$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft File: NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft (raw, json) Hash identifier: DHkhXKXwpa1EYKHf5Wc4NEoPviiU5NFz/LTW5SDKaA4= Subject key identifier: 5C:22:93:FC:3A:2F:40:B5:CD:31:35:E9:FB:9D:93:5A:ED:FB:00:CE Authority key identifier: 34:D7:D6:D4:41:C3:2D:7C:87:14:2E:9F:E5:C7:EB:C4:F4:79:B0:CD Certificate issuer: /CN=A91E8F36/serialNumber=34D7D6D441C32D7C87142E9FE5C7EBC4F479B0CD Certificate serial: 0276 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNfW1EHDLXyHFC6f5cfrxPR5sM0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft Manifest number: 026D Signing time: Fri 27 Mar 2026 01:39:36 +0000 Manifest this update: Fri 27 Mar 2026 01:39:35 +0000 Manifest next update: Fri 03 Apr 2026 01:39:35 +0000 Files and hashes: 1: NNfW1EHDLXyHFC6f5cfrxPR5sM0.crl (hash: wgLNoNzygJvgA1sjSiRMQjEhCoifYPBYrpkB85Zqjhk=) 2: AC270A727D0711ED8181DA7FC4F9AE02.roa (hash: pWPy+X5EuBSNslThAxl9vzV4QotLdBFyZSA0fVW7aaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.crl rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNfW1EHDLXyHFC6f5cfrxPR5sM0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 01:39:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 630 (0x276) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8F36, serialNumber=34D7D6D441C32D7C87142E9FE5C7EBC4F479B0CD Validity Not Before: Mar 27 01:39:35 2026 GMT Not After : Apr 3 01:39:35 2026 GMT Subject: CN=69c5dfd8-51e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6d:9a:f7:4a:50:1d:40:1d:22:60:9a:cc:b5: 56:c2:99:d6:43:ba:8c:1d:c1:87:8d:04:53:77:15: de:b5:b2:1b:db:fb:63:91:07:31:8e:3f:a7:60:fc: 0d:19:be:76:78:c1:6e:5d:a3:ec:54:0a:d2:0a:91: ed:5c:60:39:69:48:b0:66:9a:3d:23:9f:03:ce:c6: 20:a1:6b:7e:c0:80:23:d2:50:ec:2d:bc:6e:c7:1b: fb:97:c4:2e:90:f2:80:5e:d8:3d:77:89:6c:6b:96: 11:0e:58:08:40:42:25:cc:93:2b:5d:df:5a:e7:b5: 16:3f:29:ef:43:3c:f7:17:b5:54:2b:fe:db:62:5f: 85:dc:af:f7:1e:d0:c4:4f:c3:cc:50:3a:c9:61:05: 30:ad:9a:c9:4d:40:ba:57:52:78:66:b3:c1:89:bf: 57:75:87:0c:53:16:c6:48:24:a0:34:48:54:58:80: e4:d5:8b:88:fa:93:e7:71:9c:cb:cf:89:c6:cb:ad: ec:8c:8f:96:19:46:14:ea:96:1f:0b:2c:d6:11:65: 36:dc:48:d9:72:20:21:bd:03:08:cf:88:c7:04:6f: e0:60:1d:ed:d5:70:a4:ac:62:52:16:18:d3:77:3b: 59:6e:bc:8b:78:09:19:53:cf:8b:b6:cf:34:e8:36: 88:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:22:93:FC:3A:2F:40:B5:CD:31:35:E9:FB:9D:93:5A:ED:FB:00:CE X509v3 Authority Key Identifier: keyid:34:D7:D6:D4:41:C3:2D:7C:87:14:2E:9F:E5:C7:EB:C4:F4:79:B0:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNfW1EHDLXyHFC6f5cfrxPR5sM0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:18:1b:4e:bd:ba:3f:c5:5a:9d:f7:84:4c:07:18:74:cf:d4: bc:92:3d:2b:9f:13:66:4e:b8:52:2a:64:c3:b1:04:55:6a:83: 58:18:00:cb:f1:4e:c7:3b:8d:21:e3:c4:2c:24:04:0f:f3:f2: 85:a1:18:4c:25:a5:75:83:15:3c:a2:97:29:60:c4:14:57:c3: 65:a6:12:d4:0e:8c:1c:b6:f6:28:bc:3e:b6:28:94:fd:aa:85: f7:b1:f6:c5:18:89:26:a1:3a:70:13:45:9a:f2:80:58:1a:d4: 2d:cb:40:c5:4f:64:ec:1f:bb:39:2c:47:4f:ec:b4:ec:40:cf: a4:60:e4:5a:00:71:e8:7b:9a:e1:8c:be:d5:39:2e:b5:23:77: fa:cd:f5:bf:43:de:51:7d:39:33:8a:ba:27:64:1a:4f:23:10: 8b:21:4f:20:be:4c:f1:21:f8:b7:fe:41:e1:f1:b9:d9:c0:b7: ce:5b:12:af:23:20:da:b7:33:5c:69:24:bd:a3:95:9b:45:e6: 58:5c:8a:4d:a8:74:ce:83:76:dc:14:00:4b:ed:8e:dd:e4:89: 26:a1:d1:ae:da:04:a7:11:92:e3:49:75:f2:50:7a:65:b7:a0: 7e:6a:8a:b2:ce:3f:f0:51:97:01:b8:d8:3a:86:6e:a2:2f:27: be:32:2e:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThGMzYxMTAvBgNVBAUTKDM0RDdENkQ0NDFDMzJEN0M4NzE0MkU5RkU1QzdFQkM0 RjQ3OUIwQ0QwHhcNMjYwMzI3MDEzOTM1WhcNMjYwNDAzMDEzOTM1WjAYMRYwFAYD VQQDEw02OWM1ZGZkOC01MWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuW2a90pQHUAdImCazLVWwpnWQ7qMHcGHjQRTdxXetbIb2/tjkQcxjj+nYPwN Gb52eMFuXaPsVArSCpHtXGA5aUiwZpo9I58DzsYgoWt+wIAj0lDsLbxuxxv7l8Qu kPKAXtg9d4lsa5YRDlgIQEIlzJMrXd9a57UWPynvQzz3F7VUK/7bYl+F3K/3HtDE T8PMUDrJYQUwrZrJTUC6V1J4ZrPBib9XdYcMUxbGSCSgNEhUWIDk1YuI+pPncZzL z4nGy63sjI+WGUYU6pYfCyzWEWU23EjZciAhvQMIz4jHBG/gYB3t1XCkrGJSFhjT dztZbryLeAkZU8+Lts806DaIjQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFwik/w6 L0C1zTE16fudk1rt+wDOMB8GA1UdIwQYMBaAFDTX1tRBwy18hxQun+XH68T0ebDN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEYzNi8yNDlGNDE0NjdE MDIxMUVEOUM1RDdENjJDNEY5QUUwMi9OTmZXMUVIRExYeUhGQzZmNWNmcnhQUjVz TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OZlcxRUhETFh5SEZDNmY1Y2ZyeFBSNXNNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEYzNi8yNDlGNDE0NjdEMDIxMUVEOUM1RDdENjJDNEY5QUUwMi9OTmZXMUVIRExY eUhGQzZmNWNmcnhQUjVzTTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA3hgbTr26P8VanfeETAcYdM/UvJI9K58TZk64Uipkw7EEVWqDWBgAy/FOxzuN IePELCQED/PyhaEYTCWldYMVPKKXKWDEFFfDZaYS1A6MHLb2KLw+tiiU/aqF97H2 xRiJJqE6cBNFmvKAWBrULctAxU9k7B+7OSxHT+y07EDPpGDkWgBx6Hua4Yy+1Tku tSN3+s31v0PeUX05M4q6J2QaTyMQiyFPIL5M8SH4t/5B4fG52cC3zlsSryMg2rcz XGkkvaOVm0XmWFyKTah0zoN23BQAS+2O3eSJJqHRrtoEpxGS40l18lB6ZbegfmqK ss4/8FGXAbjYOoZuoi8nvjIulw== -----END CERTIFICATE-----Generated at Sat Mar 28 10:33:23 2026 by rpki-client