$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft File: NCaEGmQGa3hlW77KDAH9CfZXBTY.mft (raw, json) Hash identifier: kbCAz7VRh6RR1yMqDqpkqOBQAnohHDWEuN/oY9DSr5Q= Subject key identifier: CA:4B:3D:68:A7:E0:72:3D:A0:11:13:71:8C:5C:E2:E2:25:A6:E1:87 Authority key identifier: 34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 Certificate issuer: /CN=A9157DAE/serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Certificate serial: 0227 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft Manifest number: 0227 Signing time: Fri 06 Mar 2026 16:52:47 +0000 Manifest this update: Fri 06 Mar 2026 16:52:46 +0000 Manifest next update: Fri 13 Mar 2026 16:52:46 +0000 Files and hashes: 1: NCaEGmQGa3hlW77KDAH9CfZXBTY.crl (hash: Ew3+Uwxf3WSQEJ9bzu/ZK938UZzHMYTPonTcIEc3Ug8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 16:52:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 551 (0x227) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Validity Not Before: Mar 6 16:52:46 2026 GMT Not After : Mar 13 16:52:46 2026 GMT Subject: CN=69ab065f-a3a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:03:d6:2e:9d:a0:59:ec:ac:37:69:af:c4:31: b4:99:f6:6d:46:fa:fd:08:61:1f:10:7d:59:0e:54: 66:9e:65:61:9b:92:0e:ed:bd:09:c4:18:91:63:50: 19:fd:9f:cf:21:28:48:58:0d:05:6c:e5:75:05:ba: 04:7c:c4:2d:a2:9b:fd:62:f8:f9:bf:a2:30:9b:67: c7:8c:1f:28:f9:28:29:04:b7:69:e4:9c:64:61:7e: d3:5e:ac:fa:54:02:22:e7:cb:7d:eb:d9:06:e0:b4: 64:00:2d:37:93:76:70:9f:b4:01:64:70:e7:24:1c: ce:69:88:92:bf:61:0f:ea:f7:79:d4:5f:d6:1a:28: 96:ee:dd:69:98:6e:3b:74:a6:36:23:dd:c1:ce:73: cf:12:8a:9f:3c:04:6f:77:f9:82:5e:e9:2a:82:2d: 44:bc:17:a9:e2:c4:4a:b5:c4:93:01:fb:4a:96:8e: a0:be:15:84:2c:b4:49:f6:a8:94:ab:03:df:e5:6e: 60:cd:aa:81:c9:f9:45:ea:3d:7f:c7:09:5b:33:17: 7d:18:f7:1b:42:46:f3:d3:d6:8b:70:68:8a:b8:fe: 90:35:9e:d8:dc:0e:46:67:de:5e:df:c9:ce:b4:3f: 07:7e:0f:07:e9:84:69:55:57:ef:ff:51:f7:53:c8: 08:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:4B:3D:68:A7:E0:72:3D:A0:11:13:71:8C:5C:E2:E2:25:A6:E1:87 X509v3 Authority Key Identifier: keyid:34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:30:f0:d5:37:e7:e7:ec:cb:2f:e8:bc:9f:a3:91:0e:5e:8e: 2a:a1:08:30:8a:6b:94:a7:64:5e:a0:cf:b0:61:01:10:39:42: 91:1d:4e:9a:4a:d3:2c:1c:07:b5:2e:f4:7b:4b:50:1d:b7:88: 3c:d5:bf:92:8c:32:4f:aa:c6:8d:98:5a:34:2c:d8:33:4c:a3: 6e:ee:71:4c:61:12:93:9c:db:7d:ae:24:da:c0:f7:57:75:d3: a6:e8:bc:62:92:3b:e9:f3:9f:9d:ef:4f:39:a6:cd:09:35:4b: 15:b3:2c:75:7a:26:cf:8d:56:f2:1c:9d:bb:b4:a1:ff:3e:10: bb:56:32:ee:41:b1:e7:c6:68:ad:fd:2e:c0:e8:6a:64:72:e2: 95:bd:c9:88:0e:3c:40:f1:ae:64:77:1d:28:3b:47:19:b2:54: 29:7b:7b:fb:c6:c9:2b:8b:e5:3f:50:98:52:97:da:89:54:5c: 46:55:b1:c2:0a:c3:aa:3e:99:8d:25:a5:fc:9b:bc:5e:c4:13: cc:40:0b:b7:7b:42:0c:0b:6e:3b:82:d0:fc:80:0b:3f:61:a4: b8:67:7a:20:c4:51:1d:71:40:e4:82:83:6a:64:8f:fd:8c:34: 8c:81:95:b2:8c:4e:17:85:e2:47:22:5f:f9:08:3c:a3:28:2f: ec:72:56:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDM0MjY4NDFBNjQwNjZCNzg2NTVCQkVDQTBDMDFGRDA5 RjY1NzA1MzYwHhcNMjYwMzA2MTY1MjQ2WhcNMjYwMzEzMTY1MjQ2WjAYMRYwFAYD VQQDEw02OWFiMDY1Zi1hM2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwPWLp2gWeysN2mvxDG0mfZtRvr9CGEfEH1ZDlRmnmVhm5IO7b0JxBiRY1AZ /Z/PIShIWA0FbOV1BboEfMQtopv9Yvj5v6Iwm2fHjB8o+SgpBLdp5JxkYX7TXqz6 VAIi58t969kG4LRkAC03k3Zwn7QBZHDnJBzOaYiSv2EP6vd51F/WGiiW7t1pmG47 dKY2I93BznPPEoqfPARvd/mCXukqgi1EvBep4sRKtcSTAftKlo6gvhWELLRJ9qiU qwPf5W5gzaqByflF6j1/xwlbMxd9GPcbQkbz09aLcGiKuP6QNZ7Y3A5GZ95e38nO tD8Hfg8H6YRpVVfv/1H3U8gICwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMpLPWin 4HI9oBETcYxc4uIlpuGHMB8GA1UdIwQYMBaAFDQmhBpkBmt4ZVu+ygwB/Qn2VwU2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS8xMDRBN0UxRURG QUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2EzaGxXNzdLREFIOUNmWlhC VFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL05DYUVHbVFHYTNobFc3N0tEQUg5Q2ZaWEJUWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS8xMDRBN0UxRURGQUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2Ez aGxXNzdLREFIOUNmWlhCVFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiDDw1Tfn5+zLL+i8n6ORDl6OKqEIMIprlKdkXqDPsGEBEDlCkR1OmkrTLBwH tS70e0tQHbeIPNW/kowyT6rGjZhaNCzYM0yjbu5xTGESk5zbfa4k2sD3V3XTpui8 YpI76fOfne9POabNCTVLFbMsdXomz41W8hydu7Sh/z4Qu1Yy7kGx58Zorf0uwOhq ZHLilb3JiA48QPGuZHcdKDtHGbJUKXt7+8bJK4vlP1CYUpfaiVRcRlWxwgrDqj6Z jSWl/Ju8XsQTzEALt3tCDAtuO4LQ/IALP2GkuGd6IMRRHXFA5IKDamSP/Yw0jIGV soxOF4XiRyJf+Qg8oygv7HJWxg== -----END CERTIFICATE-----Generated at Sat Mar 7 14:34:07 2026 by rpki-client