$ rpki-client -vvf rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft File: NHTJTDbo-aDToNIuHdoQjNNAqyg.mft (raw, json) Hash identifier: nFSnvUi+T/HxfcX8S1cDX6MVk23azY1d3f8HfawSZdw= Subject key identifier: 85:1A:1E:22:5B:2C:BC:D1:0D:60:DD:ED:76:C4:6A:E2:2C:A4:99:B2 Authority key identifier: 34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 Certificate issuer: /CN=A9131690/serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Certificate serial: 1046 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft Manifest number: 1011 Signing time: Thu 12 Mar 2026 17:17:37 +0000 Manifest this update: Thu 12 Mar 2026 17:17:37 +0000 Manifest next update: Thu 19 Mar 2026 17:17:37 +0000 Files and hashes: 1: NHTJTDbo-aDToNIuHdoQjNNAqyg.crl (hash: oXY3Z47rIe1jpXUSTjNR8U+4zoaXOALwCVb0pFPWVRY=) 2: 5E0253B6232111EB9896B783C4F9AE02.roa (hash: cy1EAKkmCpvxtLdJ2bDIgftrpdXjCjIIbkKyTgzxurw=) 3: B47C278021D711EB9CFAC46EC4F9AE02.roa (hash: 7cB2NpUwnHlJv3jC+1znrL/Qm2Z6pF6ooyV5GUqjg6w=) 4: A7BDC50C7A4811EBA907BB5BC4F9AE02.roa (hash: jnSlzy/THB1Xqx0QebCD+P4sZeJxQXMsWdBpFyTBfb4=) 5: B2B24A4221D711EB9CFAC46EC4F9AE02.roa (hash: 8Q2Umx0r6YNO2pXY3Lo7bQVhFA22tejYLTjwhgeqaHk=) 6: 08CD1510027011EB98FEC44BC4F9AE02.roa (hash: sNgY8hpVgWEWzONQb/rYzqSGD7aaEvSPCGOCTH5nhGE=) 7: B3682FEC21D711EB9CFAC46EC4F9AE02.roa (hash: FMxmnJD1FXOVdBqe3Z4UNVeqTWvxDWlAMcRI0DJm40o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 17:17:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4166 (0x1046) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131690, serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Validity Not Before: Mar 12 17:17:37 2026 GMT Not After : Mar 19 17:17:37 2026 GMT Subject: CN=69b2f531-3fa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:73:3a:78:d9:01:86:ea:5a:ab:f7:dd:0c:d2: 3e:f5:8d:e1:b4:f8:69:fe:87:75:ed:b9:8d:15:21: 80:b5:1f:f1:04:02:a4:37:60:bf:3d:1f:db:c6:1b: b5:ee:48:48:a3:8c:82:1a:13:c2:ed:1f:e0:6a:26: f8:64:9b:23:84:88:48:99:44:0c:eb:de:ca:a1:62: 0a:f2:7a:70:ee:a7:ff:f7:17:87:47:61:58:59:e3: 79:9e:65:f6:50:c2:dd:6e:6d:ce:b4:8d:58:4b:7b: 40:84:39:ad:ec:4e:8d:91:c7:de:8d:11:31:63:47: c7:d5:14:a2:a4:c5:1b:fd:c5:1d:01:b7:42:de:a4: e3:f2:ae:53:22:58:66:ee:c5:d5:56:d2:19:34:66: 6f:87:9b:e0:df:2b:fa:ca:d5:96:83:fa:23:9f:32: 96:48:6d:cd:11:72:0e:2e:70:0e:4d:f4:af:c6:a4: cc:f0:e2:a6:da:77:71:02:39:a7:c3:9d:ec:52:b0: 38:72:2a:27:ac:49:81:d8:53:2b:80:20:85:46:95: 2c:94:fb:b2:5c:1a:eb:1e:f5:ef:43:e0:dd:9c:2c: 70:f9:96:71:94:47:0d:78:b6:05:c3:71:0a:e1:12: b6:eb:dc:73:88:d8:53:bf:43:3a:d6:07:e0:93:5d: dd:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:1A:1E:22:5B:2C:BC:D1:0D:60:DD:ED:76:C4:6A:E2:2C:A4:99:B2 X509v3 Authority Key Identifier: keyid:34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:0e:fb:65:1f:2e:f2:ab:5c:c4:bf:fe:e2:9c:d0:61:7d:89: 70:05:c9:17:cb:36:24:47:f6:7b:50:66:68:30:4c:ba:49:76: 06:10:05:ab:fa:b2:99:c6:7f:6f:48:c1:e7:e2:94:d3:e2:19: d8:34:6a:04:09:1b:bd:bd:03:ee:b4:1a:dd:f7:a1:72:36:d6: 5f:77:77:3f:38:b9:99:24:1a:69:4a:a3:20:a3:29:37:0e:f9: 9d:9d:c2:73:ac:28:f8:dc:9c:a1:44:43:7d:1b:a6:3d:83:cf: 37:b5:c9:bb:96:83:db:20:5b:af:b8:0c:ad:57:8b:23:c4:15: c0:6c:ab:fc:5f:46:9d:86:5e:30:ca:c7:d2:2c:87:79:a4:25: e5:d2:d5:d5:0f:e5:91:3a:46:b3:1a:06:ec:8a:c6:93:d0:fb: b6:e2:fd:f2:c6:34:41:1c:ca:b6:32:99:35:dd:89:73:7a:dc: e7:68:12:12:fe:b2:e0:81:0a:e2:12:fb:22:28:70:ee:53:e6: fd:e7:91:86:9f:33:35:13:cc:6b:4d:29:37:7c:1d:37:62:68: 90:59:11:bb:83:a1:bd:7f:22:c9:e0:a9:71:df:02:c7:59:5f: 3a:07:76:40:d3:ab:86:f9:11:55:28:be:b4:5f:5b:dc:99:50: ec:b8:cb:c4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2OTAxMTAvBgNVBAUTKDM0NzRDOTRDMzZFOEY5QTBEM0EwRDIyRTFEREExMDhD RDM0MEFCMjgwHhcNMjYwMzEyMTcxNzM3WhcNMjYwMzE5MTcxNzM3WjAYMRYwFAYD VQQDEw02OWIyZjUzMS0zZmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoHM6eNkBhupaq/fdDNI+9Y3htPhp/od17bmNFSGAtR/xBAKkN2C/PR/bxhu1 7khIo4yCGhPC7R/gaib4ZJsjhIhImUQM697KoWIK8npw7qf/9xeHR2FYWeN5nmX2 UMLdbm3OtI1YS3tAhDmt7E6NkcfejRExY0fH1RSipMUb/cUdAbdC3qTj8q5TIlhm 7sXVVtIZNGZvh5vg3yv6ytWWg/ojnzKWSG3NEXIOLnAOTfSvxqTM8OKm2ndxAjmn w53sUrA4cionrEmB2FMrgCCFRpUslPuyXBrrHvXvQ+DdnCxw+ZZxlEcNeLYFw3EK 4RK269xziNhTv0M61gfgk13dKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIUaHiJb LLzRDWDd7XbEauIspJmyMB8GA1UdIwQYMBaAFDR0yUw26Pmg06DSLh3aEIzTQKso MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTY5MC8xNUI0MUI4ODYz RjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1hRFRvTkl1SGRvUWpOTkFx eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05IVEpURGJvLWFEVG9OSXVIZG9Rak5OQXF5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTY5MC8xNUI0MUI4ODYzRjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1h RFRvTkl1SGRvUWpOTkFxeWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnA77ZR8u8qtcxL/+4pzQYX2JcAXJF8s2JEf2e1BmaDBMukl2BhAFq/qymcZ/ b0jB5+KU0+IZ2DRqBAkbvb0D7rQa3fehcjbWX3d3Pzi5mSQaaUqjIKMpNw75nZ3C c6wo+NycoURDfRumPYPPN7XJu5aD2yBbr7gMrVeLI8QVwGyr/F9GnYZeMMrH0iyH eaQl5dLV1Q/lkTpGsxoG7IrGk9D7tuL98sY0QRzKtjKZNd2Jc3rc52gSEv6y4IEK 4hL7Iihw7lPm/eeRhp8zNRPMa00pN3wdN2JokFkRu4OhvX8iyeCpcd8Cx1lfOgd2 QNOrhvkRVSi+tF9b3JlQ7LjLxA== -----END CERTIFICATE-----Generated at Thu Mar 12 21:29:23 2026 by rpki-client