$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft File: NXR5DY34KztVHjtwJXG69VqemWE.mft (raw, json) Hash identifier: JFbo/tZMsD3srpRDRnlnC9WGh47DjpfdkWkMRPP+ePY= Subject key identifier: 9C:22:4A:9A:C1:87:3F:56:A1:06:D1:75:09:CA:20:0E:AC:3D:39:0B Authority key identifier: 35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 Certificate issuer: /CN=A91CD40B/serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Certificate serial: 012F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft Manifest number: 011D Signing time: Tue 03 Mar 2026 05:36:07 +0000 Manifest this update: Tue 03 Mar 2026 05:36:06 +0000 Manifest next update: Tue 10 Mar 2026 05:36:06 +0000 Files and hashes: 1: NXR5DY34KztVHjtwJXG69VqemWE.crl (hash: NlUChnUuc8PjAwj13NiTmYWalK/+6CO7jQiwrxoKenk=) 2: DA8D1C7EA72311EFBCEB047EC4F9AE02.roa (hash: KOPGS6LMhund+vJdD6XHT18EgiJR1qKIzzUaEq9CH3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 05:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Validity Not Before: Mar 3 05:36:06 2026 GMT Not After : Mar 10 05:36:06 2026 GMT Subject: CN=69a67347-0f35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:37:36:6a:aa:8e:af:5d:a2:8e:e6:ef:6e:62: ef:1e:4c:5d:fc:3e:58:20:c0:c2:56:f8:d4:28:5a: 3f:d9:d2:9c:98:e6:bd:1c:57:f7:80:41:20:79:33: 71:74:6c:df:aa:de:2f:23:13:10:ce:29:17:67:00: 33:bf:07:6e:73:77:6e:61:ad:13:c1:7d:98:43:e1: ef:16:f3:cf:3b:70:28:b2:70:fa:a5:43:36:4d:3f: 76:10:56:73:23:63:9b:e0:b5:c5:d8:90:2f:ab:13: cf:5b:a6:09:bd:fb:78:f0:6a:4d:fd:b3:b4:4e:70: 52:4d:01:1d:9e:b2:ee:85:a0:99:b6:0a:7b:16:ae: 8c:fe:15:1e:68:6d:54:96:e5:7f:7f:7e:e4:a0:b5: ba:08:83:8e:e8:1c:5f:ea:71:ff:91:ae:36:08:39: 08:50:73:15:ba:36:25:3e:c3:61:7b:4d:9a:3d:d1: 71:8a:9a:72:ec:d5:a7:1e:b9:b8:b5:8c:98:30:9a: a4:5c:ca:ff:99:27:a8:b2:4b:92:5a:6f:9a:7e:9c: ea:74:e1:54:0d:fb:f0:59:03:b1:57:b7:31:e1:c3: 40:e3:7b:c9:7b:cf:41:fd:c6:c3:7f:4c:ce:92:1e: 32:52:9e:ed:0a:da:63:a8:1d:32:59:99:1b:e6:be: f8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:22:4A:9A:C1:87:3F:56:A1:06:D1:75:09:CA:20:0E:AC:3D:39:0B X509v3 Authority Key Identifier: keyid:35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:cf:bf:ac:01:5d:66:d2:9e:a8:83:f1:d8:c0:1a:25:9d:9d: 72:db:e0:2b:ec:a6:be:ee:ac:33:05:b8:ba:e2:3a:c7:30:2d: 70:2f:48:e8:15:3d:af:95:81:75:3f:f3:03:b9:e7:25:a4:24: c3:82:23:40:05:a4:81:27:45:48:1a:5e:85:8f:46:8c:84:5b: 74:aa:b7:0f:6e:32:8f:25:a7:51:3f:68:aa:4a:81:a2:4d:56: 51:24:51:92:6e:65:4d:ba:0f:27:42:4c:42:96:40:2b:fa:db: 4a:71:2f:65:c2:e5:3a:8d:76:0a:e3:ac:b4:2b:c0:1f:6a:db: c1:9c:b7:aa:d2:0e:72:3e:6c:f7:27:e5:a5:66:56:69:01:a8: 45:59:31:aa:60:d9:93:d8:57:58:72:61:ae:e3:f2:56:27:48: 7a:a2:7a:74:03:81:15:02:f4:cc:8d:bc:ce:17:02:5e:a8:8b: 4b:4c:d1:be:82:f0:3d:99:5c:e6:a6:04:51:e8:e4:70:ca:fd: 66:b6:e5:34:f1:69:38:ae:d7:ea:34:85:6e:69:5f:f9:30:4d: 01:05:e9:24:0a:af:4a:45:84:0b:25:ad:4b:33:55:dc:3a:7c: d6:15:ad:49:e9:19:e9:6b:26:80:dc:bf:b5:aa:cd:2b:05:26: b2:17:57:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDM1NzQ3OTBEOERGODJCM0I1NTFFM0I3MDI1NzFCQUY1 NUE5RTk5NjEwHhcNMjYwMzAzMDUzNjA2WhcNMjYwMzEwMDUzNjA2WjAYMRYwFAYD VQQDEw02OWE2NzM0Ny0wZjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAojc2aqqOr12ijubvbmLvHkxd/D5YIMDCVvjUKFo/2dKcmOa9HFf3gEEgeTNx dGzfqt4vIxMQzikXZwAzvwduc3duYa0TwX2YQ+HvFvPPO3AosnD6pUM2TT92EFZz I2Ob4LXF2JAvqxPPW6YJvft48GpN/bO0TnBSTQEdnrLuhaCZtgp7Fq6M/hUeaG1U luV/f37koLW6CIOO6Bxf6nH/ka42CDkIUHMVujYlPsNhe02aPdFxippy7NWnHrm4 tYyYMJqkXMr/mSeoskuSWm+afpzqdOFUDfvwWQOxV7cx4cNA43vJe89B/cbDf0zO kh4yUp7tCtpjqB0yWZkb5r74OwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJwiSprB hz9WoQbRdQnKIA6sPTkLMB8GA1UdIwQYMBaAFDV0eQ2N+Cs7VR47cCVxuvVanplh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi82QjVEMkE3Qzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6dFZIanR3SlhHNjlWcWVt V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05YUjVEWTM0S3p0VkhqdHdKWEc2OVZxZW1XRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi82QjVEMkE3Qzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6 dFZIanR3SlhHNjlWcWVtV0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAY8+/rAFdZtKeqIPx2MAaJZ2dctvgK+ymvu6sMwW4uuI6xzAtcC9I6BU9r5WB dT/zA7nnJaQkw4IjQAWkgSdFSBpehY9GjIRbdKq3D24yjyWnUT9oqkqBok1WUSRR km5lTboPJ0JMQpZAK/rbSnEvZcLlOo12CuOstCvAH2rbwZy3qtIOcj5s9yflpWZW aQGoRVkxqmDZk9hXWHJhruPyVidIeqJ6dAOBFQL0zI28zhcCXqiLS0zRvoLwPZlc 5qYEUejkcMr9ZrblNPFpOK7X6jSFbmlf+TBNAQXpJAqvSkWECyWtSzNV3Dp81hWt SekZ6WsmgNy/tarNKwUmshdXWw== -----END CERTIFICATE-----Generated at Wed Mar 4 08:38:43 2026 by rpki-client