$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft File: NXR5DY34KztVHjtwJXG69VqemWE.mft (raw, json) Hash identifier: ekQnlbSPc7YMMId6VQztzc0HfhbIcFPgv6LCtlxqFEA= Subject key identifier: 76:0F:E8:85:4E:7C:AB:10:25:67:64:81:F6:03:A4:2B:F6:4F:EA:AC Authority key identifier: 35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 Certificate issuer: /CN=A91CD40B/serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Certificate serial: 013A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft Manifest number: 0128 Signing time: Wed 25 Mar 2026 05:05:27 +0000 Manifest this update: Wed 25 Mar 2026 05:05:26 +0000 Manifest next update: Wed 01 Apr 2026 05:05:26 +0000 Files and hashes: 1: NXR5DY34KztVHjtwJXG69VqemWE.crl (hash: qnpkV1ikUtRE1WZpsN/KiGjrV8mjJjtM+JSmeb73OCM=) 2: DA8D1C7EA72311EFBCEB047EC4F9AE02.roa (hash: KOPGS6LMhund+vJdD6XHT18EgiJR1qKIzzUaEq9CH3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:05:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Validity Not Before: Mar 25 05:05:26 2026 GMT Not After : Apr 1 05:05:26 2026 GMT Subject: CN=69c36d17-3377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c2:15:72:7a:29:8c:30:2f:ba:17:11:71:f3: 30:85:e5:d1:2d:b2:3e:76:d3:0c:aa:4e:ac:2a:ff: 3c:8e:46:c3:4c:24:60:f5:41:7c:36:1f:42:33:73: 90:48:a5:3c:9a:50:80:6e:0f:0a:18:fa:94:2c:59: c8:e6:c3:44:38:35:3d:3b:12:39:e9:f5:09:e2:ba: 1a:a9:74:35:56:fc:d0:b8:28:57:97:bc:b4:98:96: dc:ae:36:11:25:63:90:18:da:48:b3:d7:d1:0b:ee: 64:9d:79:75:64:67:ab:fe:3a:36:a3:90:20:02:14: d9:53:e6:f0:a5:34:bc:b1:d8:b7:1a:8d:ae:b9:d7: e9:90:c9:7f:ca:7b:68:c7:f9:de:df:e1:d3:64:93: ee:3f:9d:4c:ee:50:7a:b4:74:3e:51:2a:a7:11:fd: ac:92:d4:71:c8:b8:38:1c:88:9c:35:57:2e:79:27: 9b:f1:69:15:15:71:91:4b:87:27:d5:27:8f:e0:6c: 05:91:b1:57:57:18:f5:49:0a:0a:ac:bf:cd:df:04: f0:26:9b:29:5b:d3:0a:b4:e4:d7:8c:aa:ba:bd:fe: 29:6d:ff:b0:7e:a0:fc:0d:54:56:d5:c9:1e:5a:03: 24:be:6e:47:9e:2b:ce:5e:c3:61:49:1a:41:a6:f8: a2:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:0F:E8:85:4E:7C:AB:10:25:67:64:81:F6:03:A4:2B:F6:4F:EA:AC X509v3 Authority Key Identifier: keyid:35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:19:53:13:7d:7d:d9:44:3a:37:ae:8b:d1:70:49:bd:d2:fc: a0:0d:a4:d0:fd:02:2f:75:0e:01:8a:b9:d2:1f:4e:6d:e5:38: 17:ec:f2:f6:99:88:c4:73:b8:b4:6e:9d:b1:aa:02:22:e7:3c: ca:8d:9e:90:8a:f7:bb:57:84:9f:69:ed:a4:1b:a4:66:f8:09: 61:df:8d:cb:ff:92:42:f3:7e:1b:3e:47:ca:25:54:c2:17:b9: 83:48:f0:b3:7e:49:25:5e:00:16:78:e0:4c:a2:c3:56:c6:fb: e8:ce:74:89:fc:32:5f:45:6f:c1:3e:be:89:33:98:77:76:94: ff:bb:26:d5:a2:8e:09:ff:14:5f:e3:aa:37:73:3d:5d:90:8f: 0d:1d:f1:8f:2b:95:40:37:48:63:5b:b8:24:c7:d3:db:04:81: f9:ff:89:92:22:bb:64:ea:ea:21:68:b2:3e:70:d8:8a:f8:eb: 4e:74:20:b5:d0:a1:21:60:68:fc:fe:f8:46:f8:a7:9a:93:9c: 1c:53:1e:61:d8:46:2a:0e:fd:81:3c:ea:1b:f3:4d:29:80:e3: 55:43:ef:35:b0:7a:1e:7e:51:a1:37:bb:38:c2:a8:ec:2a:1a: 49:fe:cb:14:0f:21:b8:af:42:4a:f3:0b:15:45:f7:d0:29:17: 05:10:11:d8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDM1NzQ3OTBEOERGODJCM0I1NTFFM0I3MDI1NzFCQUY1 NUE5RTk5NjEwHhcNMjYwMzI1MDUwNTI2WhcNMjYwNDAxMDUwNTI2WjAYMRYwFAYD VQQDEw02OWMzNmQxNy0zMzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAocIVcnopjDAvuhcRcfMwheXRLbI+dtMMqk6sKv88jkbDTCRg9UF8Nh9CM3OQ SKU8mlCAbg8KGPqULFnI5sNEODU9OxI56fUJ4roaqXQ1VvzQuChXl7y0mJbcrjYR JWOQGNpIs9fRC+5knXl1ZGer/jo2o5AgAhTZU+bwpTS8sdi3Go2uudfpkMl/ynto x/ne3+HTZJPuP51M7lB6tHQ+USqnEf2sktRxyLg4HIicNVcueSeb8WkVFXGRS4cn 1SeP4GwFkbFXVxj1SQoKrL/N3wTwJpspW9MKtOTXjKq6vf4pbf+wfqD8DVRW1cke WgMkvm5HnivOXsNhSRpBpviihwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHYP6IVO fKsQJWdkgfYDpCv2T+qsMB8GA1UdIwQYMBaAFDV0eQ2N+Cs7VR47cCVxuvVanplh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi82QjVEMkE3Qzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6dFZIanR3SlhHNjlWcWVt V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05YUjVEWTM0S3p0VkhqdHdKWEc2OVZxZW1XRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi82QjVEMkE3Qzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6 dFZIanR3SlhHNjlWcWVtV0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA3hlTE3192UQ6N66L0XBJvdL8oA2k0P0CL3UOAYq50h9ObeU4F+zy9pmIxHO4 tG6dsaoCIuc8yo2ekIr3u1eEn2ntpBukZvgJYd+Ny/+SQvN+Gz5HyiVUwhe5g0jw s35JJV4AFnjgTKLDVsb76M50ifwyX0VvwT6+iTOYd3aU/7sm1aKOCf8UX+OqN3M9 XZCPDR3xjyuVQDdIY1u4JMfT2wSB+f+JkiK7ZOrqIWiyPnDYivjrTnQgtdChIWBo /P74RvinmpOcHFMeYdhGKg79gTzqG/NNKYDjVUPvNbB6Hn5RoTe7OMKo7CoaSf7L FA8huK9CSvMLFUX30CkXBRAR2A== -----END CERTIFICATE-----Generated at Thu Mar 26 16:03:32 2026 by rpki-client