$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft File: NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft (raw, json) Hash identifier: s3YBLmqb3PbV6JD+9v3OM235+GBhhFkVVqOJj0RM3Mw= Subject key identifier: F7:4E:94:9D:37:26:9A:18:85:87:D1:A6:95:CB:37:B0:2B:CD:45:FB Authority key identifier: 34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 Certificate issuer: /CN=A91FA562/serialNumber=340F813433719A760E3BFE21933687261179C327 Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft Manifest number: 020B Signing time: Wed 25 Mar 2026 02:22:51 +0000 Manifest this update: Wed 25 Mar 2026 02:22:50 +0000 Manifest next update: Wed 01 Apr 2026 02:22:50 +0000 Files and hashes: 1: NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl (hash: H1Rm5M3ZLXH+4YSRnE13YKB+2BFMqnsG+eMHlW0HiOk=) 2: 7588035C913E11EFB46E9A72C4F9AE02.roa (hash: MmWRFerEe26M/98UPURwOZll8JnafXZbQUp9p9WdUVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA562, serialNumber=340F813433719A760E3BFE21933687261179C327 Validity Not Before: Mar 25 02:22:50 2026 GMT Not After : Apr 1 02:22:50 2026 GMT Subject: CN=69c346fb-e21e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bf:3d:07:2d:ab:57:24:3e:7a:08:28:df:a2: 63:e9:f4:d0:c2:84:e5:54:0b:1f:de:b1:b0:fa:f8: 09:c4:7c:c5:22:28:82:aa:9b:8a:3a:e3:6a:f0:cd: c7:0b:de:c9:b5:a4:39:89:80:23:07:e7:bf:ce:34: c3:35:3a:5e:91:0f:b3:ef:81:74:e4:3e:47:e4:1e: 4e:d6:e2:84:e3:e9:3f:cf:5e:99:ae:f5:c0:9e:f4: 59:4d:fb:54:45:3c:c3:25:db:ff:19:26:72:24:de: e4:cc:d9:39:8d:ce:38:e7:f3:0f:90:ba:e5:90:b4: f0:8f:2c:97:f5:97:42:52:61:2e:36:9f:c5:68:7a: 3f:c8:99:8a:bc:50:4f:5b:25:51:9b:01:eb:59:58: 7b:61:43:a4:f1:3c:85:1e:3c:bc:a5:b3:dc:b4:aa: 33:c5:cf:a0:2d:e9:0b:2b:60:64:72:e5:6c:f8:35: 6c:ae:f4:6c:c5:eb:12:84:50:6f:f8:e4:e4:3c:bf: f6:10:7c:59:d2:b0:4c:6f:7f:42:c9:68:e3:a6:33: 17:4b:03:df:3c:96:e2:cb:44:9a:2e:da:16:ec:0c: 52:e7:b2:1f:08:f4:2e:12:f6:29:33:0c:a1:f9:43: 54:31:e2:e9:55:6c:52:68:e8:e5:89:ee:f0:6d:35: 71:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:4E:94:9D:37:26:9A:18:85:87:D1:A6:95:CB:37:B0:2B:CD:45:FB X509v3 Authority Key Identifier: keyid:34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:6b:dd:6f:0e:1e:21:0e:e2:35:93:a8:0a:e3:f4:2f:d8:23: 5a:56:af:92:84:33:da:4a:79:1c:7f:33:4d:e3:99:3c:df:f3: 2e:d9:b9:e9:e1:f7:80:93:2d:cb:86:14:f0:b6:30:6f:86:e4: f3:1d:b7:a3:27:53:8d:06:f8:d6:9b:58:15:20:3a:ff:2f:15: 03:ca:a6:ca:51:43:90:f6:3a:e4:d2:57:fb:80:2b:b5:77:1d: 38:18:20:21:65:0b:46:8c:d9:9f:95:e3:22:0c:e9:10:b1:2a: 33:61:db:89:75:62:69:fd:30:25:11:e3:ba:3d:15:26:97:d7: 06:6d:93:1a:1c:bd:0e:da:29:0f:85:ac:70:10:fc:80:b0:f8: ec:6d:b1:07:7e:0d:73:0a:6d:fe:a7:63:48:c1:28:13:b1:f4: 69:43:2c:66:ab:2f:87:48:fe:db:34:52:eb:6c:73:4c:32:f7: dd:49:92:43:38:7d:87:30:22:a9:91:1b:05:1a:70:d7:5c:bc: dc:9c:94:4b:0e:fb:7e:f1:4d:11:1f:b5:83:02:9f:7d:f5:cb: 44:db:99:cc:02:d9:95:f6:b7:73:7e:53:33:3d:b5:77:44:ce: 72:38:66:87:f0:62:af:b0:c1:66:e7:7f:76:21:99:6d:6f:4f: 9f:fa:9b:c0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1NjIxMTAvBgNVBAUTKDM0MEY4MTM0MzM3MTlBNzYwRTNCRkUyMTkzMzY4NzI2 MTE3OUMzMjcwHhcNMjYwMzI1MDIyMjUwWhcNMjYwNDAxMDIyMjUwWjAYMRYwFAYD VQQDEw02OWMzNDZmYi1lMjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwr89By2rVyQ+eggo36Jj6fTQwoTlVAsf3rGw+vgJxHzFIiiCqpuKOuNq8M3H C97JtaQ5iYAjB+e/zjTDNTpekQ+z74F05D5H5B5O1uKE4+k/z16ZrvXAnvRZTftU RTzDJdv/GSZyJN7kzNk5jc445/MPkLrlkLTwjyyX9ZdCUmEuNp/FaHo/yJmKvFBP WyVRmwHrWVh7YUOk8TyFHjy8pbPctKozxc+gLekLK2BkcuVs+DVsrvRsxesShFBv +OTkPL/2EHxZ0rBMb39CyWjjpjMXSwPfPJbiy0SaLtoW7AxS57IfCPQuEvYpMwyh +UNUMeLpVWxSaOjlie7wbTVx9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPdOlJ03 JpoYhYfRppXLN7ArzUX7MB8GA1UdIwQYMBaAFDQPgTQzcZp2Djv+IZM2hyYRecMn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTU2Mi8yNjU3RjczRTBC QzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1uWU9PXzRoa3phSEpoRjV3 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BLUJORE54bW5ZT09fNGhremFISmhGNXd5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTU2Mi8yNjU3RjczRTBCQzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1u WU9PXzRoa3phSEpoRjV3eWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfWvdbw4eIQ7iNZOoCuP0L9gjWlavkoQz2kp5HH8zTeOZPN/zLtm56eH3gJMt y4YU8LYwb4bk8x23oydTjQb41ptYFSA6/y8VA8qmylFDkPY65NJX+4ArtXcdOBgg IWULRozZn5XjIgzpELEqM2HbiXViaf0wJRHjuj0VJpfXBm2TGhy9DtopD4WscBD8 gLD47G2xB34Ncwpt/qdjSMEoE7H0aUMsZqsvh0j+2zRS62xzTDL33UmSQzh9hzAi qZEbBRpw11y83JyUSw77fvFNER+1gwKfffXLRNuZzALZlfa3c35TMz21d0TOcjhm h/Bir7DBZud/diGZbW9Pn/qbwA== -----END CERTIFICATE-----Generated at Thu Mar 26 16:28:47 2026 by rpki-client