$ rpki-client -vvf rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft File: NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft (raw, json) Hash identifier: +hGIqX1jyoHguYQv3FqKU3AMshKNqAU8bwEe+Dk+siM= Subject key identifier: 52:C8:FF:B2:19:D0:44:9B:49:19:74:50:D1:FA:65:48:DA:06:4F:05 Authority key identifier: 34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 Certificate issuer: /CN=A9148DB2/serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Certificate serial: 035C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft Manifest number: 0354 Signing time: Sun 05 Apr 2026 00:43:24 +0000 Manifest this update: Sun 05 Apr 2026 00:43:23 +0000 Manifest next update: Sun 12 Apr 2026 00:43:23 +0000 Files and hashes: 1: NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl (hash: HGk2v21WReU2zbv01SAimYQt3ye2SXWImEre4UpQ2dw=) 2: F343C4ECF93911ECBD1E663DC4F9AE02.roa (hash: QwQkgtoePZKxFtkm4cXFgAdorKM4wsMJHhlleIVTFws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:43:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 860 (0x35c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148DB2, serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Validity Not Before: Apr 5 00:43:23 2026 GMT Not After : Apr 12 00:43:23 2026 GMT Subject: CN=69d1b02c-3678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:15:63:48:69:87:76:64:e4:1c:4a:e0:f9:44: 90:85:c3:aa:c4:c7:68:ad:b5:41:64:1b:40:1d:ef: 37:94:73:cc:6f:7b:15:6f:15:c7:98:b9:36:c3:5b: e6:8f:c7:f9:fe:7f:fc:df:45:e4:42:59:e6:22:a1: 39:f2:df:09:27:86:96:1f:8c:61:18:42:cf:4d:b3: a2:26:d7:53:48:4e:c1:c8:ec:82:4f:33:78:a7:07: 2e:c6:32:c3:f6:c4:69:1f:b9:0c:4b:5b:f7:01:6d: 1a:3c:a2:ef:0e:a1:cc:fa:d0:5b:0a:26:4f:25:5f: 28:44:01:4d:37:d3:77:f9:b7:54:1a:f9:ed:83:27: d8:1b:75:29:c2:cb:49:6a:c0:26:d4:3e:07:91:de: 5c:8e:ff:e9:e5:ef:87:a8:5e:47:fe:b8:a1:11:e3: 9f:48:93:ec:2a:2c:af:d2:f0:39:00:30:84:3a:b8: d9:5a:fe:97:98:7f:02:4f:60:c7:98:33:46:13:51: d2:88:f7:b4:34:78:d4:c3:48:5e:78:c5:7e:cf:34: 8e:17:15:2b:fa:f7:d1:56:ba:e7:1d:7f:e4:b6:80: 78:f6:3c:d1:3e:aa:3a:dd:70:1f:d2:a2:db:73:fb: dd:f6:19:ab:d1:a5:1a:64:42:d1:72:9d:44:a9:a5: 3f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:C8:FF:B2:19:D0:44:9B:49:19:74:50:D1:FA:65:48:DA:06:4F:05 X509v3 Authority Key Identifier: keyid:34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:b8:12:06:d6:17:d3:c4:25:0d:0d:68:2f:71:23:a8:d4:d9: 62:70:ac:6a:cc:b8:8a:88:f9:28:32:58:db:e5:9c:48:73:77: 38:b9:9d:04:1e:16:fa:6e:93:05:42:bb:b8:fe:82:cf:51:cd: e4:3b:c5:82:6c:0a:ca:d8:97:82:2f:4d:a7:a5:a6:97:3f:05: 3c:c3:a7:94:4c:25:c1:a1:b6:7b:4d:e7:15:18:a8:ea:be:2c: 90:14:68:28:c0:e8:c8:92:12:3d:30:5e:20:eb:61:ff:45:c7: 6e:a9:a4:17:d7:83:9b:6f:11:b7:3f:c2:09:52:9c:30:49:9c: e9:fd:09:46:67:2e:77:bd:7c:f7:2c:c1:c0:94:82:bb:04:4e: 21:cb:7d:3c:2c:1a:01:c0:9c:47:2a:9a:30:ed:38:96:0f:59: b2:22:ae:f7:16:fe:5f:3f:e0:9e:bd:34:be:f5:61:4b:a0:51: 6f:fa:d0:92:27:35:73:2a:19:44:43:29:84:ce:a8:72:0c:f3: 97:dc:8f:a6:82:72:72:15:4a:87:09:54:b0:40:30:b9:d7:64: d9:f4:23:69:30:ac:f5:1f:97:ee:83:81:28:9a:dd:cd:d0:04: b5:88:36:23:8b:f8:5e:88:70:d2:7d:b4:ed:05:5a:1b:5f:c8: ae:c1:f9:d3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhEQjIxMTAvBgNVBAUTKDM0QUJFRjg0NjQ3NEJCREEwQzU1NjQ2NUREN0U5RUMw RkE2NzRCQjUwHhcNMjYwNDA1MDA0MzIzWhcNMjYwNDEyMDA0MzIzWjAYMRYwFAYD VQQDEw02OWQxYjAyYy0zNjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRVjSGmHdmTkHErg+USQhcOqxMdorbVBZBtAHe83lHPMb3sVbxXHmLk2w1vm j8f5/n/830XkQlnmIqE58t8JJ4aWH4xhGELPTbOiJtdTSE7ByOyCTzN4pwcuxjLD 9sRpH7kMS1v3AW0aPKLvDqHM+tBbCiZPJV8oRAFNN9N3+bdUGvntgyfYG3UpwstJ asAm1D4Hkd5cjv/p5e+HqF5H/rihEeOfSJPsKiyv0vA5ADCEOrjZWv6XmH8CT2DH mDNGE1HSiPe0NHjUw0heeMV+zzSOFxUr+vfRVrrnHX/ktoB49jzRPqo63XAf0qLb c/vd9hmr0aUaZELRcp1EqaU/gQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFLI/7IZ 0ESbSRl0UNH6ZUjaBk8FMB8GA1UdIwQYMBaAFDSr74RkdLvaDFVkZd1+nsD6Z0u1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OERCMi8wNDdEQzM4OEY5 MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5b01WV1JsM1g2ZXdQcG5T N1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05LdnZoR1IwdTlvTVZXUmwzWDZld1BwblM3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OERCMi8wNDdEQzM4OEY5MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5 b01WV1JsM1g2ZXdQcG5TN1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVrgSBtYX08QlDQ1oL3EjqNTZYnCsasy4ioj5KDJY2+WcSHN3OLmdBB4W+m6T BUK7uP6Cz1HN5DvFgmwKytiXgi9Np6Wmlz8FPMOnlEwlwaG2e03nFRio6r4skBRo KMDoyJISPTBeIOth/0XHbqmkF9eDm28Rtz/CCVKcMEmc6f0JRmcud7189yzBwJSC uwROIct9PCwaAcCcRyqaMO04lg9ZsiKu9xb+Xz/gnr00vvVhS6BRb/rQkic1cyoZ REMphM6ocgzzl9yPpoJychVKhwlUsEAwuddk2fQjaTCs9R+X7oOBKJrdzdAEtYg2 I4v4Xohw0n207QVaG1/IrsH50w== -----END CERTIFICATE-----Generated at Mon Apr 6 08:30:33 2026 by rpki-client