$ rpki-client -vvf rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft File: NmIvmQC0aq380FRk8Q1CsTBiUXY.mft (raw, json) Hash identifier: 32Q0861ZfsgodiFwQII0g9Wh6ksNCgzzJu8QCLfsT80= Subject key identifier: 43:46:0C:15:3C:5E:20:8A:CD:66:18:E7:05:32:24:BC:BD:77:48:6F Authority key identifier: 36:62:2F:99:00:B4:6A:AD:FC:D0:54:64:F1:0D:42:B1:30:62:51:76 Certificate issuer: /CN=A919CE1D/serialNumber=36622F9900B46AADFCD05464F10D42B130625176 Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft Manifest number: 77 Signing time: Tue 03 Mar 2026 07:26:10 +0000 Manifest this update: Tue 03 Mar 2026 07:26:10 +0000 Manifest next update: Tue 10 Mar 2026 07:26:10 +0000 Files and hashes: 1: NmIvmQC0aq380FRk8Q1CsTBiUXY.crl (hash: 8lrERXJxdEW2VhnDPO1oRro1+nr+PtO4LLBuIlRum74=) 2: 2518C04062E011F08D04F42EC4F9AE02.roa (hash: rrBoaZeZAYohnofQuu333DPGl97BqUXv9lxtd9Vptcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.crl rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 07:26:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CE1D, serialNumber=36622F9900B46AADFCD05464F10D42B130625176 Validity Not Before: Mar 3 07:26:10 2026 GMT Not After : Mar 10 07:26:10 2026 GMT Subject: CN=69a68d12-a7a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:76:11:bc:de:2d:46:2e:af:9a:e4:59:45:6f: 1b:34:d2:15:18:6c:47:c4:cf:7a:59:e2:32:72:1b: f3:9b:21:7e:6f:5b:bb:84:f5:3c:22:8c:81:6c:82: 32:14:1c:08:4d:47:49:cb:cf:cb:f4:8f:0a:20:f9: 52:d8:33:8a:7b:c0:11:71:10:e6:f7:06:80:4e:7d: 63:34:4b:72:66:68:65:e3:b9:a9:43:61:da:b1:55: 65:77:43:70:5e:c5:55:13:27:61:99:b1:57:34:b9: d6:3f:7c:d1:1d:c0:e3:9c:74:39:d0:ff:e2:33:8f: 3b:24:64:d7:c1:52:72:d8:1d:e6:e5:b3:52:64:36: a1:8f:de:ef:a5:f3:01:dc:27:7a:19:3e:bb:18:d8: 3d:5e:55:ec:50:01:e5:2a:aa:13:03:52:75:b0:a2: 0b:a0:1d:f4:ed:06:cc:56:60:f9:f9:16:5f:bd:25: 3d:d7:a0:41:ca:84:55:c5:10:80:ec:50:9e:ad:6b: e8:f8:2d:53:9b:d0:fa:0b:a5:c6:bf:4d:85:8c:26: b6:05:2b:33:1b:92:54:28:92:34:1c:3f:47:35:b2: 42:4b:d3:63:08:a8:58:0d:a3:41:2b:93:42:26:f4: 08:1d:09:35:ca:f1:b8:15:33:b1:32:e7:bc:47:19: 05:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:46:0C:15:3C:5E:20:8A:CD:66:18:E7:05:32:24:BC:BD:77:48:6F X509v3 Authority Key Identifier: keyid:36:62:2F:99:00:B4:6A:AD:FC:D0:54:64:F1:0D:42:B1:30:62:51:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:e8:15:c8:20:3d:e3:76:50:eb:dc:69:1b:bd:88:20:9d:92: de:fc:34:71:31:43:4e:64:fd:de:e4:d9:cd:02:ae:df:cd:f5: c9:91:a3:83:90:89:b5:ad:a3:cc:ae:63:88:12:83:75:b3:d6: 01:8a:ca:6d:50:59:4f:9e:c6:0d:ac:cd:ad:7f:3b:ab:c2:1b: 49:d9:9d:1e:82:5b:98:a7:81:6b:ff:71:10:ce:83:02:18:12: ee:2b:7d:2f:9f:98:b9:3a:d3:c7:7c:12:23:28:00:e6:ee:55: 99:e5:d3:e6:3d:b5:e2:46:eb:fc:b6:50:ca:15:f5:b3:d2:b6: 84:35:9e:5f:69:d8:89:75:1d:9e:73:dc:5d:1b:77:2e:70:70: 46:bd:82:db:dd:8b:70:e8:25:ab:09:35:60:4d:da:96:c3:be: 5a:ed:34:70:4f:fd:db:96:b8:71:59:7f:a6:5c:60:25:fe:94: 69:b1:29:7c:da:db:bb:ea:83:90:03:b1:39:cc:fa:cf:1b:a7: 17:0c:62:d2:04:d7:ca:fb:06:fc:4d:0c:0a:f2:c1:19:09:3f: a2:2c:bb:dd:b8:ae:e7:6b:a9:75:28:65:d8:8c:e8:b8:50:67: 34:f8:b8:60:69:89:c9:34:6e:65:d6:6b:4a:cb:51:c4:62:ca: c0:d7:33:eb -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 Q0UxRDExMC8GA1UEBRMoMzY2MjJGOTkwMEI0NkFBREZDRDA1NDY0RjEwRDQyQjEz MDYyNTE3NjAeFw0yNjAzMDMwNzI2MTBaFw0yNjAzMTAwNzI2MTBaMBgxFjAUBgNV BAMTDTY5YTY4ZDEyLWE3YTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfdhG83i1GLq+a5FlFbxs00hUYbEfEz3pZ4jJyG/ObIX5vW7uE9TwijIFsgjIU HAhNR0nLz8v0jwog+VLYM4p7wBFxEOb3BoBOfWM0S3JmaGXjualDYdqxVWV3Q3Be xVUTJ2GZsVc0udY/fNEdwOOcdDnQ/+IzjzskZNfBUnLYHebls1JkNqGP3u+l8wHc J3oZPrsY2D1eVexQAeUqqhMDUnWwogugHfTtBsxWYPn5Fl+9JT3XoEHKhFXFEIDs UJ6ta+j4LVOb0PoLpca/TYWMJrYFKzMbklQokjQcP0c1skJL02MIqFgNo0Erk0Im 9AgdCTXK8bgVM7Ey57xHGQUbAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUQ0YMFTxe IIrNZhjnBTIkvL13SG8wHwYDVR0jBBgwFoAUNmIvmQC0aq380FRk8Q1CsTBiUXYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlDRTFEL0I1NDhEQkUyNjJE RjExRjBBMUUzN0UwRUM0RjlBRTAyL05tSXZtUUMwYXEzODBGUms4UTFDc1RCaVVY WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTm1Jdm1RQzBhcTM4MEZSazhRMUNzVEJpVVhZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlD RTFEL0I1NDhEQkUyNjJERjExRjBBMUUzN0UwRUM0RjlBRTAyL05tSXZtUUMwYXEz ODBGUms4UTFDc1RCaVVYWS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAI6BXIID3jdlDr3GkbvYggnZLe/DRxMUNOZP3e5NnNAq7fzfXJkaODkIm1raPM rmOIEoN1s9YBisptUFlPnsYNrM2tfzurwhtJ2Z0egluYp4Fr/3EQzoMCGBLuK30v n5i5OtPHfBIjKADm7lWZ5dPmPbXiRuv8tlDKFfWz0raENZ5fadiJdR2ec9xdG3cu cHBGvYLb3Ytw6CWrCTVgTdqWw75a7TRwT/3blrhxWX+mXGAl/pRpsSl82tu76oOQ A7E5zPrPG6cXDGLSBNfK+wb8TQwK8sEZCT+iLLvduK7na6l1KGXYjOi4UGc0+Lhg aYnJNG5l1mtKy1HEYsrA1zPr -----END CERTIFICATE-----Generated at Wed Mar 4 08:38:31 2026 by rpki-client