$ rpki-client -vvf rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft File: NjlSt_QXggYJMArokUgSGEuPw9w.mft (raw, json) Hash identifier: q08tILapkhARdonCXNoge5dM+Gw8CcKKg6QbWSqXxZc= Subject key identifier: 38:3B:73:03:8C:86:4D:61:81:92:81:F5:5B:A5:2E:10:F1:A5:EF:24 Authority key identifier: 36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC Certificate issuer: /CN=A91A70FA/serialNumber=363952B7F417820609300AE8914812184B8FC3DC Certificate serial: 1D03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft Manifest number: 1CE7 Signing time: Thu 26 Mar 2026 16:08:21 +0000 Manifest this update: Thu 26 Mar 2026 16:08:21 +0000 Manifest next update: Thu 02 Apr 2026 16:08:21 +0000 Files and hashes: 1: NjlSt_QXggYJMArokUgSGEuPw9w.crl (hash: wpPw+0xeqSotIHBXyDWHu2F3Hgx99B9Eo+HrelGXEzI=) 2: EC1B43EA393111EAA1873746C4F9AE02.roa (hash: Y1gVzkwfOLuyPoIfE59zPK8DMvF4H060KJy8V8tGtwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7427 (0x1d03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A70FA, serialNumber=363952B7F417820609300AE8914812184B8FC3DC Validity Not Before: Mar 26 16:08:21 2026 GMT Not After : Apr 2 16:08:21 2026 GMT Subject: CN=69c559f5-0d4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6c:5f:99:a0:cb:ec:5a:bf:5d:9d:b3:5d:fb: 1e:d1:6c:6e:ad:58:2b:f3:5a:1c:9c:00:de:fd:51: c2:4f:93:d1:c6:1c:17:8d:29:c5:dc:75:30:a6:12: 3a:89:72:0e:ce:1f:c7:11:3b:82:63:f9:41:64:c7: 69:83:54:00:26:4e:59:9c:12:59:3a:1b:8f:69:87: f2:97:f7:45:be:35:2a:a4:c8:7a:fe:3c:22:2d:c4: 2e:2c:ef:f8:9c:2d:e0:d1:f6:4a:ef:dc:5c:21:7c: 8f:8b:a3:1d:93:e8:d5:95:2d:5f:ad:2a:dd:a0:b5: 1e:ee:58:ad:57:7a:36:c5:90:d4:b4:ce:cb:b1:f5: 28:d2:be:94:11:ae:ca:a4:08:d8:ce:57:ce:66:11: b0:36:48:9e:b6:a6:a4:dc:57:c3:ba:0f:7c:89:cf: 06:f7:94:4f:eb:7e:1b:34:05:a9:a8:36:de:40:bf: b7:1f:24:3e:5f:aa:88:29:20:f1:9d:3f:e8:29:30: 08:17:85:e9:e6:c5:dc:c9:ab:1d:7f:54:c7:bb:c0: 94:f4:76:c0:ad:9f:21:b1:a9:fa:52:ee:d0:05:7d: cf:3a:e7:f9:dc:18:7a:85:0c:ef:65:a1:02:10:61: 93:cf:e5:87:1e:52:3a:1b:c7:7d:a1:74:aa:be:04: a9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:3B:73:03:8C:86:4D:61:81:92:81:F5:5B:A5:2E:10:F1:A5:EF:24 X509v3 Authority Key Identifier: keyid:36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:b7:44:70:e1:1b:95:28:81:75:d3:45:cf:79:b5:a9:77:55: 26:55:83:72:3b:40:bd:0d:b1:39:52:45:f4:c1:14:9d:cc:1d: a0:1b:e6:3e:86:f2:f9:c6:ab:c6:e4:4d:51:0e:ec:b4:82:62: 63:30:b2:10:66:35:2c:a0:39:48:8b:07:0f:7f:70:99:72:8c: 66:5f:4d:ac:bf:f1:c3:78:8b:77:2c:95:cb:b0:0b:9a:d8:ba: f6:cb:41:dd:0f:61:41:fa:2f:21:96:1f:b3:43:c5:32:61:49: 2c:d9:92:a4:e3:31:36:ea:77:95:a3:d7:5a:bd:d4:c4:9b:74: 3e:a6:e1:ae:e1:10:b0:3d:67:30:64:db:28:96:bc:ff:82:bd: 09:f7:1b:cd:58:b0:85:7e:c9:c9:00:e9:05:af:d0:5b:c5:bb: 2b:a3:2c:ed:7a:17:c9:66:69:91:ea:07:63:6d:ee:84:e4:f6: fc:28:19:6a:f8:e4:8c:1c:87:88:91:ad:11:3a:e1:c4:aa:66: 22:93:b8:d3:5b:99:21:d7:2f:e3:06:94:bf:e0:6b:80:cd:ff: f5:37:24:d7:34:d1:02:88:2b:86:94:a1:61:90:e8:f7:b7:c0: 54:e8:5b:3c:d7:ea:e1:a7:00:cd:06:6f:f1:75:14:b9:91:6c: 3f:20:23:c9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcwRkExMTAvBgNVBAUTKDM2Mzk1MkI3RjQxNzgyMDYwOTMwMEFFODkxNDgxMjE4 NEI4RkMzREMwHhcNMjYwMzI2MTYwODIxWhcNMjYwNDAyMTYwODIxWjAYMRYwFAYD VQQDEw02OWM1NTlmNS0wZDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArWxfmaDL7Fq/XZ2zXfse0WxurVgr81ocnADe/VHCT5PRxhwXjSnF3HUwphI6 iXIOzh/HETuCY/lBZMdpg1QAJk5ZnBJZOhuPaYfyl/dFvjUqpMh6/jwiLcQuLO/4 nC3g0fZK79xcIXyPi6Mdk+jVlS1frSrdoLUe7litV3o2xZDUtM7LsfUo0r6UEa7K pAjYzlfOZhGwNkietqak3FfDug98ic8G95RP634bNAWpqDbeQL+3HyQ+X6qIKSDx nT/oKTAIF4Xp5sXcyasdf1THu8CU9HbArZ8hsan6Uu7QBX3POuf53Bh6hQzvZaEC EGGTz+WHHlI6G8d9oXSqvgSpDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDg7cwOM hk1hgZKB9VulLhDxpe8kMB8GA1UdIwQYMBaAFDY5Urf0F4IGCTAK6JFIEhhLj8Pc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzBGQS82NEZCN0UxQ0Uz QTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdnWUpNQXJva1VnU0dFdVB3 OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05qbFN0X1FYZ2dZSk1Bcm9rVWdTR0V1UHc5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzBGQS82NEZCN0UxQ0UzQTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdn WUpNQXJva1VnU0dFdVB3OXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJrdEcOEblSiBddNFz3m1qXdVJlWDcjtAvQ2xOVJF9MEUncwdoBvmPoby+car xuRNUQ7stIJiYzCyEGY1LKA5SIsHD39wmXKMZl9NrL/xw3iLdyyVy7ALmti69stB 3Q9hQfovIZYfs0PFMmFJLNmSpOMxNup3laPXWr3UxJt0PqbhruEQsD1nMGTbKJa8 /4K9CfcbzViwhX7JyQDpBa/QW8W7K6Ms7XoXyWZpkeoHY23uhOT2/CgZavjkjByH iJGtETrhxKpmIpO401uZIdcv4waUv+BrgM3/9Tck1zTRAogrhpShYZDo97fAVOhb PNfq4acAzQZv8XUUuZFsPyAjyQ== -----END CERTIFICATE-----Generated at Thu Mar 26 21:40:07 2026 by rpki-client