$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft File: ny5XiO95WFurdhmHfTlierLl1Rk.mft (raw, json) Hash identifier: 1AeNS1K9+4KemO2XEnVg7zBdiSLEcpXrPFSZodOB+pA= Subject key identifier: 79:F0:E3:F2:54:2F:8A:C5:9C:6C:D5:8B:7D:4D:89:BC:F6:82:18:66 Authority key identifier: 9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 Certificate issuer: /CN=A913A7A6/serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Certificate serial: 0A47 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft Manifest number: 0A40 Signing time: Sat 06 Sep 2025 19:53:43 +0000 Manifest this update: Sat 06 Sep 2025 19:53:43 +0000 Manifest next update: Sat 13 Sep 2025 19:53:43 +0000 Files and hashes: 1: ny5XiO95WFurdhmHfTlierLl1Rk.crl (hash: 6Y4Zy5PcFEB8B+4VJmse1RegqhEdTtnaEJE4nn8RdTE=) 2: 4DAFC184ADC011ED897A4050C4F9AE02.roa (hash: /BGVJbRRDfivu1c+fyECLgKysqOT6aaM0UL54g9lwQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 18:15:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2631 (0xa47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Validity Not Before: Sep 6 19:53:43 2025 GMT Not After : Sep 13 19:53:43 2025 GMT Subject: CN=68bc9147-3ea3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:eb:2e:83:31:40:45:f3:ca:61:62:ce:33:26: bc:ef:e2:69:b0:46:74:ca:c6:8e:30:42:60:8f:6d: 4e:11:0e:dd:aa:bc:00:a8:c8:17:a5:90:e0:2d:ec: ac:0b:87:96:ff:27:5f:44:be:1f:f3:48:fb:51:75: 3c:13:a8:d2:e9:c8:a5:a0:1c:a6:4b:17:5b:b0:f6: 31:86:9a:a9:c1:71:78:98:f2:8f:a0:98:6b:f3:77: fe:22:ed:67:d4:98:2a:de:0d:21:5f:93:50:26:d5: 65:e8:1d:5f:09:14:db:08:56:72:15:15:e6:03:70: b1:80:d6:55:70:a3:3b:5f:c9:8a:07:2f:ef:e3:9d: 01:e7:98:e3:f5:66:0b:c3:47:22:0c:02:56:fb:57: e3:1d:5e:3d:5c:7c:71:a9:9d:8f:3f:2f:70:b5:16: ae:50:70:f3:86:d9:5c:41:2a:20:81:86:bd:1e:88: 10:17:24:06:2a:44:40:11:f6:2b:71:8e:2b:13:65: e2:14:bf:c7:62:1c:d8:fd:eb:de:92:56:ba:5e:6d: b0:bc:62:0a:e3:ba:dc:43:3f:55:91:6d:8a:6d:c9: 7c:5d:9f:6a:1f:9d:09:81:a3:2b:b8:26:a3:0f:c1: 17:e6:79:aa:17:14:ad:b6:e7:1c:00:6e:46:3d:b4: 1b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:F0:E3:F2:54:2F:8A:C5:9C:6C:D5:8B:7D:4D:89:BC:F6:82:18:66 X509v3 Authority Key Identifier: keyid:9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:52:05:35:34:f7:5b:6c:b0:66:3c:0a:c5:e8:2d:64:7c:81: 9b:cd:a7:4e:e2:fa:22:8a:f3:7e:59:c5:9d:3a:06:81:43:64: 87:f4:2f:5f:2c:1e:80:c6:d6:48:b6:87:48:9c:3a:42:01:56: 53:4e:76:6c:8b:29:3d:01:38:1b:e9:c2:aa:68:2f:13:5f:9b: 7c:20:f1:9e:5f:6e:f5:91:f7:38:30:c9:4c:cb:1a:9d:ba:01: f9:78:c2:cc:e2:08:44:52:b0:2f:93:08:d7:5a:89:f7:e3:64: 88:e2:66:d8:45:cd:70:ed:f2:e2:4b:54:5a:32:f4:e8:76:9e: ed:da:85:b4:b8:d9:f8:51:90:cb:c7:f7:13:fe:3d:82:80:d4: d1:3c:ae:8c:d6:8d:dd:ec:6d:f8:2b:c3:18:9c:ca:88:39:77: 39:4f:39:57:26:90:aa:7b:96:a4:cc:e9:f1:74:1e:0f:9b:23: 0d:3e:d7:5f:e1:31:ad:48:5c:33:3f:92:34:29:01:c9:a8:f6: c5:a1:d2:0f:13:b6:3e:cd:06:15:47:76:f4:67:9d:96:cb:ae: 02:a0:40:b8:21:f4:01:aa:3d:7b:91:c2:6d:90:10:a9:b1:ca: 44:39:3c:50:fd:cd:64:06:28:65:82:f2:61:23:7f:2b:76:25: f8:85:ef:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDlGMkU1Nzg4RUY3OTU4NUJBQjc2MTk4NzdEMzk2MjdB QjJFNUQ1MTkwHhcNMjUwOTA2MTk1MzQzWhcNMjUwOTEzMTk1MzQzWjAYMRYwFAYD VQQDEw02OGJjOTE0Ny0zZWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtOsugzFARfPKYWLOMya87+JpsEZ0ysaOMEJgj21OEQ7dqrwAqMgXpZDgLeys C4eW/ydfRL4f80j7UXU8E6jS6ciloBymSxdbsPYxhpqpwXF4mPKPoJhr83f+Iu1n 1Jgq3g0hX5NQJtVl6B1fCRTbCFZyFRXmA3CxgNZVcKM7X8mKBy/v450B55jj9WYL w0ciDAJW+1fjHV49XHxxqZ2PPy9wtRauUHDzhtlcQSoggYa9HogQFyQGKkRAEfYr cY4rE2XiFL/HYhzY/evekla6Xm2wvGIK47rcQz9VkW2Kbcl8XZ9qH50JgaMruCaj D8EX5nmqFxSttuccAG5GPbQbDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHnw4/JU L4rFnGzVi31Nibz2ghhmMB8GA1UdIwQYMBaAFJ8uV4jveVhbq3YZh305Ynqy5dUZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80NTdBOEU4Mjcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdGdXJkaG1IZlRsaWVyTGwx UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL255NVhpTzk1V0Z1cmRobUhmVGxpZXJMbDFSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80NTdBOEU4MjczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdG dXJkaG1IZlRsaWVyTGwxUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2UgU1NPdbbLBmPArF6C1kfIGbzadO4voiivN+WcWdOgaBQ2SH9C9f LB6AxtZItodInDpCAVZTTnZsiyk9ATgb6cKqaC8TX5t8IPGeX271kfc4MMlMyxqd ugH5eMLM4ghEUrAvkwjXWon342SI4mbYRc1w7fLiS1RaMvTodp7t2oW0uNn4UZDL x/cT/j2CgNTRPK6M1o3d7G34K8MYnMqIOXc5TzlXJpCqe5akzOnxdB4PmyMNPtdf 4TGtSFwzP5I0KQHJqPbFodIPE7Y+zQYVR3b0Z52Wy64CoEC4IfQBqj17kcJtkBCp scpEOTxQ/c1kBihlgvJhI38rdiX4he/e -----END CERTIFICATE-----Generated at Sat Sep 6 21:05:05 2025 by rpki-client