$ rpki-client -vvf rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft File: nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft (raw, json) Hash identifier: Vx4qDQlMf5tXyjDgg3BnYjuse/0kCtbbQfVvgcFIbdc= Subject key identifier: 47:C8:F0:00:BF:ED:A8:67:3A:AD:AE:DA:2D:00:25:97:0C:17:EC:B8 Authority key identifier: 9F:0A:AF:2E:0A:FA:3E:6F:8D:AE:5A:46:A7:E5:8C:CF:FA:34:C1:27 Certificate issuer: /CN=A9197501/serialNumber=9F0AAF2E0AFA3E6F8DAE5A46A7E58CCFFA34C127 Certificate serial: 0334 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft Manifest number: 031C Signing time: Sun 05 Apr 2026 00:58:27 +0000 Manifest this update: Sun 05 Apr 2026 00:58:26 +0000 Manifest next update: Sun 12 Apr 2026 00:58:26 +0000 Files and hashes: 1: nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl (hash: wVvCC6czKEUz0uQF2AviSp3SsX2jxc1YIv5QID6zaH0=) 2: 4742083A534E11F08B7C2047C4F9AE02.roa (hash: xthRLc90/XgHlCkTtB+0e16k0vdMx1eiJQ9NbjS1xYM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:58:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 820 (0x334) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197501, serialNumber=9F0AAF2E0AFA3E6F8DAE5A46A7E58CCFFA34C127 Validity Not Before: Apr 5 00:58:26 2026 GMT Not After : Apr 12 00:58:26 2026 GMT Subject: CN=69d1b3b2-be66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:de:a7:34:c8:ea:49:88:6e:89:77:0f:79:ee: b6:51:28:44:ee:05:f9:8c:f5:66:d8:90:80:ed:b6: 86:59:58:2f:a0:5a:93:94:b7:00:6c:2e:80:6c:9e: 71:86:2c:83:d6:f7:93:b9:15:2d:cd:30:45:3b:cb: b1:e7:7e:a9:d6:f4:67:03:55:aa:0c:b0:06:e6:17: 42:d1:1c:23:23:3a:7a:ea:73:e7:85:4c:62:ed:2c: 1b:80:ee:a0:ec:ca:ec:d1:8b:cc:3f:da:2b:98:c0: 46:bf:e3:a5:25:95:13:7a:85:94:c9:99:1a:83:83: 51:78:a8:49:66:e9:fc:71:5d:09:9d:10:4d:21:49: 47:17:48:f4:e4:c9:55:26:cb:43:36:b6:22:bd:80: 33:ad:2a:ae:5d:04:5e:9c:d5:cc:0c:44:51:7b:0a: ee:49:57:e1:64:65:ff:82:fc:fb:a4:f4:24:e3:70: f0:91:e6:58:31:b5:07:3c:3a:64:7f:3e:98:3d:e3: d5:b5:12:25:5f:2b:fd:7e:c1:00:f8:7f:30:93:b7: 84:b1:9b:df:ca:2b:50:d9:2d:fe:92:98:bc:12:d5: d4:2e:27:9a:a5:9f:93:6a:43:d2:37:6f:d6:a6:79: 5b:2d:3a:f0:45:04:54:30:53:08:c7:fd:a2:74:78: fe:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:C8:F0:00:BF:ED:A8:67:3A:AD:AE:DA:2D:00:25:97:0C:17:EC:B8 X509v3 Authority Key Identifier: keyid:9F:0A:AF:2E:0A:FA:3E:6F:8D:AE:5A:46:A7:E5:8C:CF:FA:34:C1:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:9e:95:3f:58:cd:3c:44:f8:9a:b2:7e:e2:32:6d:69:d0:52: 2b:02:82:a1:d8:7d:09:b4:8e:5f:e0:cf:de:a4:4a:b0:1e:2c: a5:3a:07:37:be:86:88:2a:7a:e8:4b:c1:27:b8:e3:32:d3:72: 63:ef:f2:99:d3:69:64:b1:39:10:61:1d:1e:b7:ca:c4:3e:ad: 12:98:c3:41:30:f5:62:05:eb:a7:18:eb:99:66:80:72:e3:15: d2:db:a1:cb:39:7c:4f:9a:6a:5f:f7:13:41:c3:aa:52:5a:08: be:f7:8b:2d:80:35:ee:a2:01:a3:12:37:36:67:c6:2c:cb:6f: 79:86:b9:8d:b9:b3:2f:22:52:4d:78:12:bb:80:42:94:96:61: 20:a6:75:a4:9b:a8:1c:ea:86:e5:86:51:19:a2:2c:7d:0a:d7: b8:a9:82:fa:0b:c5:34:60:8a:9e:83:78:3f:ba:27:1c:9d:3c: 5b:78:71:5f:09:12:68:34:06:ec:c4:d9:d1:e5:2c:2c:40:a4: e6:65:2a:0b:0a:75:11:1c:ce:f2:16:c4:38:61:0b:86:c8:86: 49:5b:50:ac:c2:64:ec:16:5e:34:ef:06:f5:79:23:dd:f1:2f: 72:4f:3a:d5:07:37:b4:61:a7:bd:63:aa:9d:fc:31:25:d3:a8: 8c:c8:33:d0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1MDExMTAvBgNVBAUTKDlGMEFBRjJFMEFGQTNFNkY4REFFNUE0NkE3RTU4Q0NG RkEzNEMxMjcwHhcNMjYwNDA1MDA1ODI2WhcNMjYwNDEyMDA1ODI2WjAYMRYwFAYD VQQDEw02OWQxYjNiMi1iZTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2N6nNMjqSYhuiXcPee62UShE7gX5jPVm2JCA7baGWVgvoFqTlLcAbC6AbJ5x hiyD1veTuRUtzTBFO8ux536p1vRnA1WqDLAG5hdC0RwjIzp66nPnhUxi7SwbgO6g 7Mrs0YvMP9ormMBGv+OlJZUTeoWUyZkag4NReKhJZun8cV0JnRBNIUlHF0j05MlV JstDNrYivYAzrSquXQRenNXMDERRewruSVfhZGX/gvz7pPQk43DwkeZYMbUHPDpk fz6YPePVtRIlXyv9fsEA+H8wk7eEsZvfyitQ2S3+kpi8EtXULieapZ+TakPSN2/W pnlbLTrwRQRUMFMIx/2idHj+ZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEfI8AC/ 7ahnOq2u2i0AJZcMF+y4MB8GA1UdIwQYMBaAFJ8Kry4K+j5vja5aRqfljM/6NMEn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzUwMS85OUI1OEJCMDEz REIxMUVEOTMwNEM1ODJDNEY5QUUwMi9ud3F2TGdyNlBtLU5ybHBHcC1XTXpfbzB3 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL253cXZMZ3I2UG0tTnJscEdwLVdNel9vMHdTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzUwMS85OUI1OEJCMDEzREIxMUVEOTMwNEM1ODJDNEY5QUUwMi9ud3F2TGdyNlBt LU5ybHBHcC1XTXpfbzB3U2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWJ6VP1jNPET4mrJ+4jJtadBSKwKCodh9CbSOX+DP3qRKsB4spToHN76GiCp6 6EvBJ7jjMtNyY+/ymdNpZLE5EGEdHrfKxD6tEpjDQTD1YgXrpxjrmWaAcuMV0tuh yzl8T5pqX/cTQcOqUloIvveLLYA17qIBoxI3NmfGLMtveYa5jbmzLyJSTXgSu4BC lJZhIKZ1pJuoHOqG5YZRGaIsfQrXuKmC+gvFNGCKnoN4P7onHJ08W3hxXwkSaDQG 7MTZ0eUsLECk5mUqCwp1ERzO8hbEOGELhsiGSVtQrMJk7BZeNO8G9Xkj3fEvck86 1Qc3tGGnvWOqnfwxJdOojMgz0A== -----END CERTIFICATE-----Generated at Sun Apr 5 20:01:04 2026 by rpki-client