$ rpki-client -vvf rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft File: NQgZehD-pGpxhGMxT-upOUS2JIs.mft (raw, json) Hash identifier: NUvIcOEniaRY42J3K+NOq6ky0YZQjH9czH0EKYQxapc= Subject key identifier: B0:13:20:B8:E1:AC:09:4D:5E:B8:EC:BF:F3:80:E8:2D:94:EA:66:22 Authority key identifier: 35:08:19:7A:10:FE:A4:6A:71:84:63:31:4F:EB:A9:39:44:B6:24:8B Certificate issuer: /CN=A912B666/serialNumber=3508197A10FEA46A718463314FEBA93944B6248B Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft Manifest number: 4C Signing time: Sun 05 Apr 2026 07:42:22 +0000 Manifest this update: Sun 05 Apr 2026 07:42:21 +0000 Manifest next update: Sun 12 Apr 2026 07:42:21 +0000 Files and hashes: 1: NQgZehD-pGpxhGMxT-upOUS2JIs.crl (hash: vL/OUgWjJBKQdQQW28VtFr5GZY8VMaExyuST4zRsmZg=) 2: F084D9AADF1B11F0BDFBE1B1616F56BC.roa (hash: CpQzWFpl+Gw/RBNLdgsUn2ZniQcwnVLZoguxqXTYKyI=) 3: 86227722C92A11F0872AB883C4F9AE02.roa (hash: OntMkkZwdIbl5SrNRK1u5UfChSdJYJCs+EVkHCslByQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.crl rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 07:42:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B666, serialNumber=3508197A10FEA46A718463314FEBA93944B6248B Validity Not Before: Apr 5 07:42:21 2026 GMT Not After : Apr 12 07:42:21 2026 GMT Subject: CN=69d2125d-aa84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1e:c9:96:af:62:ff:65:dd:ca:74:05:c0:81: 55:41:1d:26:42:45:c9:29:d8:13:cc:e5:38:81:22: 04:7b:77:97:cd:f4:b0:aa:78:9f:59:54:ee:6b:2b: 8f:5d:6f:5b:d4:80:d6:68:d9:98:22:19:58:c4:6d: cd:27:2d:98:c8:1b:87:a1:da:40:bf:8a:84:a3:9a: 5f:17:56:dd:2d:d8:eb:a5:d1:14:e1:f5:03:9b:53: a4:d7:10:22:ac:b8:c6:54:5f:62:f5:94:6c:c7:22: 96:cb:c1:e2:f9:48:74:c2:28:50:f3:a3:6e:ca:8f: 24:a9:1e:0f:c0:cd:37:f2:f3:c8:1a:dc:26:33:00: 18:ab:bb:13:5c:33:9f:cd:a3:15:81:fd:84:08:e8: 4c:65:02:71:1c:f1:41:bd:ab:1f:71:41:d5:d3:e1: 44:4b:94:58:5a:2a:f0:1c:a9:01:f6:7a:99:46:8c: c0:35:88:ab:20:d8:f2:10:ca:da:8b:fa:b7:43:b2: 9b:17:d3:54:d1:99:29:af:a0:9a:8f:aa:c1:45:d4: 36:e9:49:d0:b5:5c:18:69:a8:4c:b7:3a:c6:a2:66: 00:4d:6d:2a:f3:90:0c:54:dd:25:f1:02:22:c5:02: 0d:81:42:24:b1:38:19:8d:34:de:8f:25:c2:71:3d: 99:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:13:20:B8:E1:AC:09:4D:5E:B8:EC:BF:F3:80:E8:2D:94:EA:66:22 X509v3 Authority Key Identifier: keyid:35:08:19:7A:10:FE:A4:6A:71:84:63:31:4F:EB:A9:39:44:B6:24:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:a1:0e:f9:a9:27:de:ee:90:ff:0a:c3:11:af:16:d8:00:25: 7c:c8:f5:b4:dc:58:d9:c2:dc:5a:d9:66:1f:75:4d:b3:e0:76: e5:7b:73:a1:39:c0:f2:82:6a:35:f4:a6:b1:3d:1e:62:44:1d: 30:c5:40:4a:57:59:e5:c9:68:96:3c:ce:8f:69:cf:5d:47:9f: 94:e6:94:97:74:8b:b2:33:e4:50:46:da:65:65:f1:9e:50:2e: 8a:1f:33:95:5b:2b:70:3e:2f:c9:5e:1c:86:7e:c9:48:62:99: fd:c2:8d:29:a3:0a:d1:53:2f:3b:86:b0:6b:5e:5e:eb:3f:d5: 85:67:af:be:40:e4:37:f4:f3:80:da:32:63:4a:2a:62:f9:08: 05:30:a8:47:12:9c:ae:61:28:7d:b6:a8:78:e6:4a:b8:99:65: 28:6f:be:4a:24:57:22:c4:fa:99:b3:95:29:5f:eb:d1:a6:13: 91:70:16:2c:2d:f5:66:5b:a6:4d:cf:3e:19:fd:02:c9:4f:80: 30:f4:01:a7:24:5b:a0:34:14:70:37:b5:fa:86:7f:bb:3f:5e: ff:2a:3d:f4:4e:ef:22:39:7d:48:2b:95:c5:6c:82:20:99:45: 53:c6:84:fa:36:a2:09:22:36:8f:5c:e6:d1:b3:d6:b1:80:1a: 80:63:ed:02 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QjY2NjExMC8GA1UEBRMoMzUwODE5N0ExMEZFQTQ2QTcxODQ2MzMxNEZFQkE5Mzk0 NEI2MjQ4QjAeFw0yNjA0MDUwNzQyMjFaFw0yNjA0MTIwNzQyMjFaMBgxFjAUBgNV BAMTDTY5ZDIxMjVkLWFhODQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCHsmWr2L/Zd3KdAXAgVVBHSZCRckp2BPM5TiBIgR7d5fN9LCqeJ9ZVO5rK49d b1vUgNZo2ZgiGVjEbc0nLZjIG4eh2kC/ioSjml8XVt0t2Oul0RTh9QObU6TXECKs uMZUX2L1lGzHIpbLweL5SHTCKFDzo27KjySpHg/AzTfy88ga3CYzABiruxNcM5/N oxWB/YQI6ExlAnEc8UG9qx9xQdXT4URLlFhaKvAcqQH2eplGjMA1iKsg2PIQytqL +rdDspsX01TRmSmvoJqPqsFF1DbpSdC1XBhpqEy3OsaiZgBNbSrzkAxU3SXxAiLF Ag2BQiSxOBmNNN6PJcJxPZnzAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUsBMguOGs CU1euOy/84DoLZTqZiIwHwYDVR0jBBgwFoAUNQgZehD+pGpxhGMxT+upOUS2JIsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCNjY2Lzk5MzYxQTdDQzky OTExRjBCMjM4RjI4MUM0RjlBRTAyL05RZ1plaEQtcEdweGhHTXhULXVwT1VTMkpJ cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTlFnWmVoRC1wR3B4aEdNeFQtdXBPVVMySklzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJC NjY2Lzk5MzYxQTdDQzkyOTExRjBCMjM4RjI4MUM0RjlBRTAyL05RZ1plaEQtcEdw eGhHTXhULXVwT1VTMkpJcy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAIoQ75qSfe7pD/CsMRrxbYACV8yPW03FjZwtxa2WYfdU2z4Hble3OhOcDygmo1 9KaxPR5iRB0wxUBKV1nlyWiWPM6Pac9dR5+U5pSXdIuyM+RQRtplZfGeUC6KHzOV WytwPi/JXhyGfslIYpn9wo0powrRUy87hrBrXl7rP9WFZ6++QOQ39POA2jJjSipi +QgFMKhHEpyuYSh9tqh45kq4mWUob75KJFcixPqZs5UpX+vRphORcBYsLfVmW6ZN zz4Z/QLJT4Aw9AGnJFugNBRwN7X6hn+7P17/Kj30Tu8iOX1IK5XFbIIgmUVTxoT6 NqIJIjaPXObRs9axgBqAY+0C -----END CERTIFICATE-----Generated at Mon Apr 6 08:31:44 2026 by rpki-client