$ rpki-client -vvf rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft File: NkbrHzcLfmPR823rNsJHbJbmuug.mft (raw, json) Hash identifier: HwK7+ZOJGM0G/IqtWaFWdDsLTagPQZCe6PgdhBUUak8= Subject key identifier: 38:20:87:E2:A3:2C:4B:91:10:68:A0:0A:11:2E:15:99:C7:BC:E8:4D Authority key identifier: 36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 Certificate issuer: /CN=A9113BE5/serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Certificate serial: 0371 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft Manifest number: 0361 Signing time: Wed 25 Mar 2026 00:33:57 +0000 Manifest this update: Wed 25 Mar 2026 00:33:57 +0000 Manifest next update: Wed 01 Apr 2026 00:33:57 +0000 Files and hashes: 1: NkbrHzcLfmPR823rNsJHbJbmuug.crl (hash: avWxkBePe0QLODPW/K+XZ/OQaX2EOGABebyQAfcRoDY=) 2: 627A6758DF2A11EEBC440C5EC4F9AE02.roa (hash: xCxlkxmn+IYoOztMvnfz1vMt3zyfROldaTyC72io/60=) 3: F3B00CD2666C11EEB1B4711CC4F9AE02.roa (hash: a5mqDS8csnFhirJVB+mELKo1bbKHlBbrnlgJKARZXz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 881 (0x371) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113BE5, serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Validity Not Before: Mar 25 00:33:57 2026 GMT Not After : Apr 1 00:33:57 2026 GMT Subject: CN=69c32d75-37a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:82:dc:75:71:c8:86:b1:ce:b5:83:6f:74:39: 9b:3b:7f:c9:36:0e:b2:57:73:80:dc:8e:ae:8f:77: d4:d1:3c:37:2a:4f:5e:28:a1:9f:90:76:47:9d:80: a3:0d:32:34:0a:c1:1e:d8:f4:97:93:03:fc:a0:78: 14:a1:7f:a3:4d:9d:93:f6:5d:cc:69:b8:50:09:40: 5c:9e:87:97:d0:22:42:74:ae:77:c2:5d:fc:f8:d5: 29:02:b0:a1:f4:bf:1a:4c:0e:55:aa:76:5d:8f:13: 42:34:98:6b:05:fb:4e:76:24:76:c6:63:fc:94:23: 88:6f:25:e0:ed:e6:8d:01:51:5e:bd:cd:a0:49:3f: a9:c1:c5:71:d9:bb:61:13:4f:06:ce:93:82:9f:05: 5d:14:79:a9:33:08:ba:69:ce:1e:a7:91:28:71:dd: d2:d9:b5:73:3e:28:b5:af:04:32:04:40:c9:aa:32: 0c:bb:8e:ca:46:70:bc:e4:88:56:90:27:56:e4:09: 0e:2b:b6:33:30:01:8f:07:7d:0e:0d:60:b0:62:68: dd:2b:00:d4:4c:7d:48:5a:00:e8:49:bb:a9:0a:c7: 14:a6:37:0d:2d:3a:41:7c:e1:16:28:03:0d:48:d7: 0f:3c:9b:97:b5:e9:9c:ee:d0:83:38:23:ba:d3:56: 4f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:20:87:E2:A3:2C:4B:91:10:68:A0:0A:11:2E:15:99:C7:BC:E8:4D X509v3 Authority Key Identifier: keyid:36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:57:3d:a4:bf:0a:8c:12:fd:0d:df:c6:fd:e9:75:76:a5:13: 5c:44:06:f5:5b:fd:12:40:ae:c2:51:00:dd:1c:2d:51:1e:02: c3:bb:fd:e4:05:bb:05:a3:38:f1:e7:a1:0c:36:e2:c2:ac:19: b2:e1:92:ad:94:f0:0c:4d:74:af:b8:75:0c:39:f2:dd:28:ab: 45:3a:95:75:f8:0f:57:6a:eb:7d:74:97:8d:26:25:e0:c5:20: 20:87:d4:3a:ae:f4:e9:d1:44:2a:81:fc:bc:bd:19:ab:7e:a6: 4b:bb:03:1a:81:12:b5:05:dc:57:8b:4a:b6:2e:45:4d:c7:74: 90:f4:88:c4:09:f7:8e:73:c7:af:1c:70:1b:82:a6:39:a6:a6: 99:14:4a:08:53:4b:40:37:d2:35:7e:22:95:b8:83:29:f7:bf: ba:84:fe:50:6d:36:72:53:50:cd:21:fd:95:7e:8a:35:f3:82: 10:95:c8:0c:87:12:2c:c3:7c:3e:df:ab:23:de:ce:44:c6:d7: c6:7d:6c:a4:ec:c9:9a:db:39:03:de:c8:d1:a2:ff:d7:a9:65: e3:90:ed:9c:e9:30:f3:1b:40:9b:4a:f0:1c:d8:62:2a:7c:67: f4:4f:19:9d:f6:35:b0:98:0e:43:ab:47:1b:42:4f:be:25:30: 99:af:a5:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTNCRTUxMTAvBgNVBAUTKDM2NDZFQjFGMzcwQjdFNjNEMUYzNkRFQjM2QzI0NzZD OTZFNkJBRTgwHhcNMjYwMzI1MDAzMzU3WhcNMjYwNDAxMDAzMzU3WjAYMRYwFAYD VQQDEw02OWMzMmQ3NS0zN2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwILcdXHIhrHOtYNvdDmbO3/JNg6yV3OA3I6uj3fU0Tw3Kk9eKKGfkHZHnYCj DTI0CsEe2PSXkwP8oHgUoX+jTZ2T9l3MabhQCUBcnoeX0CJCdK53wl38+NUpArCh 9L8aTA5VqnZdjxNCNJhrBftOdiR2xmP8lCOIbyXg7eaNAVFevc2gST+pwcVx2bth E08GzpOCnwVdFHmpMwi6ac4ep5Eocd3S2bVzPii1rwQyBEDJqjIMu47KRnC85IhW kCdW5AkOK7YzMAGPB30ODWCwYmjdKwDUTH1IWgDoSbupCscUpjcNLTpBfOEWKAMN SNcPPJuXtemc7tCDOCO601ZPKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDggh+Kj LEuREGigChEuFZnHvOhNMB8GA1UdIwQYMBaAFDZG6x83C35j0fNt6zbCR2yW5rro MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExM0JFNS82MTFDNTEyQ0Yw RjMxMUVDODRCMjlDODBDNEY5QUUwMi9Oa2JySHpjTGZtUFI4MjNyTnNKSGJKYm11 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05rYnJIemNMZm1QUjgyM3JOc0pIYkpibXV1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx M0JFNS82MTFDNTEyQ0YwRjMxMUVDODRCMjlDODBDNEY5QUUwMi9Oa2JySHpjTGZt UFI4MjNyTnNKSGJKYm11dWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZFc9pL8KjBL9Dd/G/el1dqUTXEQG9Vv9EkCuwlEA3RwtUR4Cw7v95AW7BaM4 8eehDDbiwqwZsuGSrZTwDE10r7h1DDny3SirRTqVdfgPV2rrfXSXjSYl4MUgIIfU Oq706dFEKoH8vL0Zq36mS7sDGoEStQXcV4tKti5FTcd0kPSIxAn3jnPHrxxwG4Km OaammRRKCFNLQDfSNX4ilbiDKfe/uoT+UG02clNQzSH9lX6KNfOCEJXIDIcSLMN8 Pt+rI97ORMbXxn1spOzJmts5A97I0aL/16ll45DtnOkw8xtAm0rwHNhiKnxn9E8Z nfY1sJgOQ6tHG0JPviUwma+leQ== -----END CERTIFICATE-----Generated at Thu Mar 26 18:54:01 2026 by rpki-client