$ rpki-client -vvf rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft File: NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft (raw, json) Hash identifier: YoGGoHWxXITKTF9eixM3Yao+l/GWGW7XnK/ZGiuyIpw= Subject key identifier: 14:F5:D3:6C:FD:25:82:73:58:08:BF:7C:F5:FA:C5:51:E1:78:9A:65 Authority key identifier: 35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 Certificate issuer: /CN=A9166AFF/serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Certificate serial: 019D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft Manifest number: 018E Signing time: Sun 05 Apr 2026 04:00:16 +0000 Manifest this update: Sun 05 Apr 2026 04:00:15 +0000 Manifest next update: Sun 12 Apr 2026 04:00:15 +0000 Files and hashes: 1: NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl (hash: SMpJ4OxvgkLoUJ/BkThXjspI3g1y+uJeRru2w+JeXCA=) 2: 8109B4CA9DF211F0B1ED220FC4F9AE02.roa (hash: 3F15rH6YOfm7yUgvAU7B83xmF5fOsfIgjewKISbkfSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166AFF, serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Validity Not Before: Apr 5 04:00:15 2026 GMT Not After : Apr 12 04:00:15 2026 GMT Subject: CN=69d1de50-811c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:41:ed:eb:6f:e5:b5:b0:55:74:77:34:f8:05: 87:5c:64:1b:a1:0a:71:3a:4f:09:2e:fe:cd:7d:aa: 9e:e1:77:d2:cb:0d:1e:12:e2:8b:a6:4a:81:0e:1c: ee:26:7d:8c:1c:90:10:28:dd:86:b1:38:e2:1e:c7: e6:00:a1:cf:97:f6:4f:f0:0f:22:ac:81:a5:23:11: de:25:99:0c:d0:a5:97:96:24:82:7c:f2:cd:92:d5: 07:7d:00:26:0b:7b:52:c3:10:b3:fc:c4:f5:bd:11: e4:32:3a:e8:ec:d7:ca:95:90:1c:96:c6:b1:1e:b3: db:22:cf:fe:33:4a:d8:e1:03:7a:52:e7:ab:24:75: 1c:b3:e3:f3:f5:af:82:e9:71:c4:c4:af:33:ea:86: 46:c5:54:d7:c8:e6:f8:ae:9d:d8:7f:29:01:57:93: d3:c4:c1:41:38:bc:b9:cc:ae:71:ff:d3:fe:51:ae: 09:06:b4:0c:aa:1a:44:70:c3:ca:51:c9:b2:b0:23: f8:ad:7f:42:66:f4:fd:5c:c2:12:03:34:5e:e7:d9: 14:2b:44:0c:e3:7f:a4:10:09:47:5a:95:83:4b:45: 19:59:c1:09:9c:91:88:53:08:c9:66:dc:8a:1e:97: 1f:01:17:4d:60:83:dc:bb:fa:6f:6b:31:d6:54:ce: ae:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:F5:D3:6C:FD:25:82:73:58:08:BF:7C:F5:FA:C5:51:E1:78:9A:65 X509v3 Authority Key Identifier: keyid:35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:66:30:c1:4d:38:76:1d:bf:73:90:71:76:c9:20:f4:aa:96: 07:7f:cb:fe:e0:98:c3:ee:ea:7c:39:ad:bc:25:0b:29:55:c1: 67:7a:7c:ea:6a:a0:3a:6b:cc:41:0f:90:ba:36:1b:70:98:16: 3a:5c:ab:6c:de:86:44:cf:a0:77:1b:8b:a5:c4:44:3e:2f:fe: 7c:6a:33:04:a9:7a:3b:98:aa:b6:97:f5:e1:f6:68:33:66:99: 07:dd:97:e1:39:66:14:e1:55:4b:5a:f4:39:0a:85:12:d3:7a: c3:fa:8d:10:a3:bc:2f:cc:32:84:2c:97:c3:5e:41:91:51:2a: 3e:ef:d8:c9:f3:39:d5:b8:e7:07:7b:01:2a:96:79:0d:88:c6: 83:6e:e9:f8:bd:9f:92:ef:5b:c2:00:d0:d8:28:8f:98:d4:99: 8b:82:a0:51:ef:62:d8:93:53:7e:b3:63:d0:e1:c0:06:55:4e: 23:d6:a4:9f:80:32:f0:f2:3a:ae:fa:2d:ea:2c:4a:a9:0b:ff: 31:76:22:5a:4e:8f:36:38:64:f9:50:2e:68:c7:cc:1d:ed:2a: 2e:eb:3a:6c:1a:7d:fc:8b:9b:a3:76:a3:7e:b5:21:59:15:7e: e4:e1:75:37:1c:0e:94:a4:a2:9a:93:95:3b:33:cf:f4:59:42: 23:e8:23:c5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZBRkYxMTAvBgNVBAUTKDM1N0ExNzlDREQwQUY5QTNGQjAzRTE3N0Q2QTQzRkI4 QTU3NzU0RTAwHhcNMjYwNDA1MDQwMDE1WhcNMjYwNDEyMDQwMDE1WjAYMRYwFAYD VQQDEw02OWQxZGU1MC04MTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0Ht62/ltbBVdHc0+AWHXGQboQpxOk8JLv7Nfaqe4XfSyw0eEuKLpkqBDhzu Jn2MHJAQKN2GsTjiHsfmAKHPl/ZP8A8irIGlIxHeJZkM0KWXliSCfPLNktUHfQAm C3tSwxCz/MT1vRHkMjro7NfKlZAclsaxHrPbIs/+M0rY4QN6UuerJHUcs+Pz9a+C 6XHExK8z6oZGxVTXyOb4rp3YfykBV5PTxMFBOLy5zK5x/9P+Ua4JBrQMqhpEcMPK UcmysCP4rX9CZvT9XMISAzRe59kUK0QM43+kEAlHWpWDS0UZWcEJnJGIUwjJZtyK HpcfARdNYIPcu/pvazHWVM6udQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBT102z9 JYJzWAi/fPX6xVHheJplMB8GA1UdIwQYMBaAFDV6F5zdCvmj+wPhd9akP7ild1Tg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkFGRi80MENEMUI1NEU1 MDIxMUVFOUFCRjc2NTVDNEY5QUUwMi9OWG9Ybk4wSy1hUDdBLUYzMXFRX3VLVjNW T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Yb1huTjBLLWFQN0EtRjMxcVFfdUtWM1ZPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkFGRi80MENEMUI1NEU1MDIxMUVFOUFCRjc2NTVDNEY5QUUwMi9OWG9Ybk4wSy1h UDdBLUYzMXFRX3VLVjNWT0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfGYwwU04dh2/c5Bxdskg9KqWB3/L/uCYw+7qfDmtvCULKVXBZ3p86mqgOmvM QQ+QujYbcJgWOlyrbN6GRM+gdxuLpcREPi/+fGozBKl6O5iqtpf14fZoM2aZB92X 4TlmFOFVS1r0OQqFEtN6w/qNEKO8L8wyhCyXw15BkVEqPu/YyfM51bjnB3sBKpZ5 DYjGg27p+L2fku9bwgDQ2CiPmNSZi4KgUe9i2JNTfrNj0OHABlVOI9akn4Ay8PI6 rvot6ixKqQv/MXYiWk6PNjhk+VAuaMfMHe0qLus6bBp9/Iubo3ajfrUhWRV+5OF1 NxwOlKSimpOVOzPP9FlCI+gjxQ== -----END CERTIFICATE-----Generated at Sun Apr 5 19:47:29 2026 by rpki-client