$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft File: NyCB99vi7xGkQRvU5q-G8yaYyvo.mft (raw, json) Hash identifier: f1ubvW4mQZ2xtf5Y20gfvmn9AHcZacAm9rdRQoF407Q= Subject key identifier: E5:97:41:72:8E:DF:E1:CC:13:56:0C:38:23:E4:00:85:59:63:C0:8B Authority key identifier: 37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA Certificate issuer: /CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft Manifest number: 0168 Signing time: Sun 05 Apr 2026 04:19:53 +0000 Manifest this update: Sun 05 Apr 2026 04:19:53 +0000 Manifest next update: Sun 12 Apr 2026 04:19:53 +0000 Files and hashes: 1: NyCB99vi7xGkQRvU5q-G8yaYyvo.crl (hash: Dkq1pvTtwxCBx9xY4P8w3QHi1+ftdJ1TSi4aoJ9+7go=) 2: 4ABCFD508D3A11F0B6F4F46FC4F9AE02.roa (hash: Ys6z3KTyTUcEA7nCCEeVfOAk4o97hw5MQktE+xzWfDg=) 3: 82748D8A8D3A11F0833AB01AC4F9AE02.roa (hash: Vtl8KL5Go1ow8PZTf8Hy33WmoVT99sVBAqdfhxvXdk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:19:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E19, serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Validity Not Before: Apr 5 04:19:53 2026 GMT Not After : Apr 12 04:19:53 2026 GMT Subject: CN=69d1e2e9-4596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e8:28:70:31:23:b9:f8:47:30:55:e9:db:f7: f3:75:91:fc:c7:8d:bd:ba:32:59:87:29:80:db:4d: fe:a1:45:e5:87:c7:fb:d8:0e:60:3b:f1:e1:b8:30: dc:b1:19:7b:8f:f2:50:9c:0b:00:89:61:2f:af:5f: 8a:00:cb:ca:17:f7:df:02:b9:18:76:45:05:15:82: 7e:27:b6:1e:5d:53:c2:e7:eb:3a:6c:cb:2c:5b:54: 01:dc:7a:89:1e:11:93:f4:fc:38:b7:15:d9:9c:f9: fc:70:88:8a:d3:27:8b:d7:0f:f2:09:0d:c5:28:f5: ad:88:e5:1c:08:35:10:f8:bd:0a:cf:8d:31:49:d3: 23:c3:a6:91:79:a0:12:77:54:54:2d:2f:2e:2a:fe: e9:0a:cc:69:4d:f5:db:c7:98:5c:f9:bc:5f:7f:b1: d1:c7:3d:e5:08:cd:2d:67:ad:cd:52:34:c2:6f:00: b3:3c:d0:90:f7:46:22:55:3d:3c:0b:db:f3:e9:5b: 79:e0:a0:56:40:96:3b:4a:db:e9:f5:35:5b:f8:cf: c8:92:e6:c0:8f:9d:19:73:0b:5d:fd:a0:e0:ba:25: 25:a5:93:88:ae:97:57:54:a8:1e:07:21:fd:92:31: 3f:6b:b2:6a:56:62:16:99:b1:42:40:73:6d:e9:07: 33:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:97:41:72:8E:DF:E1:CC:13:56:0C:38:23:E4:00:85:59:63:C0:8B X509v3 Authority Key Identifier: keyid:37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:b4:4b:1e:5b:08:46:51:0b:0b:ae:09:6a:62:2c:e0:20:75: da:2a:f7:d8:c9:c1:6e:d6:be:95:2c:49:2d:f6:65:ec:91:ec: 49:a7:7a:78:80:e9:24:b1:d9:25:d4:25:be:c8:72:70:d5:3f: 90:6a:e0:d8:4a:0c:50:52:77:93:f0:06:fd:1b:e0:f9:c4:dc: 43:9c:8b:b0:06:fc:c3:80:53:31:d6:bd:8d:ec:fb:71:17:4b: 0c:07:ed:64:e5:13:92:df:fd:1f:d4:b6:fc:f2:f4:ab:9c:a7: 35:5c:b2:e9:33:6a:c4:3d:ac:d1:b7:bc:d3:2f:5a:32:d1:16: 54:e3:6c:1a:66:9b:c7:ba:e3:f6:16:ce:ac:40:a9:83:08:96: 7e:a9:14:fc:1c:64:a3:83:1e:d1:30:6a:26:04:20:89:09:89: 83:d5:e1:40:a3:bf:39:83:ae:7d:b2:57:33:e5:69:0c:8b:0b: dc:92:db:5f:21:b1:23:bf:ab:cf:7c:09:a4:cd:3b:e1:46:07: bd:c2:e6:d6:db:3d:f1:6d:13:91:75:fc:29:ab:7c:2f:fa:f6: 3f:1d:8c:f0:a0:d4:dc:be:e6:87:6f:fc:f6:b2:c9:4f:7a:6f: f8:52:92:cd:a1:ca:bc:bf:1e:0c:18:0a:36:a0:3d:67:e9:56: f0:2a:6d:cc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMTkxMTAvBgNVBAUTKDM3MjA4MUY3REJFMkVGMTFBNDQxMUJENEU2QUY4NkYz MjY5OENBRkEwHhcNMjYwNDA1MDQxOTUzWhcNMjYwNDEyMDQxOTUzWjAYMRYwFAYD VQQDEw02OWQxZTJlOS00NTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyegocDEjufhHMFXp2/fzdZH8x429ujJZhymA203+oUXlh8f72A5gO/HhuDDc sRl7j/JQnAsAiWEvr1+KAMvKF/ffArkYdkUFFYJ+J7YeXVPC5+s6bMssW1QB3HqJ HhGT9Pw4txXZnPn8cIiK0yeL1w/yCQ3FKPWtiOUcCDUQ+L0Kz40xSdMjw6aReaAS d1RULS8uKv7pCsxpTfXbx5hc+bxff7HRxz3lCM0tZ63NUjTCbwCzPNCQ90YiVT08 C9vz6Vt54KBWQJY7Stvp9TVb+M/IkubAj50Zcwtd/aDguiUlpZOIrpdXVKgeByH9 kjE/a7JqVmIWmbFCQHNt6QczkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOWXQXKO 3+HME1YMOCPkAIVZY8CLMB8GA1UdIwQYMBaAFDcggffb4u8RpEEb1OavhvMmmMr6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUxOS8xMEM3RjBBQTE0 MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4R2tRUnZVNXEtRzh5YVl5 dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055Q0I5OXZpN3hHa1FSdlU1cS1HOHlhWXl2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUUxOS8xMEM3RjBBQTE0MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4 R2tRUnZVNXEtRzh5YVl5dm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAi7RLHlsIRlELC64JamIs4CB12ir32MnBbta+lSxJLfZl7JHsSad6eIDpJLHZ JdQlvshycNU/kGrg2EoMUFJ3k/AG/Rvg+cTcQ5yLsAb8w4BTMda9jez7cRdLDAft ZOUTkt/9H9S2/PL0q5ynNVyy6TNqxD2s0be80y9aMtEWVONsGmabx7rj9hbOrECp gwiWfqkU/Bxko4Me0TBqJgQgiQmJg9XhQKO/OYOufbJXM+VpDIsL3JLbXyGxI7+r z3wJpM074UYHvcLm1ts98W0TkXX8Kat8L/r2Px2M8KDU3L7mh2/89rLJT3pv+FKS zaHKvL8eDBgKNqA9Z+lW8CptzA== -----END CERTIFICATE-----Generated at Mon Apr 6 13:20:28 2026 by rpki-client