$ rpki-client -vvf rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft File: NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft (raw, json) Hash identifier: hGSABk3nAyFYF/6xYclXV5cZAIyrieolqSD4Q5wJb1M= Subject key identifier: 5B:7A:EF:AF:6A:9A:1B:11:45:C0:89:6D:39:6B:ED:26:A9:C3:67:E4 Authority key identifier: 35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 Certificate issuer: /CN=A9166AFF/serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Certificate serial: 01AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft Manifest number: 01A0 Signing time: Mon 11 May 2026 04:23:40 +0000 Manifest this update: Mon 11 May 2026 04:23:40 +0000 Manifest next update: Mon 18 May 2026 04:23:40 +0000 Files and hashes: 1: NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl (hash: CCAqt04ngvCQhztoas6SLbetszlrsb5hL1muBcCHsWM=) 2: 8109B4CA9DF211F0B1ED220FC4F9AE02.roa (hash: 3F15rH6YOfm7yUgvAU7B83xmF5fOsfIgjewKISbkfSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 04:23:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166AFF, serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Validity Not Before: May 11 04:23:40 2026 GMT Not After : May 18 04:23:40 2026 GMT Subject: CN=6a0159cc-89ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:06:a4:c2:07:00:e6:0d:ca:25:f3:82:01:ec: 0b:b8:ba:24:20:d7:77:24:e6:0d:a9:9f:03:23:b1: 62:61:72:5f:b8:43:a1:8e:b1:80:ed:9a:5c:3b:ce: c1:9c:74:9d:42:df:77:1e:7f:9d:91:e8:53:5d:1a: 57:c0:45:38:1e:a0:3b:04:52:66:91:1b:55:8c:7f: 79:24:ba:7e:79:fb:f8:c8:e2:e7:94:b9:7a:9e:bb: 55:c3:9b:33:cb:9c:21:b9:18:37:68:22:2e:66:77: 02:35:39:26:c0:01:93:a2:66:e7:00:df:b3:bb:27: f4:97:b1:54:7b:a3:25:47:8d:85:ab:42:70:b1:d8: 56:70:d7:e3:8d:90:c8:dd:f6:53:a0:06:69:1f:9c: f5:f6:32:86:2d:73:67:ec:f4:b4:1e:3a:53:00:3b: ca:ac:59:8a:67:7a:c9:14:63:32:b0:69:4d:00:41: 7b:9f:31:3d:cb:da:1a:cc:c1:f4:69:d0:54:ac:13: a9:ba:db:67:1a:6b:85:a6:7e:5a:e5:a6:b9:97:8d: 55:ba:d6:25:1f:2b:e3:d2:f2:f4:c3:4e:11:f5:b4: 3a:23:32:ad:8f:68:71:55:87:6d:f6:4c:58:d0:13: 1e:1a:49:af:05:c1:79:fd:2a:a0:6b:e6:2a:d1:e3: a1:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:7A:EF:AF:6A:9A:1B:11:45:C0:89:6D:39:6B:ED:26:A9:C3:67:E4 X509v3 Authority Key Identifier: keyid:35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:ab:c0:d5:5a:2a:ec:4d:a2:3b:38:fa:91:06:ea:25:72:a6: 9d:04:2a:ab:96:14:65:82:b6:b5:d4:69:35:62:7f:ed:42:0b: ce:fb:f7:b1:45:1c:ff:6e:a1:2e:35:f5:69:2c:ca:bc:d2:81: 87:a5:a4:6e:4b:d6:db:b7:6b:3e:2f:66:8a:db:06:ff:49:58: 15:06:da:26:3a:f3:4d:af:1d:d9:0c:b9:ae:cb:fc:0a:59:bc: 31:15:fc:b1:6f:53:e1:a6:7e:fa:e7:49:ad:5b:29:fe:d3:95: 97:fa:f4:7b:10:a9:a6:0e:6a:3a:b4:68:02:7a:d8:ab:e8:67: 22:51:a0:09:fb:83:bd:3a:bb:d1:fe:50:73:58:d5:aa:1e:d8: 7c:23:4c:39:85:12:37:e9:04:1e:d9:e3:39:46:13:17:b3:17: 4e:6e:dc:10:23:31:d2:1f:54:8a:75:2f:8a:ea:82:33:31:bb: 86:1e:df:9e:9a:e6:b7:d4:2d:3f:32:fe:c6:37:3d:77:cf:c0: 81:d7:68:35:23:94:ce:78:d7:1a:f9:ac:bb:1e:c0:f2:9a:e1: a9:32:cc:41:f9:0a:53:3c:6a:4d:c8:1a:c5:54:7b:2c:66:62: e1:80:06:a2:ba:4f:22:ea:85:94:7c:50:d3:d2:fb:0d:14:bb: fc:e2:b2:b6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZBRkYxMTAvBgNVBAUTKDM1N0ExNzlDREQwQUY5QTNGQjAzRTE3N0Q2QTQzRkI4 QTU3NzU0RTAwHhcNMjYwNTExMDQyMzQwWhcNMjYwNTE4MDQyMzQwWjAYMRYwFAYD VQQDEw02YTAxNTljYy04OWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugakwgcA5g3KJfOCAewLuLokINd3JOYNqZ8DI7FiYXJfuEOhjrGA7ZpcO87B nHSdQt93Hn+dkehTXRpXwEU4HqA7BFJmkRtVjH95JLp+efv4yOLnlLl6nrtVw5sz y5whuRg3aCIuZncCNTkmwAGTombnAN+zuyf0l7FUe6MlR42Fq0JwsdhWcNfjjZDI 3fZToAZpH5z19jKGLXNn7PS0HjpTADvKrFmKZ3rJFGMysGlNAEF7nzE9y9oazMH0 adBUrBOputtnGmuFpn5a5aa5l41VutYlHyvj0vL0w04R9bQ6IzKtj2hxVYdt9kxY 0BMeGkmvBcF5/Sqga+Yq0eOhbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFt6769q mhsRRcCJbTlr7Sapw2fkMB8GA1UdIwQYMBaAFDV6F5zdCvmj+wPhd9akP7ild1Tg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkFGRi80MENEMUI1NEU1 MDIxMUVFOUFCRjc2NTVDNEY5QUUwMi9OWG9Ybk4wSy1hUDdBLUYzMXFRX3VLVjNW T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Yb1huTjBLLWFQN0EtRjMxcVFfdUtWM1ZPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkFGRi80MENEMUI1NEU1MDIxMUVFOUFCRjc2NTVDNEY5QUUwMi9OWG9Ybk4wSy1h UDdBLUYzMXFRX3VLVjNWT0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaKvA1Voq7E2iOzj6kQbqJXKmnQQqq5YUZYK2tdRpNWJ/7UILzvv3sUUc/26h LjX1aSzKvNKBh6WkbkvW27drPi9mitsG/0lYFQbaJjrzTa8d2Qy5rsv8Clm8MRX8 sW9T4aZ++udJrVsp/tOVl/r0exCppg5qOrRoAnrYq+hnIlGgCfuDvTq70f5Qc1jV qh7YfCNMOYUSN+kEHtnjOUYTF7MXTm7cECMx0h9UinUviuqCMzG7hh7fnprmt9Qt PzL+xjc9d8/AgddoNSOUznjXGvmsux7A8prhqTLMQfkKUzxqTcgaxVR7LGZi4YAG orpPIuqFlHxQ09L7DRS7/OKytg== -----END CERTIFICATE-----Generated at Wed May 13 04:59:09 2026 by rpki-client