$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft File: nssirN4JZ6BYN-WPxzHTV-N2N_g.mft (raw, json) Hash identifier: TCaf2hAFw5A4k44sYuVOsv893oRpkX2c1q3nUvlQzts= Subject key identifier: D4:DC:C5:30:94:66:85:D6:3F:A3:3A:06:FB:32:AF:E8:28:01:96:DD Authority key identifier: 9E:CB:22:AC:DE:09:67:A0:58:37:E5:8F:C7:31:D3:57:E3:76:37:F8 Certificate issuer: /CN=A91C6B27/serialNumber=9ECB22ACDE0967A05837E58FC731D357E37637F8 Certificate serial: 0C33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft Manifest number: 0C18 Signing time: Tue 12 May 2026 18:50:15 +0000 Manifest this update: Tue 12 May 2026 18:50:14 +0000 Manifest next update: Tue 19 May 2026 18:50:14 +0000 Files and hashes: 1: nssirN4JZ6BYN-WPxzHTV-N2N_g.crl (hash: SIyIsn4VU1aRMfvt1XS9Zn2oLIzh+f49QP9fuZkaI5A=) 2: E4BB99E2336E11EA94623E18C4F9AE02.roa (hash: pnBE91n4MbWlPAPg/bpDpFdbvV8uWC8bNNguZIXX26E=) 3: E5675F48336E11EA94623E18C4F9AE02.roa (hash: 2xiNwjYW2pyIkz7eTV4qaxFN/iMW7ShcypRgqsGtO2A=) 4: 2B1D3BB2305811EA8D5B6479C4F9AE02.roa (hash: N2Nuak7OaRSEZDR308+upPNTawYHUgYAli3HOQeBT88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.crl rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3123 (0xc33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6B27, serialNumber=9ECB22ACDE0967A05837E58FC731D357E37637F8 Validity Not Before: May 12 18:50:14 2026 GMT Not After : May 19 18:50:14 2026 GMT Subject: CN=6a037666-3f87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d4:5c:58:f0:6b:50:11:47:ba:6b:9a:37:91: a2:de:6d:b3:69:49:d7:ff:e9:b3:0e:fe:7d:d9:b6: 6b:21:42:e6:5c:b6:5a:55:49:df:98:df:5e:80:6f: d3:c0:d3:28:d5:1e:ae:4d:ae:76:41:b1:0f:8b:a4: ad:1a:f0:15:39:7e:df:84:cf:67:02:1b:fe:f8:57: cc:3a:cb:92:18:50:53:72:15:cc:55:27:c2:5e:e7: dd:70:69:14:cb:b0:22:62:29:d8:c8:63:80:cc:6c: 12:52:63:22:32:62:9f:46:14:2b:5a:f0:27:97:e1: 04:46:29:3b:07:ca:e4:45:95:14:fc:b4:d9:af:05: 59:2e:9c:02:fd:97:5a:21:b0:07:ac:c8:2f:70:61: 97:16:1c:28:f0:ce:c0:a9:c2:5b:d8:54:52:70:d1: 01:03:9e:6e:76:38:68:e3:5d:0c:df:16:7b:cc:ec: f4:0e:34:c0:ec:f6:08:ff:09:6b:46:47:51:42:32: f9:4e:61:29:eb:f4:65:34:80:ed:e3:82:82:d6:a1: d1:35:2d:2d:02:5b:58:60:f7:8f:0c:b0:1f:1d:56: d9:36:fe:2f:b6:4f:35:61:9b:1f:89:00:1d:df:cb: 24:a0:e1:f5:68:b5:49:b9:10:ff:af:8d:7c:05:82: dd:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:DC:C5:30:94:66:85:D6:3F:A3:3A:06:FB:32:AF:E8:28:01:96:DD X509v3 Authority Key Identifier: keyid:9E:CB:22:AC:DE:09:67:A0:58:37:E5:8F:C7:31:D3:57:E3:76:37:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:8b:89:2e:d3:fa:73:b2:1c:f5:95:fa:ed:f5:c6:ea:ea:96: bf:d7:bf:15:6a:f5:8a:4f:11:ea:96:3f:11:58:b2:49:8d:80: 4c:df:24:c2:5a:cb:5a:dc:6b:da:83:a7:5f:82:0b:e1:e8:30: db:69:0e:a8:06:bb:c3:73:19:64:5d:ce:65:47:74:74:49:a5: 42:2e:e0:ea:35:55:04:2a:cc:ba:50:72:73:80:23:3d:d0:45: 38:cc:8d:a4:fd:ca:9e:26:8d:8b:e3:63:83:bc:f2:52:74:10: d4:88:5f:57:02:5f:b2:7a:d1:9a:4d:9f:8d:04:e5:7e:9e:20: ff:0e:68:9f:5f:fe:51:2e:19:7d:1b:53:c5:54:f2:b5:07:93: 8b:db:19:a8:c2:0c:b0:d0:1f:a1:d6:50:03:ef:8c:72:e8:d2: 7c:09:8b:3a:8c:7d:c8:69:d8:63:09:79:b2:49:ea:bb:c7:3a: 4f:07:f3:0c:23:87:b4:d0:23:59:89:17:e6:d8:70:e3:de:7d: de:61:94:d0:14:90:6f:5f:14:a0:14:ea:8b:52:65:1a:e7:b2: f8:ed:83:d6:37:37:62:da:f7:95:e6:27:21:d4:30:b7:37:a7: e1:77:d3:ba:a9:bb:65:c7:9a:b8:11:08:7a:22:0a:e0:f0:67: e0:2a:21:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCMjcxMTAvBgNVBAUTKDlFQ0IyMkFDREUwOTY3QTA1ODM3RTU4RkM3MzFEMzU3 RTM3NjM3RjgwHhcNMjYwNTEyMTg1MDE0WhcNMjYwNTE5MTg1MDE0WjAYMRYwFAYD VQQDEw02YTAzNzY2Ni0zZjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdRcWPBrUBFHumuaN5Gi3m2zaUnX/+mzDv592bZrIULmXLZaVUnfmN9egG/T wNMo1R6uTa52QbEPi6StGvAVOX7fhM9nAhv++FfMOsuSGFBTchXMVSfCXufdcGkU y7AiYinYyGOAzGwSUmMiMmKfRhQrWvAnl+EERik7B8rkRZUU/LTZrwVZLpwC/Zda IbAHrMgvcGGXFhwo8M7AqcJb2FRScNEBA55udjho410M3xZ7zOz0DjTA7PYI/wlr RkdRQjL5TmEp6/RlNIDt44KC1qHRNS0tAltYYPePDLAfHVbZNv4vtk81YZsfiQAd 38skoOH1aLVJuRD/r418BYLdnQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNTcxTCU ZoXWP6M6Bvsyr+goAZbdMB8GA1UdIwQYMBaAFJ7LIqzeCWegWDflj8cx01fjdjf4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkIyNy84MkJGMkJGNDMw NTQxMUVBQUZDOTExNkVDNEY5QUUwMi9uc3Npck40Slo2QllOLVdQeHpIVFYtTjJO X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25zc2lyTjRKWjZCWU4tV1B4ekhUVi1OMk5fZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkIyNy84MkJGMkJGNDMwNTQxMUVBQUZDOTExNkVDNEY5QUUwMi9uc3Npck40Slo2 QllOLVdQeHpIVFYtTjJOX2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtIuJLtP6c7Ic9ZX67fXG6uqWv9e/FWr1ik8R6pY/EViySY2ATN8kwlrLWtxr 2oOnX4IL4egw22kOqAa7w3MZZF3OZUd0dEmlQi7g6jVVBCrMulByc4AjPdBFOMyN pP3KniaNi+Njg7zyUnQQ1IhfVwJfsnrRmk2fjQTlfp4g/w5on1/+US4ZfRtTxVTy tQeTi9sZqMIMsNAfodZQA++McujSfAmLOox9yGnYYwl5sknqu8c6TwfzDCOHtNAj WYkX5thw49593mGU0BSQb18UoBTqi1JlGuey+O2D1jc3Ytr3leYnIdQwtzen4XfT uqm7ZceauBEIeiIK4PBn4CohdQ== -----END CERTIFICATE-----Generated at Wed May 13 16:12:54 2026 by rpki-client