$ rpki-client -vvf rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft File: NjlSt_QXggYJMArokUgSGEuPw9w.mft (raw, json) Hash identifier: dwteQM4XNbbkD45bLMDRwi5gX/APPtyv6LzCBjDApTI= Subject key identifier: 8B:38:F5:CA:C6:ED:9A:4E:2E:15:1C:E3:CF:25:7D:92:37:F7:8C:49 Authority key identifier: 36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC Certificate issuer: /CN=A91A70FA/serialNumber=363952B7F417820609300AE8914812184B8FC3DC Certificate serial: 1D08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft Manifest number: 1CEC Signing time: Sat 04 Apr 2026 16:04:25 +0000 Manifest this update: Sat 04 Apr 2026 16:04:25 +0000 Manifest next update: Sat 11 Apr 2026 16:04:25 +0000 Files and hashes: 1: NjlSt_QXggYJMArokUgSGEuPw9w.crl (hash: pRNRU1GUCMmX9jiIS7UE4XQJPbZqIzhCFjULJvRSHgQ=) 2: EC1B43EA393111EAA1873746C4F9AE02.roa (hash: Y1gVzkwfOLuyPoIfE59zPK8DMvF4H060KJy8V8tGtwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 16:04:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7432 (0x1d08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A70FA, serialNumber=363952B7F417820609300AE8914812184B8FC3DC Validity Not Before: Apr 4 16:04:25 2026 GMT Not After : Apr 11 16:04:25 2026 GMT Subject: CN=69d13689-2d5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:16:1a:87:2e:74:c9:da:83:b6:81:04:a1:05: 03:29:68:09:10:fb:ac:30:d5:3b:cd:45:de:82:20: 92:a4:55:89:b3:bf:43:06:1e:e6:d0:aa:0f:86:35: 01:7b:3a:38:57:de:ae:b3:a0:c3:4f:0a:3c:12:ab: fe:31:b9:5a:e9:08:6c:68:09:42:71:2d:50:c2:fb: 79:68:b8:12:78:b5:83:27:f9:b2:40:4d:4f:1c:1d: a8:c1:5f:84:d9:4d:fa:f7:cd:9a:f3:98:43:6c:e1: 50:10:9e:c3:4f:e5:53:a8:2a:2d:ad:86:f0:ae:45: b8:dd:07:21:de:68:ff:73:e7:1a:30:d8:af:f8:ec: bd:4e:67:a4:14:51:fc:07:0c:cd:ca:95:ae:ca:3e: 5c:23:9f:5a:5e:34:6b:61:31:73:be:ef:10:de:7b: 02:58:9b:9e:39:ca:dd:7b:14:f2:cb:9f:d8:56:48: b5:19:1d:50:e3:b7:bf:eb:89:16:f7:d9:5b:74:91: 93:76:20:24:f4:9f:57:e7:7b:05:07:d6:ec:1c:7d: 87:ef:d3:64:77:cd:0d:59:73:24:5b:4c:ef:67:6c: a4:10:43:34:9a:5d:5a:53:db:55:78:99:5b:74:6f: 7e:52:9e:1c:ff:7d:51:3b:11:bd:4b:d9:3e:39:78: f0:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:38:F5:CA:C6:ED:9A:4E:2E:15:1C:E3:CF:25:7D:92:37:F7:8C:49 X509v3 Authority Key Identifier: keyid:36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:06:08:00:84:7e:61:fc:a9:da:39:38:65:0d:b0:0c:65:56: d6:a0:f7:5a:99:67:89:e5:35:bc:aa:8b:e8:77:05:e7:99:27: 54:42:84:6d:0f:df:8b:60:e5:c5:b4:7d:2e:27:9a:b4:69:f9: ab:52:0f:01:2a:0b:34:e2:ca:31:85:7d:74:c5:c1:73:c1:e8: aa:07:85:de:e5:b2:32:65:32:47:f8:3d:6d:0d:73:79:f9:a2: e9:9f:20:52:a6:81:fe:22:9f:ef:80:95:23:99:c9:01:84:b4: 30:e4:2b:fa:32:0e:25:d6:4e:80:58:45:45:2d:8a:b3:69:7e: d9:f6:99:b8:d1:9f:6c:c9:22:9f:5a:f2:c3:be:1a:9b:db:1c: 3e:49:d4:30:95:d5:8f:15:ee:2f:39:b3:fb:75:1f:c1:d3:ab: 66:a3:ac:2f:b5:ad:51:91:29:07:e7:62:fc:4c:77:0c:6f:76: 3e:b9:c2:11:d3:84:1d:1c:c9:70:71:a1:38:d7:95:e2:85:39: 12:af:bb:98:18:9a:02:1a:c8:b8:76:f6:af:cc:b5:b3:14:7b: 36:82:42:2c:10:18:03:be:99:e3:07:91:e5:aa:b1:63:ba:6d: a0:0f:41:b9:c0:c1:a5:da:c5:84:f6:3c:01:eb:65:2c:cc:67: f9:dc:6f:3b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcwRkExMTAvBgNVBAUTKDM2Mzk1MkI3RjQxNzgyMDYwOTMwMEFFODkxNDgxMjE4 NEI4RkMzREMwHhcNMjYwNDA0MTYwNDI1WhcNMjYwNDExMTYwNDI1WjAYMRYwFAYD VQQDEw02OWQxMzY4OS0yZDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnRYahy50ydqDtoEEoQUDKWgJEPusMNU7zUXegiCSpFWJs79DBh7m0KoPhjUB ezo4V96us6DDTwo8Eqv+Mbla6QhsaAlCcS1Qwvt5aLgSeLWDJ/myQE1PHB2owV+E 2U36982a85hDbOFQEJ7DT+VTqCotrYbwrkW43Qch3mj/c+caMNiv+Oy9TmekFFH8 BwzNypWuyj5cI59aXjRrYTFzvu8Q3nsCWJueOcrdexTyy5/YVki1GR1Q47e/64kW 99lbdJGTdiAk9J9X53sFB9bsHH2H79Nkd80NWXMkW0zvZ2ykEEM0ml1aU9tVeJlb dG9+Up4c/31ROxG9S9k+OXjwpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIs49crG 7ZpOLhUc488lfZI394xJMB8GA1UdIwQYMBaAFDY5Urf0F4IGCTAK6JFIEhhLj8Pc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzBGQS82NEZCN0UxQ0Uz QTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdnWUpNQXJva1VnU0dFdVB3 OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05qbFN0X1FYZ2dZSk1Bcm9rVWdTR0V1UHc5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzBGQS82NEZCN0UxQ0UzQTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdn WUpNQXJva1VnU0dFdVB3OXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXQYIAIR+Yfyp2jk4ZQ2wDGVW1qD3WplnieU1vKqL6HcF55knVEKEbQ/fi2Dl xbR9LieatGn5q1IPASoLNOLKMYV9dMXBc8HoqgeF3uWyMmUyR/g9bQ1zefmi6Z8g UqaB/iKf74CVI5nJAYS0MOQr+jIOJdZOgFhFRS2Ks2l+2faZuNGfbMkin1ryw74a m9scPknUMJXVjxXuLzmz+3UfwdOrZqOsL7WtUZEpB+di/Ex3DG92PrnCEdOEHRzJ cHGhONeV4oU5Eq+7mBiaAhrIuHb2r8y1sxR7NoJCLBAYA76Z4weR5aqxY7ptoA9B ucDBpdrFhPY8AetlLMxn+dxvOw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:40:57 2026 by rpki-client