$ rpki-client -vvf rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft File: nkKx9pFGDihG-nHwbcib8sdB25o.mft (raw, json) Hash identifier: nu/OaDlwKGlLMbg4h4nwCv9GcWZ8kx4RXDAkT4HPEwo= Subject key identifier: 80:AF:FD:FC:8C:68:A6:78:1A:23:93:BE:3A:28:71:6C:D4:1D:D7:D1 Authority key identifier: 9E:42:B1:F6:91:46:0E:28:46:FA:71:F0:6D:C8:9B:F2:C7:41:DB:9A Certificate issuer: /CN=A911BCDD/serialNumber=9E42B1F691460E2846FA71F06DC89BF2C741DB9A Certificate serial: 01C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft Manifest number: 01BC Signing time: Wed 25 Mar 2026 03:11:33 +0000 Manifest this update: Wed 25 Mar 2026 03:11:33 +0000 Manifest next update: Wed 01 Apr 2026 03:11:33 +0000 Files and hashes: 1: nkKx9pFGDihG-nHwbcib8sdB25o.crl (hash: Q7rtb8mysNR3mUrYP7mnmp9HrmTpmdva/S8bV+yRcA4=) 2: 5ED417AE869011EEA9011A36C4F9AE02.roa (hash: Qx6h3CTOkKIiFv1hoz1s6u5nieG3giT15j3ng44V7sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.crl rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:11:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 450 (0x1c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BCDD, serialNumber=9E42B1F691460E2846FA71F06DC89BF2C741DB9A Validity Not Before: Mar 25 03:11:33 2026 GMT Not After : Apr 1 03:11:33 2026 GMT Subject: CN=69c35265-4cd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e0:36:9e:87:46:4e:0d:fc:9a:04:01:e2:5c: 30:ca:e5:72:f6:0f:ab:3b:38:94:35:5a:0e:bf:ed: 5f:45:7d:53:90:e5:6d:90:f6:fe:db:10:9d:ba:7d: 42:74:ab:55:0a:58:97:11:da:e1:e0:2c:df:ed:b5: 63:c0:23:25:22:c0:b8:ef:06:cc:4e:07:aa:f2:53: f6:27:39:93:90:b3:60:6e:52:36:de:ca:b1:18:6d: 04:0c:94:41:9e:fd:05:4f:3e:3d:2f:8c:d9:b6:73: db:a1:f9:b6:d0:99:b5:8d:48:ae:37:1e:6d:2e:71: bd:35:9e:d4:b4:fa:52:10:c4:26:86:43:b9:f4:9e: e6:d0:4c:70:02:ef:48:6d:67:c7:e1:df:67:99:5a: c8:db:cd:eb:6e:02:76:4e:4b:86:da:9e:ec:3f:06: 0d:36:5c:07:55:91:e0:75:35:dd:53:d0:0d:25:15: 25:29:4c:11:3f:69:7e:f9:05:00:8e:f8:76:00:61: 39:97:7a:81:95:78:d2:79:8f:fe:ba:f6:b0:5d:1a: 30:16:38:ef:aa:f3:1c:f7:fb:fb:bb:3f:b6:83:65: 6a:6f:09:3b:c6:66:9a:ff:5f:d9:fc:6e:6e:b0:4e: b6:12:cc:88:22:03:78:63:47:f5:44:dd:ae:15:d5: 6a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:AF:FD:FC:8C:68:A6:78:1A:23:93:BE:3A:28:71:6C:D4:1D:D7:D1 X509v3 Authority Key Identifier: keyid:9E:42:B1:F6:91:46:0E:28:46:FA:71:F0:6D:C8:9B:F2:C7:41:DB:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:00:07:ed:3a:90:e5:49:c6:3f:8f:e5:27:4a:0f:ca:e0:41: 50:86:1c:c3:eb:5d:9d:c5:7d:e3:61:31:f5:fd:05:b3:c3:c1: 53:4e:5c:92:e6:bc:ec:6e:c6:3f:aa:98:45:0d:19:c9:71:ff: 77:de:50:14:7f:df:e6:d7:49:88:80:92:6d:95:41:28:14:93: 11:34:5a:61:2b:e4:b1:07:bb:de:d3:11:f2:a0:40:0a:6b:31: fc:7e:1b:b4:76:2f:72:29:97:97:35:c3:1e:0b:a6:72:0a:10: 3f:61:b3:d6:0e:88:c4:24:4c:24:c7:29:cf:f7:a6:13:44:54: 8f:70:03:b0:61:46:7b:a6:9a:d8:95:9d:d6:19:66:64:ab:0e: ef:09:07:69:0a:9f:16:b2:dd:13:94:a4:49:01:96:85:c2:98: 1d:91:39:5e:fb:b4:f1:42:5d:20:db:30:84:09:2c:77:8d:e3: ef:b6:ba:dd:e5:08:c5:b5:fd:fe:1e:49:19:84:08:b0:23:38: 77:a4:f4:ad:a0:97:0a:ef:33:01:7f:1f:e8:fc:9a:bd:fc:e8: 7e:08:82:fb:c8:0e:a2:88:8f:db:b8:20:97:1e:8e:37:15:a0: 2b:95:57:71:64:24:5a:48:57:44:fc:76:26:07:cd:69:e5:9b: 0a:49:ce:0b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJDREQxMTAvBgNVBAUTKDlFNDJCMUY2OTE0NjBFMjg0NkZBNzFGMDZEQzg5QkYy Qzc0MURCOUEwHhcNMjYwMzI1MDMxMTMzWhcNMjYwNDAxMDMxMTMzWjAYMRYwFAYD VQQDEw02OWMzNTI2NS00Y2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+A2nodGTg38mgQB4lwwyuVy9g+rOziUNVoOv+1fRX1TkOVtkPb+2xCdun1C dKtVCliXEdrh4Czf7bVjwCMlIsC47wbMTgeq8lP2JzmTkLNgblI23sqxGG0EDJRB nv0FTz49L4zZtnPbofm20Jm1jUiuNx5tLnG9NZ7UtPpSEMQmhkO59J7m0ExwAu9I bWfH4d9nmVrI283rbgJ2TkuG2p7sPwYNNlwHVZHgdTXdU9ANJRUlKUwRP2l++QUA jvh2AGE5l3qBlXjSeY/+uvawXRowFjjvqvMc9/v7uz+2g2Vqbwk7xmaa/1/Z/G5u sE62EsyIIgN4Y0f1RN2uFdVq1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFICv/fyM aKZ4GiOTvjoocWzUHdfRMB8GA1UdIwQYMBaAFJ5CsfaRRg4oRvpx8G3Im/LHQdua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkNERC8zNDhBRDhBQzg2 MTMxMUVFQThDOTUwNDJDNEY5QUUwMi9ua0t4OXBGR0RpaEctbkh3YmNpYjhzZEIy NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25rS3g5cEZHRGloRy1uSHdiY2liOHNkQjI1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkNERC8zNDhBRDhBQzg2MTMxMUVFQThDOTUwNDJDNEY5QUUwMi9ua0t4OXBGR0Rp aEctbkh3YmNpYjhzZEIyNW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoQAH7TqQ5UnGP4/lJ0oPyuBBUIYcw+tdncV942Ex9f0Fs8PBU05ckua87G7G P6qYRQ0ZyXH/d95QFH/f5tdJiICSbZVBKBSTETRaYSvksQe73tMR8qBACmsx/H4b tHYvcimXlzXDHgumcgoQP2Gz1g6IxCRMJMcpz/emE0RUj3ADsGFGe6aa2JWd1hlm ZKsO7wkHaQqfFrLdE5SkSQGWhcKYHZE5Xvu08UJdINswhAksd43j77a63eUIxbX9 /h5JGYQIsCM4d6T0raCXCu8zAX8f6PyavfzofgiC+8gOooiP27gglx6ONxWgK5VX cWQkWkhXRPx2JgfNaeWbCknOCw== -----END CERTIFICATE-----Generated at Thu Mar 26 02:34:08 2026 by rpki-client