$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft File: NctCHFV3F3WBziSzai9syTGEYFI.mft (raw, json) Hash identifier: E8bIY89iY/N6nDrwnutZI1zrgMgUMvhbvqJ9BNEZCt8= Subject key identifier: 55:6D:E8:53:77:DD:7A:95:57:54:A4:A7:77:B3:56:EC:AF:FA:61:A2 Authority key identifier: 35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 Certificate issuer: /CN=A91CA3CD/serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Certificate serial: 01BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft Manifest number: 01B7 Signing time: Wed 25 Mar 2026 03:15:56 +0000 Manifest this update: Wed 25 Mar 2026 03:15:55 +0000 Manifest next update: Wed 01 Apr 2026 03:15:55 +0000 Files and hashes: 1: NctCHFV3F3WBziSzai9syTGEYFI.crl (hash: yVEwW15YU2bMho+km/xSXFoiLJYhHloE7+9gYBCpKWc=) 2: F5121FB090CF11EE8036815AC4F9AE02.roa (hash: fAaur7LW2+pEge7BQCktlo8tOQuU2cmVWJ8Ioa474Lw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:15:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA3CD, serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Validity Not Before: Mar 25 03:15:55 2026 GMT Not After : Apr 1 03:15:55 2026 GMT Subject: CN=69c3536b-27b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:18:74:1f:0b:75:31:47:8b:91:d2:11:be:4f: 13:c9:dd:62:55:e9:7f:98:b7:74:1e:85:05:7e:39: 44:95:24:4a:9b:85:5d:ce:02:7f:4f:8a:f5:89:23: 6b:4d:2a:24:d9:10:63:81:ce:92:2e:60:bd:27:0a: 4e:78:b0:eb:89:d7:00:ad:5f:c8:28:d5:69:d9:06: 39:32:ab:25:66:bb:70:f1:8e:45:46:8a:88:62:83: a6:49:79:f4:93:13:71:4c:91:8b:af:0e:05:9c:50: e2:44:c1:86:de:a1:bf:c1:12:63:7e:29:92:1c:5d: 59:c5:b5:2f:d2:ce:57:dc:a8:9d:48:1c:61:fd:6d: 56:ed:2b:43:cb:f4:da:26:87:66:4f:1f:8c:c8:af: c7:e8:d7:3b:7e:12:8a:a4:c8:d7:ff:96:62:d8:81: fd:ea:5c:53:7e:76:f7:b6:49:c4:f9:0e:14:d9:e5: 4e:97:92:76:ca:7b:e0:6c:3d:f3:6c:cb:67:22:78: 23:c6:f1:81:30:69:a4:c0:c8:6e:91:c7:ac:9d:d0: d9:0c:26:16:36:ee:94:6d:bc:a0:79:14:00:69:dc: 52:fd:f6:7c:af:32:5f:85:7b:f9:19:bc:0c:80:17: 53:3a:b5:46:2d:c5:69:7b:cb:81:59:99:3f:28:61: bd:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:6D:E8:53:77:DD:7A:95:57:54:A4:A7:77:B3:56:EC:AF:FA:61:A2 X509v3 Authority Key Identifier: keyid:35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:e5:27:61:fb:69:8d:5d:88:93:91:56:5c:4b:34:f0:38:b2: d5:76:42:9d:f8:9d:39:1a:a7:4c:4a:dd:a5:8f:3c:3a:d0:bb: fa:2e:65:57:c5:79:da:b5:5e:ba:3e:20:bd:4c:6f:65:30:12: 0a:86:94:de:c2:76:36:2b:26:9f:a1:98:58:ed:3d:bb:1f:50: 95:34:92:2f:73:5d:7f:59:f0:9d:8b:92:bd:7d:20:59:a8:4e: 99:ff:86:dc:30:96:91:d0:e4:ef:f4:f3:e0:84:44:eb:4c:9a: ac:6f:61:df:f7:db:d0:72:92:1c:03:48:8d:bb:aa:25:26:44: 31:69:ae:06:d2:85:98:48:e0:c8:0a:90:ce:6c:f9:01:ac:9b: f0:10:75:d4:69:e7:4c:28:b1:9a:aa:a6:dd:9a:94:48:5e:25: 94:28:aa:86:4b:ca:9b:b2:de:38:d5:d6:9f:51:38:2d:e7:43: 1c:b5:2d:83:50:3c:76:ee:59:23:15:2d:26:e7:7b:12:32:8b: e0:9d:eb:a9:be:e9:53:35:dc:bd:13:dc:31:64:82:ad:d5:25: ea:3a:b3:eb:36:82:27:a7:7c:8b:2f:7d:b1:a4:f6:db:40:33: 6c:57:8b:84:b2:ab:38:fd:d7:aa:f8:e9:73:19:60:db:4e:4a: db:2e:3f:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0EzQ0QxMTAvBgNVBAUTKDM1Q0I0MjFDNTU3NzE3NzU4MUNFMjRCMzZBMkY2Q0M5 MzE4NDYwNTIwHhcNMjYwMzI1MDMxNTU1WhcNMjYwNDAxMDMxNTU1WjAYMRYwFAYD VQQDEw02OWMzNTM2Yi0yN2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Bh0Hwt1MUeLkdIRvk8Tyd1iVel/mLd0HoUFfjlElSRKm4VdzgJ/T4r1iSNr TSok2RBjgc6SLmC9JwpOeLDridcArV/IKNVp2QY5MqslZrtw8Y5FRoqIYoOmSXn0 kxNxTJGLrw4FnFDiRMGG3qG/wRJjfimSHF1ZxbUv0s5X3KidSBxh/W1W7StDy/Ta JodmTx+MyK/H6Nc7fhKKpMjX/5Zi2IH96lxTfnb3tknE+Q4U2eVOl5J2ynvgbD3z bMtnIngjxvGBMGmkwMhukcesndDZDCYWNu6UbbygeRQAadxS/fZ8rzJfhXv5GbwM gBdTOrVGLcVpe8uBWZk/KGG9CQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFVt6FN3 3XqVV1Skp3ezVuyv+mGiMB8GA1UdIwQYMBaAFDXLQhxVdxd1gc4ks2ovbMkxhGBS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTNDRC8yNjQ1M0ZBMDkw NTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0YzV0J6aVN6YWk5c3lUR0VZ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05jdENIRlYzRjNXQnppU3phaTlzeVRHRVlGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTNDRC8yNjQ1M0ZBMDkwNTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0Yz V0J6aVN6YWk5c3lUR0VZRkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMuUnYftpjV2Ik5FWXEs08Diy1XZCnfidORqnTErdpY88OtC7+i5lV8V52rVe uj4gvUxvZTASCoaU3sJ2Nismn6GYWO09ux9QlTSSL3Ndf1nwnYuSvX0gWahOmf+G 3DCWkdDk7/Tz4IRE60yarG9h3/fb0HKSHANIjbuqJSZEMWmuBtKFmEjgyAqQzmz5 Aayb8BB11GnnTCixmqqm3ZqUSF4llCiqhkvKm7LeONXWn1E4LedDHLUtg1A8du5Z IxUtJud7EjKL4J3rqb7pUzXcvRPcMWSCrdUl6jqz6zaCJ6d8iy99saT220AzbFeL hLKrOP3Xqvjpcxlg205K2y4/NA== -----END CERTIFICATE-----Generated at Thu Mar 26 04:23:33 2026 by rpki-client