$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft File: NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft (raw, json) Hash identifier: TuVi9l+1y0mVgxOQ37tL6ngYca88NScaVnMYzz00bxg= Subject key identifier: 9D:76:5C:77:9D:10:8D:CE:E9:94:27:A2:2D:BF:7F:3D:2D:DD:B5:86 Authority key identifier: 34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 Certificate issuer: /CN=A91FA562/serialNumber=340F813433719A760E3BFE21933687261179C327 Certificate serial: 022A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft Manifest number: 0224 Signing time: Wed 13 May 2026 02:50:59 +0000 Manifest this update: Wed 13 May 2026 02:50:59 +0000 Manifest next update: Wed 20 May 2026 02:50:59 +0000 Files and hashes: 1: NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl (hash: MmAqevRLhMYcaJjZ/P+K/8ORtC/ZUQs7n2izQx5M+5s=) 2: 7588035C913E11EFB46E9A72C4F9AE02.roa (hash: MmWRFerEe26M/98UPURwOZll8JnafXZbQUp9p9WdUVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:50:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 554 (0x22a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA562, serialNumber=340F813433719A760E3BFE21933687261179C327 Validity Not Before: May 13 02:50:59 2026 GMT Not After : May 20 02:50:59 2026 GMT Subject: CN=6a03e713-2dff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ef:0e:45:07:d3:5f:5d:d1:fb:cb:c0:2d:39: 17:b4:6d:3c:a3:ae:27:a1:a2:ff:de:ab:3e:1b:5a: 8a:62:d1:61:1c:dc:9e:db:24:5d:75:b7:4a:99:2b: d5:ad:06:be:37:d8:29:52:a0:d8:76:97:db:d9:b4: aa:df:81:df:19:79:98:bc:a7:e4:b3:ce:60:38:c1: 3a:c3:71:83:35:11:f1:d3:d0:27:4e:b2:0e:43:7b: c5:fe:db:59:33:01:86:ef:ee:08:78:7d:59:28:b2: 11:a4:21:a2:f9:7a:f6:c8:fa:2e:8b:c8:aa:91:8f: 84:9c:1f:68:fe:67:63:e4:7a:58:7b:ab:2c:c3:77: 10:86:1c:6a:da:de:49:13:ee:0a:18:2a:9a:2b:be: a2:af:20:32:4b:98:a0:fa:f8:be:da:fa:e1:a9:f3: 9a:1c:4d:a3:05:93:4f:40:4b:6d:70:9d:5e:61:f4: e2:53:c0:3a:75:f3:6f:1d:8a:37:88:16:32:e0:1d: d1:43:0a:d7:95:07:c0:b6:d3:36:e0:8a:f5:4d:08: 13:f7:36:a9:ce:10:23:e9:1c:4c:8a:36:a8:77:6a: 4b:47:fc:64:90:fb:69:9d:e6:6c:77:59:dc:fc:55: 81:5e:fc:a4:26:8d:f9:81:67:c2:78:14:37:b1:31: 0c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:76:5C:77:9D:10:8D:CE:E9:94:27:A2:2D:BF:7F:3D:2D:DD:B5:86 X509v3 Authority Key Identifier: keyid:34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:27:bd:d2:4a:9d:54:94:4a:d5:ab:46:04:62:e5:65:b4:75: 38:60:d2:cb:7a:18:5b:0f:9e:26:0a:c6:8b:b3:aa:59:36:67: 4e:d2:c0:b0:62:d6:6c:bf:c6:a4:f9:df:74:96:2b:20:e0:2c: 61:59:9b:74:fc:df:e7:5c:a0:d0:75:47:3b:45:e9:18:56:d8: 9f:e5:64:73:cb:f8:ab:55:4c:18:7b:d7:40:a0:c8:d7:1c:f2: 10:2a:9a:d7:c7:b0:1b:24:3a:ab:37:16:04:ce:50:42:e2:6b: 03:b2:1f:b2:92:fe:d6:3e:33:18:33:a9:66:6c:84:3c:84:95: 4b:52:ed:73:27:6a:50:b9:cf:8f:fa:88:19:5a:c1:42:15:ff: f1:9a:50:7d:d5:32:c5:3a:ba:f7:d0:69:42:87:5d:07:67:7f: cb:f2:32:b4:83:66:9c:00:c7:92:c0:40:8d:74:05:89:be:6b: a7:0e:55:b6:03:15:b3:bb:9b:96:88:80:eb:da:89:6b:1d:57: e4:49:ef:43:ee:3c:67:3d:1c:73:26:a2:94:a5:cf:db:c0:5e: 01:ca:0f:af:42:69:58:6e:b3:db:f8:16:d4:10:54:86:d6:7d: 2c:7b:fa:b2:3d:36:65:91:79:93:67:ab:64:9b:28:fd:ed:50: cc:b8:4e:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1NjIxMTAvBgNVBAUTKDM0MEY4MTM0MzM3MTlBNzYwRTNCRkUyMTkzMzY4NzI2 MTE3OUMzMjcwHhcNMjYwNTEzMDI1MDU5WhcNMjYwNTIwMDI1MDU5WjAYMRYwFAYD VQQDEw02YTAzZTcxMy0yZGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlO8ORQfTX13R+8vALTkXtG08o64noaL/3qs+G1qKYtFhHNye2yRddbdKmSvV rQa+N9gpUqDYdpfb2bSq34HfGXmYvKfks85gOME6w3GDNRHx09AnTrIOQ3vF/ttZ MwGG7+4IeH1ZKLIRpCGi+Xr2yPoui8iqkY+EnB9o/mdj5HpYe6ssw3cQhhxq2t5J E+4KGCqaK76iryAyS5ig+vi+2vrhqfOaHE2jBZNPQEttcJ1eYfTiU8A6dfNvHYo3 iBYy4B3RQwrXlQfAttM24Ir1TQgT9zapzhAj6RxMijaod2pLR/xkkPtpneZsd1nc /FWBXvykJo35gWfCeBQ3sTEMOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ12XHed EI3O6ZQnoi2/fz0t3bWGMB8GA1UdIwQYMBaAFDQPgTQzcZp2Djv+IZM2hyYRecMn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTU2Mi8yNjU3RjczRTBC QzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1uWU9PXzRoa3phSEpoRjV3 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BLUJORE54bW5ZT09fNGhremFISmhGNXd5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTU2Mi8yNjU3RjczRTBCQzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1u WU9PXzRoa3phSEpoRjV3eWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwye90kqdVJRK1atGBGLlZbR1OGDSy3oYWw+eJgrGi7OqWTZnTtLAsGLWbL/G pPnfdJYrIOAsYVmbdPzf51yg0HVHO0XpGFbYn+Vkc8v4q1VMGHvXQKDI1xzyECqa 18ewGyQ6qzcWBM5QQuJrA7IfspL+1j4zGDOpZmyEPISVS1LtcydqULnPj/qIGVrB QhX/8ZpQfdUyxTq699BpQoddB2d/y/IytINmnADHksBAjXQFib5rpw5VtgMVs7ub loiA69qJax1X5EnvQ+48Zz0ccyailKXP28BeAcoPr0JpWG6z2/gW1BBUhtZ9LHv6 sj02ZZF5k2erZJso/e1QzLhONA== -----END CERTIFICATE-----Generated at Wed May 13 12:55:48 2026 by rpki-client