:ea:9f:56:ba:e4:60:6c:bb:b2:78:96:2b:18:03: b8:58:3a:79:37:b2:bf:76:72:57:56:02:da:48:53:29:f2:df: b2:8f:19:e6:8b:a4:13:59:da:c7:f0:ca:cb:e4:a6:cc:d2:c0: 4b:ec:2e:88:bd:17:26:63:90:25:ea:5e:4b:06:77:f8:11:73: 36:52:74:f7:95:d6:be:c7:57:25:27:20:be:19:48:70:f0:21: c9:d3:01:fb:ce:56:6b:1b:90:64:d7:7d:97:ae:b2:e0:ff:cc: 2b:cd:dd:8f:19:12:96:aa:76:dc:26:87:6a:b6:11:be:c9:32: 08:77:4f:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMTkxMTAvBgNVBAUTKDM3MjA4MUY3REJFMkVGMTFBNDQxMUJENEU2QUY4NkYz MjY5OENBRkEwHhcNMjUxMDE5MDc1MTI1WhcNMjUxMDI2MDc1MTI1WjAYMRYwFAYD VQQDEw02OGY0OTg3ZC02Yzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1uwQVB5c5brWW80Ja5ASEiCv8AICr8QZ3BY5jGKKxg+8tf1ZUgn5ineYy//X 2vfxXuBm+56sYf7JJbW5Xg/EVroeg1aoH2C2bwUoWWzq10Wj+fsX57aHF4KGsvaV XU7YaIsBLhI+tNk2PhhFMPVPNy/ZCgr0Z4j+pXsH2mPICVGG9ac1DX269vleAz+7 nWwssZ8BKxpN4L9VJIo7fe4RcfKjuZt+3xwxw6w/dmXeJqnJRVJpuC9NrQmJuPIv d4FPeqaWlnpIJuP8CC8kpsqIwdSza+zlP4aJrqsJ4N/GKUkPufx/AXHUaGjTbum9 QJAkH6x/z/vvNlJ/fNNTOvaCVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA5Nv533 H8Vu52VGoLCI7la+wuZeMB8GA1UdIwQYMBaAFDcggffb4u8RpEEb1OavhvMmmMr6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUxOS8xMEM3RjBBQTE0 MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4R2tRUnZVNXEtRzh5YVl5 dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055Q0I5OXZpN3hHa1FSdlU1cS1HOHlhWXl2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUUxOS8xMEM3RjBBQTE0MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4 R2tRUnZVNXEtRzh5YVl5dm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADM9nat3MtnOIEHL8T0BnSGArSIFjYItbrOnAYNJSeV7piRDef31Zz Yh1HL6xZgN+bHlEN4nNuuYWqb1hJb9fplRttOwoG3jUcP/xY1Nz/ON2Pb62ab39Z iPacrWOo/2lzfxgfFa/8aF0bQMFDaiZl7g9rSJvAh4wQM+44H4tF/pzH6p9WuuRg bLuyeJYrGAO4WDp5N7K/dnJXVgLaSFMp8t+yjxnmi6QTWdrH8MrL5KbM0sBL7C6I vRcmY5Al6l5LBnf4EXM2UnT3lda+x1clJyC+GUhw8CHJ0wH7zlZrG5Bk132XrrLg /8wrzd2PGRKWqnbcJodqthG+yTIId098 -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:15 2025 by rpki-client