$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft File: nEKLhAc-vngu7TP5LkDdc2GgnKo.mft (raw, json) Hash identifier: 6Ac2ofo4s6npoMVS/X4WsKiP1FC0ZSqbJqfOKJGA+zI= Subject key identifier: 27:EE:26:1A:3A:A0:01:C0:B4:CC:C6:BF:E0:E4:8A:D3:FD:92:EC:DB Authority key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA Certificate issuer: /CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Certificate serial: 090C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft Manifest number: 0904 Signing time: Tue 24 Mar 2026 20:03:59 +0000 Manifest this update: Tue 24 Mar 2026 20:03:59 +0000 Manifest next update: Tue 31 Mar 2026 20:03:59 +0000 Files and hashes: 1: nEKLhAc-vngu7TP5LkDdc2GgnKo.crl (hash: fTh0lHqNoNBylMJO5SA/xxdh71U4Le/sT/1+6bZ9y0Q=) 2: FE60ECB0879311EB84047577C4F9AE02.roa (hash: z8K9NFfgSR+lYBTmglUzfygULgy/XVJpR7AJN5E7qvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:03:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2316 (0x90c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B6F, serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Validity Not Before: Mar 24 20:03:59 2026 GMT Not After : Mar 31 20:03:59 2026 GMT Subject: CN=69c2ee2f-d976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:00:a5:71:11:34:e7:8a:02:74:ef:65:7c:ec: f0:fc:5d:da:a9:0f:fa:8e:ef:ac:5c:c1:ac:35:24: 56:24:3f:61:66:df:a1:92:44:b3:ec:1b:a7:64:c0: 3f:b9:cf:f1:57:39:9f:15:2e:5a:1a:1e:47:a0:81: cf:ad:7e:dc:86:5c:b6:60:cd:52:a3:72:f5:60:3f: 8e:f5:5a:9e:f9:1b:e0:83:88:c7:db:87:65:e1:0f: 1c:91:4f:95:b3:ca:bd:3d:90:4f:45:89:51:d1:74: aa:27:4d:d4:2c:d3:1c:78:58:27:5f:be:67:24:90: 54:0c:82:ac:02:95:eb:18:a4:f3:47:5a:d1:61:07: de:b3:4a:44:81:9e:7d:03:e4:ba:a1:3c:8e:b2:45: 5e:f1:71:77:66:39:75:5f:29:2a:4a:ab:3b:3d:cf: 38:98:3d:a8:0e:88:1b:1d:52:6e:7d:06:d6:18:a8: 49:6b:72:4a:48:73:6d:6b:0a:8b:44:6b:95:08:79: 77:56:04:0b:08:34:3e:7c:33:6a:cf:92:65:a0:09: b3:26:7b:e0:8c:12:4b:16:9f:a1:ef:81:c8:ac:a2: 9d:94:c1:ba:2e:7d:fc:82:4d:1f:21:d3:27:50:7d: db:06:7e:f0:65:00:64:40:0b:3c:d6:38:25:29:d5: a5:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:EE:26:1A:3A:A0:01:C0:B4:CC:C6:BF:E0:E4:8A:D3:FD:92:EC:DB X509v3 Authority Key Identifier: keyid:9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:de:40:03:bc:66:1e:85:ff:26:03:48:b9:85:d8:c7:87:bc: f9:af:86:9c:7c:4c:b2:93:8c:f9:bc:40:c7:75:5e:62:0e:cc: 7a:40:5a:8c:b7:a8:05:53:19:01:2c:05:a8:37:f9:68:4d:e2: d8:33:cb:d4:2b:1e:d8:4d:56:cc:64:c2:c1:38:09:ef:4a:5d: 42:a8:3b:f8:5e:03:16:bd:e7:b4:3d:ea:28:66:71:0e:cf:90: 84:08:19:44:92:da:6b:0e:ad:21:cf:b7:cd:84:9d:40:fc:7f: 96:a7:6c:0c:8d:ca:89:7b:81:ec:73:06:72:ae:55:61:74:91: 38:0d:3c:db:22:d1:51:df:0a:54:b2:fc:fe:4f:77:0f:15:db: 27:4c:1f:79:52:e7:d7:87:07:35:8b:5e:31:2a:a3:c1:aa:c1: a0:bf:23:27:11:a8:e1:a4:2f:d1:8a:d2:0c:1a:9b:0d:ec:bb: 04:61:17:df:67:c7:1c:4d:9f:5a:cc:1b:31:92:39:c5:7a:ca: be:06:da:44:9f:72:2f:7f:d0:48:a2:31:b6:ac:75:a8:3c:df: 4f:c2:0b:f2:1c:e9:0b:0a:c0:aa:b5:57:38:1a:e8:98:bf:ed: cf:97:29:f9:c0:8f:2b:2b:cf:4d:07:2e:3f:d4:b2:02:fc:59: 93:c8:ce:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCNkYxMTAvBgNVBAUTKDlDNDI4Qjg0MDczRUJFNzgyRUVEMzNGOTJFNDBERDcz NjFBMDlDQUEwHhcNMjYwMzI0MjAwMzU5WhcNMjYwMzMxMjAwMzU5WjAYMRYwFAYD VQQDEw02OWMyZWUyZi1kOTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiQClcRE054oCdO9lfOzw/F3aqQ/6ju+sXMGsNSRWJD9hZt+hkkSz7BunZMA/ uc/xVzmfFS5aGh5HoIHPrX7chly2YM1So3L1YD+O9Vqe+Rvgg4jH24dl4Q8ckU+V s8q9PZBPRYlR0XSqJ03ULNMceFgnX75nJJBUDIKsApXrGKTzR1rRYQfes0pEgZ59 A+S6oTyOskVe8XF3Zjl1XykqSqs7Pc84mD2oDogbHVJufQbWGKhJa3JKSHNtawqL RGuVCHl3VgQLCDQ+fDNqz5JloAmzJnvgjBJLFp+h74HIrKKdlMG6Ln38gk0fIdMn UH3bBn7wZQBkQAs81jglKdWlHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCfuJho6 oAHAtMzGv+DkitP9kuzbMB8GA1UdIwQYMBaAFJxCi4QHPr54Lu0z+S5A3XNhoJyq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEI2Ri9FNDQ4QkYxOEM0 RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZuZ3U3VFA1TGtEZGMyR2du S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25FS0xoQWMtdm5ndTdUUDVMa0RkYzJHZ25Lby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEI2Ri9FNDQ4QkYxOEM0RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZu Z3U3VFA1TGtEZGMyR2duS28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP95AA7xmHoX/JgNIuYXYx4e8+a+GnHxMspOM+bxAx3VeYg7MekBajLeoBVMZ ASwFqDf5aE3i2DPL1Cse2E1WzGTCwTgJ70pdQqg7+F4DFr3ntD3qKGZxDs+QhAgZ RJLaaw6tIc+3zYSdQPx/lqdsDI3KiXuB7HMGcq5VYXSROA082yLRUd8KVLL8/k93 DxXbJ0wfeVLn14cHNYteMSqjwarBoL8jJxGo4aQv0YrSDBqbDey7BGEX32fHHE2f WswbMZI5xXrKvgbaRJ9yL3/QSKIxtqx1qDzfT8IL8hzpCwrAqrVXOBromL/tz5cp +cCPKyvPTQcuP9SyAvxZk8jOqA== -----END CERTIFICATE-----Generated at Thu Mar 26 23:10:40 2026 by rpki-client