$ rpki-client -vvf rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft File: NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft (raw, json) Hash identifier: C38L8ge5l3yo+S+VLV1tFfo0skoQgWosFWJHVl2BZ1c= Subject key identifier: 66:CC:AC:5A:4E:4A:04:CB:A4:0C:72:F4:97:A7:86:60:89:13:33:F9 Authority key identifier: 34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA Certificate issuer: /CN=A91C99B4/serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Certificate serial: 07D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft Manifest number: 07A0 Signing time: Sat 04 Apr 2026 21:25:28 +0000 Manifest this update: Sat 04 Apr 2026 21:25:27 +0000 Manifest next update: Sat 11 Apr 2026 21:25:27 +0000 Files and hashes: 1: NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl (hash: 4M1eQbDPG0rA2tTWh2A8fpmVANZxEqfHR5rVwcRcMhU=) 2: F3BEC03CE13B11F090F650ED6F6F56BC.roa (hash: 73pAfLSC8B0XWc6KcAo6RSi0u4KosXge+3h5CVJGLfw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:25:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2003 (0x7d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C99B4, serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Validity Not Before: Apr 4 21:25:27 2026 GMT Not After : Apr 11 21:25:27 2026 GMT Subject: CN=69d181c8-ff19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6e:d2:21:97:cc:b6:4c:dd:84:f1:2d:8a:a8: a2:99:78:75:2a:c3:53:4a:ec:59:5f:6c:03:80:fe: 14:5d:0f:63:26:f8:d0:38:a3:c9:42:c3:d8:57:d5: 6a:e6:6f:31:f9:df:4a:0c:18:92:72:80:62:79:5e: 28:92:77:48:92:f5:19:a5:f1:96:04:63:14:88:96: 3a:f3:ff:1b:24:ec:37:f2:e6:4b:89:74:d5:48:c4: 4b:0b:44:0e:cb:82:82:84:ae:17:8b:05:2b:f2:36: a5:c5:c9:ff:73:4b:5d:23:7d:75:d9:76:df:db:db: 8f:59:ad:73:cd:a7:1e:fc:01:d6:9e:fe:d8:ce:05: 6f:c3:f3:fd:a1:d3:cc:f3:5b:5b:b7:68:99:f5:c6: 19:66:78:b4:59:ac:82:e9:df:70:c3:40:0a:b9:a3: 96:6a:ed:22:10:8b:99:96:c5:c0:ea:bd:04:e1:81: bf:47:f1:0c:ea:c4:25:de:57:f1:48:c4:23:27:2d: 8f:95:e8:1c:cf:13:d2:1c:83:15:ca:8b:20:9c:41: 33:d7:b8:cc:ce:d8:c4:56:bc:9a:de:77:14:27:fd: c7:90:07:41:7b:be:b4:af:58:10:c1:25:8a:00:6f: 9b:2b:57:59:e1:fd:a4:08:f3:9a:30:eb:f1:31:2d: ea:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:CC:AC:5A:4E:4A:04:CB:A4:0C:72:F4:97:A7:86:60:89:13:33:F9 X509v3 Authority Key Identifier: keyid:34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:dd:52:f2:7d:4d:a8:96:86:3a:ce:bb:35:02:c6:6f:c7:cd: cb:1b:d8:f8:27:7e:93:c1:c0:d1:2b:52:dc:16:6f:26:45:61: b3:ab:28:a0:69:ab:f7:14:ce:8d:6e:c6:34:16:59:dd:f2:80: 00:76:45:a3:31:d0:8c:00:00:0a:af:b1:54:9a:0f:83:8d:e0: 91:26:28:dd:a3:b1:b4:24:52:87:bb:a1:3a:fa:38:c0:8d:7b: b1:09:58:bc:87:db:01:50:be:dc:12:3a:2b:3c:96:0a:fc:43: 0a:af:f6:64:db:3b:48:fb:d5:25:b9:21:e5:85:84:8d:fb:ab: 4c:b3:9a:81:96:ab:7d:34:6d:72:71:62:0a:8f:bf:d8:ac:62: fe:fe:96:22:12:50:5d:6d:3b:9c:c9:a9:cd:17:62:36:30:06: c1:73:e1:23:bd:ff:53:91:f0:46:c4:3f:59:48:d9:3f:af:cb: 7c:fe:f2:9f:65:72:41:e2:c0:fb:4f:37:b3:d0:67:09:2a:df: 83:d2:76:73:f5:30:94:94:d7:0b:0a:5e:a9:94:d0:fe:86:ef: 46:dc:0e:46:98:f2:a1:2a:24:48:33:f8:91:e2:a9:87:6b:63: e7:c0:5a:4a:59:72:a1:4a:b1:73:de:76:61:44:df:e4:3e:58: 5c:34:83:df -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5QjQxMTAvBgNVBAUTKDM0OEJFNjY5NEVENzA0MUFBRjI4RDBFQzhDNkM2NTY1 NTkxRjJEREEwHhcNMjYwNDA0MjEyNTI3WhcNMjYwNDExMjEyNTI3WjAYMRYwFAYD VQQDEw02OWQxODFjOC1mZjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqm7SIZfMtkzdhPEtiqiimXh1KsNTSuxZX2wDgP4UXQ9jJvjQOKPJQsPYV9Vq 5m8x+d9KDBiScoBieV4okndIkvUZpfGWBGMUiJY68/8bJOw38uZLiXTVSMRLC0QO y4KChK4XiwUr8jalxcn/c0tdI3112Xbf29uPWa1zzace/AHWnv7YzgVvw/P9odPM 81tbt2iZ9cYZZni0WayC6d9ww0AKuaOWau0iEIuZlsXA6r0E4YG/R/EM6sQl3lfx SMQjJy2PlegczxPSHIMVyosgnEEz17jMztjEVrya3ncUJ/3HkAdBe760r1gQwSWK AG+bK1dZ4f2kCPOaMOvxMS3qtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGbMrFpO SgTLpAxy9JenhmCJEzP5MB8GA1UdIwQYMBaAFDSL5mlO1wQaryjQ7IxsZWVZHy3a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTlCNC81REU1OTY5NjU5 NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJCcXZLTkRzakd4bFpWa2ZM ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Jdm1hVTdYQkJxdktORHNqR3hsWlZrZkxkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTlCNC81REU1OTY5NjU5NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJC cXZLTkRzakd4bFpWa2ZMZG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhd1S8n1NqJaGOs67NQLGb8fNyxvY+Cd+k8HA0StS3BZvJkVhs6sooGmr9xTO jW7GNBZZ3fKAAHZFozHQjAAACq+xVJoPg43gkSYo3aOxtCRSh7uhOvo4wI17sQlY vIfbAVC+3BI6KzyWCvxDCq/2ZNs7SPvVJbkh5YWEjfurTLOagZarfTRtcnFiCo+/ 2Kxi/v6WIhJQXW07nMmpzRdiNjAGwXPhI73/U5HwRsQ/WUjZP6/LfP7yn2VyQeLA +083s9BnCSrfg9J2c/UwlJTXCwpeqZTQ/obvRtwORpjyoSokSDP4keKph2tj58Ba SllyoUqxc952YUTf5D5YXDSD3w== -----END CERTIFICATE-----Generated at Sun Apr 5 20:00:18 2026 by rpki-client