$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft File: -NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft (raw, json) Hash identifier: UTMy7JqDjt7KeGEUPPBRpUT7sHyq/ZeM++lJ2Wjnqt4= Subject key identifier: F6:EE:27:8E:A7:8D:5E:06:FF:CD:DA:F5:4C:D4:F6:FB:8D:AC:6F:0C Authority key identifier: F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 Certificate issuer: /CN=A91DC46A/serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Certificate serial: 1ED5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft Manifest number: 1E92 Signing time: Thu 26 Mar 2026 16:03:33 +0000 Manifest this update: Thu 26 Mar 2026 16:03:32 +0000 Manifest next update: Thu 02 Apr 2026 16:03:32 +0000 Files and hashes: 1: -NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl (hash: jggOwMtb9B+C9fTDCXaVUujphPeIFt030Y1dypPN4fE=) 2: BD6571EEC0AC11EF8F832C34C4F9AE02.roa (hash: LnqeCppjvfZw+kjrXoa/2ToWPDmJSTa9ohrJhVPCflE=) 3: 527AA5C69F4F11EAA7970484C4F9AE02.roa (hash: cWHGKEyK1/n+XzphhsGriIZiXwfaKLq/Wm0XGKlIaZU=) 4: C86831A80CB311EDB2750F60C4F9AE02.roa (hash: RsEExvcwJC5E9KwjY1oAwXxgW1IttoQBiLKiJe8oXuE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7893 (0x1ed5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC46A, serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Validity Not Before: Mar 26 16:03:32 2026 GMT Not After : Apr 2 16:03:32 2026 GMT Subject: CN=69c558d5-5248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:1d:97:38:f0:bf:c1:ca:79:ba:59:06:76:46: f3:c8:1e:83:48:d0:86:fa:2d:75:6c:bb:ce:af:bf: 7e:3e:0e:c4:85:14:22:36:ed:7c:a6:8b:4c:18:ee: ea:dd:c2:c3:bc:d9:a6:34:43:11:24:26:1f:c7:25: d3:6c:80:d4:38:72:f3:3f:39:49:d2:4b:6e:9c:5f: cf:77:6d:f6:c1:e0:f9:12:0b:eb:4f:3d:4a:cc:a7: 98:11:39:16:0e:80:bc:1b:b8:b2:2b:89:b4:bd:4d: 3c:08:b5:dc:3c:7f:a3:d7:7a:85:af:ff:41:62:aa: cc:21:6e:90:9d:f7:80:4b:94:6f:00:10:bd:ef:9d: f3:57:00:4a:34:75:ea:1c:0f:7d:3b:ce:46:ba:df: 2a:78:92:7b:ee:c3:90:db:cd:3e:a9:3f:01:89:e1: 3a:2f:40:5f:ba:a3:f7:81:d2:43:73:fe:90:ca:86: ab:c1:bb:2a:50:6c:f6:96:bc:5a:e3:31:cd:32:ea: ad:a8:a4:6d:82:ea:e2:ff:15:4b:52:24:a8:08:f5: b9:3b:7a:8b:72:c0:81:7d:4b:57:e8:c9:2a:4b:e7: fd:64:e7:6b:ba:c2:09:a2:15:81:2c:a1:de:87:80: 54:e9:50:37:ed:e5:ce:a1:44:f4:82:ec:a3:1c:c0: 6b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:EE:27:8E:A7:8D:5E:06:FF:CD:DA:F5:4C:D4:F6:FB:8D:AC:6F:0C X509v3 Authority Key Identifier: keyid:F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:51:15:00:21:26:8e:c5:3e:05:b5:cf:7d:3d:c6:fd:00:ea: b5:0d:0f:b7:42:1d:d9:b7:06:3a:d9:f6:6c:82:f8:1d:36:c9: 02:74:b0:3a:62:90:b2:ff:f7:76:8c:a4:55:c0:f4:a4:64:83: 19:d7:a5:d8:14:ea:56:c6:e1:27:85:2f:24:fd:cf:a9:02:9b: db:b9:14:cb:6c:50:14:40:9d:80:1e:cc:05:65:5d:e5:15:9a: b6:89:7a:db:54:f2:c0:42:d2:66:64:14:8b:9d:6b:49:ff:f5: 2a:52:30:a2:36:22:a4:3d:f5:d4:15:ae:33:7e:b9:7f:43:35: ae:95:32:f5:c2:6d:9f:46:9a:92:09:fa:c1:70:7d:3d:d0:74: e3:43:aa:6d:bf:9c:41:a4:dc:97:15:7f:9b:86:e1:75:b7:7f: b6:9b:1d:3a:fc:b6:a6:a6:9b:19:de:b8:44:0f:01:55:d1:2f: 3d:a3:83:5f:e3:31:c8:85:d7:c8:08:82:89:5b:15:09:ed:cc: 1b:f1:fd:66:13:cb:de:ee:04:d3:14:09:20:f2:fa:5c:f1:75: 0d:76:ce:5b:01:95:df:81:f8:21:3b:59:26:14:b6:50:13:56: 60:8d:29:51:55:43:5a:52:41:72:6c:9c:23:5a:1c:6b:27:cf: f0:d3:3b:e4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NkExMTAvBgNVBAUTKEY4RDRBNjMyRDA2OTk2NEM2MUEzM0U0MUQ2MjQzRDUz NUIwMDdENTQwHhcNMjYwMzI2MTYwMzMyWhcNMjYwNDAyMTYwMzMyWjAYMRYwFAYD VQQDEw02OWM1NThkNS01MjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArh2XOPC/wcp5ulkGdkbzyB6DSNCG+i11bLvOr79+Pg7EhRQiNu18potMGO7q 3cLDvNmmNEMRJCYfxyXTbIDUOHLzPzlJ0ktunF/Pd232weD5EgvrTz1KzKeYETkW DoC8G7iyK4m0vU08CLXcPH+j13qFr/9BYqrMIW6QnfeAS5RvABC9753zVwBKNHXq HA99O85Gut8qeJJ77sOQ280+qT8BieE6L0BfuqP3gdJDc/6QyoarwbsqUGz2lrxa 4zHNMuqtqKRtguri/xVLUiSoCPW5O3qLcsCBfUtX6MkqS+f9ZOdrusIJohWBLKHe h4BU6VA37eXOoUT0guyjHMBrgQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPbuJ46n jV4G/83a9UzU9vuNrG8MMB8GA1UdIwQYMBaAFPjUpjLQaZZMYaM+QdYkPVNbAH1U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ2QS8wMDUwMDE2NDk0 MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxreGhvejVCMWlROVUxc0Fm VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OU21NdEJwbGt4aG96NUIxaVE5VTFzQWZWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ2QS8wMDUwMDE2NDk0MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxr eGhvejVCMWlROVUxc0FmVlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmlEVACEmjsU+BbXPfT3G/QDqtQ0Pt0Id2bcGOtn2bIL4HTbJAnSwOmKQsv/3 doykVcD0pGSDGdel2BTqVsbhJ4UvJP3PqQKb27kUy2xQFECdgB7MBWVd5RWatol6 21TywELSZmQUi51rSf/1KlIwojYipD311BWuM365f0M1rpUy9cJtn0aakgn6wXB9 PdB040Oqbb+cQaTclxV/m4bhdbd/tpsdOvy2pqabGd64RA8BVdEvPaODX+MxyIXX yAiCiVsVCe3MG/H9ZhPL3u4E0xQJIPL6XPF1DXbOWwGV34H4ITtZJhS2UBNWYI0p UVVDWlJBcmycI1ocayfP8NM75A== -----END CERTIFICATE-----Generated at Fri Mar 27 00:53:15 2026 by rpki-client