$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft File: NpQoPSE6XlZ5WORs29gStcxynXE.mft (raw, json) Hash identifier: wsaqYS4edPPd1PsQ2zznvjKJkUhXUNCXp1g8JBTBAk0= Subject key identifier: A3:F9:5F:2E:DA:D3:1D:4C:47:F2:A0:6C:24:EC:32:55:DE:2E:DE:E2 Authority key identifier: 36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 Certificate issuer: /CN=A91A2F88/serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Certificate serial: 0390 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft Manifest number: 0389 Signing time: Fri 27 Mar 2026 00:34:37 +0000 Manifest this update: Fri 27 Mar 2026 00:34:36 +0000 Manifest next update: Fri 03 Apr 2026 00:34:36 +0000 Files and hashes: 1: NpQoPSE6XlZ5WORs29gStcxynXE.crl (hash: xqa7W1OnsgEv4bnwJyHvyIHreOWNUKnbe49gVy87klE=) 2: 54467164E0A711EC8F4D5B5FC4F9AE02.roa (hash: 3ih0W82h9RouNK7pJiKfhQ5s9ADPnr1DBUXqXIWsTOg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 00:34:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 912 (0x390) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F88, serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Validity Not Before: Mar 27 00:34:36 2026 GMT Not After : Apr 3 00:34:36 2026 GMT Subject: CN=69c5d09d-a7ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:cd:7c:40:c2:5c:4b:f4:25:b9:65:53:1b:4e: 0d:b0:fc:ca:ef:46:a1:b5:42:c5:af:28:bb:55:ad: 71:4a:4a:ed:2b:d6:30:d8:c4:2f:14:40:2a:b1:a1: 8f:f3:5b:f4:94:4b:f0:79:4a:36:7b:20:d3:bf:02: 4e:a0:67:1b:cb:df:94:2a:7c:b8:8f:77:67:11:11: c0:3e:b9:c6:9e:5a:5b:a1:8c:f2:85:0e:b8:c9:86: c2:bd:b7:2d:16:26:2f:d1:18:98:71:79:fc:96:66: 4b:c5:b9:99:1f:7c:5b:f5:b1:aa:e6:d1:65:e2:93: fe:c6:f8:59:3d:0d:c2:72:0d:3e:8f:76:ca:0f:46: 73:31:e2:9c:fe:39:ca:87:76:89:cf:a8:d3:c5:3f: 7e:c0:50:2c:02:e4:f2:fb:1d:86:53:b6:00:69:8f: d7:8b:7a:e7:be:40:8f:05:31:d2:f6:dc:84:ac:43: 67:6c:12:1e:96:e8:6e:9d:c4:61:91:ea:7d:83:83: 16:db:15:e0:79:f7:03:aa:48:9a:78:d6:eb:01:99: 53:c3:6e:7c:7a:30:3b:a2:91:5b:bd:89:3c:a7:3e: 85:7b:b9:73:02:38:4b:19:48:a2:9e:97:45:5d:fd: c8:a1:fd:09:dc:2c:65:96:97:af:62:e9:e4:98:15: fc:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:F9:5F:2E:DA:D3:1D:4C:47:F2:A0:6C:24:EC:32:55:DE:2E:DE:E2 X509v3 Authority Key Identifier: keyid:36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:17:a3:dc:ad:01:c4:98:97:12:b0:8e:59:ba:e2:60:f1:16: 50:ac:ab:14:a5:cf:66:93:52:69:60:f4:27:57:b7:25:7b:1c: d5:6a:07:c9:b2:84:e1:4d:f2:c7:65:be:0f:58:3a:97:28:9e: c0:95:95:31:0f:29:c6:7f:a5:01:f6:ce:44:9a:41:90:8d:60: 56:20:21:5e:98:c5:60:8e:7b:86:29:28:36:7a:3b:39:7c:91: a3:c3:4d:97:5a:f3:9e:4a:e9:0d:a4:6c:4f:db:73:81:29:71: c9:45:b6:67:38:1f:b8:fe:86:32:66:af:a2:63:6c:31:86:15: fc:0d:16:67:bb:47:c9:3d:10:7d:c9:ed:fc:1b:4f:ce:01:71: b5:19:ac:bd:c3:e0:c9:96:be:8e:df:6b:af:40:54:fa:42:d7: 4b:8b:03:fc:b4:55:7f:18:d7:95:9a:c3:d7:1c:b7:2b:6b:13: 07:8b:86:5e:c2:72:03:9d:b5:6f:46:25:b4:28:9d:7f:90:13: 90:d6:df:56:5b:e0:49:46:4c:3c:b5:58:fa:cc:73:31:83:53: 25:af:20:c8:6e:e1:57:e4:27:35:d1:3b:66:20:d0:a8:23:b3: 43:75:c4:98:0f:c8:db:de:a1:01:56:df:e0:de:76:c4:c3:18: 77:72:1b:a7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGODgxMTAvBgNVBAUTKDM2OTQyODNEMjEzQTVFNTY3OTU4RTQ2Q0RCRDgxMkI1 Q0M3MjlENzEwHhcNMjYwMzI3MDAzNDM2WhcNMjYwNDAzMDAzNDM2WjAYMRYwFAYD VQQDEw02OWM1ZDA5ZC1hN2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuM18QMJcS/QluWVTG04NsPzK70ahtULFryi7Va1xSkrtK9Yw2MQvFEAqsaGP 81v0lEvweUo2eyDTvwJOoGcby9+UKny4j3dnERHAPrnGnlpboYzyhQ64yYbCvbct FiYv0RiYcXn8lmZLxbmZH3xb9bGq5tFl4pP+xvhZPQ3Ccg0+j3bKD0ZzMeKc/jnK h3aJz6jTxT9+wFAsAuTy+x2GU7YAaY/Xi3rnvkCPBTHS9tyErENnbBIeluhuncRh kep9g4MW2xXgefcDqkiaeNbrAZlTw258ejA7opFbvYk8pz6Fe7lzAjhLGUiinpdF Xf3Iof0J3CxllpevYunkmBX8HwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKP5Xy7a 0x1MR/KgbCTsMlXeLt7iMB8GA1UdIwQYMBaAFDaUKD0hOl5WeVjkbNvYErXMcp1x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkY4OC80QzdEQTNDMEUw QTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhsWjVXT1JzMjlnU3RjeHlu WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05wUW9QU0U2WGxaNVdPUnMyOWdTdGN4eW5YRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkY4OC80QzdEQTNDMEUwQTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhs WjVXT1JzMjlnU3RjeHluWEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZxej3K0BxJiXErCOWbriYPEWUKyrFKXPZpNSaWD0J1e3JXsc1WoHybKE4U3y x2W+D1g6lyiewJWVMQ8pxn+lAfbORJpBkI1gViAhXpjFYI57hikoNno7OXyRo8NN l1rznkrpDaRsT9tzgSlxyUW2ZzgfuP6GMmavomNsMYYV/A0WZ7tHyT0Qfcnt/BtP zgFxtRmsvcPgyZa+jt9rr0BU+kLXS4sD/LRVfxjXlZrD1xy3K2sTB4uGXsJyA521 b0YltCidf5ATkNbfVlvgSUZMPLVY+sxzMYNTJa8gyG7hV+QnNdE7ZiDQqCOzQ3XE mA/I296hAVbf4N52xMMYd3Ibpw== -----END CERTIFICATE-----Generated at Sat Mar 28 12:10:30 2026 by rpki-client