$ rpki-client -vvf rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.mft File: NNe9YUOWrkRRcOBY4K7c661JQF8.mft (raw, json) Hash identifier: Lv25lUNiXwkTqwZC27yFWX3IT/FbmoXAvk33oA2M+Tk= Subject key identifier: 40:EC:CE:CB:66:38:27:7D:5F:8B:A2:3C:A6:83:0E:12:95:09:4A:B9 Authority key identifier: 34:D7:BD:61:43:96:AE:44:51:70:E0:58:E0:AE:DC:EB:AD:49:40:5F Certificate issuer: /CN=A9133F6B/serialNumber=34D7BD614396AE445170E058E0AEDCEBAD49405F Certificate serial: 0121 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNe9YUOWrkRRcOBY4K7c661JQF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.mft Manifest number: 011E Signing time: Wed 25 Mar 2026 04:57:51 +0000 Manifest this update: Wed 25 Mar 2026 04:57:50 +0000 Manifest next update: Wed 01 Apr 2026 04:57:50 +0000 Files and hashes: 1: NNe9YUOWrkRRcOBY4K7c661JQF8.crl (hash: eDICAwhZ49hXg/dEk4rvNaS/3qaDvkr3WhonQziZJAc=) 2: CDB922F074AF11EFA0B26646C4F9AE02.roa (hash: QEHeDKXl3W219yRsuSOY/SsIE0BE8LgnZaquYZmmgt8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.crl rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNe9YUOWrkRRcOBY4K7c661JQF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:57:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133F6B, serialNumber=34D7BD614396AE445170E058E0AEDCEBAD49405F Validity Not Before: Mar 25 04:57:50 2026 GMT Not After : Apr 1 04:57:50 2026 GMT Subject: CN=69c36b4f-ac20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:52:64:df:99:3d:c7:97:ab:ca:ca:a6:93:03: 6c:a7:e6:27:59:d1:0c:59:a6:60:2b:87:f6:7a:ac: b7:79:30:f6:96:eb:49:81:98:5a:c5:6f:ee:31:51: 8e:14:4e:44:45:ee:d0:08:15:16:8f:d7:dc:c4:c8: 42:b9:5a:3e:4a:bf:8a:33:2e:08:94:a1:37:61:1d: 88:65:33:46:92:ef:59:fb:99:46:89:5c:f7:56:d4: c6:0c:ba:56:06:55:7a:01:3f:6d:c5:b6:67:a5:00: 6a:a6:bf:ee:ed:bd:8e:7a:74:6a:d2:6e:34:b3:7d: 38:b6:48:66:67:78:90:0c:e9:04:04:43:43:40:72: 74:0a:2e:40:fd:b0:1c:d1:f3:09:22:d5:1f:93:34: 1e:c7:bc:5f:2e:78:4f:f8:e0:bc:fb:68:ff:f6:32: 9a:14:ef:d4:35:13:43:ad:07:ea:48:39:96:6a:09: fd:f2:85:bb:f3:25:bd:df:9c:2b:b8:5d:68:c7:78: e5:36:5e:11:7c:db:81:cf:47:92:46:07:b8:e2:eb: 1f:70:fa:e0:73:69:84:55:98:94:94:f0:53:d0:50: 43:b0:35:da:05:06:a7:13:65:dc:c8:92:2a:2a:69: 2c:c1:8b:70:ea:64:38:23:70:4a:35:cc:3e:66:d1: 3e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:EC:CE:CB:66:38:27:7D:5F:8B:A2:3C:A6:83:0E:12:95:09:4A:B9 X509v3 Authority Key Identifier: keyid:34:D7:BD:61:43:96:AE:44:51:70:E0:58:E0:AE:DC:EB:AD:49:40:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNe9YUOWrkRRcOBY4K7c661JQF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:f1:ab:c8:17:55:31:43:c9:4f:d0:4e:2d:38:cd:72:31:83: 21:ca:63:2a:ba:4e:0c:11:4f:0e:04:a6:43:f9:d4:6f:c0:65: 79:74:f0:54:77:2c:9f:f4:35:5e:c4:81:0a:85:94:54:99:70: 28:9e:86:b6:b6:d0:67:fb:f5:00:c0:b0:47:ca:ae:f9:93:c9: db:03:38:6a:b5:0c:d5:8d:8d:58:7c:4c:ff:a9:99:cb:58:7d: 90:fa:3d:75:89:37:cf:6c:d2:5a:17:05:ac:d4:0f:61:c5:7a: ea:bd:2e:df:50:59:20:61:78:12:70:d2:1f:9e:db:cb:1f:38: da:98:9b:64:4c:3a:a1:28:57:56:c5:55:f3:08:66:ae:a4:4a: d7:ee:4f:c8:35:d2:65:b1:1d:ac:25:b6:22:e1:37:f6:91:a7: c2:fc:c8:66:4c:58:73:7f:f0:53:c2:1e:4d:d4:1e:de:ae:54: f3:5f:aa:b2:96:88:6e:33:30:f7:d7:4d:0e:b9:c4:6a:2c:08: c2:61:92:fc:f8:e9:c4:4c:02:aa:d3:54:ea:86:7c:80:5a:2b: 8e:d7:1f:68:98:e1:70:b0:d8:c0:5f:87:ad:8e:10:db:61:dc: 13:d1:38:ad:70:d2:b4:67:08:1a:74:1d:60:de:0d:93:ef:d2: 76:8c:28:fb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNGNkIxMTAvBgNVBAUTKDM0RDdCRDYxNDM5NkFFNDQ1MTcwRTA1OEUwQUVEQ0VC QUQ0OTQwNUYwHhcNMjYwMzI1MDQ1NzUwWhcNMjYwNDAxMDQ1NzUwWjAYMRYwFAYD VQQDEw02OWMzNmI0Zi1hYzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlJk35k9x5erysqmkwNsp+YnWdEMWaZgK4f2eqy3eTD2lutJgZhaxW/uMVGO FE5ERe7QCBUWj9fcxMhCuVo+Sr+KMy4IlKE3YR2IZTNGku9Z+5lGiVz3VtTGDLpW BlV6AT9txbZnpQBqpr/u7b2OenRq0m40s304tkhmZ3iQDOkEBENDQHJ0Ci5A/bAc 0fMJItUfkzQex7xfLnhP+OC8+2j/9jKaFO/UNRNDrQfqSDmWagn98oW78yW935wr uF1ox3jlNl4RfNuBz0eSRge44usfcPrgc2mEVZiUlPBT0FBDsDXaBQanE2XcyJIq KmkswYtw6mQ4I3BKNcw+ZtE+TwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEDszstm OCd9X4uiPKaDDhKVCUq5MB8GA1UdIwQYMBaAFDTXvWFDlq5EUXDgWOCu3OutSUBf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0Y2Qi85ODUyOTMzRTc0 QTYxMUVGQUI0QjA1M0NDNEY5QUUwMi9OTmU5WVVPV3JrUlJjT0JZNEs3YzY2MUpR RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OZTlZVU9XcmtSUmNPQlk0SzdjNjYxSlFGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0Y2Qi85ODUyOTMzRTc0QTYxMUVGQUI0QjA1M0NDNEY5QUUwMi9OTmU5WVVPV3Jr UlJjT0JZNEs3YzY2MUpRRjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAePGryBdVMUPJT9BOLTjNcjGDIcpjKrpODBFPDgSmQ/nUb8BleXTwVHcsn/Q1 XsSBCoWUVJlwKJ6GtrbQZ/v1AMCwR8qu+ZPJ2wM4arUM1Y2NWHxM/6mZy1h9kPo9 dYk3z2zSWhcFrNQPYcV66r0u31BZIGF4EnDSH57byx842pibZEw6oShXVsVV8whm rqRK1+5PyDXSZbEdrCW2IuE39pGnwvzIZkxYc3/wU8IeTdQe3q5U81+qspaIbjMw 99dNDrnEaiwIwmGS/PjpxEwCqtNU6oZ8gForjtcfaJjhcLDYwF+HrY4Q22HcE9E4 rXDStGcIGnQdYN4Nk+/Sdowo+w== -----END CERTIFICATE-----Generated at Thu Mar 26 02:38:24 2026 by rpki-client