$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft File: NXR5DY34KztVHjtwJXG69VqemWE.mft (raw, json) Hash identifier: nOfuOPPWictaXcDoSM8PfxU/x2PxMJRC9GGMAOQcBVs= Subject key identifier: FA:34:42:17:D1:0E:17:DE:4A:85:9A:B6:BC:75:EB:65:2F:B9:47:38 Authority key identifier: 35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 Certificate issuer: /CN=A91CD40B/serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft Manifest number: 0140 Signing time: Mon 11 May 2026 05:40:14 +0000 Manifest this update: Mon 11 May 2026 05:40:14 +0000 Manifest next update: Mon 18 May 2026 05:40:14 +0000 Files and hashes: 1: NXR5DY34KztVHjtwJXG69VqemWE.crl (hash: iImdABWb/PeNCeTb5y1bPFQVKEGfzM5O+8GWDh3ojLs=) 2: DA8D1C7EA72311EFBCEB047EC4F9AE02.roa (hash: KOPGS6LMhund+vJdD6XHT18EgiJR1qKIzzUaEq9CH3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 05:40:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Validity Not Before: May 11 05:40:14 2026 GMT Not After : May 18 05:40:14 2026 GMT Subject: CN=6a016bbe-b65e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:65:ed:13:de:d8:5c:ea:bd:eb:5a:60:72:57: f5:56:0b:e9:0e:79:f1:01:f2:73:55:af:7e:99:44: fe:57:9b:dd:38:43:71:00:42:eb:aa:ac:d3:df:5a: df:8a:cc:74:87:07:74:38:18:af:b6:04:19:a1:91: 81:9c:ef:50:a3:73:0c:04:3d:89:7d:e3:e0:ad:7a: d3:60:97:35:67:2c:eb:ff:95:cd:9a:a7:5c:85:9f: 30:2a:7f:29:95:46:3d:59:41:e3:74:6c:8a:13:e5: 77:da:0c:9b:07:92:d3:06:33:a9:5b:92:82:33:b6: fe:ac:05:46:a0:7a:ca:28:01:5d:9d:3e:50:aa:74: e1:32:81:77:84:26:3f:26:d0:08:26:de:f3:bf:05: b8:de:26:fc:70:27:09:73:81:17:48:35:a3:eb:a2: e5:0e:d7:3a:96:a1:22:af:0e:03:c6:4d:f2:34:c3: f2:c5:c9:60:47:27:7a:c7:e4:3f:2d:af:e3:53:da: 78:77:90:d8:db:f6:33:a0:2c:01:4e:ee:f3:74:9c: 75:ef:3d:d7:b1:5d:a6:0c:d4:a2:76:0c:4f:70:a1: b4:42:c0:07:18:1c:09:ee:65:26:f3:6d:56:8a:2d: 35:bc:67:01:d9:3f:91:61:5c:69:fd:8f:98:7e:a3: 94:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:34:42:17:D1:0E:17:DE:4A:85:9A:B6:BC:75:EB:65:2F:B9:47:38 X509v3 Authority Key Identifier: keyid:35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:42:2c:c7:1d:50:41:fe:c9:2c:2b:0f:c8:5b:e2:ff:1e:6c: 45:91:72:c8:1c:7c:0a:d3:dd:f5:d8:a9:fc:f9:1c:8e:ea:ed: ff:80:17:74:a5:03:66:35:53:cf:ea:48:e6:03:16:78:d0:48: c5:c8:24:09:62:b2:6e:8d:4c:4a:ac:73:e4:19:5d:ce:d8:61: e5:bd:8e:20:f6:09:d5:e5:58:fa:d6:2b:29:7b:b5:43:07:97: bb:2a:e4:88:3e:23:c2:df:32:8b:2c:a6:9f:dd:3d:33:50:a7: 43:a5:16:53:41:26:ed:9e:c0:fe:91:ed:da:53:37:02:28:30: 39:61:26:86:1e:62:9e:df:b7:ad:53:f0:f0:43:46:56:3d:82: 07:d9:24:e9:f6:80:31:14:c6:63:e8:df:29:16:94:72:9c:67: 08:15:3e:df:29:4a:63:5e:38:53:91:d3:8b:14:71:af:f7:af: 52:61:22:c6:84:94:61:df:eb:10:99:3a:b0:bc:0c:e4:f2:5e: 0d:91:73:20:92:d0:b8:15:bf:fa:fe:05:89:cd:4e:ef:7d:07: fc:7f:77:97:5f:32:42:74:25:0d:78:0b:53:59:4f:b2:1b:a2: 3b:2e:b9:60:9e:f3:c1:6b:62:72:86:30:26:98:bf:1d:fc:78: d1:ae:e9:af -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDM1NzQ3OTBEOERGODJCM0I1NTFFM0I3MDI1NzFCQUY1 NUE5RTk5NjEwHhcNMjYwNTExMDU0MDE0WhcNMjYwNTE4MDU0MDE0WjAYMRYwFAYD VQQDEw02YTAxNmJiZS1iNjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9GXtE97YXOq961pgclf1VgvpDnnxAfJzVa9+mUT+V5vdOENxAELrqqzT31rf isx0hwd0OBivtgQZoZGBnO9Qo3MMBD2JfePgrXrTYJc1Zyzr/5XNmqdchZ8wKn8p lUY9WUHjdGyKE+V32gybB5LTBjOpW5KCM7b+rAVGoHrKKAFdnT5QqnThMoF3hCY/ JtAIJt7zvwW43ib8cCcJc4EXSDWj66LlDtc6lqEirw4Dxk3yNMPyxclgRyd6x+Q/ La/jU9p4d5DY2/YzoCwBTu7zdJx17z3XsV2mDNSidgxPcKG0QsAHGBwJ7mUm821W ii01vGcB2T+RYVxp/Y+YfqOUawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPo0QhfR DhfeSoWatrx162UvuUc4MB8GA1UdIwQYMBaAFDV0eQ2N+Cs7VR47cCVxuvVanplh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi82QjVEMkE3Qzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6dFZIanR3SlhHNjlWcWVt V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05YUjVEWTM0S3p0VkhqdHdKWEc2OVZxZW1XRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi82QjVEMkE3Qzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6 dFZIanR3SlhHNjlWcWVtV0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAT0Isxx1QQf7JLCsPyFvi/x5sRZFyyBx8CtPd9dip/Pkcjurt/4AXdKUDZjVT z+pI5gMWeNBIxcgkCWKybo1MSqxz5Bldzthh5b2OIPYJ1eVY+tYrKXu1QweXuyrk iD4jwt8yiyymn909M1CnQ6UWU0Em7Z7A/pHt2lM3AigwOWEmhh5int+3rVPw8ENG Vj2CB9kk6faAMRTGY+jfKRaUcpxnCBU+3ylKY144U5HTixRxr/evUmEixoSUYd/r EJk6sLwM5PJeDZFzIJLQuBW/+v4Fic1O730H/H93l18yQnQlDXgLU1lPshuiOy65 YJ7zwWticoYwJpi/Hfx40a7prw== -----END CERTIFICATE-----Generated at Wed May 13 04:55:25 2026 by rpki-client