$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft File: -NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft (raw, json) Hash identifier: n+/7A1qHwtMCdywokjYEowB85rOm/qUizK76tICDYvc= Subject key identifier: 24:75:C3:2E:9B:54:57:81:FB:75:FF:1C:6F:CA:CB:EC:E0:DE:48:54 Authority key identifier: F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 Certificate issuer: /CN=A91DC46A/serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Certificate serial: 1EDA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft Manifest number: 1E97 Signing time: Sat 04 Apr 2026 15:59:42 +0000 Manifest this update: Sat 04 Apr 2026 15:59:42 +0000 Manifest next update: Sat 11 Apr 2026 15:59:42 +0000 Files and hashes: 1: -NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl (hash: IC2L2rR314yoq9mHkgSzmktxcKvH1EkAYgHTsFFDyd8=) 2: C86831A80CB311EDB2750F60C4F9AE02.roa (hash: RsEExvcwJC5E9KwjY1oAwXxgW1IttoQBiLKiJe8oXuE=) 3: 527AA5C69F4F11EAA7970484C4F9AE02.roa (hash: cWHGKEyK1/n+XzphhsGriIZiXwfaKLq/Wm0XGKlIaZU=) 4: BD6571EEC0AC11EF8F832C34C4F9AE02.roa (hash: LnqeCppjvfZw+kjrXoa/2ToWPDmJSTa9ohrJhVPCflE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:59:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7898 (0x1eda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC46A, serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Validity Not Before: Apr 4 15:59:42 2026 GMT Not After : Apr 11 15:59:42 2026 GMT Subject: CN=69d1356e-3146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:73:71:f6:a8:a6:7a:5c:ad:07:e5:cd:9f:a3: a5:97:5f:e8:bb:13:69:5c:30:d8:c1:53:1e:55:27: ce:9b:c9:42:03:8b:66:81:cf:0b:af:8f:3a:21:3f: 07:18:d0:69:71:7a:88:58:6e:09:74:06:2a:aa:45: 1c:44:1f:0f:24:ee:e3:cf:a8:b8:36:a2:d5:cc:36: cc:47:dd:fd:0f:74:80:b1:a9:9e:ba:8c:95:90:9d: c2:be:e7:ad:70:98:92:3c:25:a4:72:70:ed:52:8e: aa:90:16:8e:c4:29:8a:4f:a7:97:12:cb:67:6b:83: 9e:47:63:d9:f2:88:23:25:86:bc:10:ef:49:2b:00: 5b:b3:12:e0:70:1d:b0:b5:b5:65:03:a8:7d:f1:5a: f0:df:4b:48:c4:be:82:e9:c0:4d:36:01:28:58:e3: 79:38:03:44:b8:4c:54:61:17:8a:24:81:50:d7:91: 0b:a6:5c:b8:1c:84:00:80:27:c4:31:42:a5:c2:91: f0:72:b9:6a:25:3d:d0:98:1e:34:40:b0:c8:e9:4e: 1f:b3:54:52:d2:dd:c1:f5:49:00:76:c9:26:ac:a8: 9e:ec:0d:b4:18:f9:02:0f:a6:6c:68:43:d7:ff:44: 49:57:84:01:61:9b:d8:9e:80:0a:0c:6e:79:5e:a7: f5:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:75:C3:2E:9B:54:57:81:FB:75:FF:1C:6F:CA:CB:EC:E0:DE:48:54 X509v3 Authority Key Identifier: keyid:F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:be:50:97:0a:5f:3a:68:09:05:bc:98:7c:f4:f3:d1:07:ab: 69:89:b4:fd:2a:19:56:23:c7:f6:91:fd:74:34:23:1a:02:91: 38:8c:8a:35:88:e6:3a:d8:3f:0b:99:d7:7d:66:3e:7c:a4:28: db:e5:eb:61:aa:4b:95:5b:de:db:cd:0a:cc:88:9f:b1:ee:55: 14:87:2f:05:eb:1a:41:34:91:44:2f:59:28:01:59:ed:44:f7: 9f:46:fd:9e:ca:5c:b9:76:69:b5:ce:a4:7a:86:fd:78:49:ae: dc:32:0c:72:55:fd:6e:12:8b:4b:9d:d0:a9:0f:a5:58:e6:2f: 81:1e:48:ec:f6:e8:ee:75:13:35:d0:ef:df:c8:b7:54:b7:ea: 65:ae:58:44:de:fb:05:90:22:2b:90:26:80:1b:5b:20:20:7d: e7:b4:d8:a3:ed:25:1d:a6:f9:7f:12:53:89:e0:f9:0d:87:a7: 4b:bf:6d:b4:36:cb:e2:2e:36:85:1a:d3:c4:b1:2c:6f:6b:1a: 7e:81:b1:e8:59:aa:9b:f5:dd:87:67:07:91:be:94:f0:18:e6: e1:76:eb:3f:95:19:9a:92:ed:85:4c:65:c7:4e:0d:e3:cb:16: 83:f6:f7:a0:e5:e0:5e:02:2c:15:16:28:39:d3:d5:ac:21:62: 2b:08:90:24 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NkExMTAvBgNVBAUTKEY4RDRBNjMyRDA2OTk2NEM2MUEzM0U0MUQ2MjQzRDUz NUIwMDdENTQwHhcNMjYwNDA0MTU1OTQyWhcNMjYwNDExMTU1OTQyWjAYMRYwFAYD VQQDEw02OWQxMzU2ZS0zMTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHNx9qimelytB+XNn6Oll1/ouxNpXDDYwVMeVSfOm8lCA4tmgc8Lr486IT8H GNBpcXqIWG4JdAYqqkUcRB8PJO7jz6i4NqLVzDbMR939D3SAsameuoyVkJ3Cvuet cJiSPCWkcnDtUo6qkBaOxCmKT6eXEstna4OeR2PZ8ogjJYa8EO9JKwBbsxLgcB2w tbVlA6h98Vrw30tIxL6C6cBNNgEoWON5OANEuExUYReKJIFQ15ELply4HIQAgCfE MUKlwpHwcrlqJT3QmB40QLDI6U4fs1RS0t3B9UkAdskmrKie7A20GPkCD6ZsaEPX /0RJV4QBYZvYnoAKDG55Xqf14wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCR1wy6b VFeB+3X/HG/Ky+zg3khUMB8GA1UdIwQYMBaAFPjUpjLQaZZMYaM+QdYkPVNbAH1U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ2QS8wMDUwMDE2NDk0 MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxreGhvejVCMWlROVUxc0Fm VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OU21NdEJwbGt4aG96NUIxaVE5VTFzQWZWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ2QS8wMDUwMDE2NDk0MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxr eGhvejVCMWlROVUxc0FmVlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiL5QlwpfOmgJBbyYfPTz0QeraYm0/SoZViPH9pH9dDQjGgKROIyKNYjmOtg/ C5nXfWY+fKQo2+XrYapLlVve280KzIifse5VFIcvBesaQTSRRC9ZKAFZ7UT3n0b9 nspcuXZptc6keob9eEmu3DIMclX9bhKLS53QqQ+lWOYvgR5I7Pbo7nUTNdDv38i3 VLfqZa5YRN77BZAiK5AmgBtbICB957TYo+0lHab5fxJTieD5DYenS79ttDbL4i42 hRrTxLEsb2safoGx6Fmqm/Xdh2cHkb6U8Bjm4XbrP5UZmpLthUxlx04N48sWg/b3 oOXgXgIsFRYoOdPVrCFiKwiQJA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:53:44 2026 by rpki-client