$ rpki-client -vvf rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft File: NtqOcqrHflUzc5DvTGHJVAtFldc.mft (raw, json) Hash identifier: RG3+KNmTx9047QH9YjZTGHXl+tXgu79OVRTL1alElbE= Subject key identifier: 99:8B:78:69:17:E2:55:42:47:F3:AE:10:E1:CC:EA:2B:12:B4:19:B3 Authority key identifier: 36:DA:8E:72:AA:C7:7E:55:33:73:90:EF:4C:61:C9:54:0B:45:95:D7 Certificate issuer: /CN=A91577A2/serialNumber=36DA8E72AAC77E55337390EF4C61C9540B4595D7 Certificate serial: 0AB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft Manifest number: 0AA0 Signing time: Sat 04 Apr 2026 19:22:04 +0000 Manifest this update: Sat 04 Apr 2026 19:22:04 +0000 Manifest next update: Sat 11 Apr 2026 19:22:04 +0000 Files and hashes: 1: NtqOcqrHflUzc5DvTGHJVAtFldc.crl (hash: c3o3GVbYwYE3vtYLtain03MjhMTqs4A89Or17xTMSYA=) 2: 6B5765BC499211ED879F2D11C4F9AE02.roa (hash: Gij6YaDS1wfHNVRKMaJ5A1SN4efMb1QxYQGgmn19MtM=) 3: 6A23E166499211ED879F2D11C4F9AE02.roa (hash: csZJdZSF6nTnFQn9EqcR/ZbPKFiCdQpZdY1Ll4yoD/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.crl rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:22:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2744 (0xab8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91577A2, serialNumber=36DA8E72AAC77E55337390EF4C61C9540B4595D7 Validity Not Before: Apr 4 19:22:04 2026 GMT Not After : Apr 11 19:22:04 2026 GMT Subject: CN=69d164dc-89be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:57:88:66:80:3d:3d:a7:41:3d:27:ba:c0:52: 8d:03:a1:2f:94:09:29:ff:23:18:51:9f:17:02:91: 14:21:97:ab:00:da:f7:36:0b:fc:e1:9e:79:5e:54: ec:46:85:bf:7f:31:d1:6a:60:0c:23:31:a7:66:64: ad:88:8f:36:90:b0:c3:17:c7:67:d2:59:51:63:28: 1a:76:e7:41:e1:d9:9c:e3:cc:fa:ba:9e:03:2b:2c: 05:d6:ca:98:a3:42:f7:ae:b4:08:08:e1:56:2b:fe: c1:0e:d7:4d:63:1b:a4:8e:b6:4e:34:04:36:ee:2d: b2:6d:9d:3a:f5:df:68:91:82:49:27:0c:2b:21:53: 79:e8:09:26:11:4a:9b:6a:44:92:1c:93:52:45:a7: c4:df:76:bc:2d:aa:77:10:52:29:d5:dc:0f:99:77: 95:5c:65:3d:ac:a4:1b:20:87:ca:0d:ea:7e:61:37: a4:99:3b:f1:e7:c6:3b:f6:8a:c6:2f:c9:58:5e:1e: e7:8d:05:14:78:87:cb:65:0f:54:fc:53:87:15:ba: f5:49:71:03:ff:06:c6:17:17:95:66:2d:0b:de:21: ef:e2:50:cc:93:32:e4:9a:ef:60:75:f8:c3:8a:7e: 8f:f3:ac:d0:1f:f5:13:e0:f2:94:f5:1b:09:ed:c2: 32:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:8B:78:69:17:E2:55:42:47:F3:AE:10:E1:CC:EA:2B:12:B4:19:B3 X509v3 Authority Key Identifier: keyid:36:DA:8E:72:AA:C7:7E:55:33:73:90:EF:4C:61:C9:54:0B:45:95:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:5f:a7:15:93:c9:e8:ac:2e:ff:5c:04:38:00:4b:f4:de:92: 49:96:cc:38:b7:6b:c0:9f:cb:10:43:a7:db:0f:6a:c5:1d:6d: 90:d5:60:6a:fc:ee:69:6b:9c:f3:ee:82:ef:e2:61:90:32:7c: 9a:88:d0:ca:55:96:42:ec:5e:6f:c2:4f:33:05:1a:26:0d:a8: b7:52:f6:23:3f:ba:dc:80:58:c5:44:20:97:0c:16:fc:8f:ed: c5:c5:f0:ca:00:6f:90:11:4e:8d:5d:fd:6b:91:04:dd:0e:85: f0:36:28:b4:af:a7:48:b4:d9:5c:45:60:cb:f2:e5:1b:46:20: 1e:47:d3:47:57:43:9c:f3:4c:c6:f9:ac:d0:a5:26:f8:84:be: 00:5d:d7:72:75:43:db:cd:de:91:86:39:e0:85:6b:95:f5:47: 57:de:30:00:b2:4e:2e:3b:f5:9f:8b:15:a3:6d:66:eb:f8:9c: 3a:91:fd:87:cf:2c:3b:ca:e7:b4:15:e7:e4:cb:e7:36:87:cc: 1a:dc:f3:fc:d6:50:6b:78:28:b1:80:d6:77:6c:4b:d4:17:74: f1:1e:a6:06:d2:58:be:54:aa:08:db:23:0b:da:ed:57:a4:9b: 9f:47:14:2b:a0:1b:22:2a:e7:5b:f5:0e:6b:72:7a:87:71:5e: 56:d5:b9:62 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3QTIxMTAvBgNVBAUTKDM2REE4RTcyQUFDNzdFNTUzMzczOTBFRjRDNjFDOTU0 MEI0NTk1RDcwHhcNMjYwNDA0MTkyMjA0WhcNMjYwNDExMTkyMjA0WjAYMRYwFAYD VQQDEw02OWQxNjRkYy04OWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVeIZoA9PadBPSe6wFKNA6EvlAkp/yMYUZ8XApEUIZerANr3Ngv84Z55XlTs RoW/fzHRamAMIzGnZmStiI82kLDDF8dn0llRYygadudB4dmc48z6up4DKywF1sqY o0L3rrQICOFWK/7BDtdNYxukjrZONAQ27i2ybZ069d9okYJJJwwrIVN56AkmEUqb akSSHJNSRafE33a8Lap3EFIp1dwPmXeVXGU9rKQbIIfKDep+YTekmTvx58Y79orG L8lYXh7njQUUeIfLZQ9U/FOHFbr1SXED/wbGFxeVZi0L3iHv4lDMkzLkmu9gdfjD in6P86zQH/UT4PKU9RsJ7cIyOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJmLeGkX 4lVCR/OuEOHM6isStBmzMB8GA1UdIwQYMBaAFDbajnKqx35VM3OQ70xhyVQLRZXX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzdBMi84QkMxNUM0MDdC MDQxMUVBOURBQUQ0MzJDNEY5QUUwMi9OdHFPY3FySGZsVXpjNUR2VEdISlZBdEZs ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL050cU9jcXJIZmxVemM1RHZUR0hKVkF0RmxkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzdBMi84QkMxNUM0MDdCMDQxMUVBOURBQUQ0MzJDNEY5QUUwMi9OdHFPY3FySGZs VXpjNUR2VEdISlZBdEZsZGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvF+nFZPJ6Kwu/1wEOABL9N6SSZbMOLdrwJ/LEEOn2w9qxR1tkNVgavzuaWuc 8+6C7+JhkDJ8mojQylWWQuxeb8JPMwUaJg2ot1L2Iz+63IBYxUQglwwW/I/txcXw ygBvkBFOjV39a5EE3Q6F8DYotK+nSLTZXEVgy/LlG0YgHkfTR1dDnPNMxvms0KUm +IS+AF3XcnVD283ekYY54IVrlfVHV94wALJOLjv1n4sVo21m6/icOpH9h88sO8rn tBXn5MvnNofMGtzz/NZQa3gosYDWd2xL1Bd08R6mBtJYvlSqCNsjC9rtV6Sbn0cU K6AbIirnW/UOa3J6h3FeVtW5Yg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:30:26 2026 by rpki-client