$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft File: nTRubbOcPTMMGv-UBg4VBV_07Rw.mft (raw, json) Hash identifier: 7lIodmqGOKlvtjsk4DMJNbCZ4xXhjoZlc11XqaJxHl4= Subject key identifier: B9:A5:40:3D:32:18:56:93:0A:99:EF:CD:FB:45:D2:B1:2F:7D:8A:31 Authority key identifier: 9D:34:6E:6D:B3:9C:3D:33:0C:1A:FF:94:06:0E:15:05:5F:F4:ED:1C Certificate issuer: /CN=A91C2168/serialNumber=9D346E6DB39C3D330C1AFF94060E15055FF4ED1C Certificate serial: 3562 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft Manifest number: 354A Signing time: Sat 04 Apr 2026 14:42:14 +0000 Manifest this update: Sat 04 Apr 2026 14:42:13 +0000 Manifest next update: Sat 11 Apr 2026 14:42:13 +0000 Files and hashes: 1: nTRubbOcPTMMGv-UBg4VBV_07Rw.crl (hash: IdfVXS0W7godpXYjbKbyAZollyNc2KUWXYFPROMsLfI=) 2: A7098B604A5411F0A2CC9015C4F9AE02.roa (hash: 9VyiC9O6U//ZPVxmrlig/dycvmzYpPGTRnjYrlBpYSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.crl rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 14:42:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13666 (0x3562) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2168, serialNumber=9D346E6DB39C3D330C1AFF94060E15055FF4ED1C Validity Not Before: Apr 4 14:42:13 2026 GMT Not After : Apr 11 14:42:13 2026 GMT Subject: CN=69d12345-178b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:b4:05:f6:12:f5:9e:5a:be:54:f3:36:92:59: 33:ea:82:aa:ad:2f:79:b4:bf:33:e0:fc:a0:91:8d: d7:6c:93:b5:a2:44:5c:91:e0:07:fa:64:d9:18:a5: 26:dc:2e:ab:d6:4c:cb:bc:11:af:f8:f7:e2:d8:40: 1b:f8:32:7f:89:a1:58:14:13:86:dc:92:04:9c:ad: 6a:cd:f0:76:d8:ed:eb:b3:36:51:0a:10:3c:b9:d8: e0:12:23:e7:af:37:10:89:e4:56:d1:84:23:77:18: 3c:3d:23:06:f3:03:aa:7f:63:65:8e:6f:bf:f6:91: 10:86:f4:92:0f:40:b6:63:be:9c:b9:b2:ce:c5:c3: 7f:0c:71:75:79:3f:29:29:34:07:01:ab:cc:81:9a: f9:4d:db:02:96:19:f3:60:3a:95:74:7a:9f:41:3e: ad:26:35:be:a8:12:5e:d7:a2:ed:e2:b6:a0:d7:3a: 40:76:cc:4f:80:79:49:e4:fc:8e:64:4f:d8:0c:79: 44:ab:76:c8:64:36:f4:c4:0d:e0:78:b9:53:b9:d2: 24:ca:cd:d9:a7:9f:e3:2e:47:02:2b:42:1d:b7:2b: c6:25:26:31:3c:5f:a4:13:cb:0e:eb:27:d2:5f:f1: ad:47:39:65:1d:2a:1a:14:e0:90:6c:16:67:cc:db: 9d:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:A5:40:3D:32:18:56:93:0A:99:EF:CD:FB:45:D2:B1:2F:7D:8A:31 X509v3 Authority Key Identifier: keyid:9D:34:6E:6D:B3:9C:3D:33:0C:1A:FF:94:06:0E:15:05:5F:F4:ED:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:55:a2:96:fe:5e:54:51:d3:23:49:b4:dd:fd:31:5d:52:1d: f5:8b:6d:1f:47:91:36:8c:ee:4d:d5:c3:ab:69:da:f1:f3:4d: fb:88:be:86:f3:a6:57:40:51:31:4d:4c:c7:e6:02:18:cd:31: 3a:90:9d:54:17:89:e5:91:74:9e:18:f1:ae:67:5c:5e:b5:b1: c9:8c:e7:07:b6:d9:39:fc:09:d5:14:df:df:df:67:0d:eb:34: e3:1f:c0:1d:b4:77:97:e4:19:4e:89:04:d6:78:e6:79:2a:64: 19:be:3e:b5:04:48:84:72:63:45:0e:0e:ab:da:cd:e9:a4:22: 59:92:57:90:ed:82:aa:30:f6:0d:fb:b4:25:9d:e2:f1:dd:1f: 09:6d:48:3c:71:c8:f6:29:92:a3:ee:b6:77:f3:70:28:ab:2c: 81:28:1f:1d:ce:29:a9:24:a1:85:a6:64:c5:68:a3:21:d3:8f: 3a:78:55:e0:37:91:6f:03:cc:7b:5c:7d:2a:76:06:9e:b4:27: f5:64:40:ca:23:fa:a2:e0:7d:51:6d:f4:be:a9:99:a5:73:d9: 52:17:f8:24:56:db:92:eb:3a:81:e2:cc:f8:c4:a6:91:e2:05: ed:06:b3:9f:27:65:5f:dd:d0:3b:b5:40:5b:f2:39:d8:69:76: 75:99:2d:d0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIxNjgxMTAvBgNVBAUTKDlEMzQ2RTZEQjM5QzNEMzMwQzFBRkY5NDA2MEUxNTA1 NUZGNEVEMUMwHhcNMjYwNDA0MTQ0MjEzWhcNMjYwNDExMTQ0MjEzWjAYMRYwFAYD VQQDEw02OWQxMjM0NS0xNzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlrQF9hL1nlq+VPM2klkz6oKqrS95tL8z4PygkY3XbJO1okRckeAH+mTZGKUm 3C6r1kzLvBGv+Pfi2EAb+DJ/iaFYFBOG3JIEnK1qzfB22O3rszZRChA8udjgEiPn rzcQieRW0YQjdxg8PSMG8wOqf2Nljm+/9pEQhvSSD0C2Y76cubLOxcN/DHF1eT8p KTQHAavMgZr5TdsClhnzYDqVdHqfQT6tJjW+qBJe16Lt4rag1zpAdsxPgHlJ5PyO ZE/YDHlEq3bIZDb0xA3geLlTudIkys3Zp5/jLkcCK0IdtyvGJSYxPF+kE8sO6yfS X/GtRzllHSoaFOCQbBZnzNudNQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLmlQD0y GFaTCpnvzftF0rEvfYoxMB8GA1UdIwQYMBaAFJ00bm2znD0zDBr/lAYOFQVf9O0c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjE2OC8yNEM2MkMwNjFE OTExMUUyOTI0NDMwRjMwOEIwMkNEMi9uVFJ1YmJPY1BUTU1Hdi1VQmc0VkJWXzA3 UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UUnViYk9jUFRNTUd2LVVCZzRWQlZfMDdSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjE2OC8yNEM2MkMwNjFEOTExMUUyOTI0NDMwRjMwOEIwMkNEMi9uVFJ1YmJPY1BU TU1Hdi1VQmc0VkJWXzA3UncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVVWilv5eVFHTI0m03f0xXVId9YttH0eRNozuTdXDq2na8fNN+4i+hvOmV0BR MU1Mx+YCGM0xOpCdVBeJ5ZF0nhjxrmdcXrWxyYznB7bZOfwJ1RTf399nDes04x/A HbR3l+QZTokE1njmeSpkGb4+tQRIhHJjRQ4Oq9rN6aQiWZJXkO2CqjD2Dfu0JZ3i 8d0fCW1IPHHI9imSo+62d/NwKKssgSgfHc4pqSShhaZkxWijIdOPOnhV4DeRbwPM e1x9KnYGnrQn9WRAyiP6ouB9UW30vqmZpXPZUhf4JFbbkus6geLM+MSmkeIF7Qaz nydlX93QO7VAW/I52Gl2dZkt0A== -----END CERTIFICATE-----Generated at Sun Apr 5 19:40:16 2026 by rpki-client