$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft File: nssirN4JZ6BYN-WPxzHTV-N2N_g.mft (raw, json) Hash identifier: N80GGJFMRkAXGW4FNvOgfXi445iS4G3wB+EwCaxrEkA= Subject key identifier: 0D:09:77:65:BB:BB:D0:6C:FE:5D:6C:6C:E8:55:5B:0D:16:DE:DC:56 Authority key identifier: 9E:CB:22:AC:DE:09:67:A0:58:37:E5:8F:C7:31:D3:57:E3:76:37:F8 Certificate issuer: /CN=A91C6B27/serialNumber=9ECB22ACDE0967A05837E58FC731D357E37637F8 Certificate serial: 0C1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft Manifest number: 0BFF Signing time: Tue 24 Mar 2026 18:39:06 +0000 Manifest this update: Tue 24 Mar 2026 18:39:06 +0000 Manifest next update: Tue 31 Mar 2026 18:39:06 +0000 Files and hashes: 1: nssirN4JZ6BYN-WPxzHTV-N2N_g.crl (hash: spJ22U5DQFVtmQB6axptENkZy0RnZi3nS64bbAYwmF0=) 2: 2B1D3BB2305811EA8D5B6479C4F9AE02.roa (hash: N2Nuak7OaRSEZDR308+upPNTawYHUgYAli3HOQeBT88=) 3: E4BB99E2336E11EA94623E18C4F9AE02.roa (hash: pnBE91n4MbWlPAPg/bpDpFdbvV8uWC8bNNguZIXX26E=) 4: E5675F48336E11EA94623E18C4F9AE02.roa (hash: 2xiNwjYW2pyIkz7eTV4qaxFN/iMW7ShcypRgqsGtO2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.crl rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:39:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3098 (0xc1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6B27, serialNumber=9ECB22ACDE0967A05837E58FC731D357E37637F8 Validity Not Before: Mar 24 18:39:06 2026 GMT Not After : Mar 31 18:39:06 2026 GMT Subject: CN=69c2da4a-dcb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:6b:44:f0:a2:f1:bb:85:ed:09:cc:d8:61:d3: f0:4a:05:b8:0f:68:93:6c:d5:21:1c:55:0c:ea:7e: 96:23:47:ec:7e:24:8a:83:72:e1:3e:5f:af:eb:4c: 10:51:ef:d0:28:e2:64:c4:94:61:e7:44:71:4b:ec: 90:8c:7c:d5:59:86:05:19:2d:b3:53:c5:46:35:ad: 00:4c:b1:9d:d3:2f:e5:9f:95:49:d4:ca:31:ce:51: ce:95:a2:a8:a2:d9:36:a5:9f:fb:fc:03:79:ba:0e: 1e:34:ac:e5:bb:00:2f:fe:fc:34:a8:b3:70:1f:98: 19:6a:ee:91:51:25:fd:cb:c2:bc:42:27:a4:db:e5: ae:a4:11:2a:68:6b:ac:9c:5a:8e:a2:82:94:19:57: b2:d9:9d:96:33:69:ab:7d:3e:95:4f:4f:ce:a2:4d: 3f:3f:62:55:4f:0c:c4:e1:b8:47:51:f1:05:a6:f2: e9:40:4d:b8:cf:ea:f4:36:dd:88:98:11:5b:fa:9b: 13:00:1d:be:62:2b:a9:89:20:0c:07:e4:c9:33:bb: 72:3c:57:b5:d0:6e:58:d9:16:9a:fd:64:e1:67:14: f0:6c:ab:aa:0f:de:a8:ec:5b:47:a9:8d:b6:d9:ca: c2:17:6d:cd:58:0c:04:85:b5:e1:f7:e6:c4:4b:e4: 9c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:09:77:65:BB:BB:D0:6C:FE:5D:6C:6C:E8:55:5B:0D:16:DE:DC:56 X509v3 Authority Key Identifier: keyid:9E:CB:22:AC:DE:09:67:A0:58:37:E5:8F:C7:31:D3:57:E3:76:37:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:d4:2a:8b:1f:bc:19:25:46:2a:01:c7:e2:f6:32:ea:3d:bf: b5:03:96:e0:29:89:b7:1a:1f:9e:0e:b5:ba:ff:0b:5a:9f:9f: 40:c2:db:41:41:98:81:1e:5f:83:19:96:eb:45:48:7d:94:6d: ca:f9:eb:a0:96:85:e2:1a:24:05:96:9e:99:28:41:75:93:36: 84:4d:20:14:f8:fd:30:37:12:6f:70:91:f3:62:47:d9:8a:d0: 93:41:91:16:4e:33:0b:ba:3d:64:c7:e5:9e:3f:47:66:a2:08: e1:cb:e1:eb:da:ab:80:64:e3:c4:55:ea:20:2b:56:c6:28:89: d9:92:f5:4f:4d:f8:00:b6:2b:6e:24:0b:bc:93:91:de:a7:9d: 97:0e:01:38:0a:75:c6:7a:43:84:d2:0a:31:f0:a4:6b:32:67: 9e:f2:ee:e7:f5:2b:6d:73:ac:dd:3c:70:61:47:76:92:f1:26: 9f:7e:85:71:6e:59:9d:85:0a:29:47:b7:e7:f4:ae:43:e7:57: cf:8f:26:cf:d3:98:80:fe:94:bb:ca:de:8d:cb:09:b5:3e:36: 72:79:68:a6:e6:e9:df:7d:a8:12:e0:b6:d2:15:21:47:6e:93: 8a:a0:71:85:0e:52:9d:46:04:71:f3:91:30:07:de:fc:b6:f3: c5:ed:7a:89 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDBowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCMjcxMTAvBgNVBAUTKDlFQ0IyMkFDREUwOTY3QTA1ODM3RTU4RkM3MzFEMzU3 RTM3NjM3RjgwHhcNMjYwMzI0MTgzOTA2WhcNMjYwMzMxMTgzOTA2WjAYMRYwFAYD VQQDEw02OWMyZGE0YS1kY2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3WtE8KLxu4XtCczYYdPwSgW4D2iTbNUhHFUM6n6WI0fsfiSKg3LhPl+v60wQ Ue/QKOJkxJRh50RxS+yQjHzVWYYFGS2zU8VGNa0ATLGd0y/ln5VJ1MoxzlHOlaKo otk2pZ/7/AN5ug4eNKzluwAv/vw0qLNwH5gZau6RUSX9y8K8Qiek2+WupBEqaGus nFqOooKUGVey2Z2WM2mrfT6VT0/Ook0/P2JVTwzE4bhHUfEFpvLpQE24z+r0Nt2I mBFb+psTAB2+YiupiSAMB+TJM7tyPFe10G5Y2Raa/WThZxTwbKuqD96o7FtHqY22 2crCF23NWAwEhbXh9+bES+ScxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA0Jd2W7 u9Bs/l1sbOhVWw0W3txWMB8GA1UdIwQYMBaAFJ7LIqzeCWegWDflj8cx01fjdjf4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkIyNy84MkJGMkJGNDMw NTQxMUVBQUZDOTExNkVDNEY5QUUwMi9uc3Npck40Slo2QllOLVdQeHpIVFYtTjJO X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25zc2lyTjRKWjZCWU4tV1B4ekhUVi1OMk5fZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkIyNy84MkJGMkJGNDMwNTQxMUVBQUZDOTExNkVDNEY5QUUwMi9uc3Npck40Slo2 QllOLVdQeHpIVFYtTjJOX2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAttQqix+8GSVGKgHH4vYy6j2/tQOW4CmJtxofng61uv8LWp+fQMLbQUGYgR5f gxmW60VIfZRtyvnroJaF4hokBZaemShBdZM2hE0gFPj9MDcSb3CR82JH2YrQk0GR Fk4zC7o9ZMflnj9HZqII4cvh69qrgGTjxFXqICtWxiiJ2ZL1T034ALYrbiQLvJOR 3qedlw4BOAp1xnpDhNIKMfCkazJnnvLu5/UrbXOs3TxwYUd2kvEmn36FcW5ZnYUK KUe35/SuQ+dXz48mz9OYgP6Uu8rejcsJtT42cnlopubp332oEuC20hUhR26TiqBx hQ5SnUYEcfORMAfe/Lbzxe16iQ== -----END CERTIFICATE-----Generated at Thu Mar 26 13:55:03 2026 by rpki-client