$ rpki-client -vvf rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.mft File: nQi_OKDTi4yrfP2I9djE7WZ3jME.mft (raw, json) Hash identifier: dEAzFCGdA6zrdQYBIP1ghOEMUjIhJ26xV3TTjoT5PK0= Subject key identifier: C6:C6:9A:89:2F:EF:10:DB:90:95:A6:FA:FC:06:38:35:94:23:03:05 Authority key identifier: 9D:08:BF:38:A0:D3:8B:8C:AB:7C:FD:88:F5:D8:C4:ED:66:77:8C:C1 Certificate issuer: /CN=A913F0DF/serialNumber=9D08BF38A0D38B8CAB7CFD88F5D8C4ED66778CC1 Certificate serial: 01B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.mft Manifest number: 01B1 Signing time: Fri 27 Mar 2026 03:32:41 +0000 Manifest this update: Fri 27 Mar 2026 03:32:41 +0000 Manifest next update: Fri 03 Apr 2026 03:32:41 +0000 Files and hashes: 1: nQi_OKDTi4yrfP2I9djE7WZ3jME.crl (hash: yzl7lw18sjciy9ukUQgfNn5yWkDYcEY7uo6w0galb8I=) 2: 7C7AF8E6E67011EEB76DCB76C4F9AE02.roa (hash: KcnRjC7T6Kcnl9YrWn5mYyKPUtty/r1wIebOb0MFfxM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.crl rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 03:32:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 439 (0x1b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F0DF, serialNumber=9D08BF38A0D38B8CAB7CFD88F5D8C4ED66778CC1 Validity Not Before: Mar 27 03:32:41 2026 GMT Not After : Apr 3 03:32:41 2026 GMT Subject: CN=69c5fa59-a0f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:16:6d:6d:40:2d:cd:71:cd:3a:a3:7d:38:74: 6c:51:ab:60:f3:66:4c:2c:13:98:b7:91:09:1f:6f: fe:cd:ff:67:10:ce:6f:c4:6e:24:ca:9b:ac:aa:e6: c2:ca:0c:f5:86:68:4a:7b:37:4d:c9:2c:bf:a5:12: f8:51:7d:a2:3e:c9:3c:b8:2e:10:c6:db:8d:e9:42: 30:24:d9:fd:da:8a:fa:7b:90:37:40:19:63:aa:23: fe:97:35:e8:fe:81:72:7f:37:72:8b:df:fa:45:2e: e3:f2:a9:56:f9:00:36:00:8c:95:3b:44:1a:0b:d0: 15:84:63:ea:b6:8e:cd:b2:e2:76:ff:8f:a2:ee:5e: 41:c8:c8:f4:c8:2b:e6:35:95:63:06:36:a0:cf:d5: 48:e9:2e:b6:11:21:56:b6:b6:81:4c:0a:0e:9b:c8: 3a:d1:b0:e0:51:3f:e4:fd:ac:82:43:dc:48:91:c9: 25:c7:1f:98:40:a5:32:83:e6:e8:04:94:0d:1a:70: 4d:1b:c6:11:0d:f7:5c:5d:1e:e3:58:b5:af:b0:f3: d9:9c:59:fd:9b:d7:a7:73:2b:78:25:ea:8d:3f:68: dd:a4:af:d1:b2:51:7e:bd:52:ad:cf:2f:29:81:da: 9b:49:6c:bd:bb:76:55:1c:be:33:e2:19:3d:55:9f: 12:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:C6:9A:89:2F:EF:10:DB:90:95:A6:FA:FC:06:38:35:94:23:03:05 X509v3 Authority Key Identifier: keyid:9D:08:BF:38:A0:D3:8B:8C:AB:7C:FD:88:F5:D8:C4:ED:66:77:8C:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQi_OKDTi4yrfP2I9djE7WZ3jME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F0DF/E5083648992811EEBBCAE87AC4F9AE02/nQi_OKDTi4yrfP2I9djE7WZ3jME.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:a6:bb:a6:e7:e6:25:6a:78:6e:0a:b7:d1:d6:eb:7e:b0:e8: f3:34:a2:8b:8e:e7:fd:2e:af:e1:71:0f:fe:12:7f:50:72:d8: 9e:aa:38:88:fd:7d:7a:ea:e8:03:4d:ec:2a:de:7e:7e:a9:ff: ca:85:64:6f:32:fb:8d:80:86:3e:c6:08:b8:97:a0:ce:b2:13: b7:c1:18:4a:66:68:21:49:ef:1c:ed:a7:83:e8:db:4d:41:77: 2c:33:e8:cf:0c:14:d7:ef:b4:20:4a:d3:0c:08:7b:c5:93:44: d5:1e:c2:85:cb:89:f9:66:4d:4d:ef:0b:ed:61:f5:33:94:59: ab:fa:86:7d:43:64:b8:d3:41:b2:a3:84:3d:ed:66:16:97:60: 28:b4:82:84:ce:0c:90:20:fe:fd:c9:37:57:ad:06:74:88:fa: 0e:52:dc:dd:07:09:f2:fb:cf:ef:9f:ac:31:17:8a:0d:63:eb: 3c:88:c0:c5:ce:78:e9:82:68:69:ae:6b:64:10:c7:75:ad:8c: 15:60:82:c6:56:83:15:8f:92:80:bb:82:02:18:95:4e:7d:d0: 87:e2:0c:a3:d7:76:a6:be:2d:aa:83:84:ac:0d:08:b0:13:70: d5:a8:8d:7c:56:73:2c:cb:61:44:9e:0c:ee:2b:7c:6c:36:6a: 1a:52:33:38 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YwREYxMTAvBgNVBAUTKDlEMDhCRjM4QTBEMzhCOENBQjdDRkQ4OEY1RDhDNEVE NjY3NzhDQzEwHhcNMjYwMzI3MDMzMjQxWhcNMjYwNDAzMDMzMjQxWjAYMRYwFAYD VQQDEw02OWM1ZmE1OS1hMGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmhZtbUAtzXHNOqN9OHRsUatg82ZMLBOYt5EJH2/+zf9nEM5vxG4kypusqubC ygz1hmhKezdNySy/pRL4UX2iPsk8uC4QxtuN6UIwJNn92or6e5A3QBljqiP+lzXo /oFyfzdyi9/6RS7j8qlW+QA2AIyVO0QaC9AVhGPqto7NsuJ2/4+i7l5ByMj0yCvm NZVjBjagz9VI6S62ESFWtraBTAoOm8g60bDgUT/k/ayCQ9xIkcklxx+YQKUyg+bo BJQNGnBNG8YRDfdcXR7jWLWvsPPZnFn9m9encyt4JeqNP2jdpK/RslF+vVKtzy8p gdqbSWy9u3ZVHL4z4hk9VZ8SZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMbGmokv 7xDbkJWm+vwGODWUIwMFMB8GA1UdIwQYMBaAFJ0Ivzig04uMq3z9iPXYxO1md4zB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjBERi9FNTA4MzY0ODk5 MjgxMUVFQkJDQUU4N0FDNEY5QUUwMi9uUWlfT0tEVGk0eXJmUDJJOWRqRTdXWjNq TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25RaV9PS0RUaTR5cmZQMkk5ZGpFN1daM2pNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjBERi9FNTA4MzY0ODk5MjgxMUVFQkJDQUU4N0FDNEY5QUUwMi9uUWlfT0tEVGk0 eXJmUDJJOWRqRTdXWjNqTUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfqa7pufmJWp4bgq30dbrfrDo8zSii47n/S6v4XEP/hJ/UHLYnqo4iP19euro A03sKt5+fqn/yoVkbzL7jYCGPsYIuJegzrITt8EYSmZoIUnvHO2ng+jbTUF3LDPo zwwU1++0IErTDAh7xZNE1R7ChcuJ+WZNTe8L7WH1M5RZq/qGfUNkuNNBsqOEPe1m FpdgKLSChM4MkCD+/ck3V60GdIj6DlLc3QcJ8vvP75+sMReKDWPrPIjAxc546YJo aa5rZBDHda2MFWCCxlaDFY+SgLuCAhiVTn3Qh+IMo9d2pr4tqoOErA0IsBNw1aiN fFZzLMthRJ4M7it8bDZqGlIzOA== -----END CERTIFICATE-----Generated at Sat Mar 28 10:32:03 2026 by rpki-client