$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft File: NhbgHaMxfwnuypjnvHVMvJkNfWg.mft (raw, json) Hash identifier: Xc7uUCmLcosRT/aFkEkSaOf+aB3MCfQXV5BkrCTJvvI= Subject key identifier: 79:F4:B7:3B:85:09:11:AE:B1:36:6B:16:92:C0:19:7D:4F:64:B4:3D Authority key identifier: 36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 Certificate issuer: /CN=A9192C72/serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft Manifest number: D3 Signing time: Wed 25 Mar 2026 05:58:29 +0000 Manifest this update: Wed 25 Mar 2026 05:58:28 +0000 Manifest next update: Wed 01 Apr 2026 05:58:28 +0000 Files and hashes: 1: NhbgHaMxfwnuypjnvHVMvJkNfWg.crl (hash: b9LiwBa1JmxnxLgVNkA4vV+bEGsiRDSVm+v8hrXre2E=) 2: C2E1583EECFA11EFA881E216C4F9AE02.roa (hash: ZtssBrk5mGxn05SMndIJVGX0dnbxSXKZ14Gt5jpgS38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C72, serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Validity Not Before: Mar 25 05:58:28 2026 GMT Not After : Apr 1 05:58:28 2026 GMT Subject: CN=69c37985-5d32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:68:85:d0:54:28:98:d6:cf:5f:24:1f:d2:21: a6:89:ec:32:1b:61:32:6e:df:fa:40:5f:24:64:01: f3:b0:4f:fa:43:90:60:de:6d:be:65:68:66:dd:1e: 2c:4d:ca:8e:bd:aa:fc:ef:52:3a:3f:ab:32:99:ab: f3:44:20:bc:10:71:87:ba:ff:75:75:ae:34:15:47: 17:ea:54:e6:55:11:e4:0f:4a:ee:a1:2d:68:8a:b3: 98:4e:83:34:7f:ae:af:7c:c6:51:be:24:78:51:d5: c3:3d:25:9b:0d:bd:59:32:d9:2a:e7:89:c2:46:b6: 94:b8:9d:40:7d:a9:b2:e9:4b:72:65:9e:27:9b:d5: 64:14:bf:7d:4c:2d:20:fa:fd:8d:dc:a2:65:7f:42: fc:bc:35:4a:72:e8:2e:14:af:fc:ec:0b:e4:93:04: 3e:a1:3b:f1:70:90:4a:a5:76:29:08:88:41:46:49: fd:e1:a7:9e:5c:5e:5f:e2:d1:43:df:54:f4:1e:b5: d2:38:5c:77:35:cd:a6:89:f7:09:28:f5:5e:4b:80: 00:c0:05:dc:bd:c6:af:3b:e0:a0:60:75:93:b8:80: 65:6f:40:c1:14:23:0a:96:f3:3a:b5:40:64:fb:fe: 1a:a9:f9:93:97:62:5b:8a:7b:35:b7:60:2d:69:d0: a5:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:F4:B7:3B:85:09:11:AE:B1:36:6B:16:92:C0:19:7D:4F:64:B4:3D X509v3 Authority Key Identifier: keyid:36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:0c:47:b7:17:69:92:72:33:16:d9:5a:69:b7:04:67:6d:ca: d6:f0:9e:81:a4:84:79:1b:f5:e1:72:69:da:cd:7a:d3:42:a9: ab:b4:37:eb:1d:d0:2b:cf:16:e7:30:79:45:9c:a9:31:4f:5a: 41:39:96:e7:a6:6c:45:32:8d:ca:9d:fa:7c:e5:9d:67:2e:91: bd:97:12:9a:82:4d:8e:70:62:bd:90:88:b2:d7:4f:dc:f6:19: e5:f5:7f:b5:73:cf:c5:ad:69:7c:e1:0b:32:1b:59:61:7c:90: 9b:70:18:b7:68:00:51:f8:de:92:34:25:6e:f7:36:29:cb:02: c7:1a:16:d6:f5:44:5d:27:64:d6:d9:b4:30:30:d2:14:4f:7c: a6:e5:6b:cc:ce:a3:40:19:d3:e9:3a:ba:f2:fb:77:76:65:5e: 80:82:f1:89:ca:d6:43:72:87:08:f4:e3:86:cd:7b:a3:79:d5: 5c:12:26:4b:c4:fd:dd:af:10:d0:19:8d:7b:9a:df:40:af:44: 39:fb:16:69:33:d4:e8:c1:bb:3b:16:2c:d3:ab:21:78:11:0d: 90:68:ce:3c:e2:b7:e3:f3:e0:46:37:4a:f1:42:b2:fe:c0:9c: 84:c7:bf:cb:c1:30:b8:0b:ee:01:45:35:6d:c9:88:2c:68:6f: 81:a0:af:8a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDNzIxMTAvBgNVBAUTKDM2MTZFMDFEQTMzMTdGMDlFRUNBOThFN0JDNzU0Q0JD OTkwRDdENjgwHhcNMjYwMzI1MDU1ODI4WhcNMjYwNDAxMDU1ODI4WjAYMRYwFAYD VQQDEw02OWMzNzk4NS01ZDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2GiF0FQomNbPXyQf0iGmiewyG2Eybt/6QF8kZAHzsE/6Q5Bg3m2+ZWhm3R4s TcqOvar871I6P6symavzRCC8EHGHuv91da40FUcX6lTmVRHkD0ruoS1oirOYToM0 f66vfMZRviR4UdXDPSWbDb1ZMtkq54nCRraUuJ1Afamy6UtyZZ4nm9VkFL99TC0g +v2N3KJlf0L8vDVKcuguFK/87AvkkwQ+oTvxcJBKpXYpCIhBRkn94aeeXF5f4tFD 31T0HrXSOFx3Nc2mifcJKPVeS4AAwAXcvcavO+CgYHWTuIBlb0DBFCMKlvM6tUBk +/4aqfmTl2Jbins1t2AtadClFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHn0tzuF CRGusTZrFpLAGX1PZLQ9MB8GA1UdIwQYMBaAFDYW4B2jMX8J7sqY57x1TLyZDX1o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkM3Mi85RDVCNTE1NkVD RjkxMUVGOTNBMkEyMTNDNEY5QUUwMi9OaGJnSGFNeGZ3bnV5cGpudkhWTXZKa05m V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05oYmdIYU14ZndudXlwam52SFZNdkprTmZXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkM3Mi85RDVCNTE1NkVDRjkxMUVGOTNBMkEyMTNDNEY5QUUwMi9OaGJnSGFNeGZ3 bnV5cGpudkhWTXZKa05mV2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwAxHtxdpknIzFtlaabcEZ23K1vCegaSEeRv14XJp2s1600Kpq7Q36x3QK88W 5zB5RZypMU9aQTmW56ZsRTKNyp36fOWdZy6RvZcSmoJNjnBivZCIstdP3PYZ5fV/ tXPPxa1pfOELMhtZYXyQm3AYt2gAUfjekjQlbvc2KcsCxxoW1vVEXSdk1tm0MDDS FE98puVrzM6jQBnT6Tq68vt3dmVegILxicrWQ3KHCPTjhs17o3nVXBImS8T93a8Q 0BmNe5rfQK9EOfsWaTPU6MG7OxYs06sheBENkGjOPOK34/PgRjdK8UKy/sCchMe/ y8EwuAvuAUU1bcmILGhvgaCvig== -----END CERTIFICATE-----Generated at Thu Mar 26 16:19:54 2026 by rpki-client