$ rpki-client -vvf rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft File: NkbrHzcLfmPR823rNsJHbJbmuug.mft (raw, json) Hash identifier: wgbZY9y7gJHte23x3///5SuJUh52h9GH8JR+T/hKdQA= Subject key identifier: 75:84:38:09:24:E3:06:E2:8F:B8:93:49:0A:BD:3A:E0:3B:0B:0A:14 Authority key identifier: 36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 Certificate issuer: /CN=A9113BE5/serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Certificate serial: 0389 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft Manifest number: 0379 Signing time: Mon 11 May 2026 00:54:56 +0000 Manifest this update: Mon 11 May 2026 00:54:56 +0000 Manifest next update: Mon 18 May 2026 00:54:56 +0000 Files and hashes: 1: NkbrHzcLfmPR823rNsJHbJbmuug.crl (hash: auoJAQZXDD8fG+bSWf+JQm5gzYBtTf8t8CCaJx5m+wQ=) 2: 627A6758DF2A11EEBC440C5EC4F9AE02.roa (hash: xCxlkxmn+IYoOztMvnfz1vMt3zyfROldaTyC72io/60=) 3: F3B00CD2666C11EEB1B4711CC4F9AE02.roa (hash: a5mqDS8csnFhirJVB+mELKo1bbKHlBbrnlgJKARZXz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 00:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 905 (0x389) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113BE5, serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Validity Not Before: May 11 00:54:56 2026 GMT Not After : May 18 00:54:56 2026 GMT Subject: CN=6a0128e0-9f0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:28:49:10:0e:ea:41:90:c9:9e:88:ce:bc:10: eb:4e:31:ef:f0:a3:ac:e3:5b:86:df:5d:e6:b8:1c: 7d:b3:1c:a5:ce:86:69:65:e6:14:c9:a5:51:96:88: 7a:dd:32:d4:1d:d9:01:2f:1e:58:55:46:ee:b9:e7: 73:59:85:b2:97:d8:f7:e2:42:45:c0:f0:0d:e9:13: 35:f7:6c:03:51:9e:82:05:c8:6d:83:13:e1:cc:4c: eb:97:f7:c8:d2:fa:9c:2b:60:8b:d2:07:b9:98:a7: 5d:a6:d2:cd:d5:c9:13:58:db:67:80:c7:f1:0a:f9: bf:b9:04:75:7a:7b:74:fd:9e:93:de:20:a6:70:50: 0d:3f:4b:9f:10:9a:db:ad:46:ee:e0:de:c8:a5:c9: 90:03:83:56:36:de:ea:d7:f0:b5:d4:a5:0e:f9:a6: 71:2e:41:ae:40:76:42:80:d0:33:91:d6:df:68:d6: 65:57:1f:b3:60:14:35:d9:c4:79:cb:e8:dd:15:f2: 44:ee:43:f5:d3:46:ce:d8:42:5b:72:31:4f:d7:fd: 8a:2a:b3:5e:7a:c2:25:a9:4f:4e:06:54:a1:3d:a3: 82:e3:64:7d:0d:f8:59:19:3a:85:06:67:6b:fe:64: d4:bf:d3:84:1f:b8:40:11:a1:8b:ed:ae:f9:3a:c1: 4c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:84:38:09:24:E3:06:E2:8F:B8:93:49:0A:BD:3A:E0:3B:0B:0A:14 X509v3 Authority Key Identifier: keyid:36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:ea:3c:b9:12:d1:2b:7d:7b:ce:ea:77:0f:3d:d3:e5:6c:43: bd:00:4c:fe:91:28:80:2a:44:71:1e:63:ec:49:41:12:02:14: 3e:fb:50:05:21:5d:81:d8:27:f8:ac:1f:f7:77:77:7c:e8:7f: b6:b8:99:c3:be:23:d4:90:09:7a:7d:7a:c9:45:fc:da:9b:a0: 45:d4:e6:49:d7:bc:cb:66:2f:a0:f5:60:88:3f:78:36:0f:c8: cd:f9:a0:3a:65:a8:26:39:bd:62:a1:a6:9e:fd:5e:4c:46:03: 92:9f:50:61:8c:e4:3d:52:3d:00:5b:be:fb:de:1e:58:e4:73: aa:f5:0e:e4:47:49:82:8a:66:d8:8b:1f:70:09:66:11:81:03: 0d:22:9c:22:3c:45:0e:61:d8:94:e1:33:8a:91:20:3c:ed:4f: d4:4b:47:59:32:28:24:ba:a9:b3:a4:20:e0:55:36:32:d9:9b: 43:5d:c9:ae:73:fd:59:b3:27:1d:4d:e7:78:60:ae:46:84:a1: d2:22:21:f4:55:45:a2:00:64:4a:10:21:39:70:04:cc:77:ae: 15:e0:03:c5:dd:0d:9a:3d:67:52:dd:b8:ee:75:79:c6:0a:59: 37:5b:1f:58:e0:68:79:fc:e2:aa:f7:3f:68:8a:df:c0:b9:e1: ca:1d:b4:fa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTNCRTUxMTAvBgNVBAUTKDM2NDZFQjFGMzcwQjdFNjNEMUYzNkRFQjM2QzI0NzZD OTZFNkJBRTgwHhcNMjYwNTExMDA1NDU2WhcNMjYwNTE4MDA1NDU2WjAYMRYwFAYD VQQDEw02YTAxMjhlMC05ZjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjihJEA7qQZDJnojOvBDrTjHv8KOs41uG313muBx9sxylzoZpZeYUyaVRloh6 3TLUHdkBLx5YVUbuuedzWYWyl9j34kJFwPAN6RM192wDUZ6CBchtgxPhzEzrl/fI 0vqcK2CL0ge5mKddptLN1ckTWNtngMfxCvm/uQR1ent0/Z6T3iCmcFANP0ufEJrb rUbu4N7IpcmQA4NWNt7q1/C11KUO+aZxLkGuQHZCgNAzkdbfaNZlVx+zYBQ12cR5 y+jdFfJE7kP100bO2EJbcjFP1/2KKrNeesIlqU9OBlShPaOC42R9DfhZGTqFBmdr /mTUv9OEH7hAEaGL7a75OsFM9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHWEOAkk 4wbij7iTSQq9OuA7CwoUMB8GA1UdIwQYMBaAFDZG6x83C35j0fNt6zbCR2yW5rro MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExM0JFNS82MTFDNTEyQ0Yw RjMxMUVDODRCMjlDODBDNEY5QUUwMi9Oa2JySHpjTGZtUFI4MjNyTnNKSGJKYm11 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05rYnJIemNMZm1QUjgyM3JOc0pIYkpibXV1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx M0JFNS82MTFDNTEyQ0YwRjMxMUVDODRCMjlDODBDNEY5QUUwMi9Oa2JySHpjTGZt UFI4MjNyTnNKSGJKYm11dWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABOo8uRLRK317zup3Dz3T5WxDvQBM/pEogCpEcR5j7ElBEgIUPvtQBSFdgdgn +Kwf93d3fOh/triZw74j1JAJen16yUX82pugRdTmSde8y2YvoPVgiD94Ng/Izfmg OmWoJjm9YqGmnv1eTEYDkp9QYYzkPVI9AFu++94eWORzqvUO5EdJgopm2IsfcAlm EYEDDSKcIjxFDmHYlOEzipEgPO1P1EtHWTIoJLqps6Qg4FU2MtmbQ13JrnP9WbMn HU3neGCuRoSh0iIh9FVFogBkShAhOXAEzHeuFeADxd0Nmj1nUt247nV5xgpZN1sf WOBoefziqvc/aIrfwLnhyh20+g== -----END CERTIFICATE-----Generated at Wed May 13 01:22:54 2026 by rpki-client