$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft File: NyCB99vi7xGkQRvU5q-G8yaYyvo.mft (raw, json) Hash identifier: r5xePbKeqEprlA4tyO6ndEG4hZySkg8Zn4Sbltv6b9I= Subject key identifier: E9:91:35:0B:33:BE:19:AF:EA:7E:0F:65:3A:F7:5C:75:5F:E0:DF:57 Authority key identifier: 37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA Certificate issuer: /CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Certificate serial: F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft Manifest number: F0 Signing time: Sat 23 Aug 2025 05:27:19 +0000 Manifest this update: Sat 23 Aug 2025 05:27:19 +0000 Manifest next update: Sat 30 Aug 2025 05:27:19 +0000 Files and hashes: 1: NyCB99vi7xGkQRvU5q-G8yaYyvo.crl (hash: kYh8GkPSPFmhAG/WBCkGAjzevK6aJG0R4jmfEKwHEEg=) 2: 680CA022140F11EF99D47F17C4F9AE02.roa (hash: D5rGbzNBp0qpzKteB7pJY43rBzORSmVBVYcN6zCKrOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:27:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E19, serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Validity Not Before: Aug 23 05:27:19 2025 GMT Not After : Aug 30 05:27:19 2025 GMT Subject: CN=68a95137-dc1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2a:53:e2:94:ce:57:55:2b:80:83:a6:36:79: bc:30:4a:93:c9:d6:bb:38:5b:25:a7:43:1e:57:5f: ba:ad:71:c5:5c:cd:f8:c9:bf:e7:5f:43:64:22:06: a8:25:5e:12:ed:b6:1d:8f:7f:f3:8d:96:c0:38:f4: e6:e2:68:83:58:c2:a1:e8:2b:6e:fb:dd:ee:73:e4: 24:86:a4:9c:d0:f4:16:e6:a7:0f:02:25:a9:e4:75: 9d:e6:e5:74:6a:08:46:e8:56:60:57:5f:a8:db:b7: 25:36:f5:42:d4:af:c6:6f:a4:ea:2d:0b:30:eb:91: 72:60:d0:91:05:3b:59:88:da:aa:ad:b9:20:08:99: 5b:28:a0:3a:d4:30:a4:e0:84:97:4e:d1:67:49:bf: 36:c3:a7:be:db:c1:56:6c:17:bd:de:c2:7a:f6:b5: 3d:19:a9:b4:0f:fd:78:06:00:f9:ff:db:06:40:47: 0f:85:5f:e8:4c:96:8c:63:b6:50:fd:16:2a:30:c2: f4:8e:67:80:84:63:81:13:96:1c:95:7c:04:14:c2: d5:f3:98:09:82:84:ea:2a:85:02:c6:bf:d6:d9:47: 01:56:ec:dc:99:57:7f:0b:93:71:22:95:9a:d9:6b: c6:a3:74:70:26:dc:72:91:d4:ea:92:a0:30:fc:a4: 24:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:91:35:0B:33:BE:19:AF:EA:7E:0F:65:3A:F7:5C:75:5F:E0:DF:57 X509v3 Authority Key Identifier: keyid:37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:e1:49:34:c0:e1:53:f2:e7:d2:55:e1:58:b6:35:30:84:42: 03:25:ba:86:d0:f8:a2:2a:36:6d:9e:b2:18:d9:9d:60:0d:09: 7a:3b:76:19:af:0d:d6:fb:4a:d7:bb:01:13:87:c4:a8:9d:a1: e2:74:a3:dd:84:be:55:f6:d0:bd:95:4b:4b:6f:31:73:34:b8: f9:8b:be:02:91:a4:0c:89:a1:31:0c:46:54:b2:83:07:fa:d5: 6a:03:d2:fb:25:17:d5:b8:1d:b7:02:ae:c8:fd:1b:1c:69:fd: 4a:90:b4:32:f1:4e:77:27:4a:fb:96:4c:3d:81:4a:f7:4a:7b: dc:d9:85:ee:1d:20:30:b8:5e:18:e6:04:82:5e:ac:de:b8:6e: df:d1:7b:dd:7e:07:7a:ac:74:00:85:9d:9c:1c:50:3d:10:86: 1b:1d:3a:bd:dc:90:47:b0:d7:ca:dd:56:c3:6f:ce:42:57:1c: 35:e0:6c:c0:8b:9a:4d:49:df:01:aa:dc:02:3a:77:4a:68:db: 67:18:52:01:c4:9b:0a:f2:90:07:d0:cb:92:59:e3:fc:a3:b3: 3e:7d:30:a0:be:26:1d:df:60:c6:76:a4:6e:f3:0b:7d:35:e6: a3:4d:e9:72:e5:06:07:ca:8e:c7:26:23:0d:5b:fa:c9:e5:7f: d7:54:8b:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMTkxMTAvBgNVBAUTKDM3MjA4MUY3REJFMkVGMTFBNDQxMUJENEU2QUY4NkYz MjY5OENBRkEwHhcNMjUwODIzMDUyNzE5WhcNMjUwODMwMDUyNzE5WjAYMRYwFAYD VQQDEw02OGE5NTEzNy1kYzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSpT4pTOV1UrgIOmNnm8MEqTyda7OFslp0MeV1+6rXHFXM34yb/nX0NkIgao JV4S7bYdj3/zjZbAOPTm4miDWMKh6Ctu+93uc+QkhqSc0PQW5qcPAiWp5HWd5uV0 aghG6FZgV1+o27clNvVC1K/Gb6TqLQsw65FyYNCRBTtZiNqqrbkgCJlbKKA61DCk 4ISXTtFnSb82w6e+28FWbBe93sJ69rU9Gam0D/14BgD5/9sGQEcPhV/oTJaMY7ZQ /RYqMML0jmeAhGOBE5YclXwEFMLV85gJgoTqKoUCxr/W2UcBVuzcmVd/C5NxIpWa 2WvGo3RwJtxykdTqkqAw/KQkTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOmRNQsz vhmv6n4PZTr3XHVf4N9XMB8GA1UdIwQYMBaAFDcggffb4u8RpEEb1OavhvMmmMr6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUxOS8xMEM3RjBBQTE0 MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4R2tRUnZVNXEtRzh5YVl5 dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055Q0I5OXZpN3hHa1FSdlU1cS1HOHlhWXl2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUUxOS8xMEM3RjBBQTE0MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4 R2tRUnZVNXEtRzh5YVl5dm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB74Uk0wOFT8ufSVeFYtjUwhEIDJbqG0PiiKjZtnrIY2Z1gDQl6O3YZ rw3W+0rXuwETh8SonaHidKPdhL5V9tC9lUtLbzFzNLj5i74CkaQMiaExDEZUsoMH +tVqA9L7JRfVuB23Aq7I/Rscaf1KkLQy8U53J0r7lkw9gUr3Snvc2YXuHSAwuF4Y 5gSCXqzeuG7f0Xvdfgd6rHQAhZ2cHFA9EIYbHTq93JBHsNfK3VbDb85CVxw14GzA i5pNSd8BqtwCOndKaNtnGFIBxJsK8pAH0MuSWeP8o7M+fTCgviYd32DGdqRu8wt9 NeajTely5QYHyo7HJiMNW/rJ5X/XVIvM -----END CERTIFICATE-----Generated at Sat Aug 23 19:09:05 2025 by rpki-client