$ rpki-client -vvf rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft File: Nu6KQBMF6zjijYal2392KKq34k8.mft (raw, json) Hash identifier: KXC/8om5loE95mVBbTJmnKWu6hRP5fQ6M9RtMdK4C3o= Subject key identifier: F8:36:AB:70:9A:3B:EA:D6:07:A3:C6:92:37:20:94:45:C9:B3:06:78 Authority key identifier: 36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F Certificate issuer: /CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Certificate serial: 11AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft Manifest number: 1139 Signing time: Thu 26 Mar 2026 17:12:20 +0000 Manifest this update: Thu 26 Mar 2026 17:12:20 +0000 Manifest next update: Thu 02 Apr 2026 17:12:20 +0000 Files and hashes: 1: Nu6KQBMF6zjijYal2392KKq34k8.crl (hash: YRcXJaB4LT8knV5soN4KUFDYpAqzzQeCZ3jqk3ydxKA=) 2: 8D76CA462E9511E9896EFA1DC4F9AE02.roa (hash: JuUJ4DOSBW01nrRIUTLHPfkliifJ+rq2zxYO36hJWcU=) 3: 53DFF8EC2E9111E999636910C4F9AE02.roa (hash: 0AlAm/UllNu6nV+KmAJcUogCEbfOQbf6eO/9wodLVx0=) 4: 8EA288F62E9511E9896EFA1DC4F9AE02.roa (hash: IMj8qtFSd6hi4gKqRA7H36habWRd5bqBb8+O4kZejZ4=) 5: 52685F222E9111E999636910C4F9AE02.roa (hash: uaKA9Y3McJzmCeyJEJWsLKksi3AYaWdl6qS4vvefPN8=) 6: 5870952EC53011EA98D1D651C4F9AE02.roa (hash: M9wrLdqCvf9Rebn1AxQjUYPshDSgwl/PTCAmwfRJfkY=) 7: 8DFDF8AE2E9511E9896EFA1DC4F9AE02.roa (hash: n9mHkt6czHPPUD5zY90UjJ7UAf6byhyKwZP1Ve452FA=) 8: 264DBA882E9411E9A7232A19C4F9AE02.roa (hash: 2tzoshkXR7/Luip7F+Asz7LyTGRXnuS+/JojvXSRlyc=) 9: 81CBCECA0BFF11EE9AE0F676C4F9AE02.roa (hash: Pd6I10yKRgl85ZBaIcYKM4tnRuesswuVsiUCUOGCVbM=) 10: 8F5856362E9511E9896EFA1DC4F9AE02.roa (hash: r6j10YEzxAuJPnFHDmBq1me6EKjgZrwXuEyyfhL/DdQ=) 11: 8CD1AEC62E9511E9896EFA1DC4F9AE02.roa (hash: Wg9nJcL+7yCwCNF5i9jX3GavDbjDIX0HONcfmVfocb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4527 (0x11af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709BC, serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Validity Not Before: Mar 26 17:12:20 2026 GMT Not After : Apr 2 17:12:20 2026 GMT Subject: CN=69c568f4-483a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:24:ac:e7:42:7d:ff:7d:e7:45:81:76:03:14: a5:92:4f:e9:f2:2d:f5:6d:c0:50:11:a5:1e:d1:29: 40:b5:42:b4:32:08:45:25:91:00:d0:c9:fa:ff:52: 95:b6:c5:ed:8a:91:cd:71:ab:6b:67:37:45:3f:4a: 46:64:dc:c8:b0:eb:ad:a0:16:c9:82:b4:ba:b3:75: 9a:33:c3:34:45:a9:dd:64:4f:4c:60:b1:8d:49:3f: 16:43:e5:2d:88:74:5e:3b:1f:08:d1:b6:85:9e:51: 8b:7a:16:5c:8f:f0:ac:66:b5:a3:82:d9:9a:fb:72: 47:0a:7a:b8:ce:a4:a1:8f:d8:c9:1b:06:31:b2:f3: 69:68:a0:9e:f2:cf:4b:b8:82:18:22:25:f7:b7:a8: f0:ae:12:15:6e:0a:92:be:ae:8c:eb:48:78:84:b0: 03:62:8f:3e:d2:64:b3:ef:1d:90:c1:80:00:2f:83: 8b:23:05:05:42:50:db:27:a4:1a:3f:94:06:54:6f: d1:87:8f:de:77:34:a9:be:fd:61:08:07:c8:6b:93: 82:c4:12:d8:be:3c:cd:1e:e2:f0:fd:bf:0e:46:12: 7b:fc:3c:9f:4a:62:bb:85:ea:38:ef:a2:76:1b:cf: 21:77:8c:49:11:c9:cd:02:d0:2b:77:10:b7:a0:1f: 64:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:36:AB:70:9A:3B:EA:D6:07:A3:C6:92:37:20:94:45:C9:B3:06:78 X509v3 Authority Key Identifier: keyid:36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:43:ef:75:96:2d:c9:9c:fb:88:d6:4e:b6:2d:ad:c7:25:1a: 19:91:d8:fc:da:77:e5:a4:11:e1:92:ab:a6:bd:e3:74:a0:9c: f3:5f:53:16:21:ba:d9:c5:0e:97:4b:1d:2c:60:e0:f1:47:05: 20:a3:79:0a:4a:70:05:63:72:4f:91:18:bf:d0:a0:c8:f6:b4: e2:5b:d6:15:7b:da:23:8f:95:a2:01:36:b2:c4:83:cb:8d:8d: 0c:f8:54:af:1c:75:6b:38:8e:cb:ee:46:06:f3:b5:2a:ee:da: 06:e3:be:5f:a3:9b:be:92:ab:84:c2:22:c8:2b:c7:6e:90:dd: 28:a6:0f:6e:d0:9c:df:02:ff:9e:d1:e3:39:98:98:ad:08:ba: 3c:9a:10:d4:3a:e3:6f:f9:f2:a4:91:ed:1f:8f:5e:7b:c4:e4: 71:e7:f6:09:2b:2e:48:75:e1:fb:89:e9:81:56:82:14:1c:53: c7:d1:10:11:36:f8:4f:70:85:f4:51:7e:e6:e3:6c:1f:0e:36: 00:64:cb:f0:62:7b:ba:34:99:f9:32:6f:da:1a:39:05:ec:83: 7a:c7:87:b2:43:e6:c5:33:70:1b:2a:0a:4d:6b:df:a0:45:01: 13:38:33:39:b4:d4:47:97:31:09:31:b1:da:20:36:de:0b:3a: ce:c7:86:51 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5QkMxMTAvBgNVBAUTKDM2RUU4QTQwMTMwNUVCMzhFMjhEODZBNURCN0Y3NjI4 QUFCN0UyNEYwHhcNMjYwMzI2MTcxMjIwWhcNMjYwNDAyMTcxMjIwWjAYMRYwFAYD VQQDEw02OWM1NjhmNC00ODNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2CSs50J9/33nRYF2AxSlkk/p8i31bcBQEaUe0SlAtUK0MghFJZEA0Mn6/1KV tsXtipHNcatrZzdFP0pGZNzIsOutoBbJgrS6s3WaM8M0RandZE9MYLGNST8WQ+Ut iHReOx8I0baFnlGLehZcj/CsZrWjgtma+3JHCnq4zqShj9jJGwYxsvNpaKCe8s9L uIIYIiX3t6jwrhIVbgqSvq6M60h4hLADYo8+0mSz7x2QwYAAL4OLIwUFQlDbJ6Qa P5QGVG/Rh4/edzSpvv1hCAfIa5OCxBLYvjzNHuLw/b8ORhJ7/DyfSmK7heo476J2 G88hd4xJEcnNAtArdxC3oB9kVQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPg2q3Ca O+rWB6PGkjcglEXJswZ4MB8GA1UdIwQYMBaAFDbuikATBes44o2Gpdt/diiqt+JP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlCQy84OTI4OTczMDJF OTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6amlqWWFsMjM5MktLcTM0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051NktRQk1GNnpqaWpZYWwyMzkyS0txMzRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDlCQy84OTI4OTczMDJFOTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6 amlqWWFsMjM5MktLcTM0azgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkEPvdZYtyZz7iNZOti2txyUaGZHY/Np35aQR4ZKrpr3jdKCc819TFiG62cUO l0sdLGDg8UcFIKN5CkpwBWNyT5EYv9CgyPa04lvWFXvaI4+VogE2ssSDy42NDPhU rxx1aziOy+5GBvO1Ku7aBuO+X6ObvpKrhMIiyCvHbpDdKKYPbtCc3wL/ntHjOZiY rQi6PJoQ1Drjb/nypJHtH49ee8Tkcef2CSsuSHXh+4npgVaCFBxTx9EQETb4T3CF 9FF+5uNsHw42AGTL8GJ7ujSZ+TJv2ho5BeyDeseHskPmxTNwGyoKTWvfoEUBEzgz ObTUR5cxCTGx2iA23gs6zseGUQ== -----END CERTIFICATE-----Generated at Thu Mar 26 19:58:49 2026 by rpki-client