$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft File: NHTCU5hhEAr9ljoWPIAtAmT47H0.mft (raw, json) Hash identifier: feX8+eP7eGQwWdz1O2xVyTbUq6UEZqokqhwRas5cv70= Subject key identifier: 5A:16:38:F0:63:27:9C:3E:1B:04:50:6F:2A:87:74:93:F0:72:33:F8 Authority key identifier: 34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D Certificate issuer: /CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Certificate serial: 019D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft Manifest number: 0194 Signing time: Tue 03 Mar 2026 04:02:44 +0000 Manifest this update: Tue 03 Mar 2026 04:02:44 +0000 Manifest next update: Tue 10 Mar 2026 04:02:44 +0000 Files and hashes: 1: NHTCU5hhEAr9ljoWPIAtAmT47H0.crl (hash: cGC1AVpIol55lCJx6PPRHx57CCEjKFZ2Ygdo8G0245I=) 2: 8C508DC055F711EFA5200828C4F9AE02.roa (hash: a4yOG+a8yVbuby/rNhuqmA50P6M9ozdYqvjv6CBNZgE=) 3: 6241069011E111EFBBB70B32C4F9AE02.roa (hash: SoGKG5lRlJDmBi3+hkgBMlRuJcm8XEuk0vZ81unwhDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 04:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63AF, serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Validity Not Before: Mar 3 04:02:44 2026 GMT Not After : Mar 10 04:02:44 2026 GMT Subject: CN=69a65d64-d93e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:8f:dc:28:5c:ff:3f:d3:e3:1e:0e:dc:82:ed: 8d:9b:bb:cc:f2:4b:fa:93:a7:2a:19:e6:4e:98:99: a1:12:de:d6:5c:f7:9e:10:d6:79:a4:98:a0:e9:49: 8e:c6:52:95:e9:b9:cf:99:a0:59:d6:43:c3:2c:de: 41:df:71:d0:7c:5f:3e:8f:a1:3c:03:a6:0d:d4:f6: a2:f9:86:c2:5d:01:44:b5:66:6f:42:f5:27:16:d3: 04:b1:1a:83:8a:95:d6:d6:72:64:fa:ef:60:f1:6e: 42:53:fc:08:3c:b4:57:f0:2a:5d:1c:9b:e4:af:92: 5d:10:e8:03:4b:0f:e9:9e:94:b5:85:70:ea:0e:7f: 88:34:40:b8:29:21:23:c8:3b:d1:05:d7:56:7a:f0: 36:87:86:7a:e5:5d:56:16:b1:b4:d7:1b:ba:9c:61: cf:97:c0:31:fa:3b:2b:3d:b4:fc:e7:84:6e:ea:bc: b0:ff:e9:4d:66:6f:7b:aa:8c:4c:8d:d2:8d:c9:e2: c8:cf:29:14:f7:0c:a3:a9:70:37:cd:52:cf:4a:92: 4d:91:64:65:1d:15:3a:6f:7f:75:79:d4:fa:65:76: bb:a2:ef:ab:70:fa:1e:fa:70:9d:56:84:26:3b:a3: 11:ea:8b:26:c3:d8:d4:a7:76:d4:20:0a:6d:49:04: 3d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:16:38:F0:63:27:9C:3E:1B:04:50:6F:2A:87:74:93:F0:72:33:F8 X509v3 Authority Key Identifier: keyid:34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:79:38:2e:49:2f:f3:47:79:a7:4e:3b:e6:62:50:1b:b5:cd: d6:1e:58:78:3b:b6:99:e2:ab:d5:65:00:c7:24:bf:1c:37:09: 4a:fb:a7:0e:f2:52:3a:1a:74:d0:43:c1:ec:13:a4:70:47:4e: c2:40:3e:d4:7c:8a:15:ed:11:15:7b:af:b0:f8:be:d4:0c:8c: b7:7e:cf:bc:35:94:a8:44:06:75:c8:1d:ce:b2:f8:c8:ee:2b: d6:b6:c4:4c:33:2e:86:b0:ef:28:1b:7b:a2:49:52:0b:e0:89: 52:e5:23:a3:62:b1:5e:20:97:22:cb:b5:b4:fc:12:1a:83:28: b9:59:ac:1a:cd:b5:ee:e9:73:92:24:a3:53:2b:4c:26:b8:79: c2:b9:00:40:fd:68:07:4c:39:fc:3d:a3:ab:f6:40:ea:26:c4: 57:0f:a7:e4:e8:37:1d:5d:c5:d4:99:60:88:76:11:50:1b:8b: b5:a4:7b:c0:9f:30:a6:79:9f:1b:32:d4:4e:b1:27:2b:75:df: b4:84:9f:30:f0:0d:04:fe:28:28:45:da:2d:d5:89:f3:ba:d9: 7c:41:fd:f7:38:bd:41:d6:ee:46:bd:54:69:49:3b:cb:1e:b7: 95:6b:dd:66:5e:ef:05:1c:e1:73:cc:94:48:15:8d:a2:24:41: 20:16:79:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYzQUYxMTAvBgNVBAUTKDM0NzRDMjUzOTg2MTEwMEFGRDk2M0ExNjNDODAyRDAy NjRGOEVDN0QwHhcNMjYwMzAzMDQwMjQ0WhcNMjYwMzEwMDQwMjQ0WjAYMRYwFAYD VQQDEw02OWE2NWQ2NC1kOTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhY/cKFz/P9PjHg7cgu2Nm7vM8kv6k6cqGeZOmJmhEt7WXPeeENZ5pJig6UmO xlKV6bnPmaBZ1kPDLN5B33HQfF8+j6E8A6YN1Pai+YbCXQFEtWZvQvUnFtMEsRqD ipXW1nJk+u9g8W5CU/wIPLRX8CpdHJvkr5JdEOgDSw/pnpS1hXDqDn+INEC4KSEj yDvRBddWevA2h4Z65V1WFrG01xu6nGHPl8Ax+jsrPbT854Ru6ryw/+lNZm97qoxM jdKNyeLIzykU9wyjqXA3zVLPSpJNkWRlHRU6b391edT6ZXa7ou+rcPoe+nCdVoQm O6MR6osmw9jUp3bUIAptSQQ9NwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFoWOPBj J5w+GwRQbyqHdJPwcjP4MB8GA1UdIwQYMBaAFDR0wlOYYRAK/ZY6FjyALQJk+Ox9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjNBRi80REZFNjgyNEI2 QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVBcjlsam9XUElBdEFtVDQ3 SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05IVENVNWhoRUFyOWxqb1dQSUF0QW1UNDdIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjNBRi80REZFNjgyNEI2QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVB cjlsam9XUElBdEFtVDQ3SDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAo3k4Lkkv80d5p0475mJQG7XN1h5YeDu2meKr1WUAxyS/HDcJSvunDvJSOhp0 0EPB7BOkcEdOwkA+1HyKFe0RFXuvsPi+1AyMt37PvDWUqEQGdcgdzrL4yO4r1rbE TDMuhrDvKBt7oklSC+CJUuUjo2KxXiCXIsu1tPwSGoMouVmsGs217ulzkiSjUytM Jrh5wrkAQP1oB0w5/D2jq/ZA6ibEVw+n5Og3HV3F1JlgiHYRUBuLtaR7wJ8wpnmf GzLUTrEnK3XftISfMPANBP4oKEXaLdWJ87rZfEH99zi9QdbuRr1UaUk7yx63lWvd Zl7vBRzhc8yUSBWNoiRBIBZ5ww== -----END CERTIFICATE-----Generated at Wed Mar 4 08:35:32 2026 by rpki-client