$ rpki-client -vvf rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft File: nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft (raw, json) Hash identifier: XuUSm07ib4lPNSAkuOscvzsMI3rVtVN5NwITueRKDJ8= Subject key identifier: 19:F0:14:11:E0:2B:50:CB:80:A7:49:53:32:96:5D:5C:97:19:AA:4A Authority key identifier: 9F:0A:AF:2E:0A:FA:3E:6F:8D:AE:5A:46:A7:E5:8C:CF:FA:34:C1:27 Certificate issuer: /CN=A9197501/serialNumber=9F0AAF2E0AFA3E6F8DAE5A46A7E58CCFFA34C127 Certificate serial: 034B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft Manifest number: 0333 Signing time: Thu 21 May 2026 01:14:20 +0000 Manifest this update: Thu 21 May 2026 01:14:20 +0000 Manifest next update: Thu 28 May 2026 01:14:20 +0000 Files and hashes: 1: nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl (hash: 6UqhKp+iTkUrwUb3uBqqdZS1w04siycQc3mJIBGuAc4=) 2: 4742083A534E11F08B7C2047C4F9AE02.roa (hash: xthRLc90/XgHlCkTtB+0e16k0vdMx1eiJQ9NbjS1xYM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:14:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 843 (0x34b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197501, serialNumber=9F0AAF2E0AFA3E6F8DAE5A46A7E58CCFFA34C127 Validity Not Before: May 21 01:14:20 2026 GMT Not After : May 28 01:14:20 2026 GMT Subject: CN=6a0e5c6c-999f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0a:3c:fb:a4:00:47:4c:d7:d2:cc:2b:48:15: 06:42:f2:d7:d8:0e:8f:82:ec:a2:12:94:08:1d:5e: bf:a3:af:be:89:ac:bc:36:32:17:2b:a8:b1:e6:a4: c1:ab:3d:3f:18:a2:b5:b2:ce:f9:d1:3d:55:1f:0e: 95:db:1c:73:20:47:eb:20:f3:8e:b5:c0:ae:36:e3: 9c:75:e7:76:f6:76:6a:c0:df:14:8e:12:90:e6:ff: 74:5a:f6:a2:18:ac:cf:41:a8:87:66:c5:4b:b3:fd: fd:e3:05:90:a6:6b:81:04:88:1e:7d:2a:bc:a5:f3: 27:2f:cc:cf:88:48:cd:f2:a3:49:1a:c6:50:db:72: 8e:db:19:80:4f:66:47:5d:25:e4:02:58:85:2f:52: f4:08:ae:13:33:f0:71:17:80:13:e7:75:52:75:09: ca:e8:96:d2:5a:80:26:e8:ff:0e:8c:65:0f:c1:36: eb:ad:a6:b4:bf:1a:f9:df:fd:f4:f7:f0:ac:43:c1: d5:7b:54:2d:09:61:f7:e9:3e:d5:ee:4b:db:29:75: 9f:38:1d:9e:3c:c9:2e:e5:40:cc:16:fa:92:e6:7a: d7:e1:b6:8c:34:f9:3f:4c:4c:e1:26:8b:22:44:85: fc:e4:26:fb:48:f9:99:c8:f1:fc:05:dc:9e:9c:2d: df:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:F0:14:11:E0:2B:50:CB:80:A7:49:53:32:96:5D:5C:97:19:AA:4A X509v3 Authority Key Identifier: keyid:9F:0A:AF:2E:0A:FA:3E:6F:8D:AE:5A:46:A7:E5:8C:CF:FA:34:C1:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:bd:e3:e6:e4:70:19:44:d2:3e:fb:87:dc:6b:15:c8:fd:92: 79:d7:02:11:d8:fc:e8:1e:52:45:fd:0f:8e:4c:fe:92:ed:fd: 31:7d:24:6e:2a:5d:e7:11:e5:05:fe:c4:ae:69:64:a9:4e:6c: 5d:97:51:8d:af:32:1a:f5:93:e6:66:15:03:2e:2f:70:90:66: ab:af:62:45:6f:94:76:ea:2e:06:f4:04:dc:d1:88:d3:b1:07: 6a:8e:4e:1f:a2:a8:47:52:11:d7:b5:64:ea:ff:08:c0:f8:96: ad:0d:51:62:83:3c:ec:5f:eb:e1:71:b9:35:a3:5e:ff:28:b7: 92:d2:06:89:c8:65:e1:dd:92:c2:04:86:a7:4d:4e:3d:2b:ad: 34:11:69:09:b3:58:56:da:e5:f4:b2:db:a2:d2:61:a7:ba:44: a4:e6:48:72:74:d1:61:22:a2:67:e0:63:79:60:b3:59:45:e5: ce:77:e0:65:e2:54:37:47:57:e5:bb:1c:3f:ce:fe:80:13:6e: ff:4d:90:26:7c:dc:7d:71:7e:90:4e:be:b9:94:07:26:ec:21: 44:65:9e:e1:b5:e2:d3:bb:9d:40:2e:25:4d:48:b7:b3:b2:03: fe:b1:2b:e0:c4:ea:59:df:36:30:f6:64:f7:d0:c4:28:5d:c8: fe:8c:78:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1MDExMTAvBgNVBAUTKDlGMEFBRjJFMEFGQTNFNkY4REFFNUE0NkE3RTU4Q0NG RkEzNEMxMjcwHhcNMjYwNTIxMDExNDIwWhcNMjYwNTI4MDExNDIwWjAYMRYwFAYD VQQDEw02YTBlNWM2Yy05OTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgo8+6QAR0zX0swrSBUGQvLX2A6PguyiEpQIHV6/o6++iay8NjIXK6ix5qTB qz0/GKK1ss750T1VHw6V2xxzIEfrIPOOtcCuNuOcded29nZqwN8UjhKQ5v90Wvai GKzPQaiHZsVLs/394wWQpmuBBIgefSq8pfMnL8zPiEjN8qNJGsZQ23KO2xmAT2ZH XSXkAliFL1L0CK4TM/BxF4AT53VSdQnK6JbSWoAm6P8OjGUPwTbrraa0vxr53/30 9/CsQ8HVe1QtCWH36T7V7kvbKXWfOB2ePMku5UDMFvqS5nrX4baMNPk/TEzhJosi RIX85Cb7SPmZyPH8BdyenC3fpwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBnwFBHg K1DLgKdJUzKWXVyXGapKMB8GA1UdIwQYMBaAFJ8Kry4K+j5vja5aRqfljM/6NMEn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzUwMS85OUI1OEJCMDEz REIxMUVEOTMwNEM1ODJDNEY5QUUwMi9ud3F2TGdyNlBtLU5ybHBHcC1XTXpfbzB3 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL253cXZMZ3I2UG0tTnJscEdwLVdNel9vMHdTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzUwMS85OUI1OEJCMDEzREIxMUVEOTMwNEM1ODJDNEY5QUUwMi9ud3F2TGdyNlBt LU5ybHBHcC1XTXpfbzB3U2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhL3j5uRwGUTSPvuH3GsVyP2SedcCEdj86B5SRf0Pjkz+ku39MX0kbipd5xHl Bf7ErmlkqU5sXZdRja8yGvWT5mYVAy4vcJBmq69iRW+UduouBvQE3NGI07EHao5O H6KoR1IR17Vk6v8IwPiWrQ1RYoM87F/r4XG5NaNe/yi3ktIGichl4d2SwgSGp01O PSutNBFpCbNYVtrl9LLbotJhp7pEpOZIcnTRYSKiZ+BjeWCzWUXlznfgZeJUN0dX 5bscP87+gBNu/02QJnzcfXF+kE6+uZQHJuwhRGWe4bXi07udQC4lTUi3s7ID/rEr 4MTqWd82MPZk99DEKF3I/ox4sg== -----END CERTIFICATE-----Generated at Thu May 21 11:59:18 2026 by rpki-client