$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft File: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft (raw, json) Hash identifier: a6EzlaFlI4iQuh1M4l41tAnxK0w+Tjo/6xo6C//RQT8= Subject key identifier: 4E:68:EA:1E:27:BE:AD:64:6D:BC:6B:20:DD:1E:D6:F2:70:87:23:F2 Authority key identifier: 9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 Certificate issuer: /CN=A91CEAE0/serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Certificate serial: 019A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft Manifest number: 0176 Signing time: Wed 25 Mar 2026 04:13:53 +0000 Manifest this update: Wed 25 Mar 2026 04:13:52 +0000 Manifest next update: Wed 01 Apr 2026 04:13:52 +0000 Files and hashes: 1: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl (hash: Bo5Y7WSAwC4EKT2p/IaF62OEoiEBe2IYK01IRW9BxV4=) 2: FF233C70E62111EFACA87766C4F9AE02.roa (hash: PYR4UuGGlmCuzo5xccvj2ykJA4EkKftCUqk3OqLHMtk=) 3: 77E54B78C45111EF9D399128C4F9AE02.roa (hash: oaVwq+HIN/wyAwR1kQHa3lIBPfZxf93jHy5Nhtjvz8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:13:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAE0, serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Validity Not Before: Mar 25 04:13:52 2026 GMT Not After : Apr 1 04:13:52 2026 GMT Subject: CN=69c36101-60b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:9d:9b:ac:a3:0e:49:04:3f:14:9e:24:24:5f: 92:90:69:88:7c:a4:5d:69:e8:2f:cf:86:44:f8:90: 85:fe:1f:5a:20:81:4d:72:c8:43:39:01:94:aa:99: a5:e3:ff:db:3e:2b:02:cb:33:db:1f:e1:23:da:9d: d2:aa:dc:41:be:a5:df:1c:61:a5:38:53:b6:8f:3d: 03:df:b2:23:98:25:9f:0a:2f:1d:54:38:ea:f6:7c: cd:d3:a8:31:fc:a1:9f:cc:93:90:4a:e8:da:8b:71: a4:0f:df:97:18:aa:9c:63:3a:e4:25:26:d1:8f:8c: e4:6f:71:02:ea:8b:0f:9c:85:35:32:ce:34:ec:b1: 47:4d:8f:9b:e3:07:91:ed:2b:25:9a:89:c1:cd:37: 6e:b0:82:6b:2e:f2:a5:d2:93:91:58:f1:b3:26:c3: 78:be:50:c9:71:2a:24:8d:35:30:d0:60:6d:2a:89: 54:57:73:4d:cd:7d:c2:2d:44:26:f6:bc:8f:fd:72: 49:aa:98:e2:8a:94:eb:4f:b7:f3:be:98:13:44:ee: c4:68:ff:1c:41:4f:5c:e4:2f:18:6f:7c:e9:f3:c1: 60:b3:4a:68:cd:28:28:25:48:3f:50:ac:49:6c:c5: d0:70:92:d7:af:96:f4:f9:a1:d3:be:d2:5d:2d:dc: aa:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:68:EA:1E:27:BE:AD:64:6D:BC:6B:20:DD:1E:D6:F2:70:87:23:F2 X509v3 Authority Key Identifier: keyid:9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:f3:3a:80:d2:a7:5a:0f:cc:d1:b8:58:5a:77:b1:bf:58:6a: 53:b7:77:67:e0:0a:d6:3d:5f:72:80:33:49:0e:bb:2f:e0:25: 1e:23:94:53:df:49:a2:fc:33:72:b0:08:fe:83:ce:83:26:1b: 59:28:aa:9f:9a:99:44:a0:8b:ac:0a:ba:75:8f:b5:46:92:21: 6a:6f:89:aa:0f:eb:40:21:84:af:7b:35:fa:52:d5:ba:8e:1e: 60:33:83:23:2f:59:e2:ab:84:c1:a9:2b:69:ff:bd:75:5a:6c: 14:4a:72:af:a4:1b:c8:ab:03:de:7d:9f:cb:74:00:38:4b:fa: 28:50:e6:f3:f0:99:3e:20:93:1b:34:b7:a0:fb:b9:b2:db:88: ae:04:e0:cc:ea:ab:5c:bc:2b:d0:e2:30:7d:bc:3c:34:ad:4b: 71:e0:9c:49:e5:88:0d:b1:86:e4:d6:70:e9:79:5a:87:8c:e6: 47:6c:d2:e1:96:a3:28:8d:36:91:aa:76:77:38:d5:2e:1e:78: 2d:42:78:0f:2a:96:91:0b:63:4a:51:ca:99:fc:71:c0:4c:04: 6d:28:49:c8:2b:8d:45:34:97:c7:a3:28:4c:03:54:0b:4e:31: f8:f9:a2:6c:b3:4b:2f:35:8e:53:89:e6:0c:e9:a9:67:42:96: da:5c:67:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBRTAxMTAvBgNVBAUTKDlERjRGRURGRjkyQTlFN0Y2RTAyQkZDMDU0QUQzMzk4 NTNEOUREMzIwHhcNMjYwMzI1MDQxMzUyWhcNMjYwNDAxMDQxMzUyWjAYMRYwFAYD VQQDEw02OWMzNjEwMS02MGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5p2brKMOSQQ/FJ4kJF+SkGmIfKRdaegvz4ZE+JCF/h9aIIFNcshDOQGUqpml 4//bPisCyzPbH+Ej2p3SqtxBvqXfHGGlOFO2jz0D37IjmCWfCi8dVDjq9nzN06gx /KGfzJOQSujai3GkD9+XGKqcYzrkJSbRj4zkb3EC6osPnIU1Ms407LFHTY+b4weR 7SslmonBzTdusIJrLvKl0pORWPGzJsN4vlDJcSokjTUw0GBtKolUV3NNzX3CLUQm 9ryP/XJJqpjiipTrT7fzvpgTRO7EaP8cQU9c5C8Yb3zp88Fgs0pozSgoJUg/UKxJ bMXQcJLXr5b0+aHTvtJdLdyqswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE5o6h4n vq1kbbxrIN0e1vJwhyPyMB8GA1UdIwQYMBaAFJ30/t/5Kp5/bgK/wFStM5hT2d0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFFMC9BRUY2Mzc2MDE5 NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5uOXVBcl9BVkswem1GUFoz VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25mVC0zX2txbm45dUFyX0FWSzB6bUZQWjNUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUFFMC9BRUY2Mzc2MDE5NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5u OXVBcl9BVkswem1GUFozVEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAV/M6gNKnWg/M0bhYWnexv1hqU7d3Z+AK1j1fcoAzSQ67L+AlHiOUU99Jovwz crAI/oPOgyYbWSiqn5qZRKCLrAq6dY+1RpIham+Jqg/rQCGEr3s1+lLVuo4eYDOD Iy9Z4quEwakraf+9dVpsFEpyr6QbyKsD3n2fy3QAOEv6KFDm8/CZPiCTGzS3oPu5 stuIrgTgzOqrXLwr0OIwfbw8NK1LceCcSeWIDbGG5NZw6Xlah4zmR2zS4ZajKI02 kap2dzjVLh54LUJ4DyqWkQtjSlHKmfxxwEwEbShJyCuNRTSXx6MoTANUC04x+Pmi bLNLLzWOU4nmDOmpZ0KW2lxnag== -----END CERTIFICATE-----Generated at Thu Mar 26 07:20:16 2026 by rpki-client