$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft File: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft (raw, json) Hash identifier: tiTJrs+Yp78LKNHwEWMlbFq8zNX3bBj6kYacIRKe5Y0= Subject key identifier: 0E:64:5D:95:A1:12:EA:F2:E1:B7:E9:EE:6B:5A:9B:64:B4:09:E1:74 Authority key identifier: 9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 Certificate issuer: /CN=A91CEAE0/serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Certificate serial: 01B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft Manifest number: 018E Signing time: Mon 11 May 2026 04:45:04 +0000 Manifest this update: Mon 11 May 2026 04:45:03 +0000 Manifest next update: Mon 18 May 2026 04:45:03 +0000 Files and hashes: 1: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl (hash: sA2zvxDGwsEDMQ8RZ2qiU2qF+wtTNmi/b/lRp0jms1k=) 2: FF233C70E62111EFACA87766C4F9AE02.roa (hash: PYR4UuGGlmCuzo5xccvj2ykJA4EkKftCUqk3OqLHMtk=) 3: 77E54B78C45111EF9D399128C4F9AE02.roa (hash: oaVwq+HIN/wyAwR1kQHa3lIBPfZxf93jHy5Nhtjvz8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 04:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAE0, serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Validity Not Before: May 11 04:45:03 2026 GMT Not After : May 18 04:45:03 2026 GMT Subject: CN=6a015ecf-3ddb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8e:fc:56:6b:0c:a3:90:c9:2e:d6:ee:e1:ee: 16:b5:57:56:82:79:f0:da:3e:7d:5e:6a:24:13:98: 37:11:4a:21:87:55:6e:0f:18:e7:df:a0:f1:b2:f7: 42:18:0b:8f:50:29:e6:41:43:59:7d:ba:cf:1c:f3: b8:62:23:4e:30:6e:e2:7b:e9:38:92:71:e7:d9:68: 6e:9f:82:0b:0d:a6:4d:f5:b7:65:c7:08:d3:09:da: 26:dc:92:6c:80:6b:29:be:d9:7c:e4:c3:83:ea:15: dc:fa:06:dd:8a:05:79:bb:9f:33:d4:ca:10:3e:96: 91:2c:bc:b7:46:b4:ca:42:dd:6a:bd:16:e7:95:43: 90:9e:c3:e4:39:97:75:17:0f:05:e0:f5:17:97:79: 43:ff:ea:89:b8:0b:3f:e6:e5:d6:8f:7f:e1:8a:66: 12:1c:bd:77:3e:25:f9:27:79:3e:ad:4d:6b:9f:b4: fc:1d:d9:1b:a8:6b:ec:3b:b7:da:f1:c6:e1:67:ab: 81:54:60:39:f9:d8:22:c2:c9:1a:43:cc:ff:07:43: 59:5c:b0:1d:e8:c0:70:08:f9:ca:2e:7b:b4:01:f3: 35:7b:b3:c2:9f:64:85:ba:99:f8:98:50:98:57:ed: 4a:b3:54:8a:60:1e:0c:ab:42:b8:ba:1d:4a:8c:93: 4d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:64:5D:95:A1:12:EA:F2:E1:B7:E9:EE:6B:5A:9B:64:B4:09:E1:74 X509v3 Authority Key Identifier: keyid:9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:eb:86:a4:ef:1a:b9:9d:bb:ff:17:b6:8a:34:5b:f6:23:8b: 85:2a:68:03:3f:00:9e:bc:e8:6f:a5:63:7f:e6:a5:2a:0c:d9: 98:32:11:a3:5b:fd:34:c7:a8:36:c5:ba:c2:b3:59:4a:d9:19: 2b:42:c1:e9:56:e5:1e:e6:cd:c7:b2:f8:23:8b:26:45:b8:de: a5:da:40:51:9b:b7:a8:b4:52:92:d2:0e:10:c1:53:2f:89:f2: a7:94:0c:b7:28:6f:14:9c:d1:f0:0a:6e:e7:ee:e0:f2:6f:0b: 56:11:48:6c:99:f7:81:84:48:f3:67:6a:81:09:ad:08:15:d2: ff:8a:11:31:b4:42:25:72:a5:23:42:fc:cc:43:02:6a:09:d4: 37:96:78:c5:e6:cc:f3:8c:24:27:5a:eb:18:05:db:69:88:cd: f6:22:64:67:b5:a4:db:98:4b:97:7b:cc:fb:6a:41:3d:0f:55: f8:a2:b8:f2:5a:d6:b5:1e:2b:3f:80:a0:89:53:9f:46:4d:55: 0c:b6:62:99:87:e5:aa:0f:81:46:a1:c2:96:c3:9e:7e:8c:ef: 97:6a:1d:12:53:bc:06:41:3a:70:eb:cf:91:68:05:7f:d5:12: 12:47:21:0a:2e:6f:1e:4a:0a:bb:e5:04:76:32:5f:cc:83:49: 9b:42:03:5d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBRTAxMTAvBgNVBAUTKDlERjRGRURGRjkyQTlFN0Y2RTAyQkZDMDU0QUQzMzk4 NTNEOUREMzIwHhcNMjYwNTExMDQ0NTAzWhcNMjYwNTE4MDQ0NTAzWjAYMRYwFAYD VQQDEw02YTAxNWVjZi0zZGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2o78VmsMo5DJLtbu4e4WtVdWgnnw2j59XmokE5g3EUohh1VuDxjn36DxsvdC GAuPUCnmQUNZfbrPHPO4YiNOMG7ie+k4knHn2Whun4ILDaZN9bdlxwjTCdom3JJs gGspvtl85MOD6hXc+gbdigV5u58z1MoQPpaRLLy3RrTKQt1qvRbnlUOQnsPkOZd1 Fw8F4PUXl3lD/+qJuAs/5uXWj3/himYSHL13PiX5J3k+rU1rn7T8HdkbqGvsO7fa 8cbhZ6uBVGA5+dgiwskaQ8z/B0NZXLAd6MBwCPnKLnu0AfM1e7PCn2SFupn4mFCY V+1Ks1SKYB4Mq0K4uh1KjJNNhwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA5kXZWh Eury4bfp7mtam2S0CeF0MB8GA1UdIwQYMBaAFJ30/t/5Kp5/bgK/wFStM5hT2d0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFFMC9BRUY2Mzc2MDE5 NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5uOXVBcl9BVkswem1GUFoz VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25mVC0zX2txbm45dUFyX0FWSzB6bUZQWjNUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUFFMC9BRUY2Mzc2MDE5NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5u OXVBcl9BVkswem1GUFozVEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAceuGpO8auZ27/xe2ijRb9iOLhSpoAz8Anrzob6Vjf+alKgzZmDIRo1v9NMeo NsW6wrNZStkZK0LB6VblHubNx7L4I4smRbjepdpAUZu3qLRSktIOEMFTL4nyp5QM tyhvFJzR8Apu5+7g8m8LVhFIbJn3gYRI82dqgQmtCBXS/4oRMbRCJXKlI0L8zEMC agnUN5Z4xebM84wkJ1rrGAXbaYjN9iJkZ7Wk25hLl3vM+2pBPQ9V+KK48lrWtR4r P4CgiVOfRk1VDLZimYflqg+BRqHClsOefozvl2odElO8BkE6cOvPkWgFf9USEkch Ci5vHkoKu+UEdjJfzINJm0IDXQ== -----END CERTIFICATE-----Generated at Wed May 13 03:12:32 2026 by rpki-client