$ rpki-client -vvf rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft File: NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft (raw, json) Hash identifier: dhXT+Ib7ZYoxC1tNhHdwcmdSquCg5ILbNlaR6Xj5kC8= Subject key identifier: 6B:78:45:3A:B1:2E:83:B2:2E:58:3E:B9:53:5C:D6:E6:E8:EC:AE:38 Authority key identifier: 35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 Certificate issuer: /CN=A9166AFF/serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Certificate serial: 0194 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft Manifest number: 0186 Signing time: Wed 25 Mar 2026 03:53:20 +0000 Manifest this update: Wed 25 Mar 2026 03:53:20 +0000 Manifest next update: Wed 01 Apr 2026 03:53:20 +0000 Files and hashes: 1: NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl (hash: gYOysPSvlVJSQk9DVdqgEEv5xpBP4ck9zgKrJrmjaXg=) 2: 8109B4CA9DF211F0B1ED220FC4F9AE02.roa (hash: NZ+/GSvl3rIYgZ++28JcUl1KBHhXLG/2k0TsQyDQa4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166AFF, serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Validity Not Before: Mar 25 03:53:20 2026 GMT Not After : Apr 1 03:53:20 2026 GMT Subject: CN=69c35c30-5464 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:43:94:89:89:6a:df:44:cd:3c:11:59:3b:89: 0d:d0:72:6a:c0:99:50:17:0e:b8:34:e1:75:f4:1c: 82:a8:63:a1:26:6d:85:40:d7:22:8b:b1:83:7a:86: 6e:92:a0:69:e2:bb:1a:c3:e1:dd:2e:ee:f4:22:6f: 4a:d4:04:93:a4:81:36:89:fc:59:05:4b:9e:c6:e8: b6:fa:d8:d6:22:cf:47:05:0e:c7:e4:cd:c8:51:5b: af:4e:d6:28:c7:f8:6f:c0:c8:bd:05:5a:60:b5:7b: d8:a6:8e:43:c0:a6:82:74:8f:b3:20:47:0d:96:89: 70:bf:df:70:f4:f4:2c:1e:ad:b0:85:9a:09:7d:e2: c7:3a:c3:77:a1:88:1c:91:f6:e3:db:41:40:29:13: 4f:47:45:c2:f7:56:43:75:02:a7:73:04:97:f8:85: c2:f2:24:2d:c4:bb:2a:db:05:f5:33:6c:1c:65:ac: 83:8d:14:1e:b9:17:2f:40:82:fa:7d:e0:38:67:8f: 9f:ca:ef:b4:8a:bc:8f:26:90:6d:a8:9d:c8:65:04: 1e:fa:da:25:7e:d7:b4:e6:71:0b:99:72:54:51:e5: ed:a2:91:2d:3e:38:63:a6:84:52:4e:de:fa:17:f8: 06:7f:b6:7e:af:94:b0:89:64:c6:1a:e7:45:0a:e9: da:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:78:45:3A:B1:2E:83:B2:2E:58:3E:B9:53:5C:D6:E6:E8:EC:AE:38 X509v3 Authority Key Identifier: keyid:35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:39:21:c6:2b:ad:25:74:09:a0:78:c7:c9:08:cb:f7:9c:27: ff:41:91:7e:8f:f9:2d:2b:67:ce:1f:a2:8a:80:37:9f:c4:ef: 76:1a:cb:7e:a2:89:11:63:3c:d0:0a:94:e9:80:82:e2:1d:51: a9:5b:3a:33:04:59:ee:79:dd:6f:9b:4f:31:82:b3:f3:be:38: ad:8f:73:63:99:4b:71:50:3e:25:a4:0f:19:eb:83:85:f5:d2: cb:3c:bb:06:46:dd:f6:d1:ff:ab:ab:45:6a:0c:b4:0d:f7:54: 7c:fb:80:6c:d4:ff:09:4f:fb:26:0d:cb:3c:08:1b:9b:e1:f6: 9c:fe:87:2a:50:5e:79:c7:ab:4d:8d:04:89:10:21:92:3a:d3: dd:05:24:40:39:7a:9b:b3:bd:7c:c2:c5:c3:32:dc:b1:94:a1: a4:50:75:c1:3a:a2:67:e2:2a:62:bb:28:94:cd:53:53:ba:1e: d3:5f:a7:c4:5f:19:6a:e4:ae:9c:3c:90:9a:e4:02:0e:81:75: 37:ed:e6:38:64:69:ad:40:3b:88:4b:01:01:18:19:db:9a:82: 30:a7:89:25:f2:56:8c:a4:23:2a:d2:2b:64:d6:47:6a:1e:0c: 7a:ee:27:2f:c7:f9:20:11:b8:b3:5f:1c:1e:d0:35:ef:36:57: 92:df:88:d6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZBRkYxMTAvBgNVBAUTKDM1N0ExNzlDREQwQUY5QTNGQjAzRTE3N0Q2QTQzRkI4 QTU3NzU0RTAwHhcNMjYwMzI1MDM1MzIwWhcNMjYwNDAxMDM1MzIwWjAYMRYwFAYD VQQDEw02OWMzNWMzMC01NDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtkOUiYlq30TNPBFZO4kN0HJqwJlQFw64NOF19ByCqGOhJm2FQNcii7GDeoZu kqBp4rsaw+HdLu70Im9K1ASTpIE2ifxZBUuexui2+tjWIs9HBQ7H5M3IUVuvTtYo x/hvwMi9BVpgtXvYpo5DwKaCdI+zIEcNlolwv99w9PQsHq2whZoJfeLHOsN3oYgc kfbj20FAKRNPR0XC91ZDdQKncwSX+IXC8iQtxLsq2wX1M2wcZayDjRQeuRcvQIL6 feA4Z4+fyu+0iryPJpBtqJ3IZQQe+tolfte05nELmXJUUeXtopEtPjhjpoRSTt76 F/gGf7Z+r5SwiWTGGudFCunaawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGt4RTqx LoOyLlg+uVNc1ubo7K44MB8GA1UdIwQYMBaAFDV6F5zdCvmj+wPhd9akP7ild1Tg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkFGRi80MENEMUI1NEU1 MDIxMUVFOUFCRjc2NTVDNEY5QUUwMi9OWG9Ybk4wSy1hUDdBLUYzMXFRX3VLVjNW T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Yb1huTjBLLWFQN0EtRjMxcVFfdUtWM1ZPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkFGRi80MENEMUI1NEU1MDIxMUVFOUFCRjc2NTVDNEY5QUUwMi9OWG9Ybk4wSy1h UDdBLUYzMXFRX3VLVjNWT0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVjkhxiutJXQJoHjHyQjL95wn/0GRfo/5LStnzh+iioA3n8TvdhrLfqKJEWM8 0AqU6YCC4h1RqVs6MwRZ7nndb5tPMYKz8744rY9zY5lLcVA+JaQPGeuDhfXSyzy7 Bkbd9tH/q6tFagy0DfdUfPuAbNT/CU/7Jg3LPAgbm+H2nP6HKlBeecerTY0EiRAh kjrT3QUkQDl6m7O9fMLFwzLcsZShpFB1wTqiZ+IqYrsolM1TU7oe01+nxF8ZauSu nDyQmuQCDoF1N+3mOGRprUA7iEsBARgZ25qCMKeJJfJWjKQjKtIrZNZHah4Meu4n L8f5IBG4s18cHtA17zZXkt+I1g== -----END CERTIFICATE-----Generated at Thu Mar 26 00:51:18 2026 by rpki-client