$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft File: NhbgHaMxfwnuypjnvHVMvJkNfWg.mft (raw, json) Hash identifier: oDvjVuMO+onbrsr+/TnyNuORntwShEMoJY3MbfI31Dk= Subject key identifier: 6B:91:B6:5A:F5:42:70:6D:87:0C:F1:C9:DB:E1:E3:21:31:B1:23:53 Authority key identifier: 36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 Certificate issuer: /CN=A9192C72/serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Certificate serial: F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft Manifest number: EE Signing time: Wed 13 May 2026 06:35:15 +0000 Manifest this update: Wed 13 May 2026 06:35:14 +0000 Manifest next update: Wed 20 May 2026 06:35:14 +0000 Files and hashes: 1: NhbgHaMxfwnuypjnvHVMvJkNfWg.crl (hash: r+ZFjq1zUVgHMoLGyMCDdsJF0FSr8uQQdC7E9V18yhU=) 2: C2E1583EECFA11EFA881E216C4F9AE02.roa (hash: jTQKPLGkqI6hmZ4YsmcAwkWRvhQzIWW2T5De8EQkVwk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 06:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C72, serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Validity Not Before: May 13 06:35:14 2026 GMT Not After : May 20 06:35:14 2026 GMT Subject: CN=6a041ba3-e46e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:8c:ea:9f:ce:ed:99:d3:c7:a9:0f:e9:94:50: ac:75:4f:ac:db:86:63:ca:7e:48:4f:2b:70:86:2a: 31:d3:3f:5a:0a:c8:04:40:43:18:e1:0f:3f:d6:c9: e8:4f:47:30:81:d8:8b:e9:14:60:1d:cc:01:31:df: b0:3c:92:d5:91:24:62:0d:af:7b:ca:ac:c9:9c:6d: d0:32:a0:9d:35:6a:88:c8:25:d3:32:7f:25:dc:15: 62:9d:54:aa:67:fb:ff:d3:0b:23:95:4a:4b:dd:2a: 72:27:70:d3:d4:8f:0e:3f:42:b0:33:84:b4:8b:ef: 65:ba:17:f6:c6:ee:5f:77:c4:c1:21:c4:db:19:98: 5e:d7:24:45:fb:de:b3:1c:99:1a:c6:16:13:14:ca: ae:91:8d:e8:22:fe:21:ec:e7:40:79:3d:6a:64:7d: c7:9d:92:d1:71:29:b2:0c:e1:c1:9e:a3:d9:d1:f8: 17:53:a3:61:2d:fe:64:d0:5b:07:34:ab:8c:34:34: 4c:d5:b6:9a:a0:ef:a1:d8:32:e8:f0:1e:5d:3e:31: f1:98:67:ea:ed:94:20:10:96:30:cc:74:9a:23:65: 3b:f2:0a:15:81:9a:44:b4:87:e4:36:39:e9:4e:73: a2:18:91:7e:f5:29:e1:56:58:97:42:60:78:54:2e: f6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:91:B6:5A:F5:42:70:6D:87:0C:F1:C9:DB:E1:E3:21:31:B1:23:53 X509v3 Authority Key Identifier: keyid:36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:6b:5d:58:df:1d:95:9e:8d:4e:e6:4a:0d:b6:a1:f4:59:d2: e5:4b:c2:61:d8:29:be:22:48:69:df:59:9c:95:87:95:82:a7: ab:c0:b6:cf:98:0a:f0:c7:ca:9c:47:7e:c4:25:80:e5:c3:3a: 02:45:a9:e1:c9:fc:b6:e0:46:ad:87:f4:89:8b:08:75:44:85: ed:4e:de:c9:fd:e0:db:53:9e:aa:e3:23:85:9f:4f:df:20:b0: 14:b8:88:0d:7b:e4:da:d0:af:1d:eb:ba:14:7e:70:cc:c9:12: d0:07:31:7e:bf:52:e3:4d:f6:09:ce:84:61:10:13:74:19:44: 3b:71:17:d3:86:da:7f:64:71:19:0f:3a:e9:e1:d6:5b:37:de: f4:19:38:1a:db:ae:e4:9a:ff:61:1b:5c:85:3c:ff:65:6f:16: 33:05:ff:ba:26:eb:6b:e2:0b:c8:1b:56:57:17:19:45:d6:16: c0:3a:57:c9:05:da:aa:8f:24:3a:9e:c1:80:fe:56:cb:00:41: dd:d9:73:a5:83:3a:34:f1:61:26:ce:b0:4f:d8:ef:cb:af:3c: 83:1c:56:90:da:98:a2:80:92:b8:9c:19:36:ae:e6:61:c2:57: 3f:01:9f:42:bc:9e:9e:50:21:c4:1b:e8:4e:12:80:d0:7e:d8: b4:75:f7:2b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDNzIxMTAvBgNVBAUTKDM2MTZFMDFEQTMzMTdGMDlFRUNBOThFN0JDNzU0Q0JD OTkwRDdENjgwHhcNMjYwNTEzMDYzNTE0WhcNMjYwNTIwMDYzNTE0WjAYMRYwFAYD VQQDEw02YTA0MWJhMy1lNDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjozqn87tmdPHqQ/plFCsdU+s24Zjyn5ITytwhiox0z9aCsgEQEMY4Q8/1sno T0cwgdiL6RRgHcwBMd+wPJLVkSRiDa97yqzJnG3QMqCdNWqIyCXTMn8l3BVinVSq Z/v/0wsjlUpL3SpyJ3DT1I8OP0KwM4S0i+9luhf2xu5fd8TBIcTbGZhe1yRF+96z HJkaxhYTFMqukY3oIv4h7OdAeT1qZH3HnZLRcSmyDOHBnqPZ0fgXU6NhLf5k0FsH NKuMNDRM1baaoO+h2DLo8B5dPjHxmGfq7ZQgEJYwzHSaI2U78goVgZpEtIfkNjnp TnOiGJF+9SnhVliXQmB4VC721QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGuRtlr1 QnBthwzxydvh4yExsSNTMB8GA1UdIwQYMBaAFDYW4B2jMX8J7sqY57x1TLyZDX1o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkM3Mi85RDVCNTE1NkVD RjkxMUVGOTNBMkEyMTNDNEY5QUUwMi9OaGJnSGFNeGZ3bnV5cGpudkhWTXZKa05m V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05oYmdIYU14ZndudXlwam52SFZNdkprTmZXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkM3Mi85RDVCNTE1NkVDRjkxMUVGOTNBMkEyMTNDNEY5QUUwMi9OaGJnSGFNeGZ3 bnV5cGpudkhWTXZKa05mV2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAs2tdWN8dlZ6NTuZKDbah9FnS5UvCYdgpviJIad9ZnJWHlYKnq8C2z5gK8MfK nEd+xCWA5cM6AkWp4cn8tuBGrYf0iYsIdUSF7U7eyf3g21OequMjhZ9P3yCwFLiI DXvk2tCvHeu6FH5wzMkS0Acxfr9S4032Cc6EYRATdBlEO3EX04baf2RxGQ866eHW Wzfe9Bk4Gtuu5Jr/YRtchTz/ZW8WMwX/uibra+ILyBtWVxcZRdYWwDpXyQXaqo8k Op7BgP5WywBB3dlzpYM6NPFhJs6wT9jvy688gxxWkNqYooCSuJwZNq7mYcJXPwGf QryenlAhxBvoThKA0H7YtHX3Kw== -----END CERTIFICATE-----Generated at Wed May 13 09:32:42 2026 by rpki-client