$ rpki-client -vvf rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft File: nb0ycj1x0bhWzIRJBDf78NpVJWo.mft (raw, json) Hash identifier: iw0+x7UE7+OZ2KlUFzJZqEd+cUZ2dTr/YGS0sktkz20= Subject key identifier: B9:D0:C5:20:89:E7:7F:73:7F:AD:32:F9:D2:3A:4B:24:14:CC:86:E1 Authority key identifier: 9D:BD:32:72:3D:71:D1:B8:56:CC:84:49:04:37:FB:F0:DA:55:25:6A Certificate issuer: /CN=A9165B41/serialNumber=9DBD32723D71D1B856CC84490437FBF0DA55256A Certificate serial: 0FDA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft Manifest number: 0FD2 Signing time: Tue 24 Mar 2026 17:22:12 +0000 Manifest this update: Tue 24 Mar 2026 17:22:11 +0000 Manifest next update: Tue 31 Mar 2026 17:22:11 +0000 Files and hashes: 1: nb0ycj1x0bhWzIRJBDf78NpVJWo.crl (hash: BUaijkEIAJfhig2fIGb+JnMflfFgNkiculelKLZPNSo=) 2: B0DA9FC46FDD11E9BC194664C4F9AE02.roa (hash: u7wowu0GxNVyvgN5QOaNCcIwEh69KvtT6W+FzVJHBiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.crl rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:22:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4058 (0xfda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165B41, serialNumber=9DBD32723D71D1B856CC84490437FBF0DA55256A Validity Not Before: Mar 24 17:22:11 2026 GMT Not After : Mar 31 17:22:11 2026 GMT Subject: CN=69c2c844-e34a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:53:b0:1a:8b:18:d7:62:ce:8d:94:61:78:d0: e9:f1:bd:6e:1a:75:f4:ac:d0:bf:d9:db:6b:0b:0d: db:b0:61:93:9d:3b:b8:cb:91:73:a4:ba:c5:c1:27: 7d:b3:fd:6f:8c:57:d9:d0:42:01:33:3f:f4:5f:98: 18:94:8f:5a:94:0a:6f:02:97:d1:33:d0:3b:f3:99: 40:0c:8b:d4:f5:03:4e:cb:6e:36:6f:0c:60:c5:dc: f4:42:6d:35:00:c2:93:5b:0f:46:6d:58:31:0a:6d: 69:5f:9d:41:90:b8:2c:82:24:bd:54:ac:5a:73:97: 1f:d5:44:e1:fd:d0:bf:84:1b:b0:17:ef:d0:7e:df: 2c:f5:d5:5b:72:84:60:55:89:9a:c0:a2:41:f1:57: 61:54:80:1b:ba:29:90:aa:b5:c0:9e:c3:0b:c0:a7: f2:2b:71:fe:ba:da:e6:30:44:5e:dc:5c:79:5c:f4: da:ec:cf:f9:2a:ab:4b:83:10:b5:6c:0b:22:e4:88: fe:3e:d5:38:f1:72:8a:67:27:52:52:ae:32:c5:f2: 39:dc:a9:79:92:c3:2f:1e:12:e8:a0:9c:48:26:ef: 25:bc:f1:b7:65:88:fd:6a:fa:38:74:35:5a:c9:e2: 8f:44:d8:c4:da:1a:76:55:80:2e:84:68:51:03:77: b9:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:D0:C5:20:89:E7:7F:73:7F:AD:32:F9:D2:3A:4B:24:14:CC:86:E1 X509v3 Authority Key Identifier: keyid:9D:BD:32:72:3D:71:D1:B8:56:CC:84:49:04:37:FB:F0:DA:55:25:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:00:9a:b4:e3:ea:e7:0d:1a:a4:b8:57:65:c4:74:8a:1c:d9: 94:a6:5a:ec:56:79:f3:48:4f:92:92:77:92:2e:9b:1c:44:f3: 94:1a:a6:1a:65:42:25:27:59:9f:3e:7d:c8:cf:58:d1:6e:d5: f1:d6:70:16:c2:b1:ee:4a:f0:9f:9b:c9:d8:15:18:e1:1a:ca: ca:5b:b9:b4:5e:b8:9f:98:5c:7b:89:8b:41:ed:b7:c4:f9:de: 0a:29:4b:24:19:f4:a7:80:04:a9:04:4e:bf:7c:f1:d5:87:92: 12:5a:a8:78:7e:83:a2:ff:71:bd:48:4e:51:d5:22:10:c8:68: dd:31:06:ab:4e:f0:74:19:d0:80:20:b6:ea:6e:2f:8a:11:76: 83:92:91:a9:96:9f:f7:06:26:eb:47:13:58:e5:09:84:c1:d5: e6:82:ed:8f:14:d4:0e:4f:f8:34:da:f9:df:1f:30:c0:7b:a6: c7:97:58:de:49:9c:51:bb:1b:e5:61:8c:44:2c:d2:51:ef:cc: 5c:97:a2:49:ec:ef:1b:5c:99:3c:aa:29:71:ae:0e:0f:9d:cd: c0:74:d4:d3:a2:0a:e9:14:9d:bd:8e:ac:ba:ab:34:a5:62:37: fa:06:77:92:75:cd:cf:24:be:93:4b:bf:10:d7:a0:0d:b9:61: ee:90:1c:bd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCNDExMTAvBgNVBAUTKDlEQkQzMjcyM0Q3MUQxQjg1NkNDODQ0OTA0MzdGQkYw REE1NTI1NkEwHhcNMjYwMzI0MTcyMjExWhcNMjYwMzMxMTcyMjExWjAYMRYwFAYD VQQDEw02OWMyYzg0NC1lMzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21OwGosY12LOjZRheNDp8b1uGnX0rNC/2dtrCw3bsGGTnTu4y5FzpLrFwSd9 s/1vjFfZ0EIBMz/0X5gYlI9alApvApfRM9A785lADIvU9QNOy242bwxgxdz0Qm01 AMKTWw9GbVgxCm1pX51BkLgsgiS9VKxac5cf1UTh/dC/hBuwF+/Qft8s9dVbcoRg VYmawKJB8VdhVIAbuimQqrXAnsMLwKfyK3H+utrmMERe3Fx5XPTa7M/5KqtLgxC1 bAsi5Ij+PtU48XKKZydSUq4yxfI53Kl5ksMvHhLooJxIJu8lvPG3ZYj9avo4dDVa yeKPRNjE2hp2VYAuhGhRA3e5GwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLnQxSCJ 539zf60y+dI6SyQUzIbhMB8GA1UdIwQYMBaAFJ29MnI9cdG4VsyESQQ3+/DaVSVq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUI0MS8zM0QyNTMxNjZG REIxMUU5QTZFNkJENURDNEY5QUUwMi9uYjB5Y2oxeDBiaFd6SVJKQkRmNzhOcFZK V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25iMHljajF4MGJoV3pJUkpCRGY3OE5wVkpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUI0MS8zM0QyNTMxNjZGREIxMUU5QTZFNkJENURDNEY5QUUwMi9uYjB5Y2oxeDBi aFd6SVJKQkRmNzhOcFZKV28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgACatOPq5w0apLhXZcR0ihzZlKZa7FZ580hPkpJ3ki6bHETzlBqmGmVCJSdZ nz59yM9Y0W7V8dZwFsKx7krwn5vJ2BUY4RrKylu5tF64n5hce4mLQe23xPneCilL JBn0p4AEqQROv3zx1YeSElqoeH6Dov9xvUhOUdUiEMho3TEGq07wdBnQgCC26m4v ihF2g5KRqZaf9wYm60cTWOUJhMHV5oLtjxTUDk/4NNr53x8wwHumx5dY3kmcUbsb 5WGMRCzSUe/MXJeiSezvG1yZPKopca4OD53NwHTU06IK6RSdvY6suqs0pWI3+gZ3 knXNzyS+k0u/ENegDblh7pAcvQ== -----END CERTIFICATE-----Generated at Thu Mar 26 18:36:14 2026 by rpki-client