$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft File: NM2mWwLxdr_CSHhNqprIp74WU9s.mft (raw, json) Hash identifier: Mf8nrqrzIKoU86wmRBmu+Q1PQgp+ybLfAI1/c+kp17Q= Subject key identifier: BE:B9:C2:CF:BC:74:B0:B7:FD:09:8A:64:DD:9A:BF:43:C0:1E:F0:60 Authority key identifier: 34:CD:A6:5B:02:F1:76:BF:C2:48:78:4D:AA:9A:C8:A7:BE:16:53:DB Certificate issuer: /CN=A91E3DDB/serialNumber=34CDA65B02F176BFC248784DAA9AC8A7BE1653DB Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft Manifest number: 9A Signing time: Wed 25 Mar 2026 06:40:22 +0000 Manifest this update: Wed 25 Mar 2026 06:40:21 +0000 Manifest next update: Wed 01 Apr 2026 06:40:21 +0000 Files and hashes: 1: NM2mWwLxdr_CSHhNqprIp74WU9s.crl (hash: qvEGGM1H1Kf2dPTI8TehPejTidrLg0sgkp4XHIRqdNo=) 2: B24F568A4C7A11F09CF1A77BC4F9AE02.roa (hash: FsNpTkM6+3f8KZot7Stoju/dwRXl0OyRylfjVSJP04M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.crl rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:40:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3DDB, serialNumber=34CDA65B02F176BFC248784DAA9AC8A7BE1653DB Validity Not Before: Mar 25 06:40:21 2026 GMT Not After : Apr 1 06:40:21 2026 GMT Subject: CN=69c38355-b6b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:e6:57:3b:82:cf:3a:82:a9:c7:33:9d:ad:bc: c1:3f:87:d1:f8:7f:63:57:7f:b0:d3:52:fd:e5:a9: 4d:39:18:91:e5:28:bf:9e:c3:63:d3:b8:cc:ea:12: f4:df:21:aa:ee:4d:0d:dc:09:99:0c:f7:cf:a2:2c: de:27:7a:44:78:01:84:4e:3e:18:1f:d6:16:f8:3d: dd:e9:20:e1:9f:13:49:fd:07:81:16:68:1a:44:48: 19:9b:ff:5f:f0:72:61:8d:f0:15:a9:01:1b:65:8f: 3a:f2:63:15:75:91:2a:e5:a2:65:a6:88:dd:f5:02: 9b:ef:1f:62:83:f5:ce:a7:ba:70:e0:dc:f3:ef:a2: f1:73:1a:a7:e5:24:db:4c:30:90:d1:82:55:31:91: 36:08:06:2e:f2:1a:e6:0a:9e:2e:27:d1:d1:3e:58: d4:5a:40:63:73:5f:9f:e3:65:48:14:05:14:cc:33: d6:81:c5:19:e8:f4:5f:fd:bd:3e:87:c0:67:e4:de: 43:31:63:f3:c0:83:28:74:cd:4d:5f:6a:3f:62:92: 6a:08:b4:db:8d:9d:b3:e4:10:52:7b:62:16:93:e9: 78:c8:80:92:56:59:b6:a0:04:cb:28:9a:69:80:1f: d3:e6:05:04:14:53:b4:8b:d7:ec:83:c7:ca:77:fa: b7:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:B9:C2:CF:BC:74:B0:B7:FD:09:8A:64:DD:9A:BF:43:C0:1E:F0:60 X509v3 Authority Key Identifier: keyid:34:CD:A6:5B:02:F1:76:BF:C2:48:78:4D:AA:9A:C8:A7:BE:16:53:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:47:d7:6e:8a:0a:df:00:d4:1c:4e:0f:48:70:34:ac:7e:d5: e5:8b:72:d7:31:fb:dd:4a:97:d0:41:12:50:11:05:64:17:c6: 19:5f:a5:c4:61:ae:f1:a4:33:ee:57:0e:09:62:45:a8:c9:8a: 01:d7:7b:f5:de:f4:d7:4a:b2:b0:5f:2c:69:9c:f7:bb:cd:01: 31:0b:6c:0f:22:cc:95:f9:e8:6c:7a:93:49:63:e6:20:7c:df: 23:52:88:5d:15:8f:5a:b5:3a:d1:97:70:ca:9a:de:b0:74:3f: 0d:48:ab:8a:f2:d5:70:20:ad:e1:75:f5:e9:d3:06:3b:a5:ff: 55:7a:ae:5e:58:4c:6e:3b:56:d9:48:46:0e:ce:7f:4a:15:a7: 33:99:c0:8e:9c:58:05:e5:ea:79:78:b0:f2:61:53:b5:e4:25: 9d:ee:5c:ea:9e:6a:5a:3c:64:c3:19:90:22:13:d0:12:a2:d0: 91:df:f5:fa:2e:a4:41:f0:b1:a1:ce:aa:36:e9:c7:53:12:ac: 6d:cf:85:7a:1d:58:95:b4:7d:2b:ce:f0:cc:42:86:55:be:07: 07:37:79:2e:03:09:01:9e:80:39:62:a1:8b:e0:9e:48:85:d8: da:d9:f3:ab:e9:31:61:0a:8f:b3:d4:c1:97:ba:3d:8d:a9:4d: dc:18:fc:02 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEREIxMTAvBgNVBAUTKDM0Q0RBNjVCMDJGMTc2QkZDMjQ4Nzg0REFBOUFDOEE3 QkUxNjUzREIwHhcNMjYwMzI1MDY0MDIxWhcNMjYwNDAxMDY0MDIxWjAYMRYwFAYD VQQDEw02OWMzODM1NS1iNmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmOZXO4LPOoKpxzOdrbzBP4fR+H9jV3+w01L95alNORiR5Si/nsNj07jM6hL0 3yGq7k0N3AmZDPfPoizeJ3pEeAGETj4YH9YW+D3d6SDhnxNJ/QeBFmgaREgZm/9f 8HJhjfAVqQEbZY868mMVdZEq5aJlpojd9QKb7x9ig/XOp7pw4Nzz76Lxcxqn5STb TDCQ0YJVMZE2CAYu8hrmCp4uJ9HRPljUWkBjc1+f42VIFAUUzDPWgcUZ6PRf/b0+ h8Bn5N5DMWPzwIModM1NX2o/YpJqCLTbjZ2z5BBSe2IWk+l4yICSVlm2oATLKJpp gB/T5gUEFFO0i9fsg8fKd/q3pwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL65ws+8 dLC3/QmKZN2av0PAHvBgMB8GA1UdIwQYMBaAFDTNplsC8Xa/wkh4TaqayKe+FlPb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0REQi8wRTNCREFFQzQ3 MjQxMUYwOTVGOTFCMjNDNEY5QUUwMi9OTTJtV3dMeGRyX0NTSGhOcXBySXA3NFdV OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05NMm1Xd0x4ZHJfQ1NIaE5xcHJJcDc0V1U5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0REQi8wRTNCREFFQzQ3MjQxMUYwOTVGOTFCMjNDNEY5QUUwMi9OTTJtV3dMeGRy X0NTSGhOcXBySXA3NFdVOXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP0fXbooK3wDUHE4PSHA0rH7V5Yty1zH73UqX0EESUBEFZBfGGV+lxGGu8aQz 7lcOCWJFqMmKAdd79d7010qysF8saZz3u80BMQtsDyLMlfnobHqTSWPmIHzfI1KI XRWPWrU60ZdwypresHQ/DUirivLVcCCt4XX16dMGO6X/VXquXlhMbjtW2UhGDs5/ ShWnM5nAjpxYBeXqeXiw8mFTteQlne5c6p5qWjxkwxmQIhPQEqLQkd/1+i6kQfCx oc6qNunHUxKsbc+Feh1YlbR9K87wzEKGVb4HBzd5LgMJAZ6AOWKhi+CeSIXY2tnz q+kxYQqPs9TBl7o9jalN3Bj8Ag== -----END CERTIFICATE-----Generated at Thu Mar 26 19:03:44 2026 by rpki-client