$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft File: NyCB99vi7xGkQRvU5q-G8yaYyvo.mft (raw, json) Hash identifier: NLOQqGGNGR/AVCob3xvjturVSsSta+C42wjAPGgK0ZA= Subject key identifier: 23:58:ED:27:63:81:0C:47:30:DA:D4:D3:44:0C:A0:BE:8E:2A:FE:43 Authority key identifier: 37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA Certificate issuer: /CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Certificate serial: 0121 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft Manifest number: 011A Signing time: Wed 05 Nov 2025 05:01:14 +0000 Manifest this update: Wed 05 Nov 2025 05:01:13 +0000 Manifest next update: Wed 12 Nov 2025 05:01:13 +0000 Files and hashes: 1: NyCB99vi7xGkQRvU5q-G8yaYyvo.crl (hash: Og4YQ+LPBRhi+2uiwLdibJO4tRCAf6fyPsFGqT12DTQ=) 2: 4ABCFD508D3A11F0B6F4F46FC4F9AE02.roa (hash: N5o2mOrAAIEN4JkFArU+q/6rZ4IO6YadfTVlKFOEiVE=) 3: 82748D8A8D3A11F0833AB01AC4F9AE02.roa (hash: cwplvW7swmzZa2jvSta00RWJdejX+4mcpTxfaDMp2xI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E19, serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Validity Not Before: Nov 5 05:01:13 2025 GMT Not After : Nov 12 05:01:13 2025 GMT Subject: CN=690ada19-56a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d0:e2:b5:9c:89:50:87:dc:8c:69:1c:0d:06: 89:97:b3:6a:64:f8:39:e5:1f:f5:07:dd:08:5a:f3: 5b:24:09:9f:86:aa:24:72:6c:c3:49:06:5a:ce:55: 6c:a8:80:50:de:a9:18:03:b8:d6:c2:70:b1:de:fe: 60:f4:9f:40:f7:3e:28:ac:1a:7f:e4:d3:0b:f5:bd: e6:9b:0a:88:8b:68:73:0b:39:bb:c2:c6:b8:2d:a4: cb:c2:f5:9a:ed:c9:a3:3b:07:dc:ab:aa:25:02:7b: db:a9:06:31:2a:b0:92:53:28:d0:cd:9a:20:ea:33: a6:8d:02:3a:d7:32:a6:e5:69:f7:2b:b9:59:3f:80: 25:37:64:76:34:bb:96:7e:6b:7d:9b:4a:da:15:5a: 87:2c:f6:40:ac:12:5d:1e:1e:0b:41:42:30:f6:c6: 59:eb:55:32:96:c4:65:7d:6e:63:ff:0b:af:a6:4a: 36:9d:7b:97:84:c2:9b:97:62:13:e5:80:cd:ba:de: 7e:4b:b7:79:b5:0d:87:68:c4:11:a6:44:bd:e5:a1: 75:84:64:f2:ab:ba:f5:21:b5:5b:9e:51:5f:08:99: c1:db:b6:5c:ca:6d:9f:21:42:cb:f1:b5:15:0c:80: c4:c5:45:8c:3a:18:4f:f7:31:d6:b8:37:2d:ee:dc: 73:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:58:ED:27:63:81:0C:47:30:DA:D4:D3:44:0C:A0:BE:8E:2A:FE:43 X509v3 Authority Key Identifier: keyid:37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:82:1f:c9:9f:7f:f5:2f:f9:25:28:0d:63:aa:8c:bd:e8:51: 0f:3b:11:85:53:1a:d4:0e:4e:dd:03:84:7e:84:62:44:db:26: a2:38:68:6e:45:64:86:e3:32:61:86:d8:d9:61:09:53:e1:5f: 7a:2f:24:55:d1:e3:33:f1:87:52:82:f6:9e:b9:58:0e:eb:df: fd:1c:bb:0d:9e:b9:c0:d2:ac:8a:ff:32:70:37:0d:88:f1:fe: 84:7d:3a:e7:10:07:10:dd:29:fb:3c:4e:e9:8e:69:f6:8d:08: 61:4f:c1:46:a5:25:23:67:e7:e1:ff:43:27:68:2a:e9:9b:28: 1e:c8:0b:44:76:af:07:5f:25:43:91:09:0d:0c:78:7e:ed:fd: 8f:91:ec:da:45:17:45:f9:cd:f2:b1:d6:a6:57:e0:bc:d1:61: 2b:2c:85:ed:f8:0b:1a:86:cd:7b:37:28:a0:a6:de:6c:36:1f: 09:a5:b5:c4:97:99:63:4d:8f:ae:26:d5:13:f1:67:9c:ca:c3: 8d:21:25:a0:ee:a2:ac:d7:01:4a:c1:3d:07:90:0a:3b:55:be: ba:aa:a6:40:3d:69:89:5c:58:32:38:8a:41:96:6b:98:85:e1: 1d:d1:c3:c5:7e:0f:8c:4c:51:7c:be:2b:b6:f3:3e:4c:51:c6: 30:30:bf:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMTkxMTAvBgNVBAUTKDM3MjA4MUY3REJFMkVGMTFBNDQxMUJENEU2QUY4NkYz MjY5OENBRkEwHhcNMjUxMTA1MDUwMTEzWhcNMjUxMTEyMDUwMTEzWjAYMRYwFAYD VQQDEw02OTBhZGExOS01NmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNDitZyJUIfcjGkcDQaJl7NqZPg55R/1B90IWvNbJAmfhqokcmzDSQZazlVs qIBQ3qkYA7jWwnCx3v5g9J9A9z4orBp/5NML9b3mmwqIi2hzCzm7wsa4LaTLwvWa 7cmjOwfcq6olAnvbqQYxKrCSUyjQzZog6jOmjQI61zKm5Wn3K7lZP4AlN2R2NLuW fmt9m0raFVqHLPZArBJdHh4LQUIw9sZZ61UylsRlfW5j/wuvpko2nXuXhMKbl2IT 5YDNut5+S7d5tQ2HaMQRpkS95aF1hGTyq7r1IbVbnlFfCJnB27Zcym2fIULL8bUV DIDExUWMOhhP9zHWuDct7txzzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNY7Sdj gQxHMNrU00QMoL6OKv5DMB8GA1UdIwQYMBaAFDcggffb4u8RpEEb1OavhvMmmMr6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUxOS8xMEM3RjBBQTE0 MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4R2tRUnZVNXEtRzh5YVl5 dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055Q0I5OXZpN3hHa1FSdlU1cS1HOHlhWXl2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUUxOS8xMEM3RjBBQTE0MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4 R2tRUnZVNXEtRzh5YVl5dm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWgh/Jn3/1L/klKA1jqoy96FEPOxGFUxrUDk7dA4R+hGJE2yaiOGhu RWSG4zJhhtjZYQlT4V96LyRV0eMz8YdSgvaeuVgO69/9HLsNnrnA0qyK/zJwNw2I 8f6EfTrnEAcQ3Sn7PE7pjmn2jQhhT8FGpSUjZ+fh/0MnaCrpmygeyAtEdq8HXyVD kQkNDHh+7f2PkezaRRdF+c3ysdamV+C80WErLIXt+Asahs17Nyigpt5sNh8JpbXE l5ljTY+uJtUT8WecysONISWg7qKs1wFKwT0HkAo7Vb66qqZAPWmJXFgyOIpBlmuY heEd0cPFfg+MTFF8viu28z5MUcYwML82 -----END CERTIFICATE-----Generated at Wed Nov 5 13:05:48 2025 by rpki-client