$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft File: nTwzrLEQPnH6H_PmAT6dwxEiafw.mft (raw, json) Hash identifier: 3uUww+KGQrePEzQ9GTmQK9W/1yeHt77DF9zeZymysnY= Subject key identifier: F2:58:77:71:73:78:8F:C1:2C:C8:89:31:94:F0:B8:1A:63:09:42:57 Authority key identifier: 9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC Certificate issuer: /CN=A91B1E8B/serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Certificate serial: 014B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft Manifest number: 0146 Signing time: Sun 05 Apr 2026 04:43:29 +0000 Manifest this update: Sun 05 Apr 2026 04:43:28 +0000 Manifest next update: Sun 12 Apr 2026 04:43:28 +0000 Files and hashes: 1: nTwzrLEQPnH6H_PmAT6dwxEiafw.crl (hash: jEaZzg7BWCPFLL1h1y45ZNvNEwqfGfOxALxfSUwGwbE=) 2: DD76C09AB16711EFBD483568C4F9AE02.roa (hash: OJIwdILNcKxj0xX6Uj1lld3dWONiR8ZjcGc33mTU5vk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 331 (0x14b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E8B, serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Validity Not Before: Apr 5 04:43:28 2026 GMT Not After : Apr 12 04:43:28 2026 GMT Subject: CN=69d1e871-0861 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:4a:d8:46:27:2d:1e:37:90:54:d0:b9:fd:7d: 74:71:d9:e7:23:c7:35:4a:5e:9a:1c:d8:57:c7:fc: 1b:e0:b1:0a:2a:45:29:83:ee:c3:8b:11:10:4a:83: ca:32:e7:9d:dc:fc:83:11:7c:ed:f8:17:b9:8d:9d: dd:38:61:f9:4b:d5:da:9d:4a:25:35:7c:fd:90:59: 41:cf:f8:f7:d8:a6:d9:aa:c1:b1:bf:19:58:28:5d: ae:9b:54:db:6f:52:fc:22:34:ce:ed:06:b6:c8:7d: 28:68:54:23:e0:fb:8f:51:dd:05:7c:31:83:72:18: d8:7f:a6:11:14:52:63:8a:bd:9c:2e:7c:6a:8e:ce: 50:fe:69:c6:3f:c4:74:21:b8:0e:10:f1:42:78:c0: 90:0c:f9:5b:8e:09:c7:80:f1:b0:8e:47:8c:51:ee: fc:2f:30:81:fb:87:c3:56:a8:3a:78:42:f7:6f:67: 47:9e:25:83:d7:6b:53:82:3c:06:a8:51:7b:f8:c8: 6a:b1:fb:51:44:eb:a7:bd:97:99:a3:3c:27:60:5f: 4e:e5:a6:6b:be:94:1f:6b:e5:85:a9:8e:c9:be:9e: 0c:b5:8e:26:37:47:b6:c5:a1:b1:15:73:26:53:60: 30:6d:a7:8a:0f:42:16:ba:a6:37:50:4b:c9:8d:22: b6:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:58:77:71:73:78:8F:C1:2C:C8:89:31:94:F0:B8:1A:63:09:42:57 X509v3 Authority Key Identifier: keyid:9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:5f:94:ba:e6:33:65:d3:2d:98:25:8e:21:3e:af:ee:e7:fc: 86:a5:65:d4:3a:e4:c3:9d:d1:e9:7d:b2:e4:4c:6c:f7:db:af: ba:5a:f9:ae:eb:23:e0:09:87:ed:65:16:0f:78:ba:09:82:44: 06:40:12:a9:1a:22:c5:4f:f8:b0:f1:22:2c:e7:21:9f:b7:e7: 82:4e:ff:b6:f4:6e:c6:07:f4:8f:a9:1e:79:7f:2f:ff:8d:0f: 86:8e:ee:5c:91:d6:16:63:13:81:86:9b:26:48:85:ec:24:19: 07:47:52:77:36:7e:a2:7c:95:0b:b6:45:92:a2:a3:42:70:bf: b1:09:f0:f7:41:5a:7d:cc:d9:41:75:fa:ef:09:7e:5d:66:f0: ab:57:5e:4a:2b:29:4e:f1:9b:c2:7a:0d:66:19:36:45:32:21: c2:32:e0:3e:6b:2e:46:55:bc:96:ae:b2:b5:5c:65:99:bb:7a: b3:28:f8:80:84:80:3a:c3:31:f4:df:f6:b3:b8:c7:e3:ef:31: 12:27:cd:ad:cf:61:98:14:18:9e:92:05:0b:ad:25:64:4b:5b: aa:b8:b3:8c:b1:7c:e7:c1:50:e0:48:6c:87:1a:ae:24:27:72: 46:d7:ad:fc:ac:c7:7e:6c:a3:db:d4:7b:a9:38:11:ef:dc:ed: 08:07:bb:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFFOEIxMTAvBgNVBAUTKDlEM0MzM0FDQjExMDNFNzFGQTFGRjNFNjAxM0U5REMz MTEyMjY5RkMwHhcNMjYwNDA1MDQ0MzI4WhcNMjYwNDEyMDQ0MzI4WjAYMRYwFAYD VQQDEw02OWQxZTg3MS0wODYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnkrYRictHjeQVNC5/X10cdnnI8c1Sl6aHNhXx/wb4LEKKkUpg+7DixEQSoPK Mued3PyDEXzt+Be5jZ3dOGH5S9XanUolNXz9kFlBz/j32KbZqsGxvxlYKF2um1Tb b1L8IjTO7Qa2yH0oaFQj4PuPUd0FfDGDchjYf6YRFFJjir2cLnxqjs5Q/mnGP8R0 IbgOEPFCeMCQDPlbjgnHgPGwjkeMUe78LzCB+4fDVqg6eEL3b2dHniWD12tTgjwG qFF7+MhqsftRROunvZeZozwnYF9O5aZrvpQfa+WFqY7Jvp4MtY4mN0e2xaGxFXMm U2AwbaeKD0IWuqY3UEvJjSK2/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPJYd3Fz eI/BLMiJMZTwuBpjCUJXMB8GA1UdIwQYMBaAFJ08M6yxED5x+h/z5gE+ncMRImn8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUU4Qi82MjkxNzY0NDQ1 QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBuSDZIX1BtQVQ2ZHd4RWlh ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25Ud3pyTEVRUG5INkhfUG1BVDZkd3hFaWFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUU4Qi82MjkxNzY0NDQ1QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBu SDZIX1BtQVQ2ZHd4RWlhZncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALV+UuuYzZdMtmCWOIT6v7uf8hqVl1Drkw53R6X2y5Exs99uvulr5rusj4AmH 7WUWD3i6CYJEBkASqRoixU/4sPEiLOchn7fngk7/tvRuxgf0j6keeX8v/40Pho7u XJHWFmMTgYabJkiF7CQZB0dSdzZ+onyVC7ZFkqKjQnC/sQnw90FafczZQXX67wl+ XWbwq1deSispTvGbwnoNZhk2RTIhwjLgPmsuRlW8lq6ytVxlmbt6syj4gISAOsMx 9N/2s7jH4+8xEifNrc9hmBQYnpIFC60lZEtbqrizjLF858FQ4EhshxquJCdyRtet /KzHfmyj29R7qTgR79ztCAe7Ww== -----END CERTIFICATE-----Generated at Mon Apr 6 14:03:59 2026 by rpki-client