$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft File: NCaEGmQGa3hlW77KDAH9CfZXBTY.mft (raw, json) Hash identifier: FxamcS1mhbDKZCyNkpGlVmXahZ3xsaDSfvhQqWpRq4c= Subject key identifier: DA:03:49:B5:A2:B1:7E:8A:03:BF:33:D3:80:E0:A8:F0:A2:0E:E0:52 Authority key identifier: 34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 Certificate issuer: /CN=A9157DAE/serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Certificate serial: 0230 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft Manifest number: 0230 Signing time: Tue 24 Mar 2026 16:55:53 +0000 Manifest this update: Tue 24 Mar 2026 16:55:53 +0000 Manifest next update: Tue 31 Mar 2026 16:55:53 +0000 Files and hashes: 1: NCaEGmQGa3hlW77KDAH9CfZXBTY.crl (hash: cJysN0KHsixdAzDiInofRMLuv4AVOJSXJR0DYU1fS0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:55:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 560 (0x230) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Validity Not Before: Mar 24 16:55:53 2026 GMT Not After : Mar 31 16:55:53 2026 GMT Subject: CN=69c2c219-225e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6a:73:08:aa:b1:8b:52:ab:a2:2f:21:3a:2d: e0:73:ea:42:f9:82:fd:81:26:59:91:75:69:1c:aa: 33:85:05:4a:fc:ad:d0:a1:3d:94:3f:02:82:6e:44: 7f:fb:95:fe:74:99:4f:d8:02:78:5c:44:9b:92:c0: 94:a9:ee:98:2d:36:4a:6f:43:35:bd:7f:18:22:b9: 24:6a:08:4b:9d:37:e1:92:e5:53:6d:61:e8:cd:68: 88:df:5a:0a:3c:8d:26:8f:ef:83:78:d3:9f:77:67: ef:52:69:a8:bd:f6:85:8a:fa:f3:10:a4:0d:6e:30: 63:18:10:bb:17:4d:36:d9:ec:aa:3f:fa:f7:70:cb: a3:fa:5e:7c:a2:e6:ae:47:ed:df:8c:96:1a:69:4f: bb:d5:f0:07:51:6e:20:2e:c7:d4:de:e6:3e:21:c5: 4d:35:2b:b4:b7:a8:db:a7:2d:d0:ee:3b:e3:38:37: f9:af:9a:22:23:aa:b2:45:fa:d6:f1:9e:30:e8:4a: 5c:46:c0:16:57:aa:06:c4:72:85:d8:ca:0a:d0:d6: 3c:84:5b:0b:74:30:62:37:8f:fe:e1:17:5b:94:56: cc:60:74:d7:12:1b:e2:4c:06:d9:2d:f4:98:17:1b: 28:55:08:b5:e8:30:4b:69:81:15:5b:0d:85:d8:9d: f1:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:03:49:B5:A2:B1:7E:8A:03:BF:33:D3:80:E0:A8:F0:A2:0E:E0:52 X509v3 Authority Key Identifier: keyid:34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:8b:eb:0f:e3:48:14:ca:eb:56:24:d8:85:07:cc:36:fc:e9: d9:72:ef:12:46:d7:e8:45:5e:aa:1b:67:64:82:e6:da:e3:5b: c4:dc:3d:19:13:0c:af:9a:41:d4:41:7d:2b:1b:0e:7c:96:f9: 25:b2:b8:c7:0b:2c:6e:bf:a3:44:b1:f8:7c:95:a9:5f:a7:ee: ff:fc:35:9d:73:ff:eb:0c:60:13:a0:55:56:b9:65:70:0e:90: 84:06:56:cb:11:cf:72:de:85:6f:68:14:22:b6:42:0c:a3:c9: aa:57:0c:01:5a:46:0b:f3:be:f2:31:82:a4:4f:39:1d:3d:0a: 67:ad:1a:e0:cd:45:fa:65:ac:c2:4e:cc:c4:32:c9:37:5e:a3: c1:5b:c1:5d:0e:9a:50:43:a3:1d:85:98:af:4c:f7:f3:e2:60: f6:9d:f8:f6:c1:cd:a6:29:19:79:b8:da:3c:85:8a:94:08:ab: cf:92:b5:8f:71:9e:ad:fb:77:5f:0a:fa:7b:8d:86:9e:5d:d4: b7:7b:b1:38:2e:df:4e:9e:8b:ae:d7:a6:88:6c:fa:64:db:16: 88:d3:c9:53:96:69:31:b0:dc:d0:b5:a5:b5:a8:ca:fe:e8:59: ae:8a:bd:d0:9f:94:d2:33:d8:70:55:7e:67:9a:20:a4:af:a4: 97:3f:45:7d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDM0MjY4NDFBNjQwNjZCNzg2NTVCQkVDQTBDMDFGRDA5 RjY1NzA1MzYwHhcNMjYwMzI0MTY1NTUzWhcNMjYwMzMxMTY1NTUzWjAYMRYwFAYD VQQDEw02OWMyYzIxOS0yMjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumpzCKqxi1Kroi8hOi3gc+pC+YL9gSZZkXVpHKozhQVK/K3QoT2UPwKCbkR/ +5X+dJlP2AJ4XESbksCUqe6YLTZKb0M1vX8YIrkkaghLnTfhkuVTbWHozWiI31oK PI0mj++DeNOfd2fvUmmovfaFivrzEKQNbjBjGBC7F0022eyqP/r3cMuj+l58ouau R+3fjJYaaU+71fAHUW4gLsfU3uY+IcVNNSu0t6jbpy3Q7jvjODf5r5oiI6qyRfrW 8Z4w6EpcRsAWV6oGxHKF2MoK0NY8hFsLdDBiN4/+4RdblFbMYHTXEhviTAbZLfSY FxsoVQi16DBLaYEVWw2F2J3xAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNoDSbWi sX6KA78z04DgqPCiDuBSMB8GA1UdIwQYMBaAFDQmhBpkBmt4ZVu+ygwB/Qn2VwU2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS8xMDRBN0UxRURG QUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2EzaGxXNzdLREFIOUNmWlhC VFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL05DYUVHbVFHYTNobFc3N0tEQUg5Q2ZaWEJUWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS8xMDRBN0UxRURGQUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2Ez aGxXNzdLREFIOUNmWlhCVFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI4vrD+NIFMrrViTYhQfMNvzp2XLvEkbX6EVeqhtnZILm2uNbxNw9GRMMr5pB 1EF9KxsOfJb5JbK4xwssbr+jRLH4fJWpX6fu//w1nXP/6wxgE6BVVrllcA6QhAZW yxHPct6Fb2gUIrZCDKPJqlcMAVpGC/O+8jGCpE85HT0KZ60a4M1F+mWswk7MxDLJ N16jwVvBXQ6aUEOjHYWYr0z38+Jg9p349sHNpikZebjaPIWKlAirz5K1j3Gerft3 Xwr6e42Gnl3Ut3uxOC7fTp6LrtemiGz6ZNsWiNPJU5ZpMbDc0LWltajK/uhZroq9 0J+U0jPYcFV+Z5ogpK+klz9FfQ== -----END CERTIFICATE-----Generated at Thu Mar 26 11:58:43 2026 by rpki-client