$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft File: NM2mWwLxdr_CSHhNqprIp74WU9s.mft (raw, json) Hash identifier: PqdQfqwoWCo1WP0QfpHftVvaBgbveJKpfIui5g/Pv40= Subject key identifier: 5A:20:B9:9E:CA:92:4D:6D:39:93:39:74:5D:72:BE:48:6B:19:93:54 Authority key identifier: 34:CD:A6:5B:02:F1:76:BF:C2:48:78:4D:AA:9A:C8:A7:BE:16:53:DB Certificate issuer: /CN=A91E3DDB/serialNumber=34CDA65B02F176BFC248784DAA9AC8A7BE1653DB Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft Manifest number: A0 Signing time: Sun 05 Apr 2026 06:45:30 +0000 Manifest this update: Sun 05 Apr 2026 06:45:30 +0000 Manifest next update: Sun 12 Apr 2026 06:45:30 +0000 Files and hashes: 1: NM2mWwLxdr_CSHhNqprIp74WU9s.crl (hash: 0MGWMpQIFEtLBVGxXy8ig467bv+wP1oc5pOrpu8XCX0=) 2: B24F568A4C7A11F09CF1A77BC4F9AE02.roa (hash: FsNpTkM6+3f8KZot7Stoju/dwRXl0OyRylfjVSJP04M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.crl rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:45:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3DDB, serialNumber=34CDA65B02F176BFC248784DAA9AC8A7BE1653DB Validity Not Before: Apr 5 06:45:30 2026 GMT Not After : Apr 12 06:45:30 2026 GMT Subject: CN=69d2050a-628c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:20:e2:53:b4:13:b1:10:3a:26:e2:6f:00:fa: e5:6e:f6:ca:e1:8a:62:af:77:12:f3:8b:af:0b:e0: 04:59:cf:32:13:1b:73:40:bd:74:6a:ec:50:55:92: d4:40:e9:cb:8e:ed:40:81:7e:64:fd:c3:9c:cb:4f: 2e:59:ec:a0:6c:f6:f6:f9:53:b9:4c:34:73:ab:74: 02:83:03:91:1b:cd:ce:da:31:e0:d0:49:a4:0d:11: ce:2b:b7:55:85:a8:16:43:af:66:78:c0:24:93:09: e8:64:00:e7:74:8e:92:d8:3c:3e:21:ba:80:03:8a: 8e:5a:56:dc:3e:81:e0:4f:65:66:21:e5:e2:10:d8: d6:c2:1f:97:33:ac:63:18:f8:4a:50:e3:6f:7c:94: b8:3c:16:2e:78:1f:13:c7:b6:1c:a6:ac:55:28:55: 10:8f:5b:6c:fb:5f:70:17:44:71:2b:3a:60:13:e6: 37:94:d2:9e:60:97:8e:e0:01:ec:c9:4b:4b:80:f4: 27:0a:62:a6:8d:19:a4:ff:2c:be:dd:68:10:f1:80: 2c:48:c1:14:0b:ad:bc:24:b9:4e:63:26:ad:72:7b: 70:85:3c:ac:f3:0c:0e:bd:46:e9:43:97:d3:93:50: 7e:a9:41:6a:73:6d:5c:e0:84:45:11:90:4c:f8:23: 29:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:20:B9:9E:CA:92:4D:6D:39:93:39:74:5D:72:BE:48:6B:19:93:54 X509v3 Authority Key Identifier: keyid:34:CD:A6:5B:02:F1:76:BF:C2:48:78:4D:AA:9A:C8:A7:BE:16:53:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:1e:c5:34:48:87:f3:0a:31:62:88:83:dd:2a:67:57:3b:b0: 8f:32:d6:82:0d:e9:7f:9d:6a:cc:1a:59:1b:5c:03:af:b0:3e: 63:2f:13:02:5b:09:87:40:93:85:99:d3:8e:fa:5a:94:36:ce: b8:07:07:ca:ca:8e:c9:63:d2:57:25:be:ef:e3:8b:b2:cc:4c: bf:2f:0d:b5:0b:5c:3b:79:b8:00:8d:72:60:18:84:b6:61:24: 53:94:36:19:b3:27:66:d9:35:85:27:de:20:66:38:89:16:03: e3:64:42:06:87:ff:fe:86:b2:07:09:63:c9:ed:29:24:43:12: fc:e6:0f:48:da:6e:d2:9e:4c:4f:aa:1b:5c:2d:7c:15:9d:6b: a1:7a:d9:af:34:47:b7:ad:38:ba:e7:b6:da:91:83:8f:6a:4e: e9:b9:c1:d8:75:7d:e8:7d:f8:67:77:5b:3b:6a:85:48:12:d2: 65:6c:e4:ee:66:58:cd:77:22:cc:49:d3:b5:19:3b:43:75:fc: 8d:db:da:72:09:56:7f:94:17:93:47:2f:d6:da:2f:ab:3b:4f: c1:51:5f:4d:05:53:c9:25:99:0b:a9:e3:ba:b1:4d:2f:ca:2e: 2b:bc:39:4d:2b:36:0b:3a:a0:83:69:b5:a8:21:2f:91:a5:38: 85:f6:64:de -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEREIxMTAvBgNVBAUTKDM0Q0RBNjVCMDJGMTc2QkZDMjQ4Nzg0REFBOUFDOEE3 QkUxNjUzREIwHhcNMjYwNDA1MDY0NTMwWhcNMjYwNDEyMDY0NTMwWjAYMRYwFAYD VQQDEw02OWQyMDUwYS02MjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCDiU7QTsRA6JuJvAPrlbvbK4Ypir3cS84uvC+AEWc8yExtzQL10auxQVZLU QOnLju1AgX5k/cOcy08uWeygbPb2+VO5TDRzq3QCgwORG83O2jHg0EmkDRHOK7dV hagWQ69meMAkkwnoZADndI6S2Dw+IbqAA4qOWlbcPoHgT2VmIeXiENjWwh+XM6xj GPhKUONvfJS4PBYueB8Tx7YcpqxVKFUQj1ts+19wF0RxKzpgE+Y3lNKeYJeO4AHs yUtLgPQnCmKmjRmk/yy+3WgQ8YAsSMEUC628JLlOYyatcntwhTys8wwOvUbpQ5fT k1B+qUFqc21c4IRFEZBM+CMphwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFoguZ7K kk1tOZM5dF1yvkhrGZNUMB8GA1UdIwQYMBaAFDTNplsC8Xa/wkh4TaqayKe+FlPb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0REQi8wRTNCREFFQzQ3 MjQxMUYwOTVGOTFCMjNDNEY5QUUwMi9OTTJtV3dMeGRyX0NTSGhOcXBySXA3NFdV OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05NMm1Xd0x4ZHJfQ1NIaE5xcHJJcDc0V1U5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0REQi8wRTNCREFFQzQ3MjQxMUYwOTVGOTFCMjNDNEY5QUUwMi9OTTJtV3dMeGRy X0NTSGhOcXBySXA3NFdVOXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIR7FNEiH8woxYoiD3SpnVzuwjzLWgg3pf51qzBpZG1wDr7A+Yy8TAlsJh0CT hZnTjvpalDbOuAcHysqOyWPSVyW+7+OLssxMvy8NtQtcO3m4AI1yYBiEtmEkU5Q2 GbMnZtk1hSfeIGY4iRYD42RCBof//oayBwljye0pJEMS/OYPSNpu0p5MT6obXC18 FZ1roXrZrzRHt604uue22pGDj2pO6bnB2HV96H34Z3dbO2qFSBLSZWzk7mZYzXci zEnTtRk7Q3X8jdvacglWf5QXk0cv1tovqztPwVFfTQVTySWZC6njurFNL8ouK7w5 TSs2Czqgg2m1qCEvkaU4hfZk3g== -----END CERTIFICATE-----Generated at Mon Apr 6 08:47:17 2026 by rpki-client