$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft File: NNz0cp9FgmKIjvB6K9RnX24xE4A.mft (raw, json) Hash identifier: HOow/XamWA0eoRYyw1EJX4Ii/If3Dodfncs7gXcocb8= Subject key identifier: 8C:19:5B:6D:AB:AD:7C:6E:AE:9D:06:94:82:A5:D1:9B:FF:0D:99:D4 Authority key identifier: 34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 Certificate issuer: /CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Certificate serial: 073E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft Manifest number: 0730 Signing time: Sat 04 Apr 2026 21:35:46 +0000 Manifest this update: Sat 04 Apr 2026 21:35:46 +0000 Manifest next update: Sat 11 Apr 2026 21:35:46 +0000 Files and hashes: 1: NNz0cp9FgmKIjvB6K9RnX24xE4A.crl (hash: CZ8pj45YpR4gd9ELKwm36wbowPhMVQpn1fX0nTaTCQI=) 2: AE27A8A671B311EBB90BB364C4F9AE02.roa (hash: Yz43RwlZ5yy4nBg8j+EwoqSiXNci2+WLpvODtls54Cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:35:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1854 (0x73e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B7F, serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Validity Not Before: Apr 4 21:35:46 2026 GMT Not After : Apr 11 21:35:46 2026 GMT Subject: CN=69d18432-e23d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:77:69:f7:7d:09:47:78:46:fe:af:8a:55:53: 5e:e5:56:b6:85:b9:22:2a:a9:a6:39:9c:cb:0f:38: 93:ae:17:86:b4:e0:d8:24:ad:f6:2a:20:1d:d6:3e: 1a:30:d2:d2:5b:85:36:08:b0:9d:db:ca:e5:c6:b7: e4:7e:13:ac:42:9a:0b:10:5e:2b:35:dc:46:1a:f2: 2b:e4:a3:08:35:76:38:48:45:3c:34:7f:f8:67:04: e9:89:7d:0d:11:25:81:2b:11:80:12:da:9f:2b:d2: 8d:e0:15:27:50:71:1f:b4:a0:39:75:fe:1f:eb:c4: 94:66:e4:55:a7:f6:cf:09:b4:57:d6:6a:71:29:3e: 14:c6:19:9e:3d:f7:d1:f5:d6:a9:7c:ae:41:2f:f0: 92:c4:ca:b9:60:e8:b1:8a:27:1b:fb:53:47:57:4a: 68:b7:58:af:2c:2c:3f:c0:39:d8:c4:a9:fc:40:eb: 2b:78:09:80:34:0e:dc:3c:f4:55:58:8c:a2:9c:5e: 0c:76:8b:80:22:52:11:ab:11:9e:a0:37:5d:4f:bb: 99:05:ab:db:05:9b:f5:a2:07:1d:6d:ab:f8:64:cb: 6e:5e:73:c0:1b:87:2a:cf:73:8c:98:5e:1c:5d:34: 17:a9:3f:8f:c7:dd:ab:71:af:04:fe:2e:b7:a2:02: d6:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:19:5B:6D:AB:AD:7C:6E:AE:9D:06:94:82:A5:D1:9B:FF:0D:99:D4 X509v3 Authority Key Identifier: keyid:34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:9c:8a:97:a6:3d:eb:ff:f7:22:38:a5:d9:5a:bd:be:06:ca: e2:ae:4d:a6:0a:27:ad:73:bf:2e:fe:9f:b7:7b:ef:23:d5:14: ac:79:93:0d:1c:11:8c:85:50:b3:ec:38:b9:aa:b4:63:07:cf: 97:86:5b:af:7f:fb:8b:5e:11:1b:c0:71:3e:a0:df:2f:a0:2f: 26:97:42:d9:38:16:5f:f7:da:eb:58:14:16:13:34:8e:2d:d3: 70:d1:60:73:84:e4:c5:4c:2d:3a:06:a2:9b:ca:dc:22:05:2b: 7a:a4:77:d3:ba:80:6e:b0:77:c2:24:3a:4a:92:f7:5e:09:9f: 38:0f:2b:e8:70:27:6f:36:64:a8:ea:b7:a8:25:d8:19:ba:57: cc:d4:67:ac:56:8e:ed:9b:b2:18:96:5b:23:6b:a3:01:6c:95: 36:f0:07:c8:69:cc:4f:84:70:a8:13:f9:4f:07:7f:ef:60:90: 8d:a5:49:53:65:8c:14:3f:ac:5f:74:b7:fb:26:26:70:c2:af: 3a:6f:83:1e:83:ad:3a:41:cb:9a:65:f4:14:59:18:b0:82:46: 5f:be:25:c5:92:d3:31:1d:bf:98:a4:df:cc:fc:0a:c6:8c:db: d5:91:99:07:50:36:e9:c2:8e:5f:7f:42:18:12:e2:b8:0a:f5: 0e:6e:c7:16 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBz4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCN0YxMTAvBgNVBAUTKDM0RENGNDcyOUY0NTgyNjI4ODhFRjA3QTJCRDQ2NzVG NkUzMTEzODAwHhcNMjYwNDA0MjEzNTQ2WhcNMjYwNDExMjEzNTQ2WjAYMRYwFAYD VQQDEw02OWQxODQzMi1lMjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA63dp930JR3hG/q+KVVNe5Va2hbkiKqmmOZzLDziTrheGtODYJK32KiAd1j4a MNLSW4U2CLCd28rlxrfkfhOsQpoLEF4rNdxGGvIr5KMINXY4SEU8NH/4ZwTpiX0N ESWBKxGAEtqfK9KN4BUnUHEftKA5df4f68SUZuRVp/bPCbRX1mpxKT4UxhmePffR 9dapfK5BL/CSxMq5YOixiicb+1NHV0pot1ivLCw/wDnYxKn8QOsreAmANA7cPPRV WIyinF4MdouAIlIRqxGeoDddT7uZBavbBZv1ogcdbav4ZMtuXnPAG4cqz3OMmF4c XTQXqT+Px92rca8E/i63ogLWtQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIwZW22r rXxurp0GlIKl0Zv/DZnUMB8GA1UdIwQYMBaAFDTc9HKfRYJiiI7weivUZ19uMROA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3Ri8zN0I4MkM1MDcx QjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5RmdtS0lqdkI2SzlSblgyNHhF NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OejBjcDlGZ21LSWp2QjZLOVJuWDI0eEU0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I3Ri8zN0I4MkM1MDcxQjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5Rmdt S0lqdkI2SzlSblgyNHhFNEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXZyKl6Y96//3Ijil2Vq9vgbK4q5NpgonrXO/Lv6ft3vvI9UUrHmTDRwRjIVQ s+w4uaq0YwfPl4Zbr3/7i14RG8BxPqDfL6AvJpdC2TgWX/fa61gUFhM0ji3TcNFg c4TkxUwtOgaim8rcIgUreqR307qAbrB3wiQ6SpL3XgmfOA8r6HAnbzZkqOq3qCXY GbpXzNRnrFaO7ZuyGJZbI2ujAWyVNvAHyGnMT4RwqBP5Twd/72CQjaVJU2WMFD+s X3S3+yYmcMKvOm+DHoOtOkHLmmX0FFkYsIJGX74lxZLTMR2/mKTfzPwKxozb1ZGZ B1A26cKOX39CGBLiuAr1Dm7HFg== -----END CERTIFICATE-----Generated at Sun Apr 5 20:01:23 2026 by rpki-client