$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft File: NNz0cp9FgmKIjvB6K9RnX24xE4A.mft (raw, json) Hash identifier: 1bBmJT4alHu1ZJbVNBwgy8UNAsUTjtysXfkyg0QI+uk= Subject key identifier: 0E:41:EB:DC:61:80:2C:86:B8:3F:23:88:88:29:4D:AD:D9:10:E0:49 Authority key identifier: 34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 Certificate issuer: /CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Certificate serial: 0738 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft Manifest number: 072A Signing time: Tue 24 Mar 2026 21:32:36 +0000 Manifest this update: Tue 24 Mar 2026 21:32:35 +0000 Manifest next update: Tue 31 Mar 2026 21:32:35 +0000 Files and hashes: 1: NNz0cp9FgmKIjvB6K9RnX24xE4A.crl (hash: IWI7Lg0eYqhx/025So+ay+IICMNONoyMZEwAAZF5p3w=) 2: AE27A8A671B311EBB90BB364C4F9AE02.roa (hash: Yz43RwlZ5yy4nBg8j+EwoqSiXNci2+WLpvODtls54Cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:32:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1848 (0x738) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B7F, serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Validity Not Before: Mar 24 21:32:35 2026 GMT Not After : Mar 31 21:32:35 2026 GMT Subject: CN=69c302f4-2ceb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a0:d2:e2:93:88:36:a3:28:67:05:d2:42:06: 4d:92:60:e3:f9:b2:42:66:38:8d:b2:c5:2e:3b:c6: bb:01:03:93:0a:24:17:70:78:6c:c4:df:83:2d:f0: 7e:3a:43:ed:2d:a9:ed:2a:e0:69:1a:bc:0a:61:bb: 59:ed:96:4b:f6:23:d9:9e:0d:12:28:bc:cb:46:e8: d2:65:72:46:aa:51:40:af:8a:7d:ed:44:e3:6c:7d: bb:d0:68:21:55:a1:da:7f:3f:35:ff:9a:a3:87:01: 36:e4:e3:7e:87:c7:53:f0:4b:a3:b5:5c:96:3b:78: 7a:80:72:1e:bf:46:ca:05:b9:cf:5c:f4:f8:ed:54: 85:14:c0:cf:e2:fc:db:04:88:85:69:02:a1:ce:e9: 9c:5a:2a:0f:db:a4:62:06:bd:af:b8:98:a3:45:99: b8:e9:91:4c:a7:7e:2c:71:ea:60:c6:f4:09:54:c1: d4:ff:c3:07:c4:f6:1c:b7:49:41:06:96:a9:15:c3: d8:46:9c:f9:45:6b:e5:5d:f8:d0:34:bc:be:cb:1e: cc:d8:42:7b:43:bd:1f:aa:26:ee:ed:99:81:85:58: 54:18:18:33:48:58:ad:45:0b:af:af:fe:15:bb:20: 6b:84:a6:5f:bf:fe:86:3f:a0:71:88:48:7e:88:a8: ff:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:41:EB:DC:61:80:2C:86:B8:3F:23:88:88:29:4D:AD:D9:10:E0:49 X509v3 Authority Key Identifier: keyid:34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:7c:a1:b1:f8:26:cd:a0:2d:82:bd:2b:f4:22:0c:fe:c9:fb: 68:41:e6:b3:81:22:70:b9:fe:8d:e8:39:fd:ac:c6:62:81:02: ca:46:41:ec:e0:1e:4b:fe:77:09:e5:4a:c5:c0:95:85:0f:99: fb:26:76:e2:2a:bb:e9:f1:c2:35:bb:a8:13:e7:3d:22:da:3a: aa:f5:d5:ef:08:89:0a:34:7d:f7:b0:35:45:59:77:5e:f7:a2: 4f:bf:4a:c2:c8:bc:f1:8c:79:9c:dc:57:d2:5a:24:7b:ac:b3: 08:9f:a0:88:1d:e4:41:31:2e:b8:3a:94:03:e7:a9:16:9c:b6: fa:6a:4f:18:29:2d:5f:91:d9:c5:0c:d1:28:47:0c:41:1c:7d: e1:13:f8:04:42:bd:85:d0:7a:64:51:c2:32:66:51:9c:bb:9f: a7:87:2f:30:f7:bf:b3:f5:a2:ca:28:62:6e:bc:e7:d9:fc:f2: ac:12:2e:0d:3e:2d:5f:f1:29:f1:96:89:7c:83:e2:cd:a8:6f: c4:e8:5e:46:13:e5:c1:e6:cf:62:40:10:69:aa:d6:51:67:c2: b9:ec:4b:bd:2d:9b:9d:07:48:3c:db:b5:67:39:ed:9c:d1:b2: 3d:a3:d9:29:6a:d0:5a:06:4d:57:e5:6d:dd:aa:74:6c:21:9a: 38:be:f2:ab -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCN0YxMTAvBgNVBAUTKDM0RENGNDcyOUY0NTgyNjI4ODhFRjA3QTJCRDQ2NzVG NkUzMTEzODAwHhcNMjYwMzI0MjEzMjM1WhcNMjYwMzMxMjEzMjM1WjAYMRYwFAYD VQQDEw02OWMzMDJmNC0yY2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqDS4pOINqMoZwXSQgZNkmDj+bJCZjiNssUuO8a7AQOTCiQXcHhsxN+DLfB+ OkPtLantKuBpGrwKYbtZ7ZZL9iPZng0SKLzLRujSZXJGqlFAr4p97UTjbH270Ggh VaHafz81/5qjhwE25ON+h8dT8EujtVyWO3h6gHIev0bKBbnPXPT47VSFFMDP4vzb BIiFaQKhzumcWioP26RiBr2vuJijRZm46ZFMp34scepgxvQJVMHU/8MHxPYct0lB BpapFcPYRpz5RWvlXfjQNLy+yx7M2EJ7Q70fqibu7ZmBhVhUGBgzSFitRQuvr/4V uyBrhKZfv/6GP6BxiEh+iKj/lwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA5B69xh gCyGuD8jiIgpTa3ZEOBJMB8GA1UdIwQYMBaAFDTc9HKfRYJiiI7weivUZ19uMROA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3Ri8zN0I4MkM1MDcx QjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5RmdtS0lqdkI2SzlSblgyNHhF NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OejBjcDlGZ21LSWp2QjZLOVJuWDI0eEU0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I3Ri8zN0I4MkM1MDcxQjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5Rmdt S0lqdkI2SzlSblgyNHhFNEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOXyhsfgmzaAtgr0r9CIM/sn7aEHms4EicLn+jeg5/azGYoECykZB7OAeS/53 CeVKxcCVhQ+Z+yZ24iq76fHCNbuoE+c9Ito6qvXV7wiJCjR997A1RVl3XveiT79K wsi88Yx5nNxX0loke6yzCJ+giB3kQTEuuDqUA+epFpy2+mpPGCktX5HZxQzRKEcM QRx94RP4BEK9hdB6ZFHCMmZRnLufp4cvMPe/s/Wiyihibrzn2fzyrBIuDT4tX/Ep 8ZaJfIPizahvxOheRhPlwebPYkAQaarWUWfCuexLvS2bnQdIPNu1ZzntnNGyPaPZ KWrQWgZNV+Vt3ap0bCGaOL7yqw== -----END CERTIFICATE-----Generated at Thu Mar 26 18:37:10 2026 by rpki-client