$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft File: nTwzrLEQPnH6H_PmAT6dwxEiafw.mft (raw, json) Hash identifier: g24ZaWb63/OrTA23mR3BCKBSrDhFkQtLjUgYf+2sE7M= Subject key identifier: EA:A9:E6:FA:E6:41:56:47:C7:D5:E8:99:19:D1:5C:70:EB:08:90:2D Authority key identifier: 9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC Certificate issuer: /CN=A91B1E8B/serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft Manifest number: 0140 Signing time: Wed 25 Mar 2026 04:36:10 +0000 Manifest this update: Wed 25 Mar 2026 04:36:10 +0000 Manifest next update: Wed 01 Apr 2026 04:36:10 +0000 Files and hashes: 1: nTwzrLEQPnH6H_PmAT6dwxEiafw.crl (hash: YWdkrSIwH0EP0hVWpYYnyXY4qj5DZgzxRP6BgMfXrtM=) 2: DD76C09AB16711EFBD483568C4F9AE02.roa (hash: OJIwdILNcKxj0xX6Uj1lld3dWONiR8ZjcGc33mTU5vk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E8B, serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Validity Not Before: Mar 25 04:36:10 2026 GMT Not After : Apr 1 04:36:10 2026 GMT Subject: CN=69c3663a-8da9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:b0:a2:31:00:9b:cd:db:c0:00:74:b7:06:17: 2c:93:e9:b9:ef:31:0c:84:d9:e0:e8:4c:89:19:6b: 56:8e:5c:30:65:8b:d3:07:d5:09:a9:ad:32:a3:f1: fe:b4:ca:c7:a4:ec:c8:c2:a4:1b:fb:9d:fa:28:c7: d0:2c:e0:22:5a:93:3e:89:15:61:05:b3:26:c8:14: 08:03:29:74:24:98:72:29:83:e3:41:bd:24:49:f9: 50:88:1b:98:d6:1f:ef:98:a0:97:50:1c:ca:ff:29: c2:01:06:21:05:6f:30:f7:e7:5f:9e:48:0e:ba:ca: e9:e0:39:4c:75:cd:77:2c:45:2a:4b:d8:d0:47:c6: 7b:37:68:af:00:de:8d:fa:f9:c0:81:c1:e2:60:8f: f8:63:fc:0b:55:1f:45:e4:f5:0c:2b:e9:b2:31:67: d5:d3:2a:d3:77:ee:82:77:0f:d1:34:35:57:e5:17: 1e:ac:0a:b2:f6:45:fe:db:30:69:d3:0f:dd:84:37: b5:16:eb:43:9a:de:a0:38:8a:b8:3f:3e:de:21:db: 88:9f:89:0b:4c:d3:0b:19:6e:94:b7:fe:ab:b5:e2: 28:40:63:a0:24:38:52:b5:0f:e2:6d:07:82:18:bf: c1:51:18:c7:5b:73:15:62:ed:9e:45:f8:2b:eb:e8: fb:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:A9:E6:FA:E6:41:56:47:C7:D5:E8:99:19:D1:5C:70:EB:08:90:2D X509v3 Authority Key Identifier: keyid:9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:25:c6:b5:4e:67:17:76:8c:51:51:c2:e0:c7:37:49:64:7c: 16:5c:9b:8e:80:9a:1f:d5:c2:e6:fd:f9:29:d2:b7:1c:00:c3: ce:4d:dd:17:57:b5:c0:e4:8f:61:b2:5a:f6:20:32:5e:2f:8b: b2:0b:a1:ca:94:8b:b3:fd:b7:80:ce:47:c6:8a:ed:f5:ea:0e: 7f:de:96:18:7e:2c:43:38:df:07:31:39:05:cc:43:6a:14:0f: 75:27:ad:ac:23:b0:9b:81:89:b7:36:0c:76:7d:92:a1:9b:a7: 23:fe:48:76:8a:a7:99:ac:3e:6e:84:39:31:1e:bf:54:67:07: b3:1c:60:68:96:64:76:16:7b:6c:ad:cd:b2:7b:72:9f:e2:e4: a9:02:31:7f:56:2d:21:b4:81:26:d8:62:8c:a5:18:d5:b8:c7: b8:49:de:77:f8:3c:a5:a8:43:a6:39:de:7c:23:75:52:34:45: cb:9f:58:88:9a:28:26:24:27:ed:0b:c6:c5:6b:73:42:fd:b3: 7a:3e:c5:9c:e4:0c:38:43:ab:00:80:dd:9f:95:bd:0f:ff:56: 2d:ce:43:12:ab:7c:b3:b0:4f:1d:b9:d6:56:5a:34:9c:53:bc: 90:db:32:ba:c0:8c:2b:45:09:03:2f:0d:2b:08:52:a9:44:78: e1:f8:2d:f9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFFOEIxMTAvBgNVBAUTKDlEM0MzM0FDQjExMDNFNzFGQTFGRjNFNjAxM0U5REMz MTEyMjY5RkMwHhcNMjYwMzI1MDQzNjEwWhcNMjYwNDAxMDQzNjEwWjAYMRYwFAYD VQQDEw02OWMzNjYzYS04ZGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi7CiMQCbzdvAAHS3Bhcsk+m57zEMhNng6EyJGWtWjlwwZYvTB9UJqa0yo/H+ tMrHpOzIwqQb+536KMfQLOAiWpM+iRVhBbMmyBQIAyl0JJhyKYPjQb0kSflQiBuY 1h/vmKCXUBzK/ynCAQYhBW8w9+dfnkgOusrp4DlMdc13LEUqS9jQR8Z7N2ivAN6N +vnAgcHiYI/4Y/wLVR9F5PUMK+myMWfV0yrTd+6Cdw/RNDVX5RcerAqy9kX+2zBp 0w/dhDe1FutDmt6gOIq4Pz7eIduIn4kLTNMLGW6Ut/6rteIoQGOgJDhStQ/ibQeC GL/BURjHW3MVYu2eRfgr6+j7FwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOqp5vrm QVZHx9XomRnRXHDrCJAtMB8GA1UdIwQYMBaAFJ08M6yxED5x+h/z5gE+ncMRImn8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUU4Qi82MjkxNzY0NDQ1 QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBuSDZIX1BtQVQ2ZHd4RWlh ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25Ud3pyTEVRUG5INkhfUG1BVDZkd3hFaWFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUU4Qi82MjkxNzY0NDQ1QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBu SDZIX1BtQVQ2ZHd4RWlhZncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbSXGtU5nF3aMUVHC4Mc3SWR8FlybjoCaH9XC5v35KdK3HADDzk3dF1e1wOSP YbJa9iAyXi+LsguhypSLs/23gM5Hxort9eoOf96WGH4sQzjfBzE5BcxDahQPdSet rCOwm4GJtzYMdn2SoZunI/5Idoqnmaw+boQ5MR6/VGcHsxxgaJZkdhZ7bK3Nsnty n+LkqQIxf1YtIbSBJthijKUY1bjHuEned/g8pahDpjnefCN1UjRFy59YiJooJiQn 7QvGxWtzQv2zej7FnOQMOEOrAIDdn5W9D/9WLc5DEqt8s7BPHbnWVlo0nFO8kNsy usCMK0UJAy8NKwhSqUR44fgt+Q== -----END CERTIFICATE-----Generated at Thu Mar 26 21:35:51 2026 by rpki-client