$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft File: NHTCU5hhEAr9ljoWPIAtAmT47H0.mft (raw, json) Hash identifier: +fYUOMNHtKmIbbUMt5xAfYRlaiZLg0FROD4sHRUKgwM= Subject key identifier: 00:B8:C7:0D:D9:86:C7:BB:18:F2:FB:F6:1F:6B:43:33:EE:12:C7:1E Authority key identifier: 34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D Certificate issuer: /CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Certificate serial: 01BF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft Manifest number: 01B2 Signing time: Fri 17 Apr 2026 03:51:20 +0000 Manifest this update: Fri 17 Apr 2026 03:51:19 +0000 Manifest next update: Fri 24 Apr 2026 03:51:19 +0000 Files and hashes: 1: NHTCU5hhEAr9ljoWPIAtAmT47H0.crl (hash: 39NWh6e3l3/lrwsTi73tdsJ+qQPu3RLjsN4zYjGUoBY=) 2: 8C508DC055F711EFA5200828C4F9AE02.roa (hash: XTrd0la2N5I2OpA4IDj9faZYSv0BZWTOPeQogP74+8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:51:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 447 (0x1bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63AF, serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Validity Not Before: Apr 17 03:51:19 2026 GMT Not After : Apr 24 03:51:19 2026 GMT Subject: CN=69e1ae38-6310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:50:0c:26:eb:0f:f3:ba:15:3c:8c:de:0d:dc: 72:47:44:0f:fd:31:4d:f6:aa:46:ac:eb:08:93:64: 5d:1d:6a:bd:1b:44:71:b1:0b:77:2d:6f:39:8d:a8: 24:7e:36:a9:09:a7:19:10:ef:0f:2e:0e:ce:b7:28: bd:1f:cd:9b:ea:09:cd:bd:d6:c0:2c:f2:5d:5e:89: d7:69:ef:f6:58:7a:9e:9a:81:07:03:54:78:be:4c: 9f:25:cb:19:ca:5c:0d:f9:1e:4b:00:2d:62:40:25: b8:0a:b2:d5:38:d3:6a:4f:3d:90:0d:6c:7c:7a:20: 60:e5:e0:a8:76:47:43:a7:bb:b7:5e:df:62:90:bc: ef:fa:e1:fc:f4:2f:5b:c6:ff:88:c4:95:98:e3:1b: 8d:02:f3:df:e5:b5:6a:73:c0:61:5b:6e:5d:c3:74: 54:05:da:f0:32:58:b8:32:5e:1e:5f:3d:da:3c:f9: a4:82:1e:e2:6a:bf:f7:a8:42:5d:cc:ab:19:45:6d: 20:2c:96:1f:0a:ba:da:02:82:9c:d8:b6:ef:7b:84: b8:12:b9:45:f9:d0:b8:1e:9e:08:af:b7:ab:5a:26: 95:cd:ea:f6:71:b6:0f:de:14:be:48:d1:73:ba:b3: 1a:12:f9:95:9a:4d:74:8f:10:f8:ce:13:08:9a:02: 9d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:B8:C7:0D:D9:86:C7:BB:18:F2:FB:F6:1F:6B:43:33:EE:12:C7:1E X509v3 Authority Key Identifier: keyid:34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:d6:a6:56:3f:a1:ff:ab:46:6d:51:9b:14:85:eb:87:2a:e5: fc:64:02:c2:9a:ae:fa:a7:65:ae:94:f5:d3:29:69:73:db:a3: f8:a3:62:8b:e2:d1:6c:7f:8c:52:d3:ad:a0:e7:f2:57:14:1d: 44:e3:a6:4e:cd:4b:5b:1c:02:de:bd:e2:11:99:f0:22:71:40: d8:23:d4:48:92:10:3a:97:0d:c3:90:0c:82:61:65:5e:22:62: 03:05:1c:b9:e1:6c:52:7b:ae:b4:78:2a:71:d6:56:61:ba:07: e0:fd:00:f9:50:c8:65:d9:f9:d7:71:74:ac:24:f0:a8:f8:8b: 30:8d:b2:da:3e:f6:1f:e2:4a:58:38:3b:ee:9e:d9:a7:d1:c6: 40:ca:86:bf:93:c3:6e:c6:dc:f4:f2:e1:c9:bf:3f:ac:8c:11: 74:d5:47:84:08:76:7d:b1:0a:b2:8b:7c:7d:93:06:7d:fe:e5: 6c:81:ee:76:f2:74:60:4c:d6:81:b4:a7:cb:8a:39:3e:44:82: 95:3e:f6:70:71:d4:7a:71:61:cc:e6:c0:b0:e3:0d:12:62:f5: d2:62:b8:33:b8:f0:ba:5d:de:ab:e5:47:62:f8:88:1e:76:13: 3e:23:15:68:41:13:15:16:3f:da:05:d5:cd:44:cf:01:fc:71: b3:f5:26:2d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYzQUYxMTAvBgNVBAUTKDM0NzRDMjUzOTg2MTEwMEFGRDk2M0ExNjNDODAyRDAy NjRGOEVDN0QwHhcNMjYwNDE3MDM1MTE5WhcNMjYwNDI0MDM1MTE5WjAYMRYwFAYD VQQDEw02OWUxYWUzOC02MzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm1AMJusP87oVPIzeDdxyR0QP/TFN9qpGrOsIk2RdHWq9G0RxsQt3LW85jagk fjapCacZEO8PLg7Otyi9H82b6gnNvdbALPJdXonXae/2WHqemoEHA1R4vkyfJcsZ ylwN+R5LAC1iQCW4CrLVONNqTz2QDWx8eiBg5eCodkdDp7u3Xt9ikLzv+uH89C9b xv+IxJWY4xuNAvPf5bVqc8BhW25dw3RUBdrwMli4Ml4eXz3aPPmkgh7iar/3qEJd zKsZRW0gLJYfCrraAoKc2Lbve4S4ErlF+dC4Hp4Ir7erWiaVzer2cbYP3hS+SNFz urMaEvmVmk10jxD4zhMImgKd1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAC4xw3Z hse7GPL79h9rQzPuEsceMB8GA1UdIwQYMBaAFDR0wlOYYRAK/ZY6FjyALQJk+Ox9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjNBRi80REZFNjgyNEI2 QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVBcjlsam9XUElBdEFtVDQ3 SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05IVENVNWhoRUFyOWxqb1dQSUF0QW1UNDdIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjNBRi80REZFNjgyNEI2QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVB cjlsam9XUElBdEFtVDQ3SDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApdamVj+h/6tGbVGbFIXrhyrl/GQCwpqu+qdlrpT10ylpc9uj+KNii+LRbH+M UtOtoOfyVxQdROOmTs1LWxwC3r3iEZnwInFA2CPUSJIQOpcNw5AMgmFlXiJiAwUc ueFsUnuutHgqcdZWYboH4P0A+VDIZdn513F0rCTwqPiLMI2y2j72H+JKWDg77p7Z p9HGQMqGv5PDbsbc9PLhyb8/rIwRdNVHhAh2fbEKsot8fZMGff7lbIHudvJ0YEzW gbSny4o5PkSClT72cHHUenFhzObAsOMNEmL10mK4M7jwul3eq+VHYviIHnYTPiMV aEETFRY/2gXVzUTPAfxxs/UmLQ== -----END CERTIFICATE-----Generated at Sat Apr 18 21:04:14 2026 by rpki-client