$ rpki-client -vvf rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.mft File: nTQUKDsie49RLzBfKs20PN6eTRI.mft (raw, json) Hash identifier: Y2UHgrbsVvONy85PXAy8x1BNbIIjEhVHh89r02GJKL8= Subject key identifier: 49:70:28:D1:75:B3:A7:C4:73:BE:15:29:0C:50:4F:AC:F2:E0:F4:AC Authority key identifier: 9D:34:14:28:3B:22:7B:8F:51:2F:30:5F:2A:CD:B4:3C:DE:9E:4D:12 Certificate issuer: /CN=A911ED2C/serialNumber=9D3414283B227B8F512F305F2ACDB43CDE9E4D12 Certificate serial: 0214 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.mft Manifest number: 01D5 Signing time: Wed 25 Mar 2026 03:22:29 +0000 Manifest this update: Wed 25 Mar 2026 03:22:28 +0000 Manifest next update: Wed 01 Apr 2026 03:22:28 +0000 Files and hashes: 1: nTQUKDsie49RLzBfKs20PN6eTRI.crl (hash: 0f3qjXonBVdcN0IOlgzaRfAcDcVd//wz4klITVC8E8w=) 2: 551036FCF1CA11EFA1495230C4F9AE02.roa (hash: ph9mjxQXcLl4fEECl4pEGWMTp7mLbB/lR7kFkW96rzY=) 3: EDAA86E4AD6D11EE83DA6253C4F9AE02.roa (hash: RuIzPpPmU5SYBxbzVmTPm1exsa1irL+SD8QrPzFj6WU=) 4: CA364B681A1711F0A1D93523C4F9AE02.roa (hash: VMXxFIYcOcmwdzE0TfKotJbGv4ASOkRQEsgw2BaIwTw=) 5: 31C9441E68ED11F0BA447B41C4F9AE02.roa (hash: Tw/mmccci9TsCg4wjjeIfCh0v/cTONBZG05kzKfAujc=) 6: EC985F92AD6D11EE83DA6253C4F9AE02.roa (hash: BmXwbaUB2PnwCtWWwqTCrL/Z4ZUCXb6in34aW4SAhII=) 7: 3C880EBABEEF11EF9178186BC4F9AE02.roa (hash: gDBNV8FCQoQRlF4+Z0of3x2gK+wLXaHl7XFSFbaKadM=) 8: 908E69B20D4311F0B83AB36BC4F9AE02.roa (hash: 0rCihLa1R/JwK4jlGINRooaKzW7UBmX+YQfpTQsJlgY=) 9: C75B642268F211EFB7A6A06EC4F9AE02.roa (hash: cMO5zU9AD/RoFLcnPT+DXNczqdbBJpb9yT+lZHAEick=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.crl rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:22:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 532 (0x214) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ED2C, serialNumber=9D3414283B227B8F512F305F2ACDB43CDE9E4D12 Validity Not Before: Mar 25 03:22:28 2026 GMT Not After : Apr 1 03:22:28 2026 GMT Subject: CN=69c354f4-b9a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:77:41:45:5e:17:0e:ba:b5:0c:c9:65:58:30: f4:3f:84:93:28:8f:11:f8:c2:32:60:3d:c1:f4:c8: 43:23:ca:cd:96:c4:2c:6c:d3:f0:58:dd:71:dd:e9: 9d:79:0f:34:06:47:8d:6a:19:7a:3a:77:a2:5c:1f: 86:fe:ea:70:77:8d:57:ae:d1:bc:90:37:17:a3:78: 98:b7:ef:e3:a7:ca:5c:6b:c7:08:70:72:89:0e:ba: 40:96:59:63:29:93:23:9b:22:6f:1e:38:a0:af:58: 92:47:7b:33:32:5b:6a:cc:01:66:ce:f0:2d:14:e1: f6:5c:5a:02:6d:19:3c:08:c5:50:45:ed:f8:46:d3: a3:e3:61:01:d6:1e:ae:d9:ac:3a:13:28:01:b7:c6: dc:d7:14:df:91:5e:32:38:cd:7f:75:49:52:86:f0: 2f:f4:29:a3:ca:7f:ef:9a:5e:3d:f1:e9:ce:6e:6d: d4:ec:1b:48:31:80:29:a4:22:46:d4:a7:b5:82:c0: 0b:57:ee:25:f0:52:08:f1:9d:19:5b:b6:17:b9:04: 94:80:a0:88:0b:47:47:20:ff:48:48:9a:34:40:1f: ef:65:58:30:a1:6d:87:c4:bf:cb:83:dc:a8:19:9d: c6:6d:d9:b3:4f:6b:05:13:30:c6:c3:5d:8c:ab:a9: 7d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:70:28:D1:75:B3:A7:C4:73:BE:15:29:0C:50:4F:AC:F2:E0:F4:AC X509v3 Authority Key Identifier: keyid:9D:34:14:28:3B:22:7B:8F:51:2F:30:5F:2A:CD:B4:3C:DE:9E:4D:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:0b:34:b0:69:ad:1c:f2:62:c6:eb:c1:34:be:34:b9:92:99: b5:c8:f1:06:fc:52:c4:ae:09:7a:dd:a5:50:dd:20:e0:6d:1d: b7:10:d4:b7:f8:2e:b8:a0:2e:c3:6d:77:ea:8a:5d:7e:77:df: ef:f4:a7:69:7b:6c:fe:48:89:ef:97:51:cc:64:5a:e5:b1:58: b5:e3:6d:bf:e9:a7:cc:14:ca:27:3b:ec:b1:c4:50:4f:08:26: 5b:9b:ae:50:b6:96:60:42:d3:d3:d1:30:4b:da:54:0a:5c:9a: 19:f7:91:7e:4d:dd:dd:6e:39:5f:3d:81:16:7d:de:83:2d:fc: 24:30:4b:1b:49:81:1d:f7:35:9d:f3:f6:43:57:0c:7c:d1:b6: 7f:83:ce:95:44:a5:d5:29:88:4c:e5:89:ea:8f:af:f4:85:07: 19:cd:d9:54:a8:13:c2:fe:c8:11:c1:85:99:5e:dd:e5:11:ff: cc:66:1f:10:70:31:4e:99:6e:67:a2:d5:64:21:3c:33:a0:f8: 62:26:7b:30:a1:ba:5d:14:24:32:9a:2c:ed:31:5b:31:02:2f: 12:65:16:46:3d:dc:0b:ad:3d:9c:eb:00:32:69:19:a5:59:7b: 26:62:4a:d6:b8:47:1a:09:c7:b6:e8:1d:d4:f4:7d:d6:85:2f: 4b:75:ed:ca -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVEMkMxMTAvBgNVBAUTKDlEMzQxNDI4M0IyMjdCOEY1MTJGMzA1RjJBQ0RCNDND REU5RTREMTIwHhcNMjYwMzI1MDMyMjI4WhcNMjYwNDAxMDMyMjI4WjAYMRYwFAYD VQQDEw02OWMzNTRmNC1iOWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHdBRV4XDrq1DMllWDD0P4STKI8R+MIyYD3B9MhDI8rNlsQsbNPwWN1x3emd eQ80BkeNahl6OneiXB+G/upwd41XrtG8kDcXo3iYt+/jp8pca8cIcHKJDrpAlllj KZMjmyJvHjigr1iSR3szMltqzAFmzvAtFOH2XFoCbRk8CMVQRe34RtOj42EB1h6u 2aw6EygBt8bc1xTfkV4yOM1/dUlShvAv9Cmjyn/vml498enObm3U7BtIMYAppCJG 1Ke1gsALV+4l8FII8Z0ZW7YXuQSUgKCIC0dHIP9ISJo0QB/vZVgwoW2HxL/Lg9yo GZ3GbdmzT2sFEzDGw12Mq6l9IQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFElwKNF1 s6fEc74VKQxQT6zy4PSsMB8GA1UdIwQYMBaAFJ00FCg7InuPUS8wXyrNtDzenk0S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUQyQy8wMDM3M0M2QzlC QkMxMUVFODUxQURENTBDNEY5QUUwMi9uVFFVS0RzaWU0OVJMekJmS3MyMFBONmVU UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UUVVLRHNpZTQ5Ukx6QmZLczIwUE42ZVRSSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RUQyQy8wMDM3M0M2QzlCQkMxMUVFODUxQURENTBDNEY5QUUwMi9uVFFVS0RzaWU0 OVJMekJmS3MyMFBONmVUUkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGQs0sGmtHPJixuvBNL40uZKZtcjxBvxSxK4Jet2lUN0g4G0dtxDUt/guuKAu w2136opdfnff7/SnaXts/kiJ75dRzGRa5bFYteNtv+mnzBTKJzvsscRQTwgmW5uu ULaWYELT09EwS9pUClyaGfeRfk3d3W45Xz2BFn3egy38JDBLG0mBHfc1nfP2Q1cM fNG2f4POlUSl1SmITOWJ6o+v9IUHGc3ZVKgTwv7IEcGFmV7d5RH/zGYfEHAxTplu Z6LVZCE8M6D4YiZ7MKG6XRQkMpos7TFbMQIvEmUWRj3cC609nOsAMmkZpVl7JmJK 1rhHGgnHtugd1PR91oUvS3Xtyg== -----END CERTIFICATE-----Generated at Thu Mar 26 09:47:06 2026 by rpki-client