$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft File: NUOeC_NciIu4TRsk7N5wYM90TpE.mft (raw, json) Hash identifier: R+76xbH/jOOr5rBHod35hUTTzhtSGcEqmODpF+lwePM= Subject key identifier: 10:30:2A:F6:48:89:11:7A:F8:9A:E0:26:FF:B6:31:0C:3C:E3:B7:12 Authority key identifier: 35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 Certificate issuer: /CN=A917C422/serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Certificate serial: 2C35 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft Manifest number: 2C1B Signing time: Tue 02 Jun 2026 14:26:04 +0000 Manifest this update: Tue 02 Jun 2026 14:26:04 +0000 Manifest next update: Tue 09 Jun 2026 14:26:04 +0000 Files and hashes: 1: NUOeC_NciIu4TRsk7N5wYM90TpE.crl (hash: /SmbKWveF40YDyaxzORP+ZZTP6E9qS7p5c/3eFaCQzM=) 2: 6313DADA500011EBB74A2C2AC4F9AE02.roa (hash: h/xjw2uGVTtL8b2ydd+g45aswVdSOXMWt+z5VztwbYw=) 3: F645F318500C11EBA2295426C4F9AE02.roa (hash: T/3Qd5JLkUZ8axH+b8NITt79vh28jc8CtqLL9xCu9/o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 14:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11317 (0x2c35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Validity Not Before: Jun 2 14:26:04 2026 GMT Not After : Jun 9 14:26:04 2026 GMT Subject: CN=6a1ee7fc-db8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:da:27:c1:58:39:4d:f8:e1:0f:00:15:5d:2b: 5d:f7:f9:b8:91:32:71:da:52:61:d4:a3:cf:24:48: 2b:36:80:71:97:0c:ee:33:63:b9:dc:d8:c6:c4:78: 47:d5:54:a7:8f:10:cb:dd:df:27:8f:59:59:4b:d0: 0d:6e:79:20:77:50:3a:ac:84:2a:3d:5e:7b:44:98: d8:04:be:1a:4b:b2:bc:4a:22:ed:b1:c2:8f:19:07: 40:30:c0:e5:4b:06:81:c1:38:58:de:1f:68:5a:68: 86:5e:43:72:4a:28:72:e1:ec:ac:23:7d:ae:cd:e5: d5:46:39:f7:ed:b1:e8:ba:95:e6:26:ae:78:8e:82: 3b:c8:1b:b9:74:aa:b8:36:27:e7:90:b2:a1:3f:b3: f9:7f:a1:ff:6d:57:05:2c:85:3d:7a:71:10:32:54: 7c:81:13:0a:09:4c:8b:1d:6a:78:6e:f6:f8:f7:6c: 94:7a:9c:2f:81:4c:59:d5:16:0b:96:39:39:c2:9b: ac:5d:7e:06:8e:f2:7f:a6:34:74:57:58:43:2f:1d: 43:9b:4b:09:e0:18:0e:ad:35:f4:94:74:71:e9:78: 30:01:1c:0d:44:d0:1d:35:b8:13:cd:74:6f:58:73: 89:d2:f0:88:da:f8:c2:25:7e:58:41:b5:ea:bb:0e: 53:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:30:2A:F6:48:89:11:7A:F8:9A:E0:26:FF:B6:31:0C:3C:E3:B7:12 X509v3 Authority Key Identifier: keyid:35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:d9:f1:af:7d:d2:84:8e:28:ca:af:4b:8e:5b:ab:0d:9b:08: 52:70:56:a2:d1:e4:16:dd:0d:b6:e3:28:72:45:a9:8b:30:cd: a7:da:ab:05:3a:e6:04:a9:3a:8d:ba:05:dd:a1:2d:19:41:73: 9f:ae:ab:6b:c2:cd:db:42:ec:fa:c9:e2:2d:e8:a5:10:90:84: 7f:a9:b7:bb:c8:de:c0:80:06:4b:0d:de:e1:44:a8:70:d1:08: ab:38:cf:4e:8d:1b:7d:2e:58:2a:01:23:33:cd:6c:e6:ab:a5: 29:4a:b7:7c:d3:26:4b:1d:e3:53:07:d6:a1:7b:62:7c:0a:81: 24:13:59:a7:20:1d:43:fb:57:fd:4d:9f:65:97:f9:72:8c:0c: 91:9e:ed:65:88:3d:0e:9a:87:9e:9f:30:c4:9e:8b:70:9e:09: 75:99:1f:a3:e3:e6:47:4b:ff:70:dd:89:b8:90:91:8b:99:9f: db:07:c0:0e:bc:41:57:b8:e3:e9:11:9b:04:6f:19:85:74:36: 6a:17:9d:e0:99:39:c6:7b:02:7a:51:d1:8a:39:2c:aa:ff:08: 32:31:85:82:00:e8:ac:c7:65:8d:b6:35:8c:ff:5f:ec:70:2e: a6:32:a4:a8:74:fb:7d:56:39:a1:06:dd:e9:26:fc:da:be:72: a0:25:3e:96 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDM1NDM5RTBCRjM1Qzg4OEJCODREMUIyNEVDREU3MDYw Q0Y3NDRFOTEwHhcNMjYwNjAyMTQyNjA0WhcNMjYwNjA5MTQyNjA0WjAYMRYwFAYD VQQDEw02YTFlZTdmYy1kYjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNonwVg5TfjhDwAVXStd9/m4kTJx2lJh1KPPJEgrNoBxlwzuM2O53NjGxHhH 1VSnjxDL3d8nj1lZS9ANbnkgd1A6rIQqPV57RJjYBL4aS7K8SiLtscKPGQdAMMDl SwaBwThY3h9oWmiGXkNySihy4eysI32uzeXVRjn37bHoupXmJq54joI7yBu5dKq4 NifnkLKhP7P5f6H/bVcFLIU9enEQMlR8gRMKCUyLHWp4bvb492yUepwvgUxZ1RYL ljk5wpusXX4GjvJ/pjR0V1hDLx1Dm0sJ4BgOrTX0lHRx6XgwARwNRNAdNbgTzXRv WHOJ0vCI2vjCJX5YQbXquw5TCQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBAwKvZI iRF6+JrgJv+2MQw847cSMB8GA1UdIwQYMBaAFDVDngvzXIiLuE0bJOzecGDPdE6R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi8zRTc0NTM2OEVE NTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJdTRUUnNrN041d1lNOTBU cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05VT2VDX05jaUl1NFRSc2s3TjV3WU05MFRwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi8zRTc0NTM2OEVENTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJ dTRUUnNrN041d1lNOTBUcEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAatnxr33ShI4oyq9LjlurDZsIUnBWotHkFt0NtuMockWpizDNp9qrBTrmBKk6 jboF3aEtGUFzn66ra8LN20Ls+sniLeilEJCEf6m3u8jewIAGSw3e4USocNEIqzjP To0bfS5YKgEjM81s5qulKUq3fNMmSx3jUwfWoXtifAqBJBNZpyAdQ/tX/U2fZZf5 cowMkZ7tZYg9DpqHnp8wxJ6LcJ4JdZkfo+PmR0v/cN2JuJCRi5mf2wfADrxBV7jj 6RGbBG8ZhXQ2ahed4Jk5xnsCelHRijksqv8IMjGFggDorMdljbY1jP9f7HAupjKk qHT7fVY5oQbd6Sb82r5yoCU+lg== -----END CERTIFICATE-----Generated at Tue Jun 2 21:23:38 2026 by rpki-client