$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft File: NctCHFV3F3WBziSzai9syTGEYFI.mft (raw, json) Hash identifier: fD//hYdkY05sjLTSB9Oh70yCrWjHOjp9Qr3gI8iqg9s= Subject key identifier: AA:F5:08:D9:82:FF:7E:87:DA:22:6B:9F:33:20:A5:BF:5D:23:58:84 Authority key identifier: 35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 Certificate issuer: /CN=A91CA3CD/serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft Manifest number: 01D0 Signing time: Wed 13 May 2026 03:45:53 +0000 Manifest this update: Wed 13 May 2026 03:45:52 +0000 Manifest next update: Wed 20 May 2026 03:45:52 +0000 Files and hashes: 1: NctCHFV3F3WBziSzai9syTGEYFI.crl (hash: VrVQB5qejpgJSu7Kje1z0jk/xiaU+CYO93kNaGchfd0=) 2: F5121FB090CF11EE8036815AC4F9AE02.roa (hash: fAaur7LW2+pEge7BQCktlo8tOQuU2cmVWJ8Ioa474Lw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA3CD, serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Validity Not Before: May 13 03:45:52 2026 GMT Not After : May 20 03:45:52 2026 GMT Subject: CN=6a03f3f1-1959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:dd:01:8b:89:52:af:9f:5a:46:61:24:1c:df: 6b:96:cf:91:d7:94:39:e4:e3:20:a9:a6:94:cc:ab: a7:15:4c:19:ad:bd:2f:90:9d:c3:29:8a:80:d1:c2: 27:46:92:d7:90:25:e4:7d:3e:28:0c:b8:a6:22:cb: e5:b0:4e:cf:7f:25:35:24:32:08:7a:f8:31:5a:52: c3:48:ee:0b:5f:f0:7a:dd:66:85:1c:c5:de:b8:87: 9e:ad:f6:f8:30:c4:97:05:74:2a:2d:8a:44:84:cc: 88:b1:8a:1e:69:5d:9b:c4:5f:91:e4:55:13:26:ff: 68:68:35:05:49:82:42:a3:63:dd:29:7d:c4:ba:96: 85:b1:45:5f:fd:47:05:ce:88:3c:9e:9b:36:16:30: 10:32:c9:6e:9a:35:a1:f8:a9:f2:92:42:e7:82:21: 04:7d:88:8a:13:b2:be:2c:9b:47:3b:6d:5a:76:89: 6a:c0:e1:05:4d:4c:0c:5c:7a:0d:60:5a:73:ed:38: 6e:4a:c0:55:e8:d8:89:6f:ce:2b:c5:69:f3:39:19: 12:c2:29:66:6a:88:f9:59:22:6c:f7:65:d4:41:12: 87:b3:47:5f:c1:bd:23:91:29:da:4f:e1:02:ac:40: 9a:56:8c:35:49:71:95:64:22:79:e4:b5:29:5f:54: 9b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:F5:08:D9:82:FF:7E:87:DA:22:6B:9F:33:20:A5:BF:5D:23:58:84 X509v3 Authority Key Identifier: keyid:35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:c2:e1:94:46:2e:db:84:8a:fa:8a:bd:98:d1:07:cd:b4:b1: 9b:2b:00:aa:ca:8e:d9:f2:77:be:86:2b:75:fd:c5:fc:42:21: 51:b3:67:3a:d5:df:53:5e:b6:91:67:e8:ad:f8:90:24:12:e6: ac:e4:b9:55:f3:11:6b:00:2d:b8:ab:3b:cc:fb:11:3b:c8:b6: fa:9d:2b:ff:eb:d4:89:86:80:24:ff:b9:90:27:34:50:16:57: ec:f3:25:e8:93:6a:f1:4d:99:a3:79:53:6a:8f:a5:98:20:47: 53:53:80:04:74:ca:09:86:29:6c:01:8d:5f:51:f9:2d:77:9a: 96:da:75:a6:bf:54:31:0b:28:9c:71:ad:69:19:de:4a:e4:94: 52:90:db:27:06:2e:cd:fa:14:bd:52:58:8b:5c:93:83:ea:31: 66:42:de:3b:4d:05:2a:d2:14:12:b0:ca:8c:bc:bf:9b:c5:a1: cf:d2:94:1e:6c:bc:f3:b7:ef:a3:20:0c:40:b5:a1:2e:9a:ab: a8:43:db:37:0a:51:c1:34:1d:a8:9f:eb:02:e7:b0:07:d1:ba: 30:06:6e:ab:23:a4:0f:ca:cf:5c:51:c0:56:69:c1:55:46:29: d0:da:c8:c3:e4:f0:39:98:d1:a4:77:d5:5e:21:25:ee:08:b6: 79:9c:71:df -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0EzQ0QxMTAvBgNVBAUTKDM1Q0I0MjFDNTU3NzE3NzU4MUNFMjRCMzZBMkY2Q0M5 MzE4NDYwNTIwHhcNMjYwNTEzMDM0NTUyWhcNMjYwNTIwMDM0NTUyWjAYMRYwFAYD VQQDEw02YTAzZjNmMS0xOTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAut0Bi4lSr59aRmEkHN9rls+R15Q55OMgqaaUzKunFUwZrb0vkJ3DKYqA0cIn RpLXkCXkfT4oDLimIsvlsE7PfyU1JDIIevgxWlLDSO4LX/B63WaFHMXeuIeerfb4 MMSXBXQqLYpEhMyIsYoeaV2bxF+R5FUTJv9oaDUFSYJCo2PdKX3EupaFsUVf/UcF zog8nps2FjAQMslumjWh+KnykkLngiEEfYiKE7K+LJtHO21adolqwOEFTUwMXHoN YFpz7ThuSsBV6NiJb84rxWnzORkSwilmaoj5WSJs92XUQRKHs0dfwb0jkSnaT+EC rECaVow1SXGVZCJ55LUpX1SbEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKr1CNmC /36H2iJrnzMgpb9dI1iEMB8GA1UdIwQYMBaAFDXLQhxVdxd1gc4ks2ovbMkxhGBS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTNDRC8yNjQ1M0ZBMDkw NTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0YzV0J6aVN6YWk5c3lUR0VZ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05jdENIRlYzRjNXQnppU3phaTlzeVRHRVlGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTNDRC8yNjQ1M0ZBMDkwNTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0Yz V0J6aVN6YWk5c3lUR0VZRkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJcLhlEYu24SK+oq9mNEHzbSxmysAqsqO2fJ3voYrdf3F/EIhUbNnOtXfU162 kWforfiQJBLmrOS5VfMRawAtuKs7zPsRO8i2+p0r/+vUiYaAJP+5kCc0UBZX7PMl 6JNq8U2Zo3lTao+lmCBHU1OABHTKCYYpbAGNX1H5LXealtp1pr9UMQsonHGtaRne SuSUUpDbJwYuzfoUvVJYi1yTg+oxZkLeO00FKtIUErDKjLy/m8Whz9KUHmy887fv oyAMQLWhLpqrqEPbNwpRwTQdqJ/rAuewB9G6MAZuqyOkD8rPXFHAVmnBVUYp0NrI w+TwOZjRpHfVXiEl7gi2eZxx3w== -----END CERTIFICATE-----Generated at Wed May 13 06:39:08 2026 by rpki-client