$ rpki-client -vvf rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft File: NHTJTDbo-aDToNIuHdoQjNNAqyg.mft (raw, json) Hash identifier: 6M8x6Cz8RTwa0b9uCscEV2fJZ7ywFdOT3352104DYxY= Subject key identifier: 95:08:05:DE:B7:EA:1F:49:B2:3F:0A:32:9B:4C:0C:C9:0D:7F:90:02 Authority key identifier: 34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 Certificate issuer: /CN=A9131690/serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Certificate serial: 104C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft Manifest number: 1017 Signing time: Tue 24 Mar 2026 17:19:36 +0000 Manifest this update: Tue 24 Mar 2026 17:19:35 +0000 Manifest next update: Tue 31 Mar 2026 17:19:35 +0000 Files and hashes: 1: NHTJTDbo-aDToNIuHdoQjNNAqyg.crl (hash: bd6BDWfs4zjCkRY3yyvzePdh+6UBsC+pKISFOmBMtwM=) 2: B2B24A4221D711EB9CFAC46EC4F9AE02.roa (hash: 8Q2Umx0r6YNO2pXY3Lo7bQVhFA22tejYLTjwhgeqaHk=) 3: A7BDC50C7A4811EBA907BB5BC4F9AE02.roa (hash: jnSlzy/THB1Xqx0QebCD+P4sZeJxQXMsWdBpFyTBfb4=) 4: 5E0253B6232111EB9896B783C4F9AE02.roa (hash: cy1EAKkmCpvxtLdJ2bDIgftrpdXjCjIIbkKyTgzxurw=) 5: B47C278021D711EB9CFAC46EC4F9AE02.roa (hash: 7cB2NpUwnHlJv3jC+1znrL/Qm2Z6pF6ooyV5GUqjg6w=) 6: 08CD1510027011EB98FEC44BC4F9AE02.roa (hash: sNgY8hpVgWEWzONQb/rYzqSGD7aaEvSPCGOCTH5nhGE=) 7: B3682FEC21D711EB9CFAC46EC4F9AE02.roa (hash: FMxmnJD1FXOVdBqe3Z4UNVeqTWvxDWlAMcRI0DJm40o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:19:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4172 (0x104c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131690, serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Validity Not Before: Mar 24 17:19:35 2026 GMT Not After : Mar 31 17:19:35 2026 GMT Subject: CN=69c2c7a8-7467 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8e:de:ac:b7:14:cf:07:ba:d8:c2:e6:0e:86: 9d:76:d8:1f:66:de:52:f2:0e:dd:18:69:84:81:66: ca:9f:94:7f:0d:dc:c0:50:16:1e:35:2f:aa:51:bc: a2:94:3f:16:94:10:83:df:bd:95:1f:33:3b:3d:af: d0:0a:17:f4:6f:0b:96:e0:28:8f:94:a4:26:c3:84: 72:da:47:09:81:c7:c7:32:a4:84:4b:b0:ef:82:47: 91:bc:86:43:b8:cb:a1:48:b1:8c:8d:8c:c9:b6:03: 8c:8c:2d:99:08:75:68:7c:06:52:e5:8c:91:77:98: 10:d0:e3:e2:7f:00:e5:28:b2:fe:0d:48:74:64:f3: f6:fb:d1:cb:73:6f:04:7c:8a:cd:e4:1c:00:98:97: 3d:9f:55:af:bb:1d:a0:57:7e:23:3f:ca:dc:24:7b: 61:38:96:55:67:44:d7:4c:cb:a1:67:6f:f0:fe:a5: 44:46:92:13:48:20:04:89:0e:2d:08:59:1b:59:90: fa:94:5c:d8:36:22:60:6f:65:3b:aa:f9:2c:38:6e: 05:37:79:b9:76:dd:63:4d:78:1c:aa:e0:fc:b5:20: 6b:cc:64:f8:b1:5b:87:aa:32:dc:59:b3:f0:7c:46: cb:c5:94:86:a9:24:09:78:b9:11:eb:37:5f:6e:61: f3:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:08:05:DE:B7:EA:1F:49:B2:3F:0A:32:9B:4C:0C:C9:0D:7F:90:02 X509v3 Authority Key Identifier: keyid:34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:ba:17:e7:7d:53:46:fa:ea:16:d9:93:7b:f1:8e:cf:be:02: ea:5a:59:a0:f7:09:68:29:32:d5:67:fd:e0:6f:09:28:c4:8d: 0a:34:52:29:e4:d0:50:86:25:67:14:a6:31:9f:13:e6:d6:f3: f8:3f:55:7a:d9:0f:4d:c0:60:91:c0:8f:56:f2:29:76:0b:26: 52:5a:9b:44:4b:4e:7f:22:e6:8a:ca:58:bd:68:e9:5e:39:bd: fc:88:48:1c:4c:89:3c:30:8f:3e:72:b6:6c:06:c9:ce:11:0a: ba:fd:bb:df:bb:9b:3a:07:62:ad:78:84:ef:63:4b:87:a7:a0: 97:69:1a:99:25:19:50:8a:74:76:03:0f:b6:11:01:64:7b:b1: cf:4e:0b:fe:b9:a7:30:29:b4:ba:0a:76:a2:6c:89:55:1a:e4: 99:fa:31:c6:e9:a5:ff:de:7e:71:2c:ce:15:bb:c0:2c:95:61: cb:e5:0a:11:38:43:0c:d3:1c:44:d5:e9:d2:e7:22:9f:a7:2f: b2:27:13:b4:87:d6:c9:fc:01:07:de:d2:6e:89:00:cf:c3:98: a8:6f:9a:16:b4:db:17:be:af:d0:51:9e:d9:22:eb:45:98:cf: 28:08:e5:b7:1e:9f:65:60:bc:3e:9a:4a:d3:33:a0:7b:69:ff: 98:89:b5:83 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2OTAxMTAvBgNVBAUTKDM0NzRDOTRDMzZFOEY5QTBEM0EwRDIyRTFEREExMDhD RDM0MEFCMjgwHhcNMjYwMzI0MTcxOTM1WhcNMjYwMzMxMTcxOTM1WjAYMRYwFAYD VQQDEw02OWMyYzdhOC03NDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAro7erLcUzwe62MLmDoaddtgfZt5S8g7dGGmEgWbKn5R/DdzAUBYeNS+qUbyi lD8WlBCD372VHzM7Pa/QChf0bwuW4CiPlKQmw4Ry2kcJgcfHMqSES7DvgkeRvIZD uMuhSLGMjYzJtgOMjC2ZCHVofAZS5YyRd5gQ0OPifwDlKLL+DUh0ZPP2+9HLc28E fIrN5BwAmJc9n1Wvux2gV34jP8rcJHthOJZVZ0TXTMuhZ2/w/qVERpITSCAEiQ4t CFkbWZD6lFzYNiJgb2U7qvksOG4FN3m5dt1jTXgcquD8tSBrzGT4sVuHqjLcWbPw fEbLxZSGqSQJeLkR6zdfbmHzEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJUIBd63 6h9Jsj8KMptMDMkNf5ACMB8GA1UdIwQYMBaAFDR0yUw26Pmg06DSLh3aEIzTQKso MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTY5MC8xNUI0MUI4ODYz RjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1hRFRvTkl1SGRvUWpOTkFx eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05IVEpURGJvLWFEVG9OSXVIZG9Rak5OQXF5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTY5MC8xNUI0MUI4ODYzRjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1h RFRvTkl1SGRvUWpOTkFxeWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqLoX531TRvrqFtmTe/GOz74C6lpZoPcJaCky1Wf94G8JKMSNCjRSKeTQUIYl ZxSmMZ8T5tbz+D9VetkPTcBgkcCPVvIpdgsmUlqbREtOfyLmispYvWjpXjm9/IhI HEyJPDCPPnK2bAbJzhEKuv2737ubOgdirXiE72NLh6egl2kamSUZUIp0dgMPthEB ZHuxz04L/rmnMCm0ugp2omyJVRrkmfoxxuml/95+cSzOFbvALJVhy+UKEThDDNMc RNXp0ucin6cvsicTtIfWyfwBB97SbokAz8OYqG+aFrTbF76v0FGe2SLrRZjPKAjl tx6fZWC8PppK0zOge2n/mIm1gw== -----END CERTIFICATE-----Generated at Thu Mar 26 17:55:59 2026 by rpki-client