$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft File: NUOeC_NciIu4TRsk7N5wYM90TpE.mft (raw, json) Hash identifier: k3g2HCFDKCy/ypUco2n5plIUsi4UTLl74y1s847Bp80= Subject key identifier: D3:9F:59:18:BE:1D:71:35:1E:A3:36:CC:8D:77:1E:4D:7E:88:34:8A Authority key identifier: 35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 Certificate issuer: /CN=A917C422/serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Certificate serial: 2C12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft Manifest number: 2BF8 Signing time: Thu 26 Mar 2026 14:25:39 +0000 Manifest this update: Thu 26 Mar 2026 14:25:39 +0000 Manifest next update: Thu 02 Apr 2026 14:25:39 +0000 Files and hashes: 1: NUOeC_NciIu4TRsk7N5wYM90TpE.crl (hash: tcnWRMKt90EczKJazmo72bhCnkj0uJJds+slLW/JWqw=) 2: F645F318500C11EBA2295426C4F9AE02.roa (hash: T/3Qd5JLkUZ8axH+b8NITt79vh28jc8CtqLL9xCu9/o=) 3: 6313DADA500011EBB74A2C2AC4F9AE02.roa (hash: h/xjw2uGVTtL8b2ydd+g45aswVdSOXMWt+z5VztwbYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:25:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11282 (0x2c12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Validity Not Before: Mar 26 14:25:39 2026 GMT Not After : Apr 2 14:25:39 2026 GMT Subject: CN=69c541e3-4682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:10:4a:28:5c:c2:06:97:7c:38:81:eb:b5:ad: a1:27:19:95:70:8e:a1:36:e0:06:00:e4:8b:e0:c6: cf:f0:ff:2f:a7:26:65:b5:2e:66:53:95:a3:b9:9e: 57:8c:5e:eb:6a:2e:8a:8f:aa:75:38:f4:49:eb:fc: ee:e8:4c:88:72:9c:cd:4f:69:76:76:85:cb:40:c2: c2:6c:2b:dd:dd:ab:f6:1d:4c:81:b7:51:83:ee:bc: 42:a8:e8:ad:47:57:6b:cc:61:39:f7:c8:69:b3:c5: 8e:ee:ae:8b:07:d1:94:34:d8:6a:83:2a:90:f9:b6: 4d:21:7f:9b:57:db:75:4a:c4:d7:8c:39:ee:55:ca: fc:1b:86:a2:ed:c8:c2:13:e5:87:d9:c5:59:d8:10: 9a:98:c1:74:80:74:c3:e0:3d:08:19:d5:c1:5c:48: b4:19:82:46:ce:ab:97:e7:4c:ef:8c:8b:76:6b:9e: 67:78:9f:bf:64:a2:ad:d3:fb:fc:c9:f5:0c:6f:e0: 0e:5c:61:4c:33:84:7c:11:7a:90:91:0a:ab:0e:b8: b3:2f:2d:bc:bb:82:b6:1e:0c:14:37:22:7e:3d:b1: 85:3b:e1:53:7a:04:61:a2:35:a8:d6:12:7d:dd:63: 2d:a5:e3:52:b1:04:49:82:74:a1:69:a7:1d:51:76: 10:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:9F:59:18:BE:1D:71:35:1E:A3:36:CC:8D:77:1E:4D:7E:88:34:8A X509v3 Authority Key Identifier: keyid:35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:fb:c1:e7:d8:10:ca:61:72:f3:04:62:b3:33:55:b4:ec:ea: 85:57:b8:5a:9b:e6:8c:7b:a7:9b:44:9b:54:55:a2:c3:75:7e: 90:e9:e5:1b:b9:59:06:ad:96:4e:dd:20:0a:24:2e:47:2a:16: fb:01:9f:70:81:5e:57:76:6d:73:d8:c4:b9:48:ed:2f:84:8b: 2e:66:8d:9c:cb:8d:9b:38:31:5d:25:62:0a:f4:49:52:14:3b: c7:44:ab:e1:de:46:19:ef:d7:c5:f4:bb:53:e6:2c:9a:90:7b: 40:e9:89:81:7b:be:ce:1e:b2:b6:89:af:b2:38:c8:8c:23:34: 28:12:42:97:99:86:de:25:2b:a1:20:b3:bf:c3:b1:95:b0:b9: 9d:1c:79:27:2c:27:83:0d:a9:58:f4:b8:52:37:32:dc:4a:6e: 4d:26:bf:e3:2f:ae:29:d3:e8:75:ee:2f:b8:7a:e1:c6:96:d4: 0c:e0:7b:ee:52:3f:fe:1d:01:3e:5e:97:1a:78:50:90:42:93: b9:c7:aa:88:76:a8:1c:52:8a:88:47:27:e9:39:f0:38:57:ef: 4c:80:96:5e:66:56:d9:f9:c8:a0:00:eb:92:e2:0c:81:cd:56: 0c:23:26:05:62:24:27:b4:85:13:aa:25:8e:2f:f3:1f:de:6e: 5a:49:fa:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDM1NDM5RTBCRjM1Qzg4OEJCODREMUIyNEVDREU3MDYw Q0Y3NDRFOTEwHhcNMjYwMzI2MTQyNTM5WhcNMjYwNDAyMTQyNTM5WjAYMRYwFAYD VQQDEw02OWM1NDFlMy00NjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxBKKFzCBpd8OIHrta2hJxmVcI6hNuAGAOSL4MbP8P8vpyZltS5mU5WjuZ5X jF7rai6Kj6p1OPRJ6/zu6EyIcpzNT2l2doXLQMLCbCvd3av2HUyBt1GD7rxCqOit R1drzGE598hps8WO7q6LB9GUNNhqgyqQ+bZNIX+bV9t1SsTXjDnuVcr8G4ai7cjC E+WH2cVZ2BCamMF0gHTD4D0IGdXBXEi0GYJGzquX50zvjIt2a55neJ+/ZKKt0/v8 yfUMb+AOXGFMM4R8EXqQkQqrDrizLy28u4K2HgwUNyJ+PbGFO+FTegRhojWo1hJ9 3WMtpeNSsQRJgnShaacdUXYQXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNOfWRi+ HXE1HqM2zI13Hk1+iDSKMB8GA1UdIwQYMBaAFDVDngvzXIiLuE0bJOzecGDPdE6R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi8zRTc0NTM2OEVE NTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJdTRUUnNrN041d1lNOTBU cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05VT2VDX05jaUl1NFRSc2s3TjV3WU05MFRwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi8zRTc0NTM2OEVENTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJ dTRUUnNrN041d1lNOTBUcEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAm/vB59gQymFy8wRiszNVtOzqhVe4WpvmjHunm0SbVFWiw3V+kOnlG7lZBq2W Tt0gCiQuRyoW+wGfcIFeV3Ztc9jEuUjtL4SLLmaNnMuNmzgxXSViCvRJUhQ7x0Sr 4d5GGe/XxfS7U+YsmpB7QOmJgXu+zh6ytomvsjjIjCM0KBJCl5mG3iUroSCzv8Ox lbC5nRx5Jywngw2pWPS4Ujcy3EpuTSa/4y+uKdPode4vuHrhxpbUDOB77lI//h0B Pl6XGnhQkEKTuceqiHaoHFKKiEcn6TnwOFfvTICWXmZW2fnIoADrkuIMgc1WDCMm BWIkJ7SFE6olji/zH95uWkn6mA== -----END CERTIFICATE-----Generated at Fri Mar 27 02:17:00 2026 by rpki-client