$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft File: NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft (raw, json) Hash identifier: OjL51DcWl7yCzFkSjNHU/LfEpweUpfgJrT3BzR4JJQo= Subject key identifier: AD:B5:EA:E4:35:E6:9C:F5:B1:D1:13:3D:EF:A8:EB:1A:41:5D:56:23 Authority key identifier: 35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 Certificate issuer: /CN=A917FACB/serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft Manifest number: 75 Signing time: Sat 19 Jul 2025 07:05:35 +0000 Manifest this update: Sat 19 Jul 2025 07:05:35 +0000 Manifest next update: Sat 26 Jul 2025 07:05:35 +0000 Files and hashes: 1: NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl (hash: bKYFIqhug1ry6zJJMqY+oWQnv/PbEshShZ35SgRqNy8=) 2: 81FC16A6B46511EF86BEAC6BC4F9AE02.roa (hash: 3WNjmfHJVoQBd0rENGvmjv5pVSXIpaYmoJ+4Year8YI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:05:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Validity Not Before: Jul 19 07:05:35 2025 GMT Not After : Jul 26 07:05:35 2025 GMT Subject: CN=687b43bf-49e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4f:d1:54:93:b2:41:8e:c4:7d:61:fb:01:5f: 37:fd:5e:1e:de:35:a0:94:31:06:a6:59:fb:65:d8: 4d:f3:34:8e:1e:ab:63:1c:ae:b2:9c:ed:70:19:39: 79:b5:87:00:4c:e2:65:72:43:6e:b9:87:f6:83:a1: dc:1c:19:e9:46:cb:55:02:13:77:84:6f:7e:68:9f: 58:cb:ae:f1:85:70:ac:ae:8d:31:3b:85:10:cb:19: b2:a7:0b:66:1f:4c:f7:d2:aa:63:2a:e5:88:fc:49: 39:00:34:aa:c3:51:4a:a0:80:a5:e1:16:ed:a0:bf: 7e:eb:01:ba:a5:fe:f9:b3:08:61:d9:be:9c:e9:56: a2:60:21:75:52:28:dd:84:58:33:0f:47:31:44:c0: 67:c4:c2:d5:af:69:53:ef:1f:da:9d:9d:79:36:cb: af:17:c7:a1:bd:57:13:df:a8:52:7a:28:a7:60:f6: 5e:50:b6:d6:37:87:9f:26:17:29:92:75:52:3e:42: 54:83:cc:f3:64:e8:1d:6e:00:bf:77:19:9c:3d:74: 8b:84:84:ce:0a:e1:5e:87:0e:92:2a:46:40:4b:3d: ba:52:25:e9:25:72:04:c6:b6:af:3c:ba:b3:4f:e9: a6:55:b9:97:ee:39:8f:95:11:df:87:2a:03:36:90: c7:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:B5:EA:E4:35:E6:9C:F5:B1:D1:13:3D:EF:A8:EB:1A:41:5D:56:23 X509v3 Authority Key Identifier: keyid:35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:f1:a3:99:f5:bd:75:5a:8e:ad:92:c2:7e:ae:de:8f:76:43: fe:95:25:c9:93:f4:df:1f:59:0f:00:b9:d5:c7:21:7a:cd:30: 81:17:dd:09:ef:ff:73:2d:41:ea:62:c3:bf:db:f8:3d:77:98: 14:21:8d:b0:a1:1d:81:27:e6:ca:b2:b4:b0:5d:e5:d7:22:a0: 16:83:5d:8b:43:6b:41:c4:bd:fe:97:fe:0b:c3:35:4e:23:95: b3:f7:1b:d4:ea:63:a1:1c:aa:eb:58:bc:1e:65:36:61:f9:d2: c6:aa:b6:1b:81:19:89:12:cd:a9:4d:28:34:92:5a:58:79:00: 1a:26:a2:dc:a3:cc:5f:87:d6:2e:d3:d5:25:9c:97:1a:58:4b: dd:7d:a5:aa:96:ea:b5:99:16:04:bb:fc:e1:b6:5a:dd:da:df: 70:f2:cb:bb:3f:da:a4:a6:e6:de:4b:bb:24:74:11:3c:d4:9e: 4a:2d:cd:fd:e4:e4:e8:29:42:0b:d5:06:9b:0d:75:89:50:37: 3a:33:74:09:55:00:ca:a2:5b:ef:06:ef:55:f7:c4:e4:1e:85: 04:57:02:9e:9a:6e:57:f4:05:d0:71:e2:83:fe:76:5d:cd:82: 4a:10:9d:7a:48:be:6c:1b:78:76:1c:b6:78:d8:8b:89:36:23: be:4e:fc:4a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RkFDQjExMC8GA1UEBRMoMzU4MTRCMTVGQjgzNDkzOUVFQTg1Q0M0QTY3QzRFMUE2 QTg1QTRGNTAeFw0yNTA3MTkwNzA1MzVaFw0yNTA3MjYwNzA1MzVaMBgxFjAUBgNV BAMTDTY4N2I0M2JmLTQ5ZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3T9FUk7JBjsR9YfsBXzf9Xh7eNaCUMQamWftl2E3zNI4eq2McrrKc7XAZOXm1 hwBM4mVyQ265h/aDodwcGelGy1UCE3eEb35on1jLrvGFcKyujTE7hRDLGbKnC2Yf TPfSqmMq5Yj8STkANKrDUUqggKXhFu2gv37rAbql/vmzCGHZvpzpVqJgIXVSKN2E WDMPRzFEwGfEwtWvaVPvH9qdnXk2y68Xx6G9VxPfqFJ6KKdg9l5QttY3h58mFymS dVI+QlSDzPNk6B1uAL93GZw9dIuEhM4K4V6HDpIqRkBLPbpSJeklcgTGtq88urNP 6aZVuZfuOY+VEd+HKgM2kMc9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrbXq5DXm nPWx0RM976jrGkFdViMwHwYDVR0jBBgwFoAUNYFLFfuDSTnuqFzEpnxOGmqFpPUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGQUNCLzI1RDExODg2QjQ2 NTExRUY5QkZCQUE2N0M0RjlBRTAyL05ZRkxGZnVEU1RudXFGekVwbnhPR21xRnBQ VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTllGTEZmdURTVG51cUZ6RXBueE9HbXFGcFBVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdG QUNCLzI1RDExODg2QjQ2NTExRUY5QkZCQUE2N0M0RjlBRTAyL05ZRkxGZnVEU1Ru dXFGekVwbnhPR21xRnBQVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAvxo5n1vXVajq2Swn6u3o92Q/6VJcmT9N8fWQ8AudXHIXrNMIEX3Qnv /3MtQepiw7/b+D13mBQhjbChHYEn5sqytLBd5dcioBaDXYtDa0HEvf6X/gvDNU4j lbP3G9TqY6EcqutYvB5lNmH50saqthuBGYkSzalNKDSSWlh5ABomotyjzF+H1i7T 1SWclxpYS919paqW6rWZFgS7/OG2Wt3a33Dyy7s/2qSm5t5LuyR0ETzUnkotzf3k 5OgpQgvVBpsNdYlQNzozdAlVAMqiW+8G71X3xOQehQRXAp6ablf0BdBx4oP+dl3N gkoQnXpIvmwbeHYctnjYi4k2I75O/Eo= -----END CERTIFICATE-----Generated at Sun Jul 20 16:32:37 2025 by rpki-client