$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft File: nlE6zE17kAFKhn-1KviSKeALpKw.mft (raw, json) Hash identifier: zo1Y31bo2+I5dUuke9av/QkFJ6MxChLSFN1PH6eDi6s= Subject key identifier: 2C:22:D7:88:D2:96:3B:3F:14:A7:5C:2C:DD:9E:03:96:80:67:4B:8A Authority key identifier: 9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC Certificate issuer: /CN=A91B2472/serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Certificate serial: 014D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft Manifest number: 0143 Signing time: Sun 05 Apr 2026 04:44:32 +0000 Manifest this update: Sun 05 Apr 2026 04:44:32 +0000 Manifest next update: Sun 12 Apr 2026 04:44:32 +0000 Files and hashes: 1: nlE6zE17kAFKhn-1KviSKeALpKw.crl (hash: VPxcLkUgUzI9/B1SJMJbpyh1hkPlEtIGeDA0dMWTe2w=) 2: 1B4BDA5C48B011EF9D34415EC4F9AE02.roa (hash: i0u++KF1Q5xKES8G1ajMnqQJU/uhVCVuB5dgmU3QsM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:44:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2472, serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Validity Not Before: Apr 5 04:44:32 2026 GMT Not After : Apr 12 04:44:32 2026 GMT Subject: CN=69d1e8b0-d6bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ae:da:29:ca:91:e5:28:c6:3a:ea:54:84:0b: 98:1a:eb:5c:ae:c8:1e:0f:ab:b1:19:2e:c1:82:14: 0d:59:ed:97:df:8a:77:14:36:d3:22:6e:bf:f7:a0: 72:23:64:9a:45:3c:db:89:a8:3d:9e:bb:17:01:f0: 5e:dc:64:a7:b5:68:de:40:61:dd:11:25:a6:42:32: 64:66:57:6b:8e:7e:50:92:23:3d:ee:b7:06:47:9d: 77:5b:16:c4:e3:0b:31:23:44:c9:29:0b:f6:19:7b: 4c:7b:18:52:41:6b:39:ec:a7:6a:cf:f6:e4:85:a8: c8:3f:b7:fb:fd:43:86:e8:23:60:c7:ad:85:7b:4a: 1b:f9:63:a5:2d:26:84:cb:ea:81:f5:84:e9:72:52: 31:8b:41:72:7d:f7:2a:df:38:c9:76:e5:f4:db:15: 75:45:90:0f:6e:8d:0a:53:c0:ed:47:a8:e4:9a:54: b8:2f:47:d8:a9:06:60:bd:83:09:b5:1c:5e:6f:c3: 9b:e8:7e:9a:6b:b6:de:d4:9a:9f:c5:c2:62:0b:44: b4:b9:a2:5e:bd:c9:29:65:25:bb:fe:d9:b0:8e:52: 54:ca:ce:ee:74:a4:2c:02:56:8a:0b:a6:51:12:03: 41:2f:1b:1d:99:b0:d8:18:c4:60:b9:e1:f6:82:89: 87:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:22:D7:88:D2:96:3B:3F:14:A7:5C:2C:DD:9E:03:96:80:67:4B:8A X509v3 Authority Key Identifier: keyid:9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:1a:c9:a0:81:75:e1:64:de:36:73:e1:88:ad:6b:10:55:51: e3:7d:8e:ef:4d:68:7f:eb:11:cf:f5:29:c4:43:ae:48:5a:51: b0:44:5d:9d:a8:2f:88:a2:79:9f:df:8b:e8:44:29:07:47:e1: f7:99:dc:75:ec:e6:a6:31:9b:e1:72:eb:61:d9:53:03:cc:29: 77:fa:34:8c:84:83:b9:f2:14:ed:16:fc:30:71:60:dd:9c:58: 93:ea:da:14:1b:5c:73:82:fb:23:cb:aa:68:5e:59:33:15:05: 12:e7:96:6b:69:01:b3:2a:be:6f:2d:aa:c4:31:2b:a9:b7:4b: 23:32:41:77:09:18:22:bf:2d:88:52:a2:02:f2:17:b9:a2:b2: 1a:bd:09:e0:a3:aa:15:14:5a:e9:cb:8c:b7:39:1f:be:83:30: 5b:82:ca:b8:98:b5:a9:1e:1d:d8:42:33:b6:c9:88:ae:20:ad: 92:1c:1d:ac:11:ca:6d:a0:9d:d4:59:d6:4a:5b:63:ad:3f:1e: 27:e0:a6:8b:17:18:43:56:61:f5:e6:e8:e8:cc:63:d8:14:71: d0:5f:21:5c:7c:b1:30:eb:2c:e1:08:1e:9e:5a:39:06:24:97: 58:69:9a:a8:01:f2:07:d5:1f:18:75:ca:d2:54:c5:04:66:1f: 8c:e6:76:69 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI0NzIxMTAvBgNVBAUTKDlFNTEzQUNDNEQ3QjkwMDE0QTg2N0ZCNTJBRjg5MjI5 RTAwQkE0QUMwHhcNMjYwNDA1MDQ0NDMyWhcNMjYwNDEyMDQ0NDMyWjAYMRYwFAYD VQQDEw02OWQxZThiMC1kNmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAua7aKcqR5SjGOupUhAuYGutcrsgeD6uxGS7BghQNWe2X34p3FDbTIm6/96By I2SaRTzbiag9nrsXAfBe3GSntWjeQGHdESWmQjJkZldrjn5QkiM97rcGR513WxbE 4wsxI0TJKQv2GXtMexhSQWs57Kdqz/bkhajIP7f7/UOG6CNgx62Fe0ob+WOlLSaE y+qB9YTpclIxi0Fyffcq3zjJduX02xV1RZAPbo0KU8DtR6jkmlS4L0fYqQZgvYMJ tRxeb8Ob6H6aa7be1JqfxcJiC0S0uaJevckpZSW7/tmwjlJUys7udKQsAlaKC6ZR EgNBLxsdmbDYGMRgueH2gomHRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCwi14jS ljs/FKdcLN2eA5aAZ0uKMB8GA1UdIwQYMBaAFJ5ROsxNe5ABSoZ/tSr4kingC6Ss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjQ3Mi9FNjJCNzM1QTQ4 MTkxMUVGQjhCRTQ1MzRDNEY5QUUwMi9ubEU2ekUxN2tBRktobi0xS3ZpU0tlQUxw S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25sRTZ6RTE3a0FGS2huLTFLdmlTS2VBTHBLdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjQ3Mi9FNjJCNzM1QTQ4MTkxMUVGQjhCRTQ1MzRDNEY5QUUwMi9ubEU2ekUxN2tB Rktobi0xS3ZpU0tlQUxwS3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKxrJoIF14WTeNnPhiK1rEFVR432O701of+sRz/UpxEOuSFpRsERdnagviKJ5 n9+L6EQpB0fh95ncdezmpjGb4XLrYdlTA8wpd/o0jISDufIU7Rb8MHFg3ZxYk+ra FBtcc4L7I8uqaF5ZMxUFEueWa2kBsyq+by2qxDErqbdLIzJBdwkYIr8tiFKiAvIX uaKyGr0J4KOqFRRa6cuMtzkfvoMwW4LKuJi1qR4d2EIztsmIriCtkhwdrBHKbaCd 1FnWSltjrT8eJ+CmixcYQ1Zh9ebo6Mxj2BRx0F8hXHyxMOss4Qgenlo5BiSXWGma qAHyB9UfGHXK0lTFBGYfjOZ2aQ== -----END CERTIFICATE-----Generated at Sun Apr 5 20:01:22 2026 by rpki-client