$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft File: NCaEGmQGa3hlW77KDAH9CfZXBTY.mft (raw, json) Hash identifier: PYYlCcl3YGSmNoGsKPkOCy6Y2i+d/Z8AYVyygUjqeGw= Subject key identifier: 85:64:5B:A7:DC:DE:E0:40:5E:C2:98:7B:FE:1A:E8:5E:E3:57:F2:97 Authority key identifier: 34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 Certificate issuer: /CN=A9157DAE/serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Certificate serial: 023E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft Manifest number: 023E Signing time: Mon 20 Apr 2026 16:58:25 +0000 Manifest this update: Mon 20 Apr 2026 16:58:25 +0000 Manifest next update: Mon 27 Apr 2026 16:58:25 +0000 Files and hashes: 1: NCaEGmQGa3hlW77KDAH9CfZXBTY.crl (hash: lvptVnJ6HRSrBQ3nnZ2G90vetiI/zwVTZgwkOdSO9ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 16:58:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Validity Not Before: Apr 20 16:58:25 2026 GMT Not After : Apr 27 16:58:25 2026 GMT Subject: CN=69e65b31-8376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5e:8a:5d:de:70:e3:de:1b:62:d7:00:0e:a4: e3:c0:a8:3a:d9:34:a9:8c:f2:72:41:12:75:2a:81: 10:2d:9c:b6:3b:ee:5d:e8:b3:d7:fa:38:dc:27:49: 48:58:60:48:8f:56:c0:3a:84:16:97:3a:53:c8:e4: a5:7f:53:33:6a:43:93:a0:04:a1:b2:50:d3:a0:df: a0:8a:f2:55:36:4d:ff:6b:49:78:22:e1:8c:30:7e: d5:70:28:3f:1e:9e:c2:92:18:d0:c7:5c:b4:30:c2: 5d:72:ba:0a:e3:97:0f:7f:8e:2b:f9:91:c8:f7:09: 80:1b:00:48:be:50:14:77:21:29:a6:af:00:92:0b: 68:d5:7d:6a:e5:7f:74:96:53:60:42:5f:8a:a5:b8: 18:6c:11:bc:28:0f:99:b5:17:c8:6e:6e:6d:ac:6d: 52:21:cd:81:92:1e:0d:ef:74:3a:33:9c:04:fb:3d: ef:30:23:c2:66:fd:b6:ef:bf:14:43:b0:cb:ed:7b: a9:f8:8f:67:0f:b6:e0:d9:4b:fa:ee:bc:c5:91:1f: db:b5:a6:c2:d6:da:e8:c8:67:94:ff:76:94:85:21: d3:14:aa:28:a0:81:1c:bf:80:24:50:b1:e2:10:d4: 5e:67:3a:ae:49:f8:e5:d9:65:e1:98:a2:25:57:3b: 8e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:64:5B:A7:DC:DE:E0:40:5E:C2:98:7B:FE:1A:E8:5E:E3:57:F2:97 X509v3 Authority Key Identifier: keyid:34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:8a:61:9a:58:f9:c4:32:ac:c5:75:f3:36:e0:9c:b2:e8:11: 42:55:db:05:ab:ca:a2:1b:9f:28:50:cb:79:bd:6f:b8:46:65: 7f:74:74:84:19:a6:b3:26:31:e2:b6:b2:7e:74:90:5b:9f:53: 22:3d:ad:06:1e:64:6c:db:47:e2:a3:a8:dd:39:1c:b8:34:99: fa:0e:3a:c6:5c:a7:e2:59:8a:f2:bb:3d:a1:da:e4:fb:65:57: da:1e:c6:29:81:f6:e7:d9:8d:cc:cd:b0:c9:cc:23:c1:38:2c: 59:cc:dc:d3:ad:a1:88:1f:3f:d9:e4:ff:b8:3b:e9:ee:5c:e2: cf:2e:5d:7a:c3:2a:4c:2e:64:38:a1:76:26:e3:1f:ff:da:b0: cb:85:08:52:76:de:b4:1a:6b:24:44:e9:91:e5:34:cd:f5:52: 33:c8:a5:f5:2a:56:cd:cc:4f:4a:dd:ae:ff:39:1d:06:57:0a: f7:ef:1b:5f:1b:24:d8:ab:57:71:7c:2b:7b:eb:38:d8:7f:ad: d4:2f:a3:cc:da:37:fd:5a:6b:93:31:a3:e4:7d:5d:eb:cf:85: 49:64:7d:6b:41:6a:c8:33:2b:74:48:36:e9:bf:a0:cb:fa:16: 4c:30:f5:ee:77:36:1c:2e:1e:7c:c0:c8:79:5e:1f:ff:35:ba: c8:7c:f2:a7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDM0MjY4NDFBNjQwNjZCNzg2NTVCQkVDQTBDMDFGRDA5 RjY1NzA1MzYwHhcNMjYwNDIwMTY1ODI1WhcNMjYwNDI3MTY1ODI1WjAYMRYwFAYD VQQDEw02OWU2NWIzMS04Mzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqV6KXd5w494bYtcADqTjwKg62TSpjPJyQRJ1KoEQLZy2O+5d6LPX+jjcJ0lI WGBIj1bAOoQWlzpTyOSlf1MzakOToAShslDToN+givJVNk3/a0l4IuGMMH7VcCg/ Hp7CkhjQx1y0MMJdcroK45cPf44r+ZHI9wmAGwBIvlAUdyEppq8Akgto1X1q5X90 llNgQl+KpbgYbBG8KA+ZtRfIbm5trG1SIc2Bkh4N73Q6M5wE+z3vMCPCZv22778U Q7DL7Xup+I9nD7bg2Uv67rzFkR/btabC1troyGeU/3aUhSHTFKoooIEcv4AkULHi ENReZzquSfjl2WXhmKIlVzuOsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIVkW6fc 3uBAXsKYe/4a6F7jV/KXMB8GA1UdIwQYMBaAFDQmhBpkBmt4ZVu+ygwB/Qn2VwU2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS8xMDRBN0UxRURG QUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2EzaGxXNzdLREFIOUNmWlhC VFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL05DYUVHbVFHYTNobFc3N0tEQUg5Q2ZaWEJUWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS8xMDRBN0UxRURGQUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2Ez aGxXNzdLREFIOUNmWlhCVFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAO4phmlj5xDKsxXXzNuCcsugRQlXbBavKohufKFDLeb1vuEZlf3R0hBmmsyYx 4rayfnSQW59TIj2tBh5kbNtH4qOo3TkcuDSZ+g46xlyn4lmK8rs9odrk+2VX2h7G KYH259mNzM2wycwjwTgsWczc062hiB8/2eT/uDvp7lzizy5desMqTC5kOKF2JuMf /9qwy4UIUnbetBprJETpkeU0zfVSM8il9SpWzcxPSt2u/zkdBlcK9+8bXxsk2KtX cXwre+s42H+t1C+jzNo3/VprkzGj5H1d68+FSWR9a0FqyDMrdEg26b+gy/oWTDD1 7nc2HC4efMDIeV4f/zW6yHzypw== -----END CERTIFICATE-----Generated at Wed Apr 22 00:08:15 2026 by rpki-client