$ rpki-client -vvf rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft File: Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft (raw, json) Hash identifier: zf6ERAnY+zVjt1mZys5zQswWDLX2UwMdaUeAu+hDDU8= Subject key identifier: 33:C6:74:9B:81:48:14:00:0C:5E:58:EB:9C:DE:FB:5F:CA:75:42:B8 Authority key identifier: 37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 Certificate issuer: /CN=A91142EA/serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Certificate serial: 0232 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft Manifest number: 2081 Signing time: Thu 26 Mar 2026 16:01:57 +0000 Manifest this update: Thu 26 Mar 2026 16:01:57 +0000 Manifest next update: Thu 02 Apr 2026 16:01:57 +0000 Files and hashes: 1: Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl (hash: 0WUYGp4OL/LEClqbuLNYFG9oS3xag0vKgkb9CyZDEVA=) 2: 9FD12146ED7211ED8A92041CC4F9AE02.roa (hash: twO+avT1bwdOGN+sO1DTxPWxAD5/Gbl/GY9g75HuCDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 16:01:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 562 (0x232) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91142EA, serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Validity Not Before: Mar 26 16:01:57 2026 GMT Not After : Apr 2 16:01:57 2026 GMT Subject: CN=69c55875-808b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ec:b6:3b:66:99:34:9f:5a:bd:7b:dc:86:4e: 87:71:a2:6c:7c:ef:04:a2:a2:c5:9e:7a:4c:ef:d5: b8:bc:56:c6:54:85:de:e2:ee:15:18:a5:48:11:af: 54:3e:62:6e:6c:4b:07:e3:84:67:7f:c7:33:c4:e3: c4:b9:cc:95:ee:47:d0:f1:f4:bd:5d:56:5c:58:e4: a2:6c:fc:1b:41:f3:32:0e:58:96:3c:0d:e2:c6:6e: 38:d3:d2:ad:e6:74:b4:49:1d:f7:bc:40:2f:0d:57: 2a:be:aa:2f:f4:c9:3a:88:59:bc:06:b9:4d:13:76: 64:4b:4f:d9:96:60:6c:2e:37:3b:14:c7:2a:16:77: 32:d5:a9:c2:44:94:6e:9e:79:6b:4e:01:ee:5a:35: 6f:26:df:3a:dc:be:13:5f:18:89:da:48:be:57:a8: 96:6e:97:b9:92:7c:0c:78:95:20:d5:02:63:ad:d7: 68:3d:d9:5d:f9:e4:4f:d8:62:b2:9a:89:b4:50:ae: 29:60:91:eb:6d:ee:fb:1c:60:9e:37:6f:47:54:17: 60:9d:24:3c:b5:85:90:f3:47:36:9e:cf:48:22:33: 33:62:9c:90:ff:c1:fd:79:03:18:33:ae:69:c9:c1: f8:fb:00:0c:7a:40:16:2d:38:88:cf:57:5d:d2:ae: 3d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:C6:74:9B:81:48:14:00:0C:5E:58:EB:9C:DE:FB:5F:CA:75:42:B8 X509v3 Authority Key Identifier: keyid:37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:14:ff:7f:11:04:fa:47:35:68:7f:b1:8f:93:3f:78:f9:e0: 22:14:9c:bc:22:3b:84:11:8e:42:8a:64:3f:5b:98:a0:ab:c0: 09:f9:d9:7e:62:7e:5c:02:41:38:00:17:0f:36:5b:b5:66:a5: a8:13:9d:3a:91:0b:b0:ac:f9:75:37:28:98:60:c4:07:8e:d6: c5:a8:c5:7e:af:14:02:06:88:78:d4:75:c5:79:94:b7:2c:86: c7:7a:00:db:39:62:f3:b4:06:dc:83:35:a0:ed:3f:2c:e1:22: e6:d0:43:51:ed:c4:c5:ad:b9:1a:c4:a7:c0:a9:64:1a:57:02: 7a:b2:91:00:60:86:fc:b4:c3:bb:3f:85:e6:91:6b:34:82:7d: ea:a2:19:df:4a:f8:f5:26:81:1b:f4:df:10:07:69:4e:59:99: a0:01:8a:81:6c:76:4e:23:23:e8:ac:f2:84:65:e7:02:e1:56: f4:57:79:d1:22:f2:25:77:32:8c:d9:00:1c:ac:d5:17:f5:5d: 92:a1:ef:32:90:12:54:df:e4:54:6a:ad:45:2c:a2:a5:42:f8: 82:99:2a:94:50:c6:f7:58:21:59:50:23:ab:6c:17:fc:01:b8: 9f:fe:8f:6a:79:46:ad:82:02:d2:cf:2b:df:76:99:28:93:20: a8:ff:dd:ad -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQyRUExMTAvBgNVBAUTKDM3MkYxQzc3NjFCMUREQzgzMjhDNTBCQUQwRUVFRENE OTlGMkU0RjIwHhcNMjYwMzI2MTYwMTU3WhcNMjYwNDAyMTYwMTU3WjAYMRYwFAYD VQQDEw02OWM1NTg3NS04MDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1+y2O2aZNJ9avXvchk6HcaJsfO8EoqLFnnpM79W4vFbGVIXe4u4VGKVIEa9U PmJubEsH44Rnf8czxOPEucyV7kfQ8fS9XVZcWOSibPwbQfMyDliWPA3ixm4409Kt 5nS0SR33vEAvDVcqvqov9Mk6iFm8BrlNE3ZkS0/ZlmBsLjc7FMcqFncy1anCRJRu nnlrTgHuWjVvJt863L4TXxiJ2ki+V6iWbpe5knwMeJUg1QJjrddoPdld+eRP2GKy mom0UK4pYJHrbe77HGCeN29HVBdgnSQ8tYWQ80c2ns9IIjMzYpyQ/8H9eQMYM65p ycH4+wAMekAWLTiIz1dd0q49kwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDPGdJuB SBQADF5Y65ze+1/KdUK4MB8GA1UdIwQYMBaAFDcvHHdhsd3IMoxQutDu7c2Z8uTy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDJFQS9GNTMzMkQ3RTg0 QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNjZ3lqRkM2ME83dHpabnk1 UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055OGNkMkd4M2NneWpGQzYwTzd0elpueTVQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDJFQS9GNTMzMkQ3RTg0QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNj Z3lqRkM2ME83dHpabnk1UEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZhT/fxEE+kc1aH+xj5M/ePngIhScvCI7hBGOQopkP1uYoKvACfnZfmJ+XAJB OAAXDzZbtWalqBOdOpELsKz5dTcomGDEB47WxajFfq8UAgaIeNR1xXmUtyyGx3oA 2zli87QG3IM1oO0/LOEi5tBDUe3Exa25GsSnwKlkGlcCerKRAGCG/LTDuz+F5pFr NIJ96qIZ30r49SaBG/TfEAdpTlmZoAGKgWx2TiMj6KzyhGXnAuFW9Fd50SLyJXcy jNkAHKzVF/VdkqHvMpASVN/kVGqtRSyipUL4gpkqlFDG91ghWVAjq2wX/AG4n/6P anlGrYIC0s8r33aZKJMgqP/drQ== -----END CERTIFICATE-----Generated at Sat Mar 28 12:17:58 2026 by rpki-client