$ rpki-client -vvf rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft File: NAlJ7LhXg2NX8QJTxpQnIggZex0.mft (raw, json) Hash identifier: riznP6MR6Jj6TOAZ0/wffZvrBlk9TGiOIHIhaPaNjFk= Subject key identifier: 80:31:16:34:4C:C8:76:B6:B8:1A:44:1E:7F:2E:65:F8:CD:2B:16:40 Authority key identifier: 34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D Certificate issuer: /CN=A916BC76/serialNumber=340949ECB857836357F10253C694272208197B1D Certificate serial: 05CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft Manifest number: 05C8 Signing time: Tue 24 Mar 2026 22:45:36 +0000 Manifest this update: Tue 24 Mar 2026 22:45:36 +0000 Manifest next update: Tue 31 Mar 2026 22:45:36 +0000 Files and hashes: 1: NAlJ7LhXg2NX8QJTxpQnIggZex0.crl (hash: DYC2FNCLhlu6AzoP3G2RS1WO5fBOHAn7GWYTv9baMiU=) 2: F44B1F40FC1711EBA835010DC4F9AE02.roa (hash: fOkqVihCu1L5Ia3iPQWWnGFlmmkL41U8TtXyOcg3l2U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:45:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1487 (0x5cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BC76, serialNumber=340949ECB857836357F10253C694272208197B1D Validity Not Before: Mar 24 22:45:36 2026 GMT Not After : Mar 31 22:45:36 2026 GMT Subject: CN=69c31410-e226 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:79:3d:d9:1e:63:d5:50:a8:4e:09:a4:94:b1: 2c:b4:65:95:15:95:49:d0:ef:87:49:4c:e5:6c:7b: 5a:40:00:06:65:43:35:50:f3:14:a0:df:70:f2:b8: 69:a0:13:cb:5f:ee:1b:3c:94:9c:f6:04:40:8a:fb: 22:7c:1a:77:9c:e6:4f:7c:56:1e:af:a1:55:3a:01: 44:1e:1c:92:99:4d:77:18:8e:d1:7b:66:b9:46:44: 22:84:80:e1:68:b3:6e:c2:01:be:17:1e:66:24:1c: 42:a4:f8:f7:e1:99:30:e9:9a:ae:87:4d:4b:c4:0d: a6:9a:7c:50:8f:45:36:dc:00:d3:df:63:29:6b:57: f8:06:76:4d:bb:70:82:88:90:72:dc:c0:f7:86:f8: cc:72:83:aa:03:42:05:33:58:0c:3a:19:99:12:37: ed:32:d8:29:c5:22:fc:88:7e:d7:62:5b:39:42:fa: e2:14:0b:1e:67:cb:81:ca:ea:ff:1c:fa:ae:b3:52: eb:94:8d:94:28:b8:98:b7:a0:bd:3c:6e:65:92:79: d9:46:48:34:38:7c:f2:72:7f:42:db:bc:4f:7b:f8: 29:41:6f:06:a8:0f:0f:11:ff:a1:b0:34:ab:80:b1: 5c:b8:e2:31:cb:e0:26:a6:e6:64:8f:30:d9:87:15: c9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:31:16:34:4C:C8:76:B6:B8:1A:44:1E:7F:2E:65:F8:CD:2B:16:40 X509v3 Authority Key Identifier: keyid:34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:3c:f6:2e:f5:24:30:42:ca:05:b8:e9:06:31:7a:ff:8a:1e: d0:f1:55:3d:b1:e6:6a:9e:05:9d:a0:32:c4:7a:d3:36:83:7c: f4:15:7f:08:d4:86:89:c3:1f:30:77:be:cc:f2:b6:54:f8:50: 0c:94:bf:bc:a2:a9:c2:39:4b:40:43:6a:10:15:3a:9e:02:0e: 9d:8e:75:3e:13:2c:4d:36:7f:a3:7e:52:f9:02:0d:73:ac:9b: 81:25:fe:ec:d4:fd:60:de:c5:54:68:9c:c8:ca:1c:e5:b9:38: 3d:b5:92:f6:a4:a8:5c:00:ee:7d:f6:7c:b1:a5:02:a0:2b:5d: 04:43:cc:c2:8a:39:a0:7b:99:59:cc:f5:a5:61:cf:c3:6a:94: 56:33:40:ca:9e:a3:fe:44:7d:b2:df:5e:45:2c:47:7f:16:eb: f0:ba:ca:9f:1f:26:fa:1a:d5:68:76:96:fa:07:7d:2b:81:32: 27:94:6a:69:5a:a0:28:cf:43:fd:78:0f:2e:c5:af:e3:ea:b2: e1:68:10:7b:2b:86:fa:39:53:14:03:06:bc:f8:b5:de:59:e5: 9a:b3:df:15:1e:fa:d3:b1:da:cf:9a:d9:90:3c:de:a8:36:c1: 74:f2:a5:7a:a0:b7:28:a9:50:5f:98:ae:74:92:f0:a3:2e:68: 3d:13:6c:8d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDNzYxMTAvBgNVBAUTKDM0MDk0OUVDQjg1NzgzNjM1N0YxMDI1M0M2OTQyNzIy MDgxOTdCMUQwHhcNMjYwMzI0MjI0NTM2WhcNMjYwMzMxMjI0NTM2WjAYMRYwFAYD VQQDEw02OWMzMTQxMC1lMjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnk92R5j1VCoTgmklLEstGWVFZVJ0O+HSUzlbHtaQAAGZUM1UPMUoN9w8rhp oBPLX+4bPJSc9gRAivsifBp3nOZPfFYer6FVOgFEHhySmU13GI7Re2a5RkQihIDh aLNuwgG+Fx5mJBxCpPj34Zkw6Zquh01LxA2mmnxQj0U23ADT32Mpa1f4BnZNu3CC iJBy3MD3hvjMcoOqA0IFM1gMOhmZEjftMtgpxSL8iH7XYls5QvriFAseZ8uByur/ HPqus1LrlI2UKLiYt6C9PG5lknnZRkg0OHzycn9C27xPe/gpQW8GqA8PEf+hsDSr gLFcuOIxy+AmpuZkjzDZhxXJnwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIAxFjRM yHa2uBpEHn8uZfjNKxZAMB8GA1UdIwQYMBaAFDQJSey4V4NjV/ECU8aUJyIIGXsd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkM3Ni82MTM2QTE3MkZD MTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcyTlg4UUpUeHBRbklnZ1pl eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BbEo3TGhYZzJOWDhRSlR4cFFuSWdnWmV4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkM3Ni82MTM2QTE3MkZDMTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcy Tlg4UUpUeHBRbklnZ1pleDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFjz2LvUkMELKBbjpBjF6/4oe0PFVPbHmap4FnaAyxHrTNoN89BV/CNSGicMf MHe+zPK2VPhQDJS/vKKpwjlLQENqEBU6ngIOnY51PhMsTTZ/o35S+QINc6ybgSX+ 7NT9YN7FVGicyMoc5bk4PbWS9qSoXADuffZ8saUCoCtdBEPMwoo5oHuZWcz1pWHP w2qUVjNAyp6j/kR9st9eRSxHfxbr8LrKnx8m+hrVaHaW+gd9K4EyJ5RqaVqgKM9D /XgPLsWv4+qy4WgQeyuG+jlTFAMGvPi13lnlmrPfFR7607Haz5rZkDzeqDbBdPKl eqC3KKlQX5iudJLwoy5oPRNsjQ== -----END CERTIFICATE-----Generated at Thu Mar 26 00:51:58 2026 by rpki-client