$ rpki-client -vvf rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft File: nr2hI9nugwlDBaEYDCoIBX_lQGo.mft (raw, json) Hash identifier: C/qKYY2+H2NWZb1Yl3fPN7i1ofPUgHIOwNRx9snd8gg= Subject key identifier: C9:7F:A2:D9:24:6F:D0:AE:75:41:6E:C9:32:D8:8A:77:C6:45:EF:4F Authority key identifier: 9E:BD:A1:23:D9:EE:83:09:43:05:A1:18:0C:2A:08:05:7F:E5:40:6A Certificate issuer: /CN=A91425C3/serialNumber=9EBDA123D9EE83094305A1180C2A08057FE5406A Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft Manifest number: 7B Signing time: Tue 03 Mar 2026 07:27:24 +0000 Manifest this update: Tue 03 Mar 2026 07:27:23 +0000 Manifest next update: Tue 10 Mar 2026 07:27:23 +0000 Files and hashes: 1: nr2hI9nugwlDBaEYDCoIBX_lQGo.crl (hash: T1A7m2KQRRVxc34vQIX2HxSaCQTPhNpn2JVfQxjoGt0=) 2: 8C538C5AEFCF11F0889DE39E746F56BC.roa (hash: eiSYQZ4JbJxsufS9RcJajhzup1MJX6NMX/+qc2RSIq8=) 3: 224FBC52EFCF11F0A018F59D746F56BC.roa (hash: l6zP7eAxKoViI6F3M9uDYfZY33CWARrIielkD1703l4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.crl rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 07:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91425C3, serialNumber=9EBDA123D9EE83094305A1180C2A08057FE5406A Validity Not Before: Mar 3 07:27:23 2026 GMT Not After : Mar 10 07:27:23 2026 GMT Subject: CN=69a68d5b-ae4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:73:90:aa:ae:df:96:26:4c:1e:ee:b7:f5:0d: 6e:15:cb:48:24:84:ce:48:6b:bd:e2:5b:1c:12:fc: 30:ce:37:a2:3b:51:4d:9f:f6:4e:e7:af:51:95:04: c2:82:cb:fc:51:05:f8:cf:5f:7b:7b:e0:08:b4:cc: 2d:1d:1f:b5:93:25:e3:76:d0:44:7a:43:80:06:7c: b2:12:eb:75:0c:43:62:3c:04:ee:7b:1b:7a:b3:6b: 82:ca:3a:51:4e:ab:60:78:cf:4a:6b:f8:66:69:1c: 42:f6:88:35:b5:8b:f9:97:0d:0e:5a:fe:c3:79:d4: 68:4b:34:f7:12:7f:81:01:88:b8:f9:63:17:a6:d4: 4f:ee:bb:95:55:ee:de:4d:14:10:5e:72:3b:38:12: ea:44:b7:63:3b:09:33:ec:b9:e9:ab:18:3d:64:b2: f7:4b:ed:93:9e:a2:f9:c4:f6:49:6b:3b:57:49:ac: 23:60:c6:9b:80:1e:ef:53:68:35:7e:97:e5:3d:50: ea:67:01:92:2d:34:cb:e5:86:0a:57:8f:b2:40:81: ec:b4:d5:27:ab:cb:4b:d3:d4:af:ad:5d:79:e4:3f: 05:88:52:91:5f:ca:f6:ae:e4:2b:2b:f1:03:1d:dd: ee:2e:ac:ad:89:e0:6c:8d:c9:67:1c:12:f2:44:97: d7:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:7F:A2:D9:24:6F:D0:AE:75:41:6E:C9:32:D8:8A:77:C6:45:EF:4F X509v3 Authority Key Identifier: keyid:9E:BD:A1:23:D9:EE:83:09:43:05:A1:18:0C:2A:08:05:7F:E5:40:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:4d:de:b1:ca:02:33:e0:2c:fa:9b:b7:f4:7d:b3:e1:30:18: 7c:20:01:09:54:d1:67:0c:62:ed:f5:cc:0d:fb:d8:3b:7d:b4: 91:ca:42:bd:04:0f:dd:c6:52:1a:18:5c:f0:1a:af:83:d1:f5: 6a:a4:f2:8d:aa:6e:c3:eb:37:08:04:30:a7:76:66:9b:f6:b9: 09:75:3f:a8:99:57:6b:d6:87:27:ba:1a:ff:c8:2b:f3:ef:32: 64:b3:f9:5b:f2:92:a1:fa:92:58:ef:31:a8:97:d5:37:3e:56: e2:d8:04:dd:a5:89:9e:e1:43:61:76:a1:4f:78:de:cb:2a:1e: 00:c0:43:9c:b0:b1:a5:fb:67:66:55:9f:b4:ed:f0:02:fc:79: ab:33:bf:6b:2e:a4:fb:bd:56:f6:e2:80:98:2a:9a:dc:86:11: 81:53:8d:de:17:84:be:af:96:0a:08:c0:b0:82:cc:cf:3f:c1: b4:99:18:72:39:ee:3a:13:30:93:ae:1b:11:56:00:55:3a:cb: 59:74:93:93:97:ae:b3:f4:1c:d3:51:ae:49:26:f0:b0:6b:e6: 99:b3:0f:0b:ab:14:3d:06:9d:0f:c8:8b:8b:81:10:de:37:7c: ee:e2:ab:dc:97:8f:a9:11:d8:cd:03:2b:e0:8f:97:48:cb:31: 41:fd:51:1f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI1QzMxMTAvBgNVBAUTKDlFQkRBMTIzRDlFRTgzMDk0MzA1QTExODBDMkEwODA1 N0ZFNTQwNkEwHhcNMjYwMzAzMDcyNzIzWhcNMjYwMzEwMDcyNzIzWjAYMRYwFAYD VQQDEw02OWE2OGQ1Yi1hZTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoXOQqq7fliZMHu639Q1uFctIJITOSGu94lscEvwwzjeiO1FNn/ZO569RlQTC gsv8UQX4z197e+AItMwtHR+1kyXjdtBEekOABnyyEut1DENiPATuext6s2uCyjpR TqtgeM9Ka/hmaRxC9og1tYv5lw0OWv7DedRoSzT3En+BAYi4+WMXptRP7ruVVe7e TRQQXnI7OBLqRLdjOwkz7Lnpqxg9ZLL3S+2TnqL5xPZJaztXSawjYMabgB7vU2g1 fpflPVDqZwGSLTTL5YYKV4+yQIHstNUnq8tL09SvrV155D8FiFKRX8r2ruQrK/ED Hd3uLqytieBsjclnHBLyRJfXGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMl/otkk b9CudUFuyTLYinfGRe9PMB8GA1UdIwQYMBaAFJ69oSPZ7oMJQwWhGAwqCAV/5UBq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjVDMy8yMzI2QzYzRTY2 MDQxMUYwQTRDNTE5MkJDNEY5QUUwMi9ucjJoSTludWd3bERCYUVZRENvSUJYX2xR R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25yMmhJOW51Z3dsREJhRVlEQ29JQlhfbFFHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjVDMy8yMzI2QzYzRTY2MDQxMUYwQTRDNTE5MkJDNEY5QUUwMi9ucjJoSTludWd3 bERCYUVZRENvSUJYX2xRR28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIU3escoCM+As+pu39H2z4TAYfCABCVTRZwxi7fXMDfvYO320kcpCvQQP3cZS Ghhc8Bqvg9H1aqTyjapuw+s3CAQwp3Zmm/a5CXU/qJlXa9aHJ7oa/8gr8+8yZLP5 W/KSofqSWO8xqJfVNz5W4tgE3aWJnuFDYXahT3jeyyoeAMBDnLCxpftnZlWftO3w Avx5qzO/ay6k+71W9uKAmCqa3IYRgVON3heEvq+WCgjAsILMzz/BtJkYcjnuOhMw k64bEVYAVTrLWXSTk5eus/Qc01GuSSbwsGvmmbMPC6sUPQadD8iLi4EQ3jd87uKr 3JePqRHYzQMr4I+XSMsxQf1RHw== -----END CERTIFICATE-----Generated at Wed Mar 4 08:37:19 2026 by rpki-client