$ rpki-client -vvf rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.mft File: NOt2jjwYUO8RSYszIMrNGyYdWSk.mft (raw, json) Hash identifier: fzHEVzPTlsnj82AqA7oXUbE02oLsbpe+MQJMBAk//vw= Subject key identifier: A7:1C:AB:17:D6:E0:26:9F:65:AD:43:51:59:CD:44:29:9A:9C:D0:C7 Authority key identifier: 34:EB:76:8E:3C:18:50:EF:11:49:8B:33:20:CA:CD:1B:26:1D:59:29 Certificate issuer: /CN=A9163EEB/serialNumber=34EB768E3C1850EF11498B3320CACD1B261D5929 Certificate serial: 3525 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOt2jjwYUO8RSYszIMrNGyYdWSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.mft Manifest number: 3523 Signing time: Sat 04 Apr 2026 15:06:17 +0000 Manifest this update: Sat 04 Apr 2026 15:06:16 +0000 Manifest next update: Sat 11 Apr 2026 15:06:16 +0000 Files and hashes: 1: NOt2jjwYUO8RSYszIMrNGyYdWSk.crl (hash: uylFCoxRFwmR2W2fDp4rQEr653QERLYPpLl4nGMYpe8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.crl rsync://rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOt2jjwYUO8RSYszIMrNGyYdWSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:06:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13605 (0x3525) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163EEB, serialNumber=34EB768E3C1850EF11498B3320CACD1B261D5929 Validity Not Before: Apr 4 15:06:16 2026 GMT Not After : Apr 11 15:06:16 2026 GMT Subject: CN=69d128e8-cc37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f3:66:64:a2:dc:3f:36:6b:dc:0f:c5:96:af: fd:24:01:31:46:c5:6d:13:37:80:ba:03:2f:ed:ec: a9:46:4f:85:1e:38:29:b2:b0:96:d7:99:fe:94:ff: 15:49:98:5c:e2:3f:96:8e:9d:e0:91:29:96:d1:8b: b7:c3:83:f0:e1:eb:ff:9d:81:57:07:4d:29:69:6b: a8:36:85:11:34:28:cc:90:4d:62:4f:11:f4:04:55: 74:dd:a8:88:bf:ac:22:f5:10:53:ab:ef:e7:78:a6: 3c:8e:48:e8:2b:a5:0f:b0:54:5c:1b:cc:d4:30:eb: 8c:19:97:66:4a:79:11:91:27:98:a5:3b:21:19:1b: 0d:a4:91:2a:e6:4d:92:1d:bf:ec:2f:f4:b0:61:9f: 1d:00:5e:fa:b0:9e:99:7d:20:95:f6:b7:72:ab:a2: 1b:dc:c1:27:ee:01:69:ab:be:d5:86:92:29:cf:93: 45:78:34:31:02:0e:1a:ae:b7:78:a1:50:e3:2c:6d: 9c:4c:7a:30:6c:3d:5e:ae:0c:51:d6:b8:d4:69:5b: c5:16:ca:e9:16:cc:71:51:d6:bf:fb:8d:da:aa:8f: 4a:67:7b:d5:6d:6e:4d:fa:6a:75:f3:a9:0c:ca:87: 1b:56:97:d2:71:b5:7c:9d:97:67:8e:f5:3b:10:86: de:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:1C:AB:17:D6:E0:26:9F:65:AD:43:51:59:CD:44:29:9A:9C:D0:C7 X509v3 Authority Key Identifier: keyid:34:EB:76:8E:3C:18:50:EF:11:49:8B:33:20:CA:CD:1B:26:1D:59:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOt2jjwYUO8RSYszIMrNGyYdWSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:6d:14:b5:81:63:96:d7:4c:2d:04:f1:5b:73:22:c2:21:99: 7a:36:05:eb:60:39:e5:52:02:81:9a:ee:aa:93:6c:a0:60:10: e0:ca:fa:3c:af:29:c7:4e:41:15:56:c5:bf:fd:8c:95:08:6f: f1:b3:ee:d8:a4:22:4c:c5:86:7d:2c:0e:ac:93:45:59:06:e5: d9:a2:02:35:e6:00:83:e9:2c:90:f6:ac:e8:e4:cc:e7:69:e3: dc:d4:d7:6b:87:0b:26:26:03:8b:b7:c3:07:5c:84:58:a6:ae: 94:b0:2c:e8:99:4a:a1:17:5b:df:59:ae:0b:4f:07:3c:41:dc: 42:71:4e:a1:f0:f2:ca:5f:a7:bc:67:6c:7a:23:2a:d4:fd:bb: 3b:d3:08:ed:e8:e4:57:ff:a6:fd:16:dd:f0:12:38:68:b1:a2: 00:7f:81:2c:c5:34:11:ed:9c:10:10:85:c5:69:14:79:5c:bc: 9a:21:44:08:ca:14:35:cd:be:7d:5a:e1:e6:c6:d9:ed:9b:69: 86:1f:b4:57:96:5f:fc:31:5f:db:00:0d:15:a2:d0:5b:81:57: 41:a5:0e:25:cd:a2:18:43:14:77:07:2c:7b:45:40:86:2a:01: 3d:72:bc:0e:8a:d6:21:d0:cb:cf:26:c0:83:66:0a:cc:92:c5: 54:71:6a:2b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNFRUIxMTAvBgNVBAUTKDM0RUI3NjhFM0MxODUwRUYxMTQ5OEIzMzIwQ0FDRDFC MjYxRDU5MjkwHhcNMjYwNDA0MTUwNjE2WhcNMjYwNDExMTUwNjE2WjAYMRYwFAYD VQQDEw02OWQxMjhlOC1jYzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufNmZKLcPzZr3A/Flq/9JAExRsVtEzeAugMv7eypRk+FHjgpsrCW15n+lP8V SZhc4j+Wjp3gkSmW0Yu3w4Pw4ev/nYFXB00paWuoNoURNCjMkE1iTxH0BFV03aiI v6wi9RBTq+/neKY8jkjoK6UPsFRcG8zUMOuMGZdmSnkRkSeYpTshGRsNpJEq5k2S Hb/sL/SwYZ8dAF76sJ6ZfSCV9rdyq6Ib3MEn7gFpq77VhpIpz5NFeDQxAg4arrd4 oVDjLG2cTHowbD1ergxR1rjUaVvFFsrpFsxxUda/+43aqo9KZ3vVbW5N+mp186kM yocbVpfScbV8nZdnjvU7EIbeKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKccqxfW 4CafZa1DUVnNRCmanNDHMB8GA1UdIwQYMBaAFDTrdo48GFDvEUmLMyDKzRsmHVkp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0VFQi82REU0Mjc2ODFE QTQxMUUyODA4MTcxOUEwOEIwMkNEMi9OT3Qyamp3WVVPOFJTWXN6SU1yTkd5WWRX U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05PdDJqandZVU84UlNZc3pJTXJOR3lZZFdTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0VFQi82REU0Mjc2ODFEQTQxMUUyODA4MTcxOUEwOEIwMkNEMi9OT3Qyamp3WVVP OFJTWXN6SU1yTkd5WWRXU2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqm0UtYFjltdMLQTxW3MiwiGZejYF62A55VICgZruqpNsoGAQ4Mr6PK8px05B FVbFv/2MlQhv8bPu2KQiTMWGfSwOrJNFWQbl2aICNeYAg+kskPas6OTM52nj3NTX a4cLJiYDi7fDB1yEWKaulLAs6JlKoRdb31muC08HPEHcQnFOofDyyl+nvGdseiMq 1P27O9MI7ejkV/+m/Rbd8BI4aLGiAH+BLMU0Ee2cEBCFxWkUeVy8miFECMoUNc2+ fVrh5sbZ7Ztphh+0V5Zf/DFf2wANFaLQW4FXQaUOJc2iGEMUdwcse0VAhioBPXK8 DorWIdDLzybAg2YKzJLFVHFqKw== -----END CERTIFICATE-----Generated at Sun Apr 5 20:00:08 2026 by rpki-client