$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/NebIf2uhtlE6EnD23BNt23ETZFc.mft File: NebIf2uhtlE6EnD23BNt23ETZFc.mft (raw, json) Hash identifier: iaK1kPTi8JIWiudWfK5CqUumpes0IVJk0kwUrfB5awk= Subject key identifier: C8:A2:7B:6C:BE:34:65:F8:5D:85:C7:D7:45:9D:5D:8D:F8:A6:BF:EC Authority key identifier: 35:E6:C8:7F:6B:A1:B6:51:3A:12:70:F6:DC:13:6D:DB:71:13:64:57 Certificate issuer: /CN=A91F9749/serialNumber=35E6C87F6BA1B6513A1270F6DC136DDB71136457 Certificate serial: 03F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NebIf2uhtlE6EnD23BNt23ETZFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/NebIf2uhtlE6EnD23BNt23ETZFc.mft Manifest number: 03F0 Signing time: Wed 13 May 2026 00:35:38 +0000 Manifest this update: Wed 13 May 2026 00:35:38 +0000 Manifest next update: Wed 20 May 2026 00:35:38 +0000 Files and hashes: 1: NebIf2uhtlE6EnD23BNt23ETZFc.crl (hash: hR4bebSk79OdCdUygx24RQcM27Mihb25W6O+tO1FVo4=) 2: 97B81DD6BF9F11ECAB5B1239C4F9AE02.roa (hash: nCTovFi354+ZfaPTQ0ztwkkd94a5/Uc+5BEDc/vwPfE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/NebIf2uhtlE6EnD23BNt23ETZFc.crl rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/NebIf2uhtlE6EnD23BNt23ETZFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NebIf2uhtlE6EnD23BNt23ETZFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1015 (0x3f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9749, serialNumber=35E6C87F6BA1B6513A1270F6DC136DDB71136457 Validity Not Before: May 13 00:35:38 2026 GMT Not After : May 20 00:35:38 2026 GMT Subject: CN=6a03c75a-8777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:76:0a:bf:a8:e9:b7:54:e1:f1:be:be:73:1b: d3:f6:45:aa:4c:05:54:f6:43:59:94:40:ec:9c:98: 9c:b2:85:d7:d9:ad:71:42:82:95:aa:92:9a:b1:0d: c9:9e:b1:96:8b:4b:6e:fa:74:4d:ef:34:a3:8d:dd: cf:b0:88:83:6d:0e:e9:fa:b4:c4:36:4c:04:2e:cb: 55:e5:97:bc:46:bd:22:fc:2a:31:ea:b9:ac:fc:02: 45:e6:d0:ca:37:c5:9c:dc:a5:8f:be:63:0b:3b:a4: e1:44:4c:e6:53:be:3c:6f:d6:01:4b:f3:99:e1:67: f6:7a:d8:6f:0c:2e:62:ff:0d:4c:78:bf:c4:46:bd: 47:02:a8:37:cb:a1:d6:79:a2:29:e2:f3:9f:2a:99: 68:80:5b:bb:cc:f1:6d:6f:38:51:34:2a:5f:74:97: 6f:fa:e7:67:66:69:aa:b9:f2:b4:b5:d4:46:86:20: a7:c1:9e:15:53:ce:e4:83:79:6f:f0:0e:3d:46:be: 0d:3e:b4:cd:4d:b9:02:28:af:bd:ec:34:1b:c3:c5: 80:c8:3e:a8:94:58:e5:2d:25:ed:7e:09:02:86:f9: 36:31:0f:6f:43:6c:64:2e:fe:52:93:78:3d:3a:f3: e8:61:68:a6:40:43:ba:7c:8f:37:c9:36:3d:91:1a: a4:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:A2:7B:6C:BE:34:65:F8:5D:85:C7:D7:45:9D:5D:8D:F8:A6:BF:EC X509v3 Authority Key Identifier: keyid:35:E6:C8:7F:6B:A1:B6:51:3A:12:70:F6:DC:13:6D:DB:71:13:64:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/NebIf2uhtlE6EnD23BNt23ETZFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NebIf2uhtlE6EnD23BNt23ETZFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/NebIf2uhtlE6EnD23BNt23ETZFc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:3c:f4:65:0a:d0:9e:3f:5d:56:9c:5a:92:8b:1b:20:e3:37: 15:e9:21:5a:fe:2e:3b:cd:e2:81:7d:44:3f:90:0b:1e:97:aa: 0e:51:80:93:84:fa:90:c0:9b:24:b4:87:f7:1e:08:16:52:11: 6b:b9:87:02:74:9b:b7:b1:18:cd:b7:36:98:b0:71:7f:0c:f2: 89:c6:08:3e:bc:be:de:45:f7:50:76:cc:4a:a0:3d:cb:58:c5: 95:b1:4d:9d:22:10:04:4d:b5:93:83:c4:34:36:b3:a3:4b:b1: 64:95:c3:0f:df:b3:e5:46:14:16:c3:c5:ef:f3:4d:d5:a0:a6: fd:0c:3a:37:cc:a0:50:a8:e8:45:8d:07:c1:40:0f:60:99:48: de:51:b8:26:65:99:41:5b:55:2a:18:88:16:3d:71:fd:59:92: 62:5c:1a:eb:68:89:d4:d9:cf:d7:bb:ff:e0:6f:40:c6:10:9a: 6a:65:80:2f:e0:e6:e3:65:c3:94:91:9e:41:c7:04:ee:b9:68: b1:39:60:a3:d3:e5:0a:33:0d:68:32:d4:9e:0f:d8:8d:f5:ad: c6:fc:68:7d:52:95:51:3b:1b:8c:d8:49:a9:59:19:4e:68:d1: 6e:9d:81:5c:b5:ae:57:f3:8b:9c:fc:c5:0e:96:43:ec:c1:e8: 8f:34:13:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjk3NDkxMTAvBgNVBAUTKDM1RTZDODdGNkJBMUI2NTEzQTEyNzBGNkRDMTM2RERC NzExMzY0NTcwHhcNMjYwNTEzMDAzNTM4WhcNMjYwNTIwMDAzNTM4WjAYMRYwFAYD VQQDEw02YTAzYzc1YS04Nzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXYKv6jpt1Th8b6+cxvT9kWqTAVU9kNZlEDsnJicsoXX2a1xQoKVqpKasQ3J nrGWi0tu+nRN7zSjjd3PsIiDbQ7p+rTENkwELstV5Ze8Rr0i/Cox6rms/AJF5tDK N8Wc3KWPvmMLO6ThREzmU748b9YBS/OZ4Wf2ethvDC5i/w1MeL/ERr1HAqg3y6HW eaIp4vOfKplogFu7zPFtbzhRNCpfdJdv+udnZmmqufK0tdRGhiCnwZ4VU87kg3lv 8A49Rr4NPrTNTbkCKK+97DQbw8WAyD6olFjlLSXtfgkChvk2MQ9vQ2xkLv5Sk3g9 OvPoYWimQEO6fI83yTY9kRqkRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMiie2y+ NGX4XYXH10WdXY34pr/sMB8GA1UdIwQYMBaAFDXmyH9robZROhJw9twTbdtxE2RX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTc0OS85OUQxN0Q5NkJG OUIxMUVDQUQzQzBBMzBDNEY5QUUwMi9OZWJJZjJ1aHRsRTZFbkQyM0JOdDIzRVRa RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05lYklmMnVodGxFNkVuRDIzQk50MjNFVFpGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTc0OS85OUQxN0Q5NkJGOUIxMUVDQUQzQzBBMzBDNEY5QUUwMi9OZWJJZjJ1aHRs RTZFbkQyM0JOdDIzRVRaRmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApTz0ZQrQnj9dVpxakosbIOM3FekhWv4uO83igX1EP5ALHpeqDlGAk4T6kMCb JLSH9x4IFlIRa7mHAnSbt7EYzbc2mLBxfwzyicYIPry+3kX3UHbMSqA9y1jFlbFN nSIQBE21k4PENDazo0uxZJXDD9+z5UYUFsPF7/NN1aCm/Qw6N8ygUKjoRY0HwUAP YJlI3lG4JmWZQVtVKhiIFj1x/VmSYlwa62iJ1NnP17v/4G9AxhCaamWAL+Dm42XD lJGeQccE7rlosTlgo9PlCjMNaDLUng/YjfWtxvxofVKVUTsbjNhJqVkZTmjRbp2B XLWuV/OLnPzFDpZD7MHojzQTQA== -----END CERTIFICATE-----Generated at Wed May 13 08:59:45 2026 by rpki-client