$ rpki-client -vvf rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft File: nL-xN0vpMpetwbIdvTeY0VvSdN8.mft (raw, json) Hash identifier: 1An4FnLFdn6M1dIViGddlLV8PYhpzKhrA4MsJ8vJqqo= Subject key identifier: B7:74:9F:9C:0A:19:7D:8F:38:27:88:54:FE:9E:AE:29:EB:83:7F:5B Authority key identifier: 9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF Certificate issuer: /CN=A9152696/serialNumber=9CBFB1374BE93297ADC1B21DBD3798D15BD274DF Certificate serial: 0CE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft Manifest number: 0CD7 Signing time: Tue 24 Mar 2026 18:09:31 +0000 Manifest this update: Tue 24 Mar 2026 18:09:31 +0000 Manifest next update: Tue 31 Mar 2026 18:09:31 +0000 Files and hashes: 1: nL-xN0vpMpetwbIdvTeY0VvSdN8.crl (hash: 3scT4BgweTQKCpqfGyUKL1fDX3cfUOK8PVD+a8fcJ2A=) 2: E905CD5808F111EA8E4F1D51C4F9AE02.roa (hash: isdogO69KQFGu46kiXPUMXjezpBNqbUl3557H/EGWLI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.crl rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3296 (0xce0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152696, serialNumber=9CBFB1374BE93297ADC1B21DBD3798D15BD274DF Validity Not Before: Mar 24 18:09:31 2026 GMT Not After : Mar 31 18:09:31 2026 GMT Subject: CN=69c2d35b-6d6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:59:5c:6f:57:6d:4f:26:a4:4d:71:43:8e:e3: 32:88:63:df:5e:ef:a3:cd:3a:ba:67:e1:34:fb:4a: 17:40:3d:5e:39:fb:29:04:23:96:bc:27:a6:9e:2d: ca:17:3c:9c:46:78:51:2b:7b:26:c2:fd:5c:03:f2: fa:7b:f5:ab:9d:e3:d7:f9:53:54:0e:ac:5a:4a:9e: ce:fe:87:a2:d4:93:ab:48:e1:5a:2f:9a:9e:99:b4: 3b:40:a8:f7:30:d8:0b:52:f2:1f:4f:d3:7a:fc:6a: 78:65:63:29:ee:b6:ab:6f:28:e0:50:14:38:a6:0d: bb:9a:fa:49:3b:d4:64:c9:fd:04:0a:dd:4a:57:b3: cf:31:03:1f:79:7a:7c:ba:43:8c:d7:77:f2:e3:35: 3d:84:c9:6a:75:f2:25:b8:99:a2:bb:b3:e7:9c:09: 89:5a:31:e3:31:17:5f:8f:cc:0e:58:2f:cd:26:89: b3:db:83:ca:05:1e:07:22:6a:1e:c5:9b:17:2f:03: 5a:64:86:91:44:f5:8c:56:d9:67:4e:f2:f7:8b:72: 47:82:5a:5c:95:23:5c:cf:c1:1e:fb:bf:a7:05:0a: d0:a6:6a:67:12:8b:6e:db:90:37:fa:92:32:3e:1d: 12:29:8c:f3:9e:e5:92:d1:cd:68:65:de:f2:17:79: 89:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:74:9F:9C:0A:19:7D:8F:38:27:88:54:FE:9E:AE:29:EB:83:7F:5B X509v3 Authority Key Identifier: keyid:9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:16:ab:c8:73:30:04:fa:1e:e4:7a:67:16:cc:69:bd:ba:bc: 4e:53:76:fe:76:92:b3:8e:d0:1a:14:5b:11:ec:ed:43:aa:f2: 10:00:5b:4a:c0:8d:71:d9:07:2e:53:15:a5:41:70:89:d3:6a: 58:4a:ec:78:49:9e:76:b0:9a:f0:39:0c:16:ec:d6:97:8d:71: 7e:42:73:d5:cd:c1:d8:32:c5:f3:ea:9a:78:86:75:5b:af:ba: 96:78:94:8e:76:fb:0a:f7:d7:ec:f9:e4:29:a0:28:dd:00:67: 2d:74:21:2f:bb:4d:13:f4:c1:dc:94:0c:87:0e:2e:70:48:46: 7d:aa:bb:ad:94:a3:a7:f7:5d:32:ef:81:31:ea:58:e9:87:ae: 4c:4c:63:42:e8:d2:87:11:67:7b:66:c3:e2:f2:b3:07:29:1e: 1b:eb:c9:28:02:bb:d5:ae:a3:84:05:6f:c3:db:99:f1:23:c0: eb:f0:3b:b8:c1:e8:3f:6e:49:e1:cd:18:e5:a6:f4:dc:57:06: fa:66:7f:a7:f7:02:4b:c6:7e:b3:6d:28:70:fc:75:82:e1:95: 57:89:00:cb:e1:a8:04:db:11:5c:d5:42:4f:e2:00:48:60:e2: fd:e6:b9:45:da:7b:96:98:f4:58:66:8a:cd:62:74:9d:95:ff: 95:52:d2:93 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI2OTYxMTAvBgNVBAUTKDlDQkZCMTM3NEJFOTMyOTdBREMxQjIxREJEMzc5OEQx NUJEMjc0REYwHhcNMjYwMzI0MTgwOTMxWhcNMjYwMzMxMTgwOTMxWjAYMRYwFAYD VQQDEw02OWMyZDM1Yi02ZDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1lcb1dtTyakTXFDjuMyiGPfXu+jzTq6Z+E0+0oXQD1eOfspBCOWvCemni3K FzycRnhRK3smwv1cA/L6e/WrnePX+VNUDqxaSp7O/oei1JOrSOFaL5qembQ7QKj3 MNgLUvIfT9N6/Gp4ZWMp7rarbyjgUBQ4pg27mvpJO9Rkyf0ECt1KV7PPMQMfeXp8 ukOM13fy4zU9hMlqdfIluJmiu7PnnAmJWjHjMRdfj8wOWC/NJomz24PKBR4HImoe xZsXLwNaZIaRRPWMVtlnTvL3i3JHglpclSNcz8Ee+7+nBQrQpmpnEotu25A3+pIy Ph0SKYzznuWS0c1oZd7yF3mJHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLd0n5wK GX2POCeIVP6erinrg39bMB8GA1UdIwQYMBaAFJy/sTdL6TKXrcGyHb03mNFb0nTf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjY5Ni83MjVDQTFENDA2 Q0QxMUVBQUU1RTc5MzRDNEY5QUUwMi9uTC14TjB2cE1wZXR3YklkdlRlWTBWdlNk TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25MLXhOMHZwTXBldHdiSWR2VGVZMFZ2U2ROOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjY5Ni83MjVDQTFENDA2Q0QxMUVBQUU1RTc5MzRDNEY5QUUwMi9uTC14TjB2cE1w ZXR3YklkdlRlWTBWdlNkTjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjharyHMwBPoe5HpnFsxpvbq8TlN2/naSs47QGhRbEeztQ6ryEABbSsCNcdkH LlMVpUFwidNqWErseEmedrCa8DkMFuzWl41xfkJz1c3B2DLF8+qaeIZ1W6+6lniU jnb7CvfX7PnkKaAo3QBnLXQhL7tNE/TB3JQMhw4ucEhGfaq7rZSjp/ddMu+BMepY 6YeuTExjQujShxFne2bD4vKzBykeG+vJKAK71a6jhAVvw9uZ8SPA6/A7uMHoP25J 4c0Y5ab03FcG+mZ/p/cCS8Z+s20ocPx1guGVV4kAy+GoBNsRXNVCT+IASGDi/ea5 Rdp7lpj0WGaKzWJ0nZX/lVLSkw== -----END CERTIFICATE-----Generated at Thu Mar 26 02:50:32 2026 by rpki-client