$ rpki-client -vvf rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft File: NHTJTDbo-aDToNIuHdoQjNNAqyg.mft (raw, json) Hash identifier: fOPgdWOn5OPCztoaG+TFEikJjX3euQ+T3XwP6qNVmZg= Subject key identifier: E5:39:9B:7F:39:2F:0C:6F:C5:A8:41:D2:24:5C:79:55:48:8A:2C:4E Authority key identifier: 34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 Certificate issuer: /CN=A9131690/serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Certificate serial: 105D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft Manifest number: 1028 Signing time: Sun 26 Apr 2026 17:21:21 +0000 Manifest this update: Sun 26 Apr 2026 17:21:20 +0000 Manifest next update: Sun 03 May 2026 17:21:20 +0000 Files and hashes: 1: NHTJTDbo-aDToNIuHdoQjNNAqyg.crl (hash: LL7TXK5o4OqPOunfmaFp00f+8s40HF6ZSPk6zrJ/2Sg=) 2: 08CD1510027011EB98FEC44BC4F9AE02.roa (hash: sNgY8hpVgWEWzONQb/rYzqSGD7aaEvSPCGOCTH5nhGE=) 3: 5E0253B6232111EB9896B783C4F9AE02.roa (hash: cy1EAKkmCpvxtLdJ2bDIgftrpdXjCjIIbkKyTgzxurw=) 4: A7BDC50C7A4811EBA907BB5BC4F9AE02.roa (hash: jnSlzy/THB1Xqx0QebCD+P4sZeJxQXMsWdBpFyTBfb4=) 5: B3682FEC21D711EB9CFAC46EC4F9AE02.roa (hash: FMxmnJD1FXOVdBqe3Z4UNVeqTWvxDWlAMcRI0DJm40o=) 6: B47C278021D711EB9CFAC46EC4F9AE02.roa (hash: 7cB2NpUwnHlJv3jC+1znrL/Qm2Z6pF6ooyV5GUqjg6w=) 7: B2B24A4221D711EB9CFAC46EC4F9AE02.roa (hash: 8Q2Umx0r6YNO2pXY3Lo7bQVhFA22tejYLTjwhgeqaHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 17:21:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4189 (0x105d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131690, serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Validity Not Before: Apr 26 17:21:20 2026 GMT Not After : May 3 17:21:20 2026 GMT Subject: CN=69ee4991-7dde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:3c:c8:74:d7:4e:f2:68:d7:ba:fb:c3:1e:14: 36:61:47:cc:6b:e1:b2:ed:49:ab:2e:08:c4:bf:a6: 96:d6:b7:d1:93:bb:04:af:62:07:76:53:6a:f8:85: 76:03:c2:07:de:7a:ef:b0:6d:01:7f:76:e5:d8:bb: 16:1f:83:fa:c5:2c:b3:4b:65:41:15:9a:99:e5:ab: e0:91:0a:48:77:7e:26:d6:a6:17:c9:b2:59:f2:6e: 05:78:9f:33:d6:9c:41:73:a7:22:aa:86:4d:b8:ea: a8:2e:0b:81:45:aa:ad:e2:ac:0e:46:58:c4:96:31: f5:be:88:6c:ce:86:92:ec:13:ba:35:0a:d6:6a:46: dc:d6:32:46:2d:36:f1:a4:44:2d:7c:56:af:10:56: b0:67:d4:95:92:9d:42:41:33:ac:83:a2:87:9a:5b: e1:a6:b2:eb:62:c1:04:20:c5:41:ae:f4:82:72:94: 3b:0a:ec:71:bb:bd:28:e5:17:52:05:38:a2:1f:07: fb:7b:a7:b9:7d:ed:cf:4a:b0:cc:06:b1:e5:3a:67: 1e:c6:92:c8:27:e1:f4:63:63:92:c6:b1:4e:31:19: 02:ad:0e:4d:5f:1e:c8:93:82:f2:b5:02:11:65:f6: 34:fe:20:64:bd:5d:4d:5c:ce:b2:2e:49:b7:d8:3d: 75:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:39:9B:7F:39:2F:0C:6F:C5:A8:41:D2:24:5C:79:55:48:8A:2C:4E X509v3 Authority Key Identifier: keyid:34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:cf:6a:12:3a:99:03:7f:5d:9e:c7:48:1b:ca:a9:3e:dd:c0: 33:39:0c:cd:59:3d:07:76:c6:56:75:55:8f:44:bf:75:5a:f1: 82:ec:f0:07:b2:d5:25:01:5c:e2:3a:c5:70:6d:84:16:b1:77: 88:57:99:57:64:6e:2f:12:29:64:0c:7b:82:1f:aa:fc:9c:99: 8e:d8:87:84:3a:c7:75:1b:7c:92:1c:16:9f:c2:2a:c9:a0:eb: f5:86:54:89:e0:b5:9a:21:17:5f:1d:d9:d4:9b:60:1b:f9:c2: 84:0f:ef:41:9d:49:0d:48:87:fa:fc:95:da:b0:93:18:d2:8f: c7:f3:65:43:90:54:65:11:66:01:8c:55:3f:84:e6:45:62:8f: 9c:87:2b:8c:96:92:49:1d:77:ff:e7:8d:2f:b3:6e:ac:ab:6c: c1:15:42:fe:29:1c:1b:61:44:9e:40:5b:aa:bf:34:fd:9c:3c: 92:12:d3:36:17:6e:d2:17:80:85:5f:5f:6b:ee:32:1c:4b:2d: 05:65:05:de:eb:c7:56:24:98:6c:81:b2:e7:b0:1a:b3:34:c4: b1:03:d0:8c:12:cc:2d:16:e1:11:df:f6:ad:e1:82:4a:89:4d: cd:38:d7:63:b2:35:41:8d:89:63:b6:1a:c0:e2:72:4b:61:ea: 7c:a1:bb:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2OTAxMTAvBgNVBAUTKDM0NzRDOTRDMzZFOEY5QTBEM0EwRDIyRTFEREExMDhD RDM0MEFCMjgwHhcNMjYwNDI2MTcyMTIwWhcNMjYwNTAzMTcyMTIwWjAYMRYwFAYD VQQDEw02OWVlNDk5MS03ZGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0zzIdNdO8mjXuvvDHhQ2YUfMa+Gy7UmrLgjEv6aW1rfRk7sEr2IHdlNq+IV2 A8IH3nrvsG0Bf3bl2LsWH4P6xSyzS2VBFZqZ5avgkQpId34m1qYXybJZ8m4FeJ8z 1pxBc6ciqoZNuOqoLguBRaqt4qwORljEljH1vohszoaS7BO6NQrWakbc1jJGLTbx pEQtfFavEFawZ9SVkp1CQTOsg6KHmlvhprLrYsEEIMVBrvSCcpQ7Cuxxu70o5RdS BTiiHwf7e6e5fe3PSrDMBrHlOmcexpLIJ+H0Y2OSxrFOMRkCrQ5NXx7Ik4LytQIR ZfY0/iBkvV1NXM6yLkm32D11qwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOU5m385 LwxvxahB0iRceVVIiixOMB8GA1UdIwQYMBaAFDR0yUw26Pmg06DSLh3aEIzTQKso MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTY5MC8xNUI0MUI4ODYz RjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1hRFRvTkl1SGRvUWpOTkFx eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05IVEpURGJvLWFEVG9OSXVIZG9Rak5OQXF5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTY5MC8xNUI0MUI4ODYzRjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1h RFRvTkl1SGRvUWpOTkFxeWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIs9qEjqZA39dnsdIG8qpPt3AMzkMzVk9B3bGVnVVj0S/dVrxguzwB7LVJQFc 4jrFcG2EFrF3iFeZV2RuLxIpZAx7gh+q/JyZjtiHhDrHdRt8khwWn8IqyaDr9YZU ieC1miEXXx3Z1JtgG/nChA/vQZ1JDUiH+vyV2rCTGNKPx/NlQ5BUZRFmAYxVP4Tm RWKPnIcrjJaSSR13/+eNL7NurKtswRVC/ikcG2FEnkBbqr80/Zw8khLTNhdu0heA hV9fa+4yHEstBWUF3uvHViSYbIGy57AaszTEsQPQjBLMLRbhEd/2reGCSolNzTjX Y7I1QY2JY7YawOJyS2HqfKG7Qw== -----END CERTIFICATE-----Generated at Mon Apr 27 09:17:03 2026 by rpki-client