$ rpki-client -vvf rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft File: NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft (raw, json) Hash identifier: c0mZRkB7ihEFY3wwF7KcGJtcItbqDFzGOJ/f5TS+QPw= Subject key identifier: 76:9A:83:7B:DA:2B:7B:9A:D4:F4:EE:9C:01:2C:4A:CD:00:7A:89:35 Authority key identifier: 34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 Certificate issuer: /CN=A9148DB2/serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Certificate serial: 0373 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft Manifest number: 036B Signing time: Thu 21 May 2026 00:58:32 +0000 Manifest this update: Thu 21 May 2026 00:58:31 +0000 Manifest next update: Thu 28 May 2026 00:58:31 +0000 Files and hashes: 1: NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl (hash: +bLquVoo5MsoCBp9/KZ98h3fIq3IDZte+uWPFOhSyCE=) 2: F343C4ECF93911ECBD1E663DC4F9AE02.roa (hash: QwQkgtoePZKxFtkm4cXFgAdorKM4wsMJHhlleIVTFws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 00:58:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 883 (0x373) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148DB2, serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Validity Not Before: May 21 00:58:31 2026 GMT Not After : May 28 00:58:31 2026 GMT Subject: CN=6a0e58b8-ecd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e8:a9:e6:97:83:96:26:30:72:67:79:d7:12: c1:42:5a:b7:bf:15:a2:ee:e2:22:7b:5a:5a:a6:27: 2f:39:85:65:f4:19:56:ba:86:6e:f7:12:db:78:6c: 7c:5a:df:60:ae:98:63:b2:d0:27:dd:0d:fb:b2:c8: ba:d7:13:16:59:cb:98:13:17:e5:d2:d9:f3:51:55: a5:b4:65:7e:1e:02:8c:4c:1e:d3:3a:7c:a2:90:a8: c2:10:b6:92:91:d1:88:a7:41:8a:a0:56:f1:af:a5: 8e:a2:ef:9b:94:3d:e5:0f:50:04:55:a2:af:c8:65: 8b:d5:b7:dd:24:db:7a:47:e0:48:b0:1e:b7:de:23: ea:f6:0e:67:2d:96:13:36:07:c8:fe:ff:44:46:a6: 98:74:77:09:90:e9:21:ef:28:de:fb:6c:55:4a:0a: da:65:e1:fe:ea:dc:4c:a6:5a:9a:dd:24:a0:f6:96: f5:e0:05:f5:52:e3:51:82:9a:90:23:5d:c1:af:a5: 30:fd:21:67:5f:84:5a:13:0d:c9:1d:f0:df:bb:cf: 65:3a:6f:5e:4b:9e:2a:18:cb:40:e1:25:8d:7f:85: c7:54:7b:b3:64:6b:8d:83:9b:91:a5:e0:37:c3:dc: 47:d9:3f:5f:5f:8b:0d:c8:e2:09:ea:3d:c5:a3:07: 95:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:9A:83:7B:DA:2B:7B:9A:D4:F4:EE:9C:01:2C:4A:CD:00:7A:89:35 X509v3 Authority Key Identifier: keyid:34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:6c:9a:92:c7:d7:96:e6:b0:66:36:96:d0:6c:7f:6d:6e:41: b6:f1:c5:6a:58:61:65:a0:61:b0:d1:bf:15:22:26:69:53:64: 15:79:3a:5b:0f:fb:b1:89:a6:5a:cb:10:5d:aa:44:b5:e9:f6: d2:38:76:f8:3c:f1:d3:d0:34:e7:88:60:22:3c:22:d9:2e:ab: 22:af:0a:15:1c:96:0f:02:e6:90:fe:44:f4:67:dc:76:e2:92: 2e:86:25:04:12:81:8b:61:cf:42:d6:47:81:ad:41:b8:97:18: 97:01:39:32:1a:a4:ae:6d:4f:2c:d2:a6:a7:57:11:40:52:34: 42:60:19:ea:96:dc:87:6a:ab:b2:dd:3c:0d:3c:e6:51:bb:b8: 76:3a:7b:36:13:1a:df:85:34:6d:5c:59:4f:82:25:f0:5b:7c: a1:af:aa:1e:19:56:a1:ec:16:0a:81:f5:2a:0e:ba:e8:44:c7: 43:1d:21:bb:bf:a0:72:35:a9:9d:45:16:12:68:82:fe:2e:59: b5:00:3b:74:ce:be:d5:b3:f9:65:67:82:0a:6c:e6:dd:b7:b7: 47:91:d5:2b:6e:fe:00:b3:04:7c:97:d9:80:78:1e:25:b4:95: 68:d9:8a:eb:9f:f1:f8:59:ce:a9:f4:16:e4:ce:4a:41:78:26: d6:f0:92:db -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhEQjIxMTAvBgNVBAUTKDM0QUJFRjg0NjQ3NEJCREEwQzU1NjQ2NUREN0U5RUMw RkE2NzRCQjUwHhcNMjYwNTIxMDA1ODMxWhcNMjYwNTI4MDA1ODMxWjAYMRYwFAYD VQQDEw02YTBlNThiOC1lY2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOip5peDliYwcmd51xLBQlq3vxWi7uIie1papicvOYVl9BlWuoZu9xLbeGx8 Wt9grphjstAn3Q37ssi61xMWWcuYExfl0tnzUVWltGV+HgKMTB7TOnyikKjCELaS kdGIp0GKoFbxr6WOou+blD3lD1AEVaKvyGWL1bfdJNt6R+BIsB633iPq9g5nLZYT NgfI/v9ERqaYdHcJkOkh7yje+2xVSgraZeH+6txMplqa3SSg9pb14AX1UuNRgpqQ I13Br6Uw/SFnX4RaEw3JHfDfu89lOm9eS54qGMtA4SWNf4XHVHuzZGuNg5uRpeA3 w9xH2T9fX4sNyOIJ6j3FoweVawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHaag3va K3ua1PTunAEsSs0Aeok1MB8GA1UdIwQYMBaAFDSr74RkdLvaDFVkZd1+nsD6Z0u1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OERCMi8wNDdEQzM4OEY5 MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5b01WV1JsM1g2ZXdQcG5T N1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05LdnZoR1IwdTlvTVZXUmwzWDZld1BwblM3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OERCMi8wNDdEQzM4OEY5MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5 b01WV1JsM1g2ZXdQcG5TN1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATmyaksfXluawZjaW0Gx/bW5BtvHFalhhZaBhsNG/FSImaVNkFXk6Ww/7sYmm WssQXapEten20jh2+Dzx09A054hgIjwi2S6rIq8KFRyWDwLmkP5E9GfcduKSLoYl BBKBi2HPQtZHga1BuJcYlwE5Mhqkrm1PLNKmp1cRQFI0QmAZ6pbch2qrst08DTzm Ubu4djp7NhMa34U0bVxZT4Il8Ft8oa+qHhlWoewWCoH1Kg666ETHQx0hu7+gcjWp nUUWEmiC/i5ZtQA7dM6+1bP5ZWeCCmzm3be3R5HVK27+ALMEfJfZgHgeJbSVaNmK 65/x+FnOqfQW5M5KQXgm1vCS2w== -----END CERTIFICATE-----Generated at Thu May 21 09:37:46 2026 by rpki-client