$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft File: ny5XiO95WFurdhmHfTlierLl1Rk.mft (raw, json) Hash identifier: D+HWCEg/dMF4I9o6YPzWyimLizMtphtg2skotRyyMXA= Subject key identifier: 10:BE:E4:A7:44:DD:3C:E5:FC:10:1A:65:7C:4A:CD:40:AD:40:EA:C0 Authority key identifier: 9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 Certificate issuer: /CN=A913A7A6/serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Certificate serial: 0AB4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft Manifest number: 0AAA Signing time: Tue 24 Mar 2026 19:17:22 +0000 Manifest this update: Tue 24 Mar 2026 19:17:21 +0000 Manifest next update: Tue 31 Mar 2026 19:17:21 +0000 Files and hashes: 1: ny5XiO95WFurdhmHfTlierLl1Rk.crl (hash: w7JQXWWxLCq4VnIZsIzzUfD3z8OcrxgAC9oQIgT0TXM=) 2: 4DAFC184ADC011ED897A4050C4F9AE02.roa (hash: v2saofmL0m7GfqQUIwDfIhLfQiWIxApSuK3jNuC63SE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:17:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2740 (0xab4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Validity Not Before: Mar 24 19:17:21 2026 GMT Not After : Mar 31 19:17:21 2026 GMT Subject: CN=69c2e342-50f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:61:a3:83:b8:90:11:ac:66:0d:ab:ae:36:52: d9:f5:bc:07:00:c4:79:2e:7f:30:a1:39:c5:e4:ae: 52:39:e1:f7:ba:ed:7a:58:1c:aa:18:a6:c5:d5:a1: dc:a1:54:b4:00:b1:a1:b4:58:c9:c6:13:a3:b7:92: 62:3b:fb:b3:03:7c:e9:57:6e:5d:e4:2e:1e:a3:e2: 39:54:10:23:6c:ea:a4:49:14:59:8e:f6:f6:77:9e: b7:2b:25:20:8a:99:fe:8d:9a:80:5b:20:47:82:5c: 78:f7:9a:cc:c1:b4:64:b9:91:7e:49:07:a3:8e:1a: 28:9e:f9:70:bd:c4:b4:0c:49:2d:34:39:34:39:86: 10:47:f3:ed:1c:8c:d7:d9:1a:d4:e1:75:22:ff:ff: 27:66:a1:40:c2:37:3e:73:87:8a:ee:6f:04:1b:11: 2d:d5:c2:f6:87:04:b9:08:ae:38:95:2b:90:cc:d5: cc:91:26:46:d1:27:1a:7a:06:83:a3:0b:f1:8a:df: 61:75:ce:fe:73:3f:cf:16:8e:b1:49:f9:2e:e2:0c: fc:81:fe:fb:88:67:af:7e:1d:5a:ce:cc:05:65:7e: 4d:38:e4:68:ea:23:80:7d:5e:11:ac:3b:b1:e9:92: 91:0e:fe:20:b3:49:4f:70:a5:38:f4:f4:f1:07:31: 40:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:BE:E4:A7:44:DD:3C:E5:FC:10:1A:65:7C:4A:CD:40:AD:40:EA:C0 X509v3 Authority Key Identifier: keyid:9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:a6:e9:48:ca:35:4a:9d:fe:13:35:c3:fb:26:4f:c5:2d:46: db:ae:6b:c1:ac:34:6b:df:5e:79:40:f9:91:51:f3:79:28:50: 8a:cb:da:92:ba:d5:34:f6:b1:cf:fb:1c:0b:ca:53:eb:14:ff: af:24:a7:53:c6:48:e0:6f:57:d9:94:ad:5d:08:93:eb:f9:00: e5:6d:f0:b9:8b:cb:91:85:98:c9:5a:93:6d:7a:68:fd:7e:4e: 3a:4c:cc:e4:ac:1a:2d:be:9c:92:19:77:50:59:80:f1:4f:00: 6c:5f:b5:a6:27:f6:16:a9:03:25:76:6a:20:4c:13:4b:35:a6: f8:31:b4:ca:f3:a2:9b:d5:a5:e6:b8:57:3e:f7:eb:a0:9f:e0: c5:1a:18:8d:db:52:2e:8c:5c:04:dd:70:16:31:50:38:56:a3: 20:a6:8d:e9:bf:4d:58:d8:40:0a:9d:e6:a9:43:7a:90:e2:2c: 46:3f:da:0f:13:82:2f:d9:9d:c7:89:04:2c:36:ec:51:b5:a7: eb:9a:52:34:35:d0:7f:a2:f2:9b:32:f6:09:76:6b:0b:fa:f9: 4f:40:4b:92:ce:5d:ab:23:a5:b5:18:8b:70:5f:7f:df:62:b6: be:6b:fa:b7:e8:f2:d9:9e:43:f9:11:ff:bb:7f:9b:1e:3c:b4: 0e:03:c6:1f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDlGMkU1Nzg4RUY3OTU4NUJBQjc2MTk4NzdEMzk2MjdB QjJFNUQ1MTkwHhcNMjYwMzI0MTkxNzIxWhcNMjYwMzMxMTkxNzIxWjAYMRYwFAYD VQQDEw02OWMyZTM0Mi01MGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnWGjg7iQEaxmDauuNlLZ9bwHAMR5Ln8woTnF5K5SOeH3uu16WByqGKbF1aHc oVS0ALGhtFjJxhOjt5JiO/uzA3zpV25d5C4eo+I5VBAjbOqkSRRZjvb2d563KyUg ipn+jZqAWyBHglx495rMwbRkuZF+SQejjhoonvlwvcS0DEktNDk0OYYQR/PtHIzX 2RrU4XUi//8nZqFAwjc+c4eK7m8EGxEt1cL2hwS5CK44lSuQzNXMkSZG0ScaegaD owvxit9hdc7+cz/PFo6xSfku4gz8gf77iGevfh1azswFZX5NOORo6iOAfV4RrDux 6ZKRDv4gs0lPcKU49PTxBzFALwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBC+5KdE 3Tzl/BAaZXxKzUCtQOrAMB8GA1UdIwQYMBaAFJ8uV4jveVhbq3YZh305Ynqy5dUZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80NTdBOEU4Mjcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdGdXJkaG1IZlRsaWVyTGwx UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL255NVhpTzk1V0Z1cmRobUhmVGxpZXJMbDFSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80NTdBOEU4MjczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdG dXJkaG1IZlRsaWVyTGwxUmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIKbpSMo1Sp3+EzXD+yZPxS1G265rwaw0a99eeUD5kVHzeShQisvakrrVNPax z/scC8pT6xT/rySnU8ZI4G9X2ZStXQiT6/kA5W3wuYvLkYWYyVqTbXpo/X5OOkzM 5KwaLb6ckhl3UFmA8U8AbF+1pif2FqkDJXZqIEwTSzWm+DG0yvOim9Wl5rhXPvfr oJ/gxRoYjdtSLoxcBN1wFjFQOFajIKaN6b9NWNhACp3mqUN6kOIsRj/aDxOCL9md x4kELDbsUbWn65pSNDXQf6LymzL2CXZrC/r5T0BLks5dqyOltRiLcF9/32K2vmv6 t+jy2Z5D+RH/u3+bHjy0DgPGHw== -----END CERTIFICATE-----Generated at Thu Mar 26 17:55:06 2026 by rpki-client