$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft File: NNz0cp9FgmKIjvB6K9RnX24xE4A.mft (raw, json) Hash identifier: S10Xcoww+Ml9DrupjEqvPNsLQhlXJEyDRq8V8Qofyys= Subject key identifier: 83:CA:34:52:3A:3B:AC:EA:84:B7:96:B2:B4:58:33:86:EB:8C:7B:05 Authority key identifier: 34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 Certificate issuer: /CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Certificate serial: 0751 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft Manifest number: 0743 Signing time: Tue 12 May 2026 21:49:52 +0000 Manifest this update: Tue 12 May 2026 21:49:52 +0000 Manifest next update: Tue 19 May 2026 21:49:52 +0000 Files and hashes: 1: NNz0cp9FgmKIjvB6K9RnX24xE4A.crl (hash: GKoA7w+8mq0DjcTqWBC2/eVg5fsqRaPKoCBNmhcZi7o=) 2: AE27A8A671B311EBB90BB364C4F9AE02.roa (hash: Yz43RwlZ5yy4nBg8j+EwoqSiXNci2+WLpvODtls54Cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 21:49:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1873 (0x751) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B7F, serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Validity Not Before: May 12 21:49:52 2026 GMT Not After : May 19 21:49:52 2026 GMT Subject: CN=6a03a080-89e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8c:be:94:27:39:6b:0b:b2:cb:3e:6b:a1:8e: 76:28:81:8e:e3:a0:2d:09:c5:e0:99:7b:77:b9:7d: 6f:1f:66:2c:b1:7a:76:cc:0f:3d:d8:e7:d9:4b:d3: c3:c1:7c:b7:ab:0b:a3:9d:1f:62:6f:9b:a3:3c:bc: 9a:63:5d:6f:d9:21:ca:59:cd:22:4e:46:c2:99:7f: a4:1f:b4:8c:b2:82:5a:25:e3:a1:5a:31:b2:3d:38: 55:d6:0f:69:c9:68:e4:9a:ee:47:9f:6e:fa:9c:84: c2:c2:4f:98:b4:70:85:d3:e1:65:c9:42:76:c9:6a: 3b:96:e5:3c:c8:6d:7f:90:25:cb:b1:f9:59:bf:75: c6:ed:93:c1:22:64:e8:e8:a2:9e:57:6e:18:67:5b: d5:74:f0:a8:eb:f3:8a:33:80:03:3f:50:96:bc:b8: a0:02:44:5e:0d:05:1f:a3:a9:91:72:57:a0:65:ec: bd:7b:b3:fd:e0:57:ca:47:b2:27:53:f8:9f:81:39: e5:da:84:79:9a:05:d4:39:ab:b1:74:00:e7:2f:bd: 45:a9:c9:b3:83:6e:8e:83:0f:8f:d9:98:bf:61:88: f6:15:26:be:60:7b:86:96:36:ee:17:89:52:9e:1a: f3:2d:9d:ae:02:97:03:f5:ed:79:ef:82:6d:3e:ef: 7c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:CA:34:52:3A:3B:AC:EA:84:B7:96:B2:B4:58:33:86:EB:8C:7B:05 X509v3 Authority Key Identifier: keyid:34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:c3:1e:f7:88:cb:60:86:08:8b:83:b5:1b:3d:64:93:91:06: 84:25:bf:20:a4:ea:00:66:b3:ff:eb:7d:f3:93:d8:68:0f:cc: 34:5d:87:a0:c1:22:42:9f:00:ee:59:4d:c6:33:7c:34:6e:9e: ab:b1:73:49:2d:43:2b:1a:6f:59:1d:5d:89:73:a2:ad:75:86: 82:f3:37:72:37:56:f9:b1:b4:cf:16:be:ad:68:ed:24:ce:a0: 7c:b3:ae:8e:81:05:d5:cd:a4:ea:09:59:79:3a:53:16:1a:e3: 76:b1:8d:b1:a4:fa:9b:5f:63:57:59:f9:54:03:89:20:d8:5f: ce:2d:16:56:66:84:59:a8:56:21:46:3e:3f:ff:bd:23:b9:bf: 76:c4:f2:a7:0e:c2:c4:ba:cd:d0:5f:0b:3c:bc:e0:cf:d1:27: 97:2a:87:45:ff:00:39:d8:be:b1:99:e7:7c:f1:a7:8a:45:77: 58:f1:5a:5e:33:1e:f9:0e:19:48:9f:6a:3a:9a:72:3e:9b:88: 60:c5:c0:dc:96:60:a3:10:ee:89:62:cf:ed:99:34:aa:47:30: e2:d5:ae:a5:44:72:3b:fb:aa:b4:88:c4:70:9d:81:4d:b3:6b: b4:c0:ad:c4:b0:9c:fa:27:65:11:1e:bf:23:bb:69:da:f7:dd: 73:ad:eb:d8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCN0YxMTAvBgNVBAUTKDM0RENGNDcyOUY0NTgyNjI4ODhFRjA3QTJCRDQ2NzVG NkUzMTEzODAwHhcNMjYwNTEyMjE0OTUyWhcNMjYwNTE5MjE0OTUyWjAYMRYwFAYD VQQDEw02YTAzYTA4MC04OWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Yy+lCc5awuyyz5roY52KIGO46AtCcXgmXt3uX1vH2YssXp2zA892OfZS9PD wXy3qwujnR9ib5ujPLyaY11v2SHKWc0iTkbCmX+kH7SMsoJaJeOhWjGyPThV1g9p yWjkmu5Hn276nITCwk+YtHCF0+FlyUJ2yWo7luU8yG1/kCXLsflZv3XG7ZPBImTo 6KKeV24YZ1vVdPCo6/OKM4ADP1CWvLigAkReDQUfo6mRclegZey9e7P94FfKR7In U/ifgTnl2oR5mgXUOauxdADnL71Fqcmzg26Ogw+P2Zi/YYj2FSa+YHuGljbuF4lS nhrzLZ2uApcD9e1574JtPu98BwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIPKNFI6 O6zqhLeWsrRYM4brjHsFMB8GA1UdIwQYMBaAFDTc9HKfRYJiiI7weivUZ19uMROA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3Ri8zN0I4MkM1MDcx QjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5RmdtS0lqdkI2SzlSblgyNHhF NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OejBjcDlGZ21LSWp2QjZLOVJuWDI0eEU0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I3Ri8zN0I4MkM1MDcxQjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5Rmdt S0lqdkI2SzlSblgyNHhFNEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAB8Me94jLYIYIi4O1Gz1kk5EGhCW/IKTqAGaz/+t985PYaA/MNF2HoMEiQp8A 7llNxjN8NG6eq7FzSS1DKxpvWR1diXOirXWGgvM3cjdW+bG0zxa+rWjtJM6gfLOu joEF1c2k6glZeTpTFhrjdrGNsaT6m19jV1n5VAOJINhfzi0WVmaEWahWIUY+P/+9 I7m/dsTypw7CxLrN0F8LPLzgz9EnlyqHRf8AOdi+sZnnfPGnikV3WPFaXjMe+Q4Z SJ9qOppyPpuIYMXA3JZgoxDuiWLP7Zk0qkcw4tWupURyO/uqtIjEcJ2BTbNrtMCt xLCc+idlER6/I7tp2vfdc63r2A== -----END CERTIFICATE-----Generated at Wed May 13 15:13:07 2026 by rpki-client