$ rpki-client -vvf rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft File: NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft (raw, json) Hash identifier: O4p255UxS821e6W4ygUsFzmF3Qt2i0NON+qPjktdwAM= Subject key identifier: 7F:29:68:F1:01:7B:69:2F:3E:06:B1:38:2B:12:78:2A:B4:9E:21:AD Authority key identifier: 34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 Certificate issuer: /CN=A9148DB2/serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Certificate serial: 036F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft Manifest number: 0367 Signing time: Wed 13 May 2026 01:01:24 +0000 Manifest this update: Wed 13 May 2026 01:01:23 +0000 Manifest next update: Wed 20 May 2026 01:01:23 +0000 Files and hashes: 1: NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl (hash: x3Ld9xkO2isqQCbqpZ60ZY2+MaMWV3HYylCBL8JoSYE=) 2: F343C4ECF93911ECBD1E663DC4F9AE02.roa (hash: QwQkgtoePZKxFtkm4cXFgAdorKM4wsMJHhlleIVTFws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 01:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 879 (0x36f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148DB2, serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Validity Not Before: May 13 01:01:23 2026 GMT Not After : May 20 01:01:23 2026 GMT Subject: CN=6a03cd63-2af0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:46:b1:0d:f0:2c:0c:f9:da:f9:6d:89:07:2a: d4:38:45:7f:8a:2f:ad:6e:f3:49:29:cd:82:e3:11: e9:2d:b8:12:61:7d:f5:79:6f:2a:8c:29:b6:5e:eb: 3c:4c:72:8b:75:b0:e2:db:21:8d:9f:2b:27:09:01: 7b:19:7e:b9:4b:de:ab:ea:bb:4c:29:cb:8e:bc:10: b5:ae:e1:a9:7d:a6:17:94:ed:4a:6d:3a:33:af:97: a5:96:db:7e:84:53:08:ad:f0:d3:67:cd:a7:97:de: 1c:56:53:29:3d:bf:ff:b2:13:67:30:a3:23:0d:40: c2:bb:f3:53:c4:5f:ce:d1:29:ce:98:16:fa:af:fa: 25:aa:5b:47:40:0a:c6:28:93:c1:1d:43:77:2c:18: 26:d1:e3:48:a4:5d:28:81:4a:a0:13:93:86:53:b2: c7:c7:e4:6e:10:a7:2e:8b:b2:b5:6a:90:55:ca:5d: d3:a8:65:d5:75:99:20:c0:c8:25:f4:69:35:64:20: 4b:58:2f:99:ec:2d:16:d3:0d:29:ef:92:40:6a:9a: ec:39:22:94:32:f9:81:4b:54:26:58:ce:fd:bc:19: be:ac:7f:5f:b8:c6:25:6c:0e:fa:dc:ee:3a:42:67: 99:43:3d:bf:ca:42:7f:04:08:2b:18:b6:d2:3d:3b: 8f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:29:68:F1:01:7B:69:2F:3E:06:B1:38:2B:12:78:2A:B4:9E:21:AD X509v3 Authority Key Identifier: keyid:34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:c2:b4:69:3e:b6:42:8a:58:05:9e:03:b9:15:75:e4:17:d7: 6c:96:c4:af:8f:33:3e:aa:95:cd:c4:9c:82:11:6c:74:96:06: a1:2d:e3:8a:75:26:eb:f0:1e:1c:7a:c7:7e:99:1c:8f:b8:b0: 92:e6:f0:7b:83:49:7a:1f:1a:8d:d7:95:47:97:c9:72:13:b0: fe:7e:8a:a6:7d:bf:6e:1d:e0:73:54:77:e9:d5:9d:b9:c7:98: 82:1e:9b:19:f2:eb:8c:46:92:35:2a:56:46:86:b6:05:5b:53: 53:18:1a:62:a4:1b:5e:db:85:1b:98:5b:ce:4f:eb:b0:09:72: 6d:19:58:c4:4f:21:19:55:3d:8c:14:b4:05:3b:1b:67:5d:31: f1:3b:94:37:2e:c4:90:ad:ca:86:0c:50:ac:43:3a:7e:f4:50: bb:bd:40:16:c8:93:a7:5a:c8:57:72:1a:9a:d2:0d:06:bf:dd: a6:14:3d:99:17:85:9d:49:88:51:70:87:9b:cf:5c:20:c6:3f: 45:ce:9a:10:7d:7b:5f:75:72:ef:8d:98:c3:06:1f:84:13:3a: 30:f5:52:3a:0b:65:2e:d4:f8:de:45:ec:93:1b:07:3e:f2:05: a4:09:76:64:ab:0a:21:ad:aa:c4:4d:0d:5d:e4:29:08:0c:4f: f7:50:3e:56 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhEQjIxMTAvBgNVBAUTKDM0QUJFRjg0NjQ3NEJCREEwQzU1NjQ2NUREN0U5RUMw RkE2NzRCQjUwHhcNMjYwNTEzMDEwMTIzWhcNMjYwNTIwMDEwMTIzWjAYMRYwFAYD VQQDEw02YTAzY2Q2My0yYWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEaxDfAsDPna+W2JByrUOEV/ii+tbvNJKc2C4xHpLbgSYX31eW8qjCm2Xus8 THKLdbDi2yGNnysnCQF7GX65S96r6rtMKcuOvBC1ruGpfaYXlO1KbTozr5elltt+ hFMIrfDTZ82nl94cVlMpPb//shNnMKMjDUDCu/NTxF/O0SnOmBb6r/olqltHQArG KJPBHUN3LBgm0eNIpF0ogUqgE5OGU7LHx+RuEKcui7K1apBVyl3TqGXVdZkgwMgl 9Gk1ZCBLWC+Z7C0W0w0p75JAaprsOSKUMvmBS1QmWM79vBm+rH9fuMYlbA763O46 QmeZQz2/ykJ/BAgrGLbSPTuP5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH8paPEB e2kvPgaxOCsSeCq0niGtMB8GA1UdIwQYMBaAFDSr74RkdLvaDFVkZd1+nsD6Z0u1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OERCMi8wNDdEQzM4OEY5 MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5b01WV1JsM1g2ZXdQcG5T N1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05LdnZoR1IwdTlvTVZXUmwzWDZld1BwblM3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OERCMi8wNDdEQzM4OEY5MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5 b01WV1JsM1g2ZXdQcG5TN1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA1cK0aT62QopYBZ4DuRV15BfXbJbEr48zPqqVzcScghFsdJYGoS3jinUm6/Ae HHrHfpkcj7iwkubwe4NJeh8ajdeVR5fJchOw/n6Kpn2/bh3gc1R36dWduceYgh6b GfLrjEaSNSpWRoa2BVtTUxgaYqQbXtuFG5hbzk/rsAlybRlYxE8hGVU9jBS0BTsb Z10x8TuUNy7EkK3KhgxQrEM6fvRQu71AFsiTp1rIV3IamtINBr/dphQ9mReFnUmI UXCHm89cIMY/Rc6aEH17X3Vy742YwwYfhBM6MPVSOgtlLtT43kXskxsHPvIFpAl2 ZKsKIa2qxE0NXeQpCAxP91A+Vg== -----END CERTIFICATE-----Generated at Wed May 13 09:35:31 2026 by rpki-client