$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft File: nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft (raw, json) Hash identifier: UjbVAyoYx0APLCO7JcTRHbPg/4YXFqHDe8yVuEp4EhU= Subject key identifier: 11:EE:9B:B9:CB:45:46:1C:CD:9A:8F:AA:C3:51:10:B1:11:1A:2A:2F Authority key identifier: 9E:C1:21:6D:25:64:16:40:3C:B5:C5:3E:73:45:53:0F:83:27:2C:DD Certificate issuer: /CN=A9185D34/serialNumber=9EC1216D256416403CB5C53E7345530F83272CDD Certificate serial: 08AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nsEhbSVkFkA8tcU-c0VTD4MnLN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft Manifest number: 089D Signing time: Thu 26 Mar 2026 20:27:00 +0000 Manifest this update: Thu 26 Mar 2026 20:27:00 +0000 Manifest next update: Thu 02 Apr 2026 20:27:00 +0000 Files and hashes: 1: nsEhbSVkFkA8tcU-c0VTD4MnLN0.crl (hash: +66O3fbLOHnkXA7+r2/7uI9VxeveIIcp6LtS3bADX+w=) 2: C1171FCAB1B111ECBA7F614FC4F9AE02.roa (hash: UYXxNDe1QzAcqg5V+JB1t1JRRqD4FmzKmkcNT4QKeIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.crl rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nsEhbSVkFkA8tcU-c0VTD4MnLN0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 20:26:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2219 (0x8ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D34, serialNumber=9EC1216D256416403CB5C53E7345530F83272CDD Validity Not Before: Mar 26 20:27:00 2026 GMT Not After : Apr 2 20:27:00 2026 GMT Subject: CN=69c59694-e821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:85:0e:7f:28:57:91:49:5c:a9:42:e2:6b:b9: 61:4f:30:20:bd:10:9b:b0:f0:19:a3:66:71:2f:b4: 7a:0f:00:c8:07:3e:e6:e2:45:c0:9c:c2:c5:6b:c0: dd:d2:ad:28:3e:2f:df:67:13:c1:c5:85:49:74:4e: f4:61:ff:e8:48:0e:50:52:12:69:9c:28:f0:d2:15: bb:98:f6:75:89:a7:6e:07:46:0d:40:2b:44:b7:7e: d5:0f:c9:b8:3d:0a:15:94:54:79:c9:76:e9:f8:24: 4e:6c:32:92:c0:04:5e:76:2b:2d:8a:5e:44:14:70: c8:4f:1c:a0:9a:a5:82:e9:9a:4a:c7:06:b8:31:77: cd:50:5a:ca:39:83:94:0d:7c:5e:6d:a1:81:4b:df: eb:69:3c:fb:c0:dc:48:90:5b:69:37:1e:4b:23:26: 4c:67:79:89:1e:8e:0b:3c:74:ce:92:e8:33:5d:d3: 89:7b:fd:8f:91:2b:19:ba:de:31:1b:f8:3b:73:b5: f6:98:6c:81:dd:8a:ec:36:2d:cf:b1:ee:cc:f4:a3: ac:a7:5c:ff:c5:3e:f9:f7:71:ba:1c:11:5e:7e:82: 59:e3:51:61:08:17:be:50:93:9f:ea:43:65:0e:88: 65:b7:85:90:c8:8e:19:7c:56:83:fb:0b:b4:5b:58: 75:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:EE:9B:B9:CB:45:46:1C:CD:9A:8F:AA:C3:51:10:B1:11:1A:2A:2F X509v3 Authority Key Identifier: keyid:9E:C1:21:6D:25:64:16:40:3C:B5:C5:3E:73:45:53:0F:83:27:2C:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nsEhbSVkFkA8tcU-c0VTD4MnLN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:00:ba:3c:33:4c:77:9e:56:97:12:7a:2b:80:12:47:ba:4f: 8c:8c:f8:31:58:40:07:5c:dd:4d:65:58:f5:0c:91:41:fb:2f: 79:90:18:0f:dd:2a:3f:e7:9c:87:ea:b7:c3:78:4f:c4:e6:31: 38:d5:0a:02:e0:d4:dc:e4:6a:7d:93:89:47:32:70:5d:37:b6: e8:0d:04:f0:e4:57:57:cd:0f:73:db:ee:ba:a7:48:89:ee:8a: b2:87:67:49:71:59:0c:e7:17:5b:19:71:2d:13:f1:05:0a:97: 3a:fc:06:f4:3c:30:00:cb:af:f6:8f:df:19:5d:e1:d2:da:73: 45:2c:a1:e1:2c:64:2d:c7:30:b0:fd:4f:1a:e6:fb:5b:e9:85: 1b:4a:9c:e5:66:fe:e5:9b:8f:31:42:0b:ec:5a:8a:03:09:8e: 75:85:17:64:09:2c:d5:2d:00:5f:ca:f1:0d:aa:03:40:1a:07: 79:b4:fc:a3:93:0d:b2:fb:54:55:45:97:0b:d9:cd:4e:7f:5b: d1:d2:da:fb:f3:d5:4d:ef:93:76:c5:5f:32:3c:d7:96:b9:4f: 96:f5:e6:6c:ed:8d:da:21:7b:ee:ac:8e:5b:07:2c:5d:5c:19: d4:27:66:b4:e4:b5:38:92:bd:15:ab:58:e5:7f:03:d7:0b:fb: 93:11:fc:58 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVEMzQxMTAvBgNVBAUTKDlFQzEyMTZEMjU2NDE2NDAzQ0I1QzUzRTczNDU1MzBG ODMyNzJDREQwHhcNMjYwMzI2MjAyNzAwWhcNMjYwNDAyMjAyNzAwWjAYMRYwFAYD VQQDEw02OWM1OTY5NC1lODIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAioUOfyhXkUlcqULia7lhTzAgvRCbsPAZo2ZxL7R6DwDIBz7m4kXAnMLFa8Dd 0q0oPi/fZxPBxYVJdE70Yf/oSA5QUhJpnCjw0hW7mPZ1iaduB0YNQCtEt37VD8m4 PQoVlFR5yXbp+CRObDKSwARedistil5EFHDITxygmqWC6ZpKxwa4MXfNUFrKOYOU DXxebaGBS9/raTz7wNxIkFtpNx5LIyZMZ3mJHo4LPHTOkugzXdOJe/2PkSsZut4x G/g7c7X2mGyB3YrsNi3Pse7M9KOsp1z/xT7593G6HBFefoJZ41FhCBe+UJOf6kNl Dohlt4WQyI4ZfFaD+wu0W1h1bwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBHum7nL RUYczZqPqsNRELERGiovMB8GA1UdIwQYMBaAFJ7BIW0lZBZAPLXFPnNFUw+DJyzd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQzNC9EQkE4Nzg1OEU2 QTAxMUVBQTg1NDRCNDNDNEY5QUUwMi9uc0VoYlNWa0ZrQTh0Y1UtYzBWVEQ0TW5M TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25zRWhiU1ZrRmtBOHRjVS1jMFZURDRNbkxOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQzNC9EQkE4Nzg1OEU2QTAxMUVBQTg1NDRCNDNDNEY5QUUwMi9uc0VoYlNWa0Zr QTh0Y1UtYzBWVEQ0TW5MTjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmgC6PDNMd55WlxJ6K4ASR7pPjIz4MVhAB1zdTWVY9QyRQfsveZAYD90qP+ec h+q3w3hPxOYxONUKAuDU3ORqfZOJRzJwXTe26A0E8ORXV80Pc9vuuqdIie6Ksodn SXFZDOcXWxlxLRPxBQqXOvwG9DwwAMuv9o/fGV3h0tpzRSyh4SxkLccwsP1PGub7 W+mFG0qc5Wb+5ZuPMUIL7FqKAwmOdYUXZAks1S0AX8rxDaoDQBoHebT8o5MNsvtU VUWXC9nNTn9b0dLa+/PVTe+TdsVfMjzXlrlPlvXmbO2N2iF77qyOWwcsXVwZ1Cdm tOS1OJK9FatY5X8D1wv7kxH8WA== -----END CERTIFICATE-----Generated at Sat Mar 28 13:42:19 2026 by rpki-client