$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft File: nMiKhtCzfs7o1XZX75l4lTJoDN8.mft (raw, json) Hash identifier: va4jpsnvCz0zF21O8u+qkcRQgqin9LiBidPJPAgzUEo= Subject key identifier: 55:B0:50:4B:58:22:81:E0:FA:89:B6:FE:98:A7:E5:D6:DF:D2:1C:3D Authority key identifier: 9C:C8:8A:86:D0:B3:7E:CE:E8:D5:76:57:EF:99:78:95:32:68:0C:DF Certificate issuer: /CN=A91A4B39/serialNumber=9CC88A86D0B37ECEE8D57657EF99789532680CDF Certificate serial: 01B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft Manifest number: 01AF Signing time: Sun 05 Apr 2026 03:35:59 +0000 Manifest this update: Sun 05 Apr 2026 03:35:58 +0000 Manifest next update: Sun 12 Apr 2026 03:35:58 +0000 Files and hashes: 1: nMiKhtCzfs7o1XZX75l4lTJoDN8.crl (hash: /32W3gYkQG8T8tI+yLmnGHSLmNWNK0UoDz4gD00EHGk=) 2: AA778F4CAF8A11EEB167DB64C4F9AE02.roa (hash: fwuxGVlJEIbfWm/zAmVn2KsgJ1NWhQLxSqXc+gc1DUU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.crl rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:35:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 437 (0x1b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B39, serialNumber=9CC88A86D0B37ECEE8D57657EF99789532680CDF Validity Not Before: Apr 5 03:35:58 2026 GMT Not After : Apr 12 03:35:58 2026 GMT Subject: CN=69d1d89f-3afc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f2:ea:be:21:e5:63:06:8e:1d:f6:51:35:5e: e7:77:9b:e6:39:08:a6:57:a0:31:0c:e9:82:38:ce: 59:14:73:26:eb:65:8b:c5:27:12:eb:c8:7e:ae:df: 4e:b5:8d:e9:45:bd:c2:e1:65:bc:f9:e1:70:fd:b6: 25:b6:84:3a:c3:d0:2b:b1:8b:9d:f3:e1:62:1e:45: da:c1:c3:75:ba:7e:c7:2d:08:3c:23:43:e3:3b:d8: 30:b1:4f:e4:0d:48:f3:1b:7e:d9:a7:73:78:84:30: 58:f0:4e:ef:a2:40:79:c7:be:af:69:ad:b8:73:d1: 2e:58:33:d8:aa:ea:bb:b6:96:77:a6:eb:34:59:84: 6d:84:f2:2a:0f:dd:93:10:ec:fb:33:4a:18:a1:ab: 6e:69:c4:24:e8:13:27:e9:77:78:00:f4:33:92:df: 3a:2a:c2:f5:a7:77:02:68:ef:a9:86:89:4e:a7:fc: fe:3d:a5:a7:28:72:24:16:d6:b6:f8:f5:c0:19:cd: c2:65:9b:62:d7:77:9e:01:c9:06:3b:9b:2b:0f:72: fc:56:8a:8f:47:15:27:45:58:85:b4:02:ae:c2:1d: 03:07:46:18:70:f0:fb:6e:ff:de:f4:9d:89:a4:fa: 10:e3:49:ce:7b:7a:c0:a9:20:11:e1:ad:b3:f3:14: 43:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:B0:50:4B:58:22:81:E0:FA:89:B6:FE:98:A7:E5:D6:DF:D2:1C:3D X509v3 Authority Key Identifier: keyid:9C:C8:8A:86:D0:B3:7E:CE:E8:D5:76:57:EF:99:78:95:32:68:0C:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:77:48:9d:ac:8b:97:61:fe:fc:c8:69:1e:44:f9:dc:c1:fe: 06:49:4a:89:ef:0b:24:57:1e:bf:2d:f3:5c:8e:94:32:e0:b7: 58:e4:4e:a7:0a:d6:5c:f3:ae:5f:b4:5b:f6:55:a2:0e:78:da: a7:40:4b:b5:8e:73:16:ef:f4:15:86:15:ab:9b:f5:3c:39:70: e4:05:26:2c:62:65:e3:0a:ba:4e:1c:9b:af:3f:9c:ee:e9:cf: c6:3b:f1:0c:dc:d7:0b:23:4a:4f:b8:d7:d4:f8:47:13:05:af: 4b:b2:fa:73:1d:5c:a3:38:1f:e1:ed:9c:55:2b:e0:27:4f:4f: 2f:8b:7f:36:aa:d1:e0:c6:4a:6a:90:7b:4f:54:e0:aa:69:7d: cd:35:06:9a:b6:f6:2d:32:b6:19:df:e1:de:b5:3c:e2:df:1a: 4e:3d:83:3e:dd:b4:fa:dc:ca:c3:b2:eb:19:79:15:fa:12:fd: 5b:2e:0f:86:4e:e2:0b:8d:03:dd:21:28:25:99:92:64:8b:9a: c8:2a:28:24:41:95:92:ff:39:3d:67:a5:f6:bd:35:ab:0d:1a: cc:72:d0:27:33:b4:eb:61:22:70:86:3c:54:e2:dd:c3:6c:79: c9:f9:e3:62:7a:af:9b:0c:0c:67:89:1a:81:ce:4f:3a:df:85: 89:96:81:8e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMzkxMTAvBgNVBAUTKDlDQzg4QTg2RDBCMzdFQ0VFOEQ1NzY1N0VGOTk3ODk1 MzI2ODBDREYwHhcNMjYwNDA1MDMzNTU4WhcNMjYwNDEyMDMzNTU4WjAYMRYwFAYD VQQDEw02OWQxZDg5Zi0zYWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvLqviHlYwaOHfZRNV7nd5vmOQimV6AxDOmCOM5ZFHMm62WLxScS68h+rt9O tY3pRb3C4WW8+eFw/bYltoQ6w9ArsYud8+FiHkXawcN1un7HLQg8I0PjO9gwsU/k DUjzG37Zp3N4hDBY8E7vokB5x76vaa24c9EuWDPYquq7tpZ3pus0WYRthPIqD92T EOz7M0oYoatuacQk6BMn6Xd4APQzkt86KsL1p3cCaO+pholOp/z+PaWnKHIkFta2 +PXAGc3CZZti13eeAckGO5srD3L8VoqPRxUnRViFtAKuwh0DB0YYcPD7bv/e9J2J pPoQ40nOe3rAqSAR4a2z8xRDmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFWwUEtY IoHg+om2/pin5dbf0hw9MB8GA1UdIwQYMBaAFJzIiobQs37O6NV2V++ZeJUyaAzf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIzOS9GRUY1NDlFOEFG MTYxMUVFOEM0OEE3NERDNEY5QUUwMi9uTWlLaHRDemZzN28xWFpYNzVsNGxUSm9E TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25NaUtodEN6ZnM3bzFYWlg3NWw0bFRKb0ROOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIzOS9GRUY1NDlFOEFGMTYxMUVFOEM0OEE3NERDNEY5QUUwMi9uTWlLaHRDemZz N28xWFpYNzVsNGxUSm9ETjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVHdInayLl2H+/MhpHkT53MH+BklKie8LJFcevy3zXI6UMuC3WOROpwrWXPOu X7Rb9lWiDnjap0BLtY5zFu/0FYYVq5v1PDlw5AUmLGJl4wq6Thybrz+c7unPxjvx DNzXCyNKT7jX1PhHEwWvS7L6cx1cozgf4e2cVSvgJ09PL4t/NqrR4MZKapB7T1Tg qml9zTUGmrb2LTK2Gd/h3rU84t8aTj2DPt20+tzKw7LrGXkV+hL9Wy4Phk7iC40D 3SEoJZmSZIuayCooJEGVkv85PWel9r01qw0azHLQJzO062EicIY8VOLdw2x5yfnj YnqvmwwMZ4kagc5POt+FiZaBjg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:49:41 2026 by rpki-client