$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft File: NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft (raw, json) Hash identifier: q4y0Ioq1vjEtRpuKBO53kuwrA7njNEoofXIAYHogeDQ= Subject key identifier: C2:FC:0B:58:9C:5B:32:1F:12:DF:CC:80:C7:9C:90:44:F0:FD:BB:F9 Authority key identifier: 34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 Certificate issuer: /CN=A91FA562/serialNumber=340F813433719A760E3BFE21933687261179C327 Certificate serial: 0217 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft Manifest number: 0211 Signing time: Sun 05 Apr 2026 02:30:18 +0000 Manifest this update: Sun 05 Apr 2026 02:30:18 +0000 Manifest next update: Sun 12 Apr 2026 02:30:18 +0000 Files and hashes: 1: NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl (hash: IEQd3mf/UzMQId14Jqg5xJFCIhF8nLvhZ9OzCpQnYfc=) 2: 7588035C913E11EFB46E9A72C4F9AE02.roa (hash: MmWRFerEe26M/98UPURwOZll8JnafXZbQUp9p9WdUVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:30:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 535 (0x217) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA562, serialNumber=340F813433719A760E3BFE21933687261179C327 Validity Not Before: Apr 5 02:30:18 2026 GMT Not After : Apr 12 02:30:18 2026 GMT Subject: CN=69d1c93a-0993 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:07:4f:e4:77:7c:55:82:7a:dc:10:fd:d5:2b: a7:f9:6d:04:e1:a3:f9:c8:bb:de:51:ab:2e:29:74: 00:60:f2:4e:a0:9a:fe:97:91:a3:5b:4d:97:e7:ff: f8:8f:72:e4:ad:ef:b5:d4:2e:9f:30:d2:ec:8c:da: c2:f7:70:6d:dd:23:d6:5c:63:44:67:39:ce:e1:62: 23:36:2e:b4:c3:a8:91:c7:c0:03:28:e4:9b:f0:62: e5:35:af:cb:16:dc:e0:2a:ea:8a:83:7e:ed:16:97: df:a1:ab:89:be:0e:57:1c:6f:51:29:f6:e0:2b:51: 91:23:62:ab:4e:dc:7f:7a:bf:89:68:63:91:cd:65: 21:ff:b3:5d:74:27:49:dd:9a:fa:27:ed:96:77:0c: 0b:f1:57:5e:9d:a6:72:c6:9e:d9:6e:d7:68:38:ce: dd:58:ec:e5:63:6e:79:41:d5:ef:f8:ba:e8:63:9e: 52:f3:83:58:9c:ca:f9:84:a5:25:fb:77:9e:66:8d: 54:c1:07:55:be:dd:ed:7c:54:a9:b7:97:d7:78:51: d9:c9:a4:c8:28:b5:17:5b:66:54:ef:dc:e6:03:82: 34:78:96:fc:81:fd:1c:ae:f5:42:d2:69:2a:3f:fd: d6:1e:03:c7:67:21:ff:f1:53:39:e7:9b:79:94:52: cc:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:FC:0B:58:9C:5B:32:1F:12:DF:CC:80:C7:9C:90:44:F0:FD:BB:F9 X509v3 Authority Key Identifier: keyid:34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:23:3e:7e:b6:17:4c:bd:10:06:c0:98:de:80:e4:e5:ff:4c: cc:96:13:7e:69:e7:71:c3:2d:9c:d5:3e:97:28:29:51:db:fa: 5e:4f:7e:66:b4:94:96:cd:fe:96:18:6f:07:96:c7:90:0a:46: bf:26:96:4f:47:a6:f0:ce:cb:8e:f8:a3:78:87:7b:4c:2e:37: 6d:9c:1b:65:76:a5:83:6d:fe:7b:f9:91:2c:3f:3d:c9:4a:59: cb:17:46:92:03:2c:80:78:71:7b:e6:46:3c:26:f2:c2:bb:09: 6f:ff:40:72:56:16:96:3c:41:cc:5b:d2:4d:9b:8e:83:89:43: b8:f4:4a:a5:46:f2:95:ab:2f:93:12:c9:b6:9a:20:fb:39:07: 3b:a3:55:18:1a:80:3c:3a:07:dd:5f:c8:78:ef:4b:95:45:9c: 00:9e:04:ab:1e:b4:3e:6b:1e:5d:ad:be:f5:7a:ae:01:26:f7: d0:fe:6d:7e:61:b0:d2:fe:ca:30:7f:36:d9:dc:4f:9c:94:5e: dc:ac:92:5d:46:48:48:dd:05:09:4f:3b:75:9d:d7:56:74:34: 1d:d9:62:b7:c9:8a:1b:60:da:21:b4:62:6e:60:42:87:63:f4: d8:ef:12:f2:d4:2c:39:e1:07:87:c8:10:bc:f0:bb:a6:51:15: 33:21:43:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1NjIxMTAvBgNVBAUTKDM0MEY4MTM0MzM3MTlBNzYwRTNCRkUyMTkzMzY4NzI2 MTE3OUMzMjcwHhcNMjYwNDA1MDIzMDE4WhcNMjYwNDEyMDIzMDE4WjAYMRYwFAYD VQQDEw02OWQxYzkzYS0wOTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgdP5Hd8VYJ63BD91Sun+W0E4aP5yLveUasuKXQAYPJOoJr+l5GjW02X5//4 j3Lkre+11C6fMNLsjNrC93Bt3SPWXGNEZznO4WIjNi60w6iRx8ADKOSb8GLlNa/L FtzgKuqKg37tFpffoauJvg5XHG9RKfbgK1GRI2KrTtx/er+JaGORzWUh/7NddCdJ 3Zr6J+2WdwwL8VdenaZyxp7ZbtdoOM7dWOzlY255QdXv+LroY55S84NYnMr5hKUl +3eeZo1UwQdVvt3tfFSpt5fXeFHZyaTIKLUXW2ZU79zmA4I0eJb8gf0crvVC0mkq P/3WHgPHZyH/8VM555t5lFLMrQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFML8C1ic WzIfEt/MgMeckETw/bv5MB8GA1UdIwQYMBaAFDQPgTQzcZp2Djv+IZM2hyYRecMn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTU2Mi8yNjU3RjczRTBC QzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1uWU9PXzRoa3phSEpoRjV3 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BLUJORE54bW5ZT09fNGhremFISmhGNXd5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTU2Mi8yNjU3RjczRTBCQzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1u WU9PXzRoa3phSEpoRjV3eWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADSM+frYXTL0QBsCY3oDk5f9MzJYTfmnnccMtnNU+lygpUdv6Xk9+ZrSUls3+ lhhvB5bHkApGvyaWT0em8M7LjvijeId7TC43bZwbZXalg23+e/mRLD89yUpZyxdG kgMsgHhxe+ZGPCbywrsJb/9AclYWljxBzFvSTZuOg4lDuPRKpUbylasvkxLJtpog +zkHO6NVGBqAPDoH3V/IeO9LlUWcAJ4Eqx60PmseXa2+9XquASb30P5tfmGw0v7K MH822dxPnJRe3KySXUZISN0FCU87dZ3XVnQ0Hdlit8mKG2DaIbRibmBCh2P02O8S 8tQsOeEHh8gQvPC7plEVMyFDZQ== -----END CERTIFICATE-----Generated at Mon Apr 6 09:57:35 2026 by rpki-client