$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft File: nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft (raw, json) Hash identifier: 1BsLQeCEBFKr28UUa7LnT5hOIefSVnraOHhKx+w567g= Subject key identifier: 21:5F:D1:3F:51:B8:49:B2:42:13:A3:77:9A:E9:B4:60:C7:06:BA:EC Authority key identifier: 9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A Certificate issuer: /CN=A91EF19E/serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Certificate serial: 2AA9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft Manifest number: 2A9C Signing time: Thu 26 Mar 2026 14:23:28 +0000 Manifest this update: Thu 26 Mar 2026 14:23:27 +0000 Manifest next update: Thu 02 Apr 2026 14:23:27 +0000 Files and hashes: 1: nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl (hash: 2JCkkpMiGnyB/0vq6fRC9Ayr7XKqJuYHoF+FQ+ZJkT8=) 2: F9722F8255C411E9A0FEF781C4F9AE02.roa (hash: qeOImN/OPXFrmVSnTa/uFkjmKzAD8SUjcGoXbzqtLu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:23:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10921 (0x2aa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF19E, serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Validity Not Before: Mar 26 14:23:27 2026 GMT Not After : Apr 2 14:23:27 2026 GMT Subject: CN=69c5415f-0f3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:f7:db:42:c4:a8:ec:9b:64:67:5c:74:10:3b: 49:68:6f:1e:98:5a:60:b3:86:26:8d:f7:e6:05:fe: 96:6b:75:f2:d6:a8:ec:df:f0:40:67:a1:db:4e:de: 1f:9e:e6:18:e3:11:90:44:cb:82:4b:99:3a:25:d0: 5e:1e:fa:24:db:21:3f:88:b2:9e:43:75:cb:57:28: fd:1e:91:d9:f0:2e:58:d3:3d:2e:63:6b:40:4d:92: 9f:b0:45:42:96:6d:6a:7e:81:21:22:20:a7:18:b7: 43:69:47:d4:17:41:3e:ce:43:6b:92:86:b1:75:47: 66:52:4b:3d:26:57:e3:29:a2:3c:21:6b:de:5b:26: 56:59:42:54:c3:23:e2:da:e6:3b:48:b3:99:66:23: 7c:9b:3d:76:39:aa:49:c0:bb:66:90:cf:01:75:d0: c7:f9:ac:76:9d:25:17:3e:7c:47:22:a9:1a:f7:bc: ba:e6:84:8e:b6:d8:75:10:00:b5:5f:61:3c:75:72: f2:1d:f3:bf:0d:4e:14:ec:02:a4:ce:da:90:23:7c: 59:dc:8b:19:f5:be:7d:dd:33:d7:14:3b:d0:54:11: 91:db:26:21:ba:62:bd:89:92:30:4c:f6:2b:00:43: 8b:cc:aa:5a:d9:62:6a:a3:52:74:f2:bc:6d:c8:1c: 55:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:5F:D1:3F:51:B8:49:B2:42:13:A3:77:9A:E9:B4:60:C7:06:BA:EC X509v3 Authority Key Identifier: keyid:9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:0c:2e:8d:94:d2:ad:9f:8c:74:34:b3:7a:de:59:25:ca:1f: e7:aa:49:ca:5a:fc:eb:dd:27:4d:47:a5:0f:5b:f9:18:45:28: c7:89:f3:20:ea:86:d1:dc:13:df:90:7d:2b:b1:71:37:eb:c8: 8b:4a:0c:6a:3c:69:3e:88:ba:42:6b:48:8f:d1:1f:9b:22:02: 0c:33:e2:fd:3a:f9:ff:3d:e2:e9:db:39:7c:10:54:8d:a3:e2: 8e:3b:fd:e9:45:fa:d3:35:6e:74:c9:96:0a:51:aa:73:55:b0: e4:a7:d5:8e:ff:60:3e:1e:1c:8d:3e:48:e5:d1:8a:9a:f1:4c: ea:eb:ad:f1:fb:2d:8b:03:c7:7b:58:35:fc:7f:ba:00:1a:b4: 75:a7:c7:f3:65:19:67:bc:de:85:8a:cd:6e:3f:e1:06:24:76: 57:bb:fb:70:19:96:ed:06:76:5a:3a:2c:27:42:79:0b:3d:cc: 5e:68:92:dc:13:27:20:73:6b:db:c1:61:85:70:6c:12:9c:64: 14:4e:a0:b9:4f:ad:36:28:05:8b:49:3e:dd:c0:ca:0f:15:21: ee:f9:39:d4:f8:f3:25:a6:a2:64:eb:bf:d3:9c:93:e6:dc:a2: 60:9c:2f:26:3a:fc:ce:1f:47:d2:a0:1c:dd:06:16:b2:a0:57: 2e:79:ee:bc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICKqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxOUUxMTAvBgNVBAUTKDlFMUYxOUE3RTE4RDhCQ0VEMjNFRjJFREFCMTlFODU0 MzhFN0YwOEEwHhcNMjYwMzI2MTQyMzI3WhcNMjYwNDAyMTQyMzI3WjAYMRYwFAYD VQQDEw02OWM1NDE1Zi0wZjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6vfbQsSo7JtkZ1x0EDtJaG8emFpgs4YmjffmBf6Wa3Xy1qjs3/BAZ6HbTt4f nuYY4xGQRMuCS5k6JdBeHvok2yE/iLKeQ3XLVyj9HpHZ8C5Y0z0uY2tATZKfsEVC lm1qfoEhIiCnGLdDaUfUF0E+zkNrkoaxdUdmUks9JlfjKaI8IWveWyZWWUJUwyPi 2uY7SLOZZiN8mz12OapJwLtmkM8BddDH+ax2nSUXPnxHIqka97y65oSOtth1EAC1 X2E8dXLyHfO/DU4U7AKkztqQI3xZ3IsZ9b593TPXFDvQVBGR2yYhumK9iZIwTPYr AEOLzKpa2WJqo1J08rxtyBxVUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCFf0T9R uEmyQhOjd5rptGDHBrrsMB8GA1UdIwQYMBaAFJ4fGafhjYvO0j7y7asZ6FQ45/CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE5RS9BOTNFOTkzRTM0 MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4N1NQdkx0cXhub1ZEam44 SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25oOFpwLUdOaTg3U1B2THRxeG5vVkRqbjhJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjE5RS9BOTNFOTkzRTM0MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4 N1NQdkx0cXhub1ZEam44SW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALwwujZTSrZ+MdDSzet5ZJcof56pJylr8690nTUelD1v5GEUox4nzIOqG0dwT 35B9K7FxN+vIi0oMajxpPoi6QmtIj9EfmyICDDPi/Tr5/z3i6ds5fBBUjaPijjv9 6UX60zVudMmWClGqc1Ww5KfVjv9gPh4cjT5I5dGKmvFM6uut8fstiwPHe1g1/H+6 ABq0dafH82UZZ7zehYrNbj/hBiR2V7v7cBmW7QZ2WjosJ0J5Cz3MXmiS3BMnIHNr 28FhhXBsEpxkFE6guU+tNigFi0k+3cDKDxUh7vk51PjzJaaiZOu/05yT5tyiYJwv Jjr8zh9H0qAc3QYWsqBXLnnuvA== -----END CERTIFICATE-----Generated at Thu Mar 26 18:10:23 2026 by rpki-client