$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft File: NyCB99vi7xGkQRvU5q-G8yaYyvo.mft (raw, json) Hash identifier: e9/IYuUaQxDsOqskL+kwxFT0OKnP3PM2tvrPOzVEIxc= Subject key identifier: 9F:17:D8:1E:DC:06:E7:21:F3:7E:8F:C5:6E:3A:82:78:46:E5:6A:5F Authority key identifier: 37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA Certificate issuer: /CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Certificate serial: 0109 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft Manifest number: 0102 Signing time: Wed 17 Sep 2025 05:45:53 +0000 Manifest this update: Wed 17 Sep 2025 05:45:53 +0000 Manifest next update: Wed 24 Sep 2025 05:45:53 +0000 Files and hashes: 1: NyCB99vi7xGkQRvU5q-G8yaYyvo.crl (hash: MxDLWgIz0pJ4PoDuj8yjExlQQOWzgPIKu0lcDmw8z5w=) 2: 4ABCFD508D3A11F0B6F4F46FC4F9AE02.roa (hash: N5o2mOrAAIEN4JkFArU+q/6rZ4IO6YadfTVlKFOEiVE=) 3: 82748D8A8D3A11F0833AB01AC4F9AE02.roa (hash: cwplvW7swmzZa2jvSta00RWJdejX+4mcpTxfaDMp2xI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 05:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E19, serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Validity Not Before: Sep 17 05:45:53 2025 GMT Not After : Sep 24 05:45:53 2025 GMT Subject: CN=68ca4b11-b8e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:16:85:a5:4c:fd:b2:07:b4:ef:45:59:97:f1: c4:91:91:4d:db:a1:9e:6b:df:39:83:0b:73:42:a2: d4:71:29:20:5b:28:45:58:eb:ae:a0:c5:e9:ae:8e: 1b:20:69:97:21:e6:84:07:2d:f2:82:ee:c6:3d:b2: ef:57:8d:7c:13:c5:1e:c9:dd:89:7c:7e:d9:e8:f1: 5d:14:d2:bb:64:93:c7:e4:38:ff:98:03:14:a2:16: ee:11:cf:4f:da:87:0f:f6:80:dc:d5:e6:34:6b:a7: 93:c9:42:47:de:cf:2d:ab:ff:0c:bc:99:f6:fc:fe: 60:38:01:16:77:d3:9a:99:86:d1:ec:a5:aa:eb:52: b3:ab:bd:4c:5b:8f:3a:6f:91:82:c8:e6:6c:84:17: 13:5e:f8:e1:8f:d9:92:92:bc:cb:8e:2d:02:f1:cc: 63:37:27:60:df:01:a3:13:af:0d:76:56:3b:b6:4a: a1:e6:28:81:af:c9:5b:43:26:1d:73:af:81:c7:5c: c7:1d:3e:24:c2:3c:a7:9e:52:8f:a4:43:c4:67:27: 8a:f7:cc:b1:15:ca:59:ed:9d:f4:65:4a:f8:c7:41: 99:d5:30:47:7c:f4:8c:86:ff:58:a4:a9:e6:45:95: fa:8c:9e:0f:96:09:39:a2:a7:09:cd:ea:86:52:c2: 07:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:17:D8:1E:DC:06:E7:21:F3:7E:8F:C5:6E:3A:82:78:46:E5:6A:5F X509v3 Authority Key Identifier: keyid:37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:9b:4b:4c:7c:52:73:df:1d:c7:2f:fc:9b:06:d5:bd:c7:eb: 89:79:ab:61:4a:e7:cd:6b:ea:a8:6e:66:a5:95:a8:4b:9d:56: 01:28:78:05:0e:f2:62:84:73:d8:04:4c:59:72:5b:e6:60:97: f4:d5:72:e7:1c:a3:2d:0e:64:7d:89:02:84:d1:a7:bf:e3:69: a8:2d:78:2a:ca:db:11:92:0d:56:2e:ab:c9:8c:4c:3f:20:4c: d4:e4:08:71:a7:ee:ae:6a:74:5a:7b:9b:dd:59:63:b3:51:ed: 42:6d:61:c0:84:a6:4d:58:51:35:20:9a:b4:ef:b4:8d:85:13: 7b:d4:ec:d1:f4:95:3b:ed:d0:0d:2d:3e:b3:35:bf:45:75:02: 2b:e7:9e:58:c1:f7:60:19:e3:2f:33:9f:c1:75:e8:06:a4:95: 34:70:ed:88:7c:90:ff:13:09:9f:1f:cb:05:e0:a1:b3:ed:f8: f8:b0:e8:75:60:42:cf:81:a2:e2:4d:ad:f9:86:7f:97:43:2a: 5e:3b:c3:ba:bc:1e:61:55:9c:dc:49:1a:d3:d1:ec:ca:d4:3d: 49:5c:43:a1:4a:52:ef:75:10:84:4e:78:b7:f8:37:7e:9e:7d: d0:c5:75:44:2b:a6:5b:e5:38:77:d4:fd:51:26:1f:f7:e0:21: a3:97:f3:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMTkxMTAvBgNVBAUTKDM3MjA4MUY3REJFMkVGMTFBNDQxMUJENEU2QUY4NkYz MjY5OENBRkEwHhcNMjUwOTE3MDU0NTUzWhcNMjUwOTI0MDU0NTUzWjAYMRYwFAYD VQQDEw02OGNhNGIxMS1iOGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1xaFpUz9sge070VZl/HEkZFN26Gea985gwtzQqLUcSkgWyhFWOuuoMXpro4b IGmXIeaEBy3ygu7GPbLvV418E8Ueyd2JfH7Z6PFdFNK7ZJPH5Dj/mAMUohbuEc9P 2ocP9oDc1eY0a6eTyUJH3s8tq/8MvJn2/P5gOAEWd9OamYbR7KWq61Kzq71MW486 b5GCyOZshBcTXvjhj9mSkrzLji0C8cxjNydg3wGjE68NdlY7tkqh5iiBr8lbQyYd c6+Bx1zHHT4kwjynnlKPpEPEZyeK98yxFcpZ7Z30ZUr4x0GZ1TBHfPSMhv9YpKnm RZX6jJ4Plgk5oqcJzeqGUsIHhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ8X2B7c Buch836PxW46gnhG5WpfMB8GA1UdIwQYMBaAFDcggffb4u8RpEEb1OavhvMmmMr6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUxOS8xMEM3RjBBQTE0 MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4R2tRUnZVNXEtRzh5YVl5 dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055Q0I5OXZpN3hHa1FSdlU1cS1HOHlhWXl2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUUxOS8xMEM3RjBBQTE0MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4 R2tRUnZVNXEtRzh5YVl5dm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8m0tMfFJz3x3HL/ybBtW9x+uJeathSufNa+qobmallahLnVYBKHgF DvJihHPYBExZclvmYJf01XLnHKMtDmR9iQKE0ae/42moLXgqytsRkg1WLqvJjEw/ IEzU5Ahxp+6uanRae5vdWWOzUe1CbWHAhKZNWFE1IJq077SNhRN71OzR9JU77dAN LT6zNb9FdQIr555YwfdgGeMvM5/BdegGpJU0cO2IfJD/EwmfH8sF4KGz7fj4sOh1 YELPgaLiTa35hn+XQypeO8O6vB5hVZzcSRrT0ezK1D1JXEOhSlLvdRCETni3+Dd+ nn3QxXVEK6Zb5Th31P1RJh/34CGjl/Pa -----END CERTIFICATE-----Generated at Fri Sep 19 05:50:19 2025 by rpki-client