$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft File: NyCB99vi7xGkQRvU5q-G8yaYyvo.mft (raw, json) Hash identifier: pL7Q70NlobrxQzYiimPdl5huA80gmnHcj7/4CszQBeM= Subject key identifier: 4A:5D:F9:83:10:D8:E4:A6:97:BF:C9:33:BE:C3:C7:2D:CA:6B:A6:A3 Authority key identifier: 37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA Certificate issuer: /CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft Manifest number: C3 Signing time: Sat 31 May 2025 05:24:28 +0000 Manifest this update: Sat 31 May 2025 05:24:27 +0000 Manifest next update: Sat 07 Jun 2025 05:24:27 +0000 Files and hashes: 1: NyCB99vi7xGkQRvU5q-G8yaYyvo.crl (hash: Xu2IpY6SZP6PQDHEjTLR/wGudWnJPMIALkCwqJ8YgxY=) 2: 680CA022140F11EF99D47F17C4F9AE02.roa (hash: 04UnpmnSMr4KxT7I14Z6Z4RlxSd1PflOoSJyZd1LDaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E19, serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Validity Not Before: May 31 05:24:27 2025 GMT Not After : Jun 7 05:24:27 2025 GMT Subject: CN=683a928c-10c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:10:a3:2a:7f:26:17:19:9e:2d:d2:31:8a:58: 2b:6e:c0:56:25:0b:66:c4:fd:5c:9b:09:e1:d4:c6: e3:a6:fe:fa:c6:ac:82:56:64:b9:01:e6:8f:b0:8e: 4a:d7:b6:91:7d:13:74:e4:3d:88:78:dc:54:f0:94: 33:4e:b1:94:1b:71:e1:c6:6e:a7:61:8f:89:19:d9: fd:76:14:54:cf:92:53:6d:5a:1c:7b:4a:16:d1:e7: 0c:7f:35:ef:fa:ca:ed:c6:b9:cc:15:88:47:d6:26: 16:76:34:5d:cd:0d:86:c7:22:28:b2:55:cf:18:09: 0e:f6:13:55:d7:43:d2:00:fd:a4:47:4f:d2:4e:24: 8e:48:49:fb:d0:fa:25:dc:80:3f:5e:9d:d4:13:ca: 73:76:71:8f:cc:69:aa:1c:e0:b2:bf:d1:5e:e2:93: 12:e6:d0:c4:1d:01:49:3f:d1:c1:b6:9b:7a:43:a4: 59:7f:fa:a1:34:a6:5d:b2:e1:50:71:f7:b8:a2:79: b1:b4:3f:f3:79:85:30:a2:02:22:34:b1:2c:e4:0b: 90:34:f3:bd:2f:6a:66:52:b4:2a:62:f2:95:82:98: c5:85:88:b7:ca:a6:b2:1c:ac:67:ad:16:07:cb:fc: 27:99:e1:2d:a1:7a:50:5e:06:8f:b0:86:2e:a4:77: a7:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:5D:F9:83:10:D8:E4:A6:97:BF:C9:33:BE:C3:C7:2D:CA:6B:A6:A3 X509v3 Authority Key Identifier: keyid:37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:c4:26:6b:e0:5e:65:38:d1:16:1d:22:c8:c1:e3:17:3c:0d: aa:6f:2f:b8:09:16:ad:f9:21:97:8e:73:62:9d:9f:44:a8:cb: b5:4a:5b:74:74:61:b7:f8:b9:d6:4f:fb:de:0e:1a:d8:fa:7f: 49:e1:59:93:af:34:33:f9:64:34:85:c0:5d:ed:6f:6b:6b:2d: 8b:ae:e9:b4:8e:df:c1:ba:d6:d9:6c:d9:71:8e:cb:89:96:56: bb:26:70:8c:bd:8c:54:dc:bd:3e:7f:09:38:54:3d:21:19:ad: fe:3b:b9:cb:bf:27:2b:40:a7:c1:f5:53:5d:69:f2:81:ea:d9: 7f:8e:b7:f3:b1:b4:4c:9a:e0:c7:8d:c8:c9:85:46:56:fd:da: 80:d7:b8:26:3f:7d:c1:70:ab:cb:18:31:12:bd:82:b0:52:8b: df:51:33:33:f7:ff:a0:21:0c:8d:4e:5a:e4:8f:14:04:17:cf: 62:bd:84:fd:a7:6c:2d:0a:fb:3f:a8:61:3c:75:4d:d6:1e:4e: 27:54:81:5d:96:4d:8a:ba:c6:56:58:8f:14:4e:e1:c4:f1:9d: 4e:12:bb:0e:2b:d4:d5:f6:78:e5:27:21:6d:95:e0:cc:2a:83: ae:94:4c:64:d3:77:e4:47:5c:13:a5:70:43:80:62:94:7c:b4: 65:53:96:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMTkxMTAvBgNVBAUTKDM3MjA4MUY3REJFMkVGMTFBNDQxMUJENEU2QUY4NkYz MjY5OENBRkEwHhcNMjUwNTMxMDUyNDI3WhcNMjUwNjA3MDUyNDI3WjAYMRYwFAYD VQQDEw02ODNhOTI4Yy0xMGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BCjKn8mFxmeLdIxilgrbsBWJQtmxP1cmwnh1Mbjpv76xqyCVmS5AeaPsI5K 17aRfRN05D2IeNxU8JQzTrGUG3Hhxm6nYY+JGdn9dhRUz5JTbVoce0oW0ecMfzXv +srtxrnMFYhH1iYWdjRdzQ2GxyIoslXPGAkO9hNV10PSAP2kR0/STiSOSEn70Pol 3IA/Xp3UE8pzdnGPzGmqHOCyv9Fe4pMS5tDEHQFJP9HBtpt6Q6RZf/qhNKZdsuFQ cfe4onmxtD/zeYUwogIiNLEs5AuQNPO9L2pmUrQqYvKVgpjFhYi3yqayHKxnrRYH y/wnmeEtoXpQXgaPsIYupHenPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEpd+YMQ 2OSml7/JM77Dxy3Ka6ajMB8GA1UdIwQYMBaAFDcggffb4u8RpEEb1OavhvMmmMr6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUxOS8xMEM3RjBBQTE0 MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4R2tRUnZVNXEtRzh5YVl5 dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055Q0I5OXZpN3hHa1FSdlU1cS1HOHlhWXl2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUUxOS8xMEM3RjBBQTE0MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4 R2tRUnZVNXEtRzh5YVl5dm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqxCZr4F5lONEWHSLIweMXPA2qby+4CRat+SGXjnNinZ9EqMu1Slt0 dGG3+LnWT/veDhrY+n9J4VmTrzQz+WQ0hcBd7W9ray2Lrum0jt/ButbZbNlxjsuJ lla7JnCMvYxU3L0+fwk4VD0hGa3+O7nLvycrQKfB9VNdafKB6tl/jrfzsbRMmuDH jcjJhUZW/dqA17gmP33BcKvLGDESvYKwUovfUTMz9/+gIQyNTlrkjxQEF89ivYT9 p2wtCvs/qGE8dU3WHk4nVIFdlk2KusZWWI8UTuHE8Z1OErsOK9TV9njlJyFtleDM KoOulExk03fkR1wTpXBDgGKUfLRlU5ZG -----END CERTIFICATE-----Generated at Sat May 31 17:11:24 2025 by rpki-client