$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft File: NSX5xUTpmw5jRgCZyS39lNSb9so.mft (raw, json) Hash identifier: 1nNN6C3EEjPgv1HjrTa0OKVN6cEphS6W5uHRjfsSs0M= Subject key identifier: E0:E7:C6:7A:72:78:1D:1D:E2:0F:67:6A:1C:5A:B5:DF:18:D8:3C:AC Authority key identifier: 35:25:F9:C5:44:E9:9B:0E:63:46:00:99:C9:2D:FD:94:D4:9B:F6:CA Certificate issuer: /CN=A91D9D7A/serialNumber=3525F9C544E99B0E63460099C92DFD94D49BF6CA Certificate serial: 02F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSX5xUTpmw5jRgCZyS39lNSb9so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft Manifest number: 02EC Signing time: Thu 21 May 2026 01:22:52 +0000 Manifest this update: Thu 21 May 2026 01:22:51 +0000 Manifest next update: Thu 28 May 2026 01:22:51 +0000 Files and hashes: 1: NSX5xUTpmw5jRgCZyS39lNSb9so.crl (hash: 2Q6aYsFPcwD2tvAGJti1p2sqD/+MBwhdsSSk0oRclzE=) 2: 81B7763C280211ED93948C10C4F9AE02.roa (hash: cFYWu32x1i7BJE6ej7tEMyDU8GB+7ACwMuOY9C/hNmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.crl rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSX5xUTpmw5jRgCZyS39lNSb9so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 754 (0x2f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D7A, serialNumber=3525F9C544E99B0E63460099C92DFD94D49BF6CA Validity Not Before: May 21 01:22:51 2026 GMT Not After : May 28 01:22:51 2026 GMT Subject: CN=6a0e5e6b-9f1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1d:6f:43:6d:31:81:35:c4:df:7c:d3:20:97: b2:16:34:57:99:5d:ce:f7:2c:f7:79:59:34:08:14: 15:b8:3a:90:b4:c9:e4:a7:0b:f2:f9:2c:a7:fe:a0: ff:9d:96:e5:93:ff:d3:db:65:e9:42:8b:44:f3:3b: 36:8f:50:df:3f:7e:40:e2:3b:6e:68:ee:68:56:c2: 9d:b5:44:eb:e5:15:0b:45:69:bd:65:e1:c9:fb:9d: f9:48:1a:ce:19:f3:fa:b2:bc:7f:71:c7:45:07:17: 4c:fc:cf:09:4a:2a:04:42:a2:78:9b:ed:a8:12:8c: 64:d2:e1:31:8d:d6:7c:c4:b0:d0:28:68:2d:d7:4d: 81:91:ed:9b:07:f1:ce:c1:67:c9:fb:da:e6:8b:cb: 70:98:69:25:c2:c6:9a:a6:5d:0f:e3:b9:67:34:55: d9:a9:18:42:10:dc:94:0e:71:aa:25:1b:64:48:8a: 72:d5:ee:1b:c4:19:7c:7b:10:4a:74:71:08:5d:e2: 84:89:25:41:ed:81:22:94:d4:69:2a:54:3f:8c:bf: cb:2c:be:7f:58:8e:15:75:ac:eb:3b:df:1e:7d:72: a0:bb:f5:61:8a:ca:43:b5:46:4d:03:3d:63:5b:1a: ba:41:26:42:66:6f:f4:1c:1b:d4:34:b9:09:aa:79: b8:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:E7:C6:7A:72:78:1D:1D:E2:0F:67:6A:1C:5A:B5:DF:18:D8:3C:AC X509v3 Authority Key Identifier: keyid:35:25:F9:C5:44:E9:9B:0E:63:46:00:99:C9:2D:FD:94:D4:9B:F6:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSX5xUTpmw5jRgCZyS39lNSb9so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:6f:82:90:47:db:0c:72:ee:84:79:00:37:f5:ef:81:4e:ca: 05:86:34:26:db:8f:c0:95:e9:af:cb:36:09:08:c2:6f:31:34: 39:50:6f:df:00:82:b3:f7:59:df:ee:69:54:0e:d3:12:d6:db: a7:ee:e3:91:58:2d:6f:28:70:13:2e:87:34:1f:46:c4:83:04: db:cf:1d:8e:f6:f4:7b:6c:35:75:c0:55:2a:60:b0:22:e2:8b: 31:f4:a6:87:1a:9a:28:22:9a:53:74:4a:0a:37:3b:9c:55:2d: f6:b2:76:08:d6:21:85:03:c4:04:90:ab:c7:5e:bd:fc:6b:9b: 23:b9:f2:84:e7:88:0c:59:4f:51:0e:e3:8b:23:6e:0d:49:d4: be:8f:1d:eb:91:a8:87:54:63:34:b7:80:d4:43:78:f3:49:6b: d1:6b:fb:32:c4:50:ac:f1:b8:89:9b:99:1a:9a:ed:de:70:ce: 03:55:56:7c:bf:c9:8b:90:1c:06:da:89:86:13:32:2b:d7:47: 52:8b:c5:95:49:9c:79:9e:16:fb:40:43:d0:4b:30:6d:89:b5: af:6c:eb:04:8b:0b:e4:4d:66:b0:9f:6b:f5:ad:8a:ca:c2:88: 1b:6f:83:a5:62:ba:d0:2f:8f:53:c1:70:3e:46:51:09:bc:15: e0:a7:79:19 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEN0ExMTAvBgNVBAUTKDM1MjVGOUM1NDRFOTlCMEU2MzQ2MDA5OUM5MkRGRDk0 RDQ5QkY2Q0EwHhcNMjYwNTIxMDEyMjUxWhcNMjYwNTI4MDEyMjUxWjAYMRYwFAYD VQQDEw02YTBlNWU2Yi05ZjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuR1vQ20xgTXE33zTIJeyFjRXmV3O9yz3eVk0CBQVuDqQtMnkpwvy+Syn/qD/ nZblk//T22XpQotE8zs2j1DfP35A4jtuaO5oVsKdtUTr5RULRWm9ZeHJ+535SBrO GfP6srx/ccdFBxdM/M8JSioEQqJ4m+2oEoxk0uExjdZ8xLDQKGgt102Bke2bB/HO wWfJ+9rmi8twmGklwsaapl0P47lnNFXZqRhCENyUDnGqJRtkSIpy1e4bxBl8exBK dHEIXeKEiSVB7YEilNRpKlQ/jL/LLL5/WI4VdazrO98efXKgu/VhispDtUZNAz1j Wxq6QSZCZm/0HBvUNLkJqnm4OQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFODnxnpy eB0d4g9nahxatd8Y2DysMB8GA1UdIwQYMBaAFDUl+cVE6ZsOY0YAmckt/ZTUm/bK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ3QS84OUE5QUEyNDI3 ODMxMUVEOUJBMDI0NTBDNEY5QUUwMi9OU1g1eFVUcG13NWpSZ0NaeVMzOWxOU2I5 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05TWDV4VVRwbXc1alJnQ1p5UzM5bE5TYjlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ3QS84OUE5QUEyNDI3ODMxMUVEOUJBMDI0NTBDNEY5QUUwMi9OU1g1eFVUcG13 NWpSZ0NaeVMzOWxOU2I5c28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAb2+CkEfbDHLuhHkAN/XvgU7KBYY0JtuPwJXpr8s2CQjCbzE0OVBv3wCCs/dZ 3+5pVA7TEtbbp+7jkVgtbyhwEy6HNB9GxIME288djvb0e2w1dcBVKmCwIuKLMfSm hxqaKCKaU3RKCjc7nFUt9rJ2CNYhhQPEBJCrx169/GubI7nyhOeIDFlPUQ7jiyNu DUnUvo8d65Goh1RjNLeA1EN480lr0Wv7MsRQrPG4iZuZGprt3nDOA1VWfL/Ji5Ac BtqJhhMyK9dHUovFlUmceZ4W+0BD0EswbYm1r2zrBIsL5E1msJ9r9a2KysKIG2+D pWK60C+PU8FwPkZRCbwV4Kd5GQ== -----END CERTIFICATE-----Generated at Thu May 21 09:39:12 2026 by rpki-client