$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft File: NCaEGmQGa3hlW77KDAH9CfZXBTY.mft (raw, json) Hash identifier: 73ERyaRAHaFFgQrT/wd5aVVz7Z3y6YPffwumLmI0Bzg= Subject key identifier: EA:72:01:50:1A:AA:BE:09:FD:B1:E2:1F:73:26:9F:E3:6C:4E:7A:B1 Authority key identifier: 34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 Certificate issuer: /CN=A9157DAE/serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Certificate serial: 0249 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft Manifest number: 0249 Signing time: Tue 12 May 2026 17:02:26 +0000 Manifest this update: Tue 12 May 2026 17:02:25 +0000 Manifest next update: Tue 19 May 2026 17:02:25 +0000 Files and hashes: 1: NCaEGmQGa3hlW77KDAH9CfZXBTY.crl (hash: OnciV5+EdlnF5bE8F9Baiyqmj6AWIgqvrCmO9CZu0mE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 585 (0x249) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Validity Not Before: May 12 17:02:25 2026 GMT Not After : May 19 17:02:25 2026 GMT Subject: CN=6a035d22-166c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f2:04:85:13:bf:53:a7:6d:83:4a:60:81:f1: 59:b1:c5:dc:b2:7d:dc:1d:38:0d:c7:a7:a7:aa:29: da:19:c7:0b:5c:f9:d6:f7:06:8d:56:c9:8b:33:89: e7:47:3d:3e:e5:ea:8a:b9:36:cd:00:59:3c:06:87: 6b:a0:62:e6:e5:64:92:56:47:c3:2d:e1:06:2f:bf: b5:32:b9:9e:f0:af:f2:4c:c6:22:54:ec:c2:d4:56: 73:81:19:63:e3:9e:e6:88:1e:93:3e:c6:cd:2a:81: 27:31:fc:52:84:74:41:9d:14:a4:73:1b:0b:80:d2: 3b:0b:c6:4a:a0:82:55:e7:99:ab:cb:ea:28:65:bd: db:cb:fa:f5:e7:c4:22:df:a7:9e:8b:ae:ac:17:c2: 76:39:18:7c:15:1e:50:09:4a:17:92:3e:75:11:d8: f2:3a:33:80:04:9c:b1:e1:64:c8:0d:d5:35:f1:87: ea:8b:2e:02:e0:25:2a:07:e6:22:00:df:31:75:2b: eb:30:05:62:0c:98:1e:d0:c5:5e:b5:e3:0f:25:34: 3f:2c:98:2c:79:f1:d8:ca:29:58:3d:0b:7b:46:70: 9a:30:91:98:8f:f5:23:31:dd:05:a8:63:eb:a0:97: 40:7c:dc:5c:97:73:c5:24:56:2c:1a:ae:64:4c:fb: c5:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:72:01:50:1A:AA:BE:09:FD:B1:E2:1F:73:26:9F:E3:6C:4E:7A:B1 X509v3 Authority Key Identifier: keyid:34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:2a:2f:77:83:14:d3:6f:9b:af:89:21:ad:82:12:17:ad:78: da:2e:25:c4:52:df:a1:d7:11:4a:15:00:43:ba:b9:27:ec:51: 78:ec:d4:b7:f2:b1:91:6c:85:e1:46:aa:32:e6:90:0a:c8:72: 8d:3a:77:e9:ec:bf:98:d6:70:d0:fd:3b:73:89:f3:df:6c:f8: 6f:b3:c2:d0:68:02:74:24:cb:db:9e:bd:77:ca:cb:b7:bb:cd: 03:ec:d4:5a:b8:c9:c7:3d:ae:61:49:29:3a:33:2b:72:9d:0c: 39:cd:d6:62:5d:b6:92:84:d9:9a:2d:c9:7a:9e:d0:16:84:a0: 7a:57:e0:41:12:d3:af:03:f6:33:16:94:77:26:ec:d1:99:32: 1c:3e:07:81:51:fc:02:77:4e:02:c8:b1:78:a3:67:17:61:74: c2:54:ae:e8:09:dd:89:92:30:a5:9b:51:c4:a3:d8:dd:4e:0d: ba:54:06:df:67:bb:d1:28:e8:44:6a:22:fa:d5:2a:4a:30:c9: 3a:4d:57:a2:61:34:44:53:7a:43:ed:97:75:e1:07:0d:e4:bb: ce:92:58:9c:2f:f7:2a:85:d6:a2:2a:ee:87:b9:94:56:55:f8: 7e:b7:b3:b3:6e:f2:6e:b0:ad:45:31:9a:bc:60:b6:4c:23:5a: cd:35:56:50 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDM0MjY4NDFBNjQwNjZCNzg2NTVCQkVDQTBDMDFGRDA5 RjY1NzA1MzYwHhcNMjYwNTEyMTcwMjI1WhcNMjYwNTE5MTcwMjI1WjAYMRYwFAYD VQQDEw02YTAzNWQyMi0xNjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPIEhRO/U6dtg0pggfFZscXcsn3cHTgNx6enqinaGccLXPnW9waNVsmLM4nn Rz0+5eqKuTbNAFk8BodroGLm5WSSVkfDLeEGL7+1Mrme8K/yTMYiVOzC1FZzgRlj 457miB6TPsbNKoEnMfxShHRBnRSkcxsLgNI7C8ZKoIJV55mry+ooZb3by/r158Qi 36eei66sF8J2ORh8FR5QCUoXkj51EdjyOjOABJyx4WTIDdU18Yfqiy4C4CUqB+Yi AN8xdSvrMAViDJge0MVeteMPJTQ/LJgsefHYyilYPQt7RnCaMJGYj/UjMd0FqGPr oJdAfNxcl3PFJFYsGq5kTPvF6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOpyAVAa qr4J/bHiH3Mmn+NsTnqxMB8GA1UdIwQYMBaAFDQmhBpkBmt4ZVu+ygwB/Qn2VwU2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS8xMDRBN0UxRURG QUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2EzaGxXNzdLREFIOUNmWlhC VFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL05DYUVHbVFHYTNobFc3N0tEQUg5Q2ZaWEJUWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS8xMDRBN0UxRURGQUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2Ez aGxXNzdLREFIOUNmWlhCVFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeiovd4MU02+br4khrYISF6142i4lxFLfodcRShUAQ7q5J+xReOzUt/KxkWyF 4UaqMuaQCshyjTp36ey/mNZw0P07c4nz32z4b7PC0GgCdCTL2569d8rLt7vNA+zU WrjJxz2uYUkpOjMrcp0MOc3WYl22koTZmi3Jep7QFoSgelfgQRLTrwP2MxaUdybs 0ZkyHD4HgVH8AndOAsixeKNnF2F0wlSu6AndiZIwpZtRxKPY3U4NulQG32e70Sjo RGoi+tUqSjDJOk1XomE0RFN6Q+2XdeEHDeS7zpJYnC/3KoXWoiruh7mUVlX4frez s27ybrCtRTGavGC2TCNazTVWUA== -----END CERTIFICATE-----Generated at Tue May 12 23:19:02 2026 by rpki-client