$ rpki-client -vvf rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft File: NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft (raw, json) Hash identifier: UKI+2kpc/aOeBkhwu9S7VNm4G7r9eL7xtGn9M8pLobo= Subject key identifier: A1:19:69:C6:38:39:9F:EF:F9:5A:14:F0:83:02:E5:81:60:C6:1C:B9 Authority key identifier: 34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA Certificate issuer: /CN=A91C99B4/serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Certificate serial: 07CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft Manifest number: 079A Signing time: Tue 24 Mar 2026 21:22:34 +0000 Manifest this update: Tue 24 Mar 2026 21:22:33 +0000 Manifest next update: Tue 31 Mar 2026 21:22:33 +0000 Files and hashes: 1: NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl (hash: R675xivMa3iR6qaIU/qwTjWVvavkC7jz2ZJEHyk37FI=) 2: F3BEC03CE13B11F090F650ED6F6F56BC.roa (hash: 73pAfLSC8B0XWc6KcAo6RSi0u4KosXge+3h5CVJGLfw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:22:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1997 (0x7cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C99B4, serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Validity Not Before: Mar 24 21:22:33 2026 GMT Not After : Mar 31 21:22:33 2026 GMT Subject: CN=69c3009a-1baa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:80:f9:a4:d8:3b:ee:f6:c1:4c:38:7b:23:20: 7c:e5:26:ce:c5:67:d2:a2:5a:36:87:92:a1:4e:f8: 4b:c9:61:6e:ee:37:80:fd:4c:08:74:05:a1:5b:25: ab:9c:93:74:76:bf:3e:13:ea:80:d1:5a:e1:99:3b: ad:82:94:fb:ab:16:24:99:49:a3:1c:9a:67:56:7c: 73:29:f9:c0:54:14:a5:07:a2:b1:ef:47:b5:a9:dc: 41:32:05:d9:f5:98:a2:69:3b:3d:ff:fa:53:64:7f: 26:8c:90:28:2d:65:fa:0a:31:02:a9:b9:8e:92:66: 65:2d:cf:2a:5d:2a:40:f3:69:0b:73:99:aa:73:89: e1:5b:7c:60:7f:76:83:a3:13:e2:91:20:45:4f:df: c6:7e:dd:41:05:83:e4:d4:33:05:09:f0:4f:d5:74: a3:dc:f5:dc:4e:90:16:ec:39:e3:f4:05:fa:9d:42: 4c:c3:6c:72:58:f8:16:49:06:68:1e:4e:5c:ce:b4: 7a:f1:23:a1:12:e9:21:54:28:8e:c7:b1:f4:67:52: 9b:b0:a8:ef:a6:a2:e4:f5:4c:f4:fd:ce:fe:32:5f: 21:c4:2f:4f:51:c2:00:eb:0a:e4:e7:da:f5:08:7a: 9f:ed:d6:99:58:52:d4:47:2d:d4:5c:b6:d2:ea:fc: 00:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:19:69:C6:38:39:9F:EF:F9:5A:14:F0:83:02:E5:81:60:C6:1C:B9 X509v3 Authority Key Identifier: keyid:34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:d3:9d:3e:10:0b:de:9b:52:0d:01:08:b3:08:78:2d:1e:5a: 64:a0:5a:55:44:d0:0b:2a:4f:6b:6b:4e:ce:84:97:e5:35:df: ca:02:eb:04:f8:60:05:1d:96:f0:77:db:ce:de:94:f7:e2:9a: 4a:dc:8a:5b:23:cf:b2:52:fb:c5:4b:46:16:34:7a:14:6b:42: 89:df:d5:00:e8:24:d0:19:f6:91:d8:75:14:a5:ca:9a:5b:e7: cf:ec:87:b4:98:98:df:32:9d:53:47:bb:e2:34:d1:5d:91:e7: b2:71:aa:dc:b0:0d:c9:f8:f4:4a:e5:14:7a:f1:c2:64:1f:fb: 75:ca:fe:88:a8:70:ab:56:f6:f3:39:0d:db:3b:6d:58:55:ab: e2:25:69:35:dc:ae:01:2d:32:a8:4b:b6:32:fb:9f:4b:91:70: 4d:2f:4b:0a:f8:61:c3:4e:e1:4a:8f:45:62:a9:93:6c:60:23: a6:37:ad:aa:58:18:25:51:6f:eb:21:9c:77:f8:b7:cd:3c:1a: 65:49:67:57:7a:87:da:5e:7c:1e:db:b5:08:a8:93:f5:c7:cd: 7c:6b:d5:82:26:32:8f:d1:84:7c:07:ed:da:9e:22:a5:88:1f: 74:a1:be:2e:82:c3:77:71:20:b9:a0:c0:f5:51:7a:e6:e8:e8: 05:be:e5:06 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5QjQxMTAvBgNVBAUTKDM0OEJFNjY5NEVENzA0MUFBRjI4RDBFQzhDNkM2NTY1 NTkxRjJEREEwHhcNMjYwMzI0MjEyMjMzWhcNMjYwMzMxMjEyMjMzWjAYMRYwFAYD VQQDEw02OWMzMDA5YS0xYmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4D5pNg77vbBTDh7IyB85SbOxWfSolo2h5KhTvhLyWFu7jeA/UwIdAWhWyWr nJN0dr8+E+qA0VrhmTutgpT7qxYkmUmjHJpnVnxzKfnAVBSlB6Kx70e1qdxBMgXZ 9ZiiaTs9//pTZH8mjJAoLWX6CjECqbmOkmZlLc8qXSpA82kLc5mqc4nhW3xgf3aD oxPikSBFT9/Gft1BBYPk1DMFCfBP1XSj3PXcTpAW7Dnj9AX6nUJMw2xyWPgWSQZo Hk5czrR68SOhEukhVCiOx7H0Z1KbsKjvpqLk9Uz0/c7+Ml8hxC9PUcIA6wrk59r1 CHqf7daZWFLURy3UXLbS6vwAkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKEZacY4 OZ/v+VoU8IMC5YFgxhy5MB8GA1UdIwQYMBaAFDSL5mlO1wQaryjQ7IxsZWVZHy3a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTlCNC81REU1OTY5NjU5 NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJCcXZLTkRzakd4bFpWa2ZM ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Jdm1hVTdYQkJxdktORHNqR3hsWlZrZkxkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTlCNC81REU1OTY5NjU5NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJC cXZLTkRzakd4bFpWa2ZMZG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAndOdPhAL3ptSDQEIswh4LR5aZKBaVUTQCypPa2tOzoSX5TXfygLrBPhgBR2W 8Hfbzt6U9+KaStyKWyPPslL7xUtGFjR6FGtCid/VAOgk0Bn2kdh1FKXKmlvnz+yH tJiY3zKdU0e74jTRXZHnsnGq3LANyfj0SuUUevHCZB/7dcr+iKhwq1b28zkN2ztt WFWr4iVpNdyuAS0yqEu2MvufS5FwTS9LCvhhw07hSo9FYqmTbGAjpjetqlgYJVFv 6yGcd/i3zTwaZUlnV3qH2l58Htu1CKiT9cfNfGvVgiYyj9GEfAft2p4ipYgfdKG+ LoLDd3EguaDA9VF65ujoBb7lBg== -----END CERTIFICATE-----Generated at Thu Mar 26 00:59:37 2026 by rpki-client