$ rpki-client -vvf rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.mft File: NBfrvXgtZfKcRPwL3lgaTRst66Q.mft (raw, json) Hash identifier: kkB83HNH6akj+mq4VDYXCAjoD5jb4w2Kj1FiYFts4e0= Subject key identifier: AC:B5:9E:19:CB:ED:BB:CC:93:5D:79:38:D1:36:3E:00:C0:52:14:D0 Authority key identifier: 34:17:EB:BD:78:2D:65:F2:9C:44:FC:0B:DE:58:1A:4D:1B:2D:EB:A4 Certificate issuer: /CN=A91836DB/serialNumber=3417EBBD782D65F29C44FC0BDE581A4D1B2DEBA4 Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NBfrvXgtZfKcRPwL3lgaTRst66Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.mft Manifest number: EE Signing time: Mon 11 May 2026 06:29:30 +0000 Manifest this update: Mon 11 May 2026 06:29:29 +0000 Manifest next update: Mon 18 May 2026 06:29:29 +0000 Files and hashes: 1: NBfrvXgtZfKcRPwL3lgaTRst66Q.crl (hash: 8FfMqY7fJ/Meac7PrCzBweWwpbGHo+NAGVZp0JmvIg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.crl rsync://rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NBfrvXgtZfKcRPwL3lgaTRst66Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 06:29:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836DB, serialNumber=3417EBBD782D65F29C44FC0BDE581A4D1B2DEBA4 Validity Not Before: May 11 06:29:29 2026 GMT Not After : May 18 06:29:29 2026 GMT Subject: CN=6a017749-dec5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:fe:3b:e4:4c:41:b6:b3:39:a7:f7:bb:45:ef: 09:6e:99:1f:ce:a5:d7:89:b1:96:af:5e:03:9b:ad: 18:36:5d:bc:81:45:4b:fd:c9:d8:d8:9e:8f:7e:cd: 9f:1f:1d:26:59:8f:38:58:ce:d2:fa:33:11:66:ce: 30:d3:75:2d:50:3a:09:5b:74:0e:cb:88:8f:9d:7d: 24:5a:64:8d:d8:9a:e8:05:e8:27:ef:2a:1f:0c:15: 3c:51:a2:56:d2:17:c5:20:fb:98:0f:ed:d8:f2:18: d3:54:5b:82:31:ae:86:22:eb:14:78:0a:b5:5d:a5: fb:94:bc:66:6f:a3:a3:08:76:9d:65:3d:10:d2:12: c3:fb:85:6b:6e:1b:bf:58:0f:e2:bc:70:d0:a4:86: 6c:ec:0a:e0:7d:f8:70:9f:bb:81:14:e6:c2:9a:0a: 44:24:4c:c1:dc:e8:09:ac:19:b6:27:a1:8e:35:83: 3f:97:e2:73:c8:9e:9b:4d:3c:a1:6f:e7:63:ff:f4: d1:82:70:80:9b:43:6c:8e:e1:cd:0c:00:bd:42:f8: c5:ae:3e:07:f6:83:77:69:88:4d:49:a2:0c:5d:f7: 18:d1:d5:14:59:fc:71:69:78:8c:4e:ab:25:d4:55: 36:39:e9:2b:e4:6d:b8:fa:3a:45:6d:f2:c4:fc:f8: e6:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:B5:9E:19:CB:ED:BB:CC:93:5D:79:38:D1:36:3E:00:C0:52:14:D0 X509v3 Authority Key Identifier: keyid:34:17:EB:BD:78:2D:65:F2:9C:44:FC:0B:DE:58:1A:4D:1B:2D:EB:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NBfrvXgtZfKcRPwL3lgaTRst66Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:d6:a5:be:a4:c1:07:44:a1:83:f5:3f:00:60:22:9b:64:9e: ce:b6:21:a2:24:e3:a6:06:fd:9d:3d:37:9f:f8:ea:65:6d:cc: df:5c:7c:1e:fa:c1:ee:07:00:27:e8:1b:2e:4e:94:ed:a3:d8: 5c:97:b2:c7:d2:62:03:c1:24:7c:79:cb:2f:55:71:c0:66:35: 53:82:ab:b8:f3:bb:bc:d1:ee:ef:1f:51:fb:43:28:6c:5f:1a: 4f:12:6c:70:19:c5:71:d5:9c:e8:37:e0:12:32:da:6d:5f:ad: 13:1f:41:cb:dd:d9:7d:98:41:c3:97:7e:3b:31:c9:13:71:65: 45:06:d1:06:8c:74:a8:0c:04:f4:7d:fe:92:65:f7:40:70:69: 05:13:34:35:c6:29:ae:48:0a:4a:3b:90:bd:4d:d0:8c:59:ab: 76:71:37:98:19:c9:cf:e0:df:c1:45:d3:99:92:e1:a6:43:4c: 72:81:c0:a5:56:bc:0a:46:2f:3e:1f:9b:7d:95:f1:8b:e3:b0: a8:f8:cb:16:de:c0:f3:85:e7:55:c7:4c:0b:a9:cd:4c:a5:c1: 22:ac:4e:78:3c:e5:49:19:6e:8b:8e:1d:4f:1d:c1:54:61:72: dc:1c:9f:a7:04:42:4f:10:59:c3:aa:f8:99:25:25:b4:b2:6e: 6b:c2:02:1d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM2REIxMTAvBgNVBAUTKDM0MTdFQkJENzgyRDY1RjI5QzQ0RkMwQkRFNTgxQTRE MUIyREVCQTQwHhcNMjYwNTExMDYyOTI5WhcNMjYwNTE4MDYyOTI5WjAYMRYwFAYD VQQDEw02YTAxNzc0OS1kZWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl/475ExBtrM5p/e7Re8JbpkfzqXXibGWr14Dm60YNl28gUVL/cnY2J6Pfs2f Hx0mWY84WM7S+jMRZs4w03UtUDoJW3QOy4iPnX0kWmSN2JroBegn7yofDBU8UaJW 0hfFIPuYD+3Y8hjTVFuCMa6GIusUeAq1XaX7lLxmb6OjCHadZT0Q0hLD+4Vrbhu/ WA/ivHDQpIZs7Argffhwn7uBFObCmgpEJEzB3OgJrBm2J6GONYM/l+JzyJ6bTTyh b+dj//TRgnCAm0NsjuHNDAC9QvjFrj4H9oN3aYhNSaIMXfcY0dUUWfxxaXiMTqsl 1FU2Oekr5G24+jpFbfLE/PjmvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKy1nhnL 7bvMk115ONE2PgDAUhTQMB8GA1UdIwQYMBaAFDQX6714LWXynET8C95YGk0bLeuk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzZEQi81OUFGQzIwQUU0 NUUxMUVGQTE1NjI4NDZDNEY5QUUwMi9OQmZydlhndFpmS2NSUHdMM2xnYVRSc3Q2 NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05CZnJ2WGd0WmZLY1JQd0wzbGdhVFJzdDY2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzZEQi81OUFGQzIwQUU0NUUxMUVGQTE1NjI4NDZDNEY5QUUwMi9OQmZydlhndFpm S2NSUHdMM2xnYVRSc3Q2NlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA3NalvqTBB0Shg/U/AGAim2SezrYhoiTjpgb9nT03n/jqZW3M31x8HvrB7gcA J+gbLk6U7aPYXJeyx9JiA8EkfHnLL1VxwGY1U4KruPO7vNHu7x9R+0MobF8aTxJs cBnFcdWc6DfgEjLabV+tEx9By93ZfZhBw5d+OzHJE3FlRQbRBox0qAwE9H3+kmX3 QHBpBRM0NcYprkgKSjuQvU3QjFmrdnE3mBnJz+DfwUXTmZLhpkNMcoHApVa8CkYv Ph+bfZXxi+OwqPjLFt7A84XnVcdMC6nNTKXBIqxOeDzlSRlui44dTx3BVGFy3Byf pwRCTxBZw6r4mSUltLJua8ICHQ== -----END CERTIFICATE-----Generated at Wed May 13 04:35:18 2026 by rpki-client