$ rpki-client -vvf rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft File: NAcoRkbqh4WDwlsPqefW7aCRMpg.mft (raw, json) Hash identifier: LGQO3IUmYah8Oeio5sSZ1kGyg2RBGb1WicsKJfBl0mM= Subject key identifier: EE:07:19:23:47:EC:C1:22:F7:EC:80:59:B5:65:1A:83:FF:60:62:87 Authority key identifier: 34:07:28:46:46:EA:87:85:83:C2:5B:0F:A9:E7:D6:ED:A0:91:32:98 Certificate issuer: /CN=A919C318/serialNumber=3407284646EA878583C25B0FA9E7D6EDA0913298 Certificate serial: 09A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft Manifest number: 0999 Signing time: Tue 24 Mar 2026 19:45:39 +0000 Manifest this update: Tue 24 Mar 2026 19:45:38 +0000 Manifest next update: Tue 31 Mar 2026 19:45:38 +0000 Files and hashes: 1: NAcoRkbqh4WDwlsPqefW7aCRMpg.crl (hash: qNJtwgr5ydpOxtG4KfghluE8amSceIDS3BCIYPxowlw=) 2: 9AA539E6A82411EA996D5F41C4F9AE02.roa (hash: i1dwOevc3k9bwU5TzewRLrZW6NUS+x25YAF0oiOhGhU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.crl rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:45:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2465 (0x9a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C318, serialNumber=3407284646EA878583C25B0FA9E7D6EDA0913298 Validity Not Before: Mar 24 19:45:38 2026 GMT Not After : Mar 31 19:45:38 2026 GMT Subject: CN=69c2e9e3-1f74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fc:37:b3:01:da:2e:01:e2:7c:a2:18:ab:f9: 68:c1:0a:70:bf:22:89:69:07:c3:95:5a:d7:a3:6e: ad:48:7b:e1:a4:a1:37:56:c4:68:28:50:cf:fc:b4: b5:4b:82:f3:74:27:e1:ae:8c:72:8c:4a:d5:1c:1e: 54:75:14:d3:bc:5c:e3:18:a4:4d:76:37:d5:63:79: 78:a2:45:6f:9d:3e:9c:f9:23:69:de:29:2c:3c:46: 05:49:bc:2c:09:0b:d0:aa:4f:bd:df:48:10:d9:53: da:4d:52:c6:24:f5:b9:d3:28:97:4a:2a:63:34:29: 95:b5:47:ab:ee:46:74:67:53:2d:2a:3d:06:4c:1e: 71:a1:95:fb:51:28:9f:08:e0:d2:7f:39:96:2d:e7: da:51:d2:fc:10:86:fa:25:bd:1e:19:b3:f7:0f:73: 90:ef:6f:18:e9:fb:5d:2f:83:6a:2c:1c:e5:ee:8b: 9c:ad:70:39:d2:45:e5:d5:52:79:7d:44:1f:0f:8c: 25:64:9b:85:d2:57:87:ed:54:66:c6:82:ba:88:b0: 75:1f:f0:bc:66:62:c5:86:62:d6:7e:f5:06:fa:b3: ee:75:bc:75:fa:29:15:cd:d6:2f:1d:3a:ec:e7:16: f3:13:e9:df:71:57:17:a1:3f:61:e9:f3:76:b5:3a: 40:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:07:19:23:47:EC:C1:22:F7:EC:80:59:B5:65:1A:83:FF:60:62:87 X509v3 Authority Key Identifier: keyid:34:07:28:46:46:EA:87:85:83:C2:5B:0F:A9:E7:D6:ED:A0:91:32:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:d0:94:a2:dd:68:15:5d:d4:9f:e1:e3:8f:0a:75:bc:34:e5: 38:39:d6:e2:39:c7:83:9c:94:47:1d:d2:97:78:4e:3a:c9:d8: 72:4a:da:d7:03:1e:e4:be:af:92:b7:97:54:7c:d4:a6:df:fa: af:2f:eb:a7:61:4d:c2:85:5d:8d:50:2e:a3:e8:11:17:88:c9: fe:2f:e2:c0:62:56:a5:b9:7f:91:8a:bf:91:b7:bb:53:63:79: ee:e1:3a:a9:b8:83:20:d7:60:0b:c4:d5:c9:5e:4c:c1:04:73: 54:b1:b2:ce:cc:c9:14:b9:f1:60:07:8e:cb:96:23:66:87:e1: 3f:2b:b7:2c:80:7e:80:c3:2a:d7:10:04:ff:52:75:9d:95:ed: a8:10:bf:87:4a:fe:e0:b4:68:cd:85:8e:87:50:98:9f:09:39: 9d:d2:a6:81:df:e5:8e:0e:99:98:64:a7:f7:76:a0:50:3a:a1: 66:41:b7:d9:11:02:3c:14:7a:16:f5:dc:12:1c:0d:02:d5:ed: 9c:6e:10:27:31:f7:53:17:03:f9:d9:0c:ac:c2:46:c2:f8:d0: 4a:57:dd:4f:a4:ee:e6:4c:83:98:a7:ea:a3:15:a8:2a:b7:0d: 54:7c:49:7c:fa:5b:73:6b:a8:f5:fa:4b:cb:ed:a3:bc:10:da: e2:c4:eb:86 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMzMTgxMTAvBgNVBAUTKDM0MDcyODQ2NDZFQTg3ODU4M0MyNUIwRkE5RTdENkVE QTA5MTMyOTgwHhcNMjYwMzI0MTk0NTM4WhcNMjYwMzMxMTk0NTM4WjAYMRYwFAYD VQQDEw02OWMyZTllMy0xZjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/w3swHaLgHifKIYq/lowQpwvyKJaQfDlVrXo26tSHvhpKE3VsRoKFDP/LS1 S4LzdCfhroxyjErVHB5UdRTTvFzjGKRNdjfVY3l4okVvnT6c+SNp3iksPEYFSbws CQvQqk+930gQ2VPaTVLGJPW50yiXSipjNCmVtUer7kZ0Z1MtKj0GTB5xoZX7USif CODSfzmWLefaUdL8EIb6Jb0eGbP3D3OQ728Y6ftdL4NqLBzl7oucrXA50kXl1VJ5 fUQfD4wlZJuF0leH7VRmxoK6iLB1H/C8ZmLFhmLWfvUG+rPudbx1+ikVzdYvHTrs 5xbzE+nfcVcXoT9h6fN2tTpA5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO4HGSNH 7MEi9+yAWbVlGoP/YGKHMB8GA1UdIwQYMBaAFDQHKEZG6oeFg8JbD6nn1u2gkTKY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzMxOC82NUI2NzFCNkE4 MjIxMUVBQUJBQTJGMTlDNEY5QUUwMi9OQWNvUmticWg0V0R3bHNQcWVmVzdhQ1JN cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BY29Sa2JxaDRXRHdsc1BxZWZXN2FDUk1wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzMxOC82NUI2NzFCNkE4MjIxMUVBQUJBQTJGMTlDNEY5QUUwMi9OQWNvUmticWg0 V0R3bHNQcWVmVzdhQ1JNcGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAz9CUot1oFV3Un+Hjjwp1vDTlODnW4jnHg5yURx3Sl3hOOsnYckra1wMe5L6v kreXVHzUpt/6ry/rp2FNwoVdjVAuo+gRF4jJ/i/iwGJWpbl/kYq/kbe7U2N57uE6 qbiDINdgC8TVyV5MwQRzVLGyzszJFLnxYAeOy5YjZofhPyu3LIB+gMMq1xAE/1J1 nZXtqBC/h0r+4LRozYWOh1CYnwk5ndKmgd/ljg6ZmGSn93agUDqhZkG32RECPBR6 FvXcEhwNAtXtnG4QJzH3UxcD+dkMrMJGwvjQSlfdT6Tu5kyDmKfqoxWoKrcNVHxJ fPpbc2uo9fpLy+2jvBDa4sTrhg== -----END CERTIFICATE-----Generated at Thu Mar 26 09:58:46 2026 by rpki-client