$ rpki-client -vvf rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft File: n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft (raw, json) Hash identifier: HJpkEuhM77GT3KRDLqA2kVgc+VOIgHbikHGsdVt8VFE= Subject key identifier: 2A:ED:16:E3:2D:55:EF:17:86:71:BB:A2:3E:B4:A6:43:31:31:FB:E9 Authority key identifier: 9F:49:06:C0:D4:CC:96:45:D9:BF:D9:33:64:A2:3A:5A:33:EF:58:DB Certificate issuer: /CN=A917D958/serialNumber=9F4906C0D4CC9645D9BFD93364A23A5A33EF58DB Certificate serial: 0104 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft Manifest number: FB Signing time: Wed 25 Mar 2026 05:30:56 +0000 Manifest this update: Wed 25 Mar 2026 05:30:56 +0000 Manifest next update: Wed 01 Apr 2026 05:30:56 +0000 Files and hashes: 1: n0kGwNTMlkXZv9kzZKI6WjPvWNs.crl (hash: +hUZv+RAAVTU58czzVmQ/YyErQBqLd0lJoFLupkdVa0=) 2: 0AC8BB74B5E211EFBEF4BC5AC4F9AE02.roa (hash: cNiuneTPpAk/1Up/27Y7yEVc2t/NxzEM4qlSWeyAw6E=) 3: 0A581522B5E211EFBEF4BC5AC4F9AE02.roa (hash: rgdWivD/zFCykGa3ALQEG38H7edm211EbAOpvttCktk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.crl rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D958, serialNumber=9F4906C0D4CC9645D9BFD93364A23A5A33EF58DB Validity Not Before: Mar 25 05:30:56 2026 GMT Not After : Apr 1 05:30:56 2026 GMT Subject: CN=69c37310-050f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a8:e5:2f:8d:52:72:40:62:b2:8e:de:45:db: 6b:45:09:18:8e:16:15:36:74:a0:91:40:1c:69:39: 5f:68:45:cd:f1:05:25:36:d4:d5:3b:40:24:cf:7e: 4d:c5:f9:0e:e0:ec:fd:7f:34:dc:9b:17:5e:98:55: 1f:86:4e:4d:80:1e:be:97:b3:e8:b4:5b:ee:a8:f9: 04:16:86:2f:86:17:91:d0:2c:47:13:61:4c:7d:22: 99:c6:05:c7:f0:fc:5a:66:e2:9d:1f:40:78:97:28: 6d:d6:02:42:e5:5e:e4:11:97:a7:3c:60:3e:1c:2c: ab:5e:c1:a6:f8:b6:8a:31:b5:4d:8c:c1:c0:8c:42: eb:40:f1:4a:96:c3:e2:91:bd:75:16:4d:aa:8d:89: d7:d8:af:77:c8:9e:d8:db:03:00:62:74:aa:3f:c5: a6:1e:a7:0a:4b:f0:98:39:f0:f9:49:08:27:a0:1a: 4c:d3:28:d0:c3:b4:c2:7b:63:c1:02:cb:c4:ec:0c: 27:d9:ea:4f:53:78:51:f6:cc:f5:7f:72:63:b5:cc: 96:86:1a:6a:4c:9d:94:03:24:7a:89:63:fb:75:9d: 7e:24:7d:71:25:f9:a6:9d:db:d7:e8:66:f0:75:44: cc:a7:76:a0:78:2e:cf:14:87:a6:28:fb:95:74:e7: 88:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:ED:16:E3:2D:55:EF:17:86:71:BB:A2:3E:B4:A6:43:31:31:FB:E9 X509v3 Authority Key Identifier: keyid:9F:49:06:C0:D4:CC:96:45:D9:BF:D9:33:64:A2:3A:5A:33:EF:58:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:8a:6e:2e:d7:9a:3e:61:1b:65:c2:6d:5e:c8:b0:5b:e3:10: bb:a8:2e:03:5b:6a:5a:7a:25:68:12:df:55:e7:9a:b6:e3:58: d7:7c:b3:62:f5:96:8f:e6:82:2a:f0:63:83:5b:76:06:35:6a: e8:c2:26:32:ed:26:65:2e:3a:1c:04:bb:92:55:83:cb:c3:65: e3:cc:a0:a2:36:0e:83:d3:10:be:b2:e1:e7:d5:30:b5:6b:29: d9:79:24:b0:9f:8f:70:a1:48:43:a1:a0:35:e1:2b:69:42:79: 9d:cb:a2:eb:e8:bc:1b:ec:f3:e6:dc:32:25:41:f5:af:0d:1a: b8:34:96:92:54:5e:72:bc:63:88:bb:3f:74:7a:72:51:45:0a: 53:09:4e:3f:48:65:3b:52:76:34:3e:67:64:57:31:86:f9:77: fd:2c:d4:97:20:8c:8a:5d:3b:f2:c4:8d:19:a5:19:d1:33:6b: 20:51:78:96:63:5f:24:2d:a3:11:f2:28:24:98:4d:25:18:5b: 38:d5:4f:dd:e0:4f:49:3c:0f:cc:84:e3:43:30:33:cb:8e:6e: 02:60:87:61:fb:5b:08:e1:f9:16:a6:70:15:e7:68:da:fe:c2: 61:2a:1a:f4:c9:d2:51:c3:da:b9:d5:a5:2d:82:74:46:bb:e5: 2e:e6:ad:70 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5NTgxMTAvBgNVBAUTKDlGNDkwNkMwRDRDQzk2NDVEOUJGRDkzMzY0QTIzQTVB MzNFRjU4REIwHhcNMjYwMzI1MDUzMDU2WhcNMjYwNDAxMDUzMDU2WjAYMRYwFAYD VQQDEw02OWMzNzMxMC0wNTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqjlL41SckBiso7eRdtrRQkYjhYVNnSgkUAcaTlfaEXN8QUlNtTVO0Akz35N xfkO4Oz9fzTcmxdemFUfhk5NgB6+l7PotFvuqPkEFoYvhheR0CxHE2FMfSKZxgXH 8PxaZuKdH0B4lyht1gJC5V7kEZenPGA+HCyrXsGm+LaKMbVNjMHAjELrQPFKlsPi kb11Fk2qjYnX2K93yJ7Y2wMAYnSqP8WmHqcKS/CYOfD5SQgnoBpM0yjQw7TCe2PB AsvE7Awn2epPU3hR9sz1f3JjtcyWhhpqTJ2UAyR6iWP7dZ1+JH1xJfmmndvX6Gbw dUTMp3ageC7PFIemKPuVdOeI1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCrtFuMt Ve8XhnG7oj60pkMxMfvpMB8GA1UdIwQYMBaAFJ9JBsDUzJZF2b/ZM2SiOloz71jb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDk1OC82NzJEQjA0OEIz OUIxMUVGODBGNjQzNUVDNEY5QUUwMi9uMGtHd05UTWxrWFp2OWt6WktJNldqUHZX TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL24wa0d3TlRNbGtYWnY5a3paS0k2V2pQdldOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDk1OC82NzJEQjA0OEIzOUIxMUVGODBGNjQzNUVDNEY5QUUwMi9uMGtHd05UTWxr WFp2OWt6WktJNldqUHZXTnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIIpuLteaPmEbZcJtXsiwW+MQu6guA1tqWnolaBLfVeeatuNY13yzYvWWj+aC KvBjg1t2BjVq6MImMu0mZS46HAS7klWDy8Nl48ygojYOg9MQvrLh59UwtWsp2Xkk sJ+PcKFIQ6GgNeEraUJ5ncui6+i8G+zz5twyJUH1rw0auDSWklRecrxjiLs/dHpy UUUKUwlOP0hlO1J2ND5nZFcxhvl3/SzUlyCMil078sSNGaUZ0TNrIFF4lmNfJC2j EfIoJJhNJRhbONVP3eBPSTwPzITjQzAzy45uAmCHYftbCOH5FqZwFedo2v7CYSoa 9MnSUcPaudWlLYJ0RrvlLuatcA== -----END CERTIFICATE-----Generated at Thu Mar 26 12:05:59 2026 by rpki-client