$ rpki-client -vvf rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft File: NQgZehD-pGpxhGMxT-upOUS2JIs.mft (raw, json) Hash identifier: 9eAMc3DwgzmrwodBF9pqRWQ+ghFZPMlMxRMwWYHgE5k= Subject key identifier: 94:C6:26:4E:F6:C7:F3:AD:1A:70:1F:47:A6:50:5A:2A:D5:B8:6E:4F Authority key identifier: 35:08:19:7A:10:FE:A4:6A:71:84:63:31:4F:EB:A9:39:44:B6:24:8B Certificate issuer: /CN=A912B666/serialNumber=3508197A10FEA46A718463314FEBA93944B6248B Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft Manifest number: 3A Signing time: Sun 01 Mar 2026 10:02:01 +0000 Manifest this update: Sun 01 Mar 2026 10:02:01 +0000 Manifest next update: Sun 08 Mar 2026 10:02:01 +0000 Files and hashes: 1: NQgZehD-pGpxhGMxT-upOUS2JIs.crl (hash: HJhUmK4rICG2pSq3z5S6a6ZaVvvw6helXu50MbEQRUw=) 2: F084D9AADF1B11F0BDFBE1B1616F56BC.roa (hash: CpQzWFpl+Gw/RBNLdgsUn2ZniQcwnVLZoguxqXTYKyI=) 3: 86227722C92A11F0872AB883C4F9AE02.roa (hash: OntMkkZwdIbl5SrNRK1u5UfChSdJYJCs+EVkHCslByQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.crl rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:02:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B666, serialNumber=3508197A10FEA46A718463314FEBA93944B6248B Validity Not Before: Mar 1 10:02:01 2026 GMT Not After : Mar 8 10:02:01 2026 GMT Subject: CN=69a40e99-64dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:15:9b:d5:db:8f:59:36:cb:4a:11:37:53:03: 62:48:f3:c0:f9:f4:8c:aa:ee:e7:9a:f5:a3:36:71: d9:a3:e4:10:84:1b:f7:ae:de:5a:f9:dc:da:4a:12: 10:d0:ca:19:e8:ed:1b:9c:a6:38:34:95:5c:bb:9e: a3:0f:65:d8:da:59:2c:ff:2f:de:93:86:d1:38:8e: 27:9d:83:ed:82:a3:a0:eb:3c:12:58:9c:b1:a3:54: 28:1d:02:5e:53:1f:63:05:3a:43:1e:75:92:10:a1: 18:2d:78:f0:0d:8e:68:17:94:30:ce:74:db:61:7a: 55:30:69:84:92:22:87:6b:e0:12:e0:7b:b9:87:61: f8:8d:7e:90:42:1f:22:29:64:fb:6a:80:88:56:56: 52:2a:e1:27:8a:dc:21:6f:e3:3a:88:1c:1b:2d:6d: 54:3a:3f:fd:ae:1e:67:f7:45:13:1f:8a:0a:8d:6e: 0d:28:4d:b8:be:ac:81:c8:fb:3b:10:f7:c9:1f:b1: c0:dc:f2:e2:0a:3c:2d:9a:04:96:07:d7:97:53:f2: fb:f0:66:87:3a:7f:de:4c:38:63:9c:97:96:55:9a: ce:32:cf:81:f9:6c:c6:a6:1a:10:0b:c7:ed:a7:73: 66:cb:e8:16:0a:82:bd:79:67:e5:d2:cb:f0:aa:de: 0b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:C6:26:4E:F6:C7:F3:AD:1A:70:1F:47:A6:50:5A:2A:D5:B8:6E:4F X509v3 Authority Key Identifier: keyid:35:08:19:7A:10:FE:A4:6A:71:84:63:31:4F:EB:A9:39:44:B6:24:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:d7:ff:9d:74:17:41:7e:6a:88:9b:1a:1f:85:34:34:a6:2f: a0:28:ff:3a:37:fc:81:4d:3f:46:a0:6b:01:55:5a:8f:40:9d: 2f:1e:e0:8f:5c:4f:b9:07:37:68:12:0f:b4:64:e9:49:cf:18: b9:67:d9:91:8c:a6:12:07:c2:91:c4:15:3e:b7:21:3a:62:ac: ee:30:02:eb:91:0f:2d:73:bc:5b:43:e4:a6:d5:e3:d4:7a:e9: 5b:13:38:1a:51:23:2b:34:7d:e0:1d:79:80:8d:5a:23:56:92: 94:30:3f:87:fd:ac:9d:3a:b6:97:e6:2c:c9:c2:29:a6:ea:81: f1:d1:56:13:bc:ae:cd:ea:0b:54:fc:94:f2:07:b3:f8:86:0d: 2c:1f:fb:09:96:66:09:dc:cc:ae:75:cd:b6:e3:66:90:bf:88: 55:99:e7:48:fc:8e:7e:01:65:21:88:ff:62:cd:64:85:38:b5: f3:b9:ba:db:a5:af:8c:2c:de:0d:e0:67:a5:91:c7:ea:aa:5b: 19:ad:e4:57:9c:10:ac:b3:f5:a7:bb:ac:b2:9e:db:20:cc:bb: 1d:3e:59:36:db:6b:02:8f:ab:8a:9e:a4:79:bb:dc:dd:a7:77: 07:f4:7a:71:b8:15:39:c6:9c:5d:57:3f:3e:f2:78:52:c1:d3: 67:65:24:ee -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QjY2NjExMC8GA1UEBRMoMzUwODE5N0ExMEZFQTQ2QTcxODQ2MzMxNEZFQkE5Mzk0 NEI2MjQ4QjAeFw0yNjAzMDExMDAyMDFaFw0yNjAzMDgxMDAyMDFaMBgxFjAUBgNV BAMTDTY5YTQwZTk5LTY0ZGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClFZvV249ZNstKETdTA2JI88D59Iyq7uea9aM2cdmj5BCEG/eu3lr53NpKEhDQ yhno7Rucpjg0lVy7nqMPZdjaWSz/L96ThtE4jiedg+2Co6DrPBJYnLGjVCgdAl5T H2MFOkMedZIQoRgtePANjmgXlDDOdNthelUwaYSSIodr4BLge7mHYfiNfpBCHyIp ZPtqgIhWVlIq4SeK3CFv4zqIHBstbVQ6P/2uHmf3RRMfigqNbg0oTbi+rIHI+zsQ 98kfscDc8uIKPC2aBJYH15dT8vvwZoc6f95MOGOcl5ZVms4yz4H5bMamGhALx+2n c2bL6BYKgr15Z+XSy/Cq3gu5AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUlMYmTvbH 860acB9HplBaKtW4bk8wHwYDVR0jBBgwFoAUNQgZehD+pGpxhGMxT+upOUS2JIsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCNjY2Lzk5MzYxQTdDQzky OTExRjBCMjM4RjI4MUM0RjlBRTAyL05RZ1plaEQtcEdweGhHTXhULXVwT1VTMkpJ cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTlFnWmVoRC1wR3B4aEdNeFQtdXBPVVMySklzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJC NjY2Lzk5MzYxQTdDQzkyOTExRjBCMjM4RjI4MUM0RjlBRTAyL05RZ1plaEQtcEdw eGhHTXhULXVwT1VTMkpJcy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBk1/+ddBdBfmqImxofhTQ0pi+gKP86N/yBTT9GoGsBVVqPQJ0vHuCPXE+5Bzdo Eg+0ZOlJzxi5Z9mRjKYSB8KRxBU+tyE6YqzuMALrkQ8tc7xbQ+Sm1ePUeulbEzga USMrNH3gHXmAjVojVpKUMD+H/aydOraX5izJwimm6oHx0VYTvK7N6gtU/JTyB7P4 hg0sH/sJlmYJ3Myudc2242aQv4hVmedI/I5+AWUhiP9izWSFOLXzubrbpa+MLN4N 4GelkcfqqlsZreRXnBCss/Wnu6yyntsgzLsdPlk222sCj6uKnqR5u9zdp3cH9Hpx uBU5xpxdVz8+8nhSwdNnZSTu -----END CERTIFICATE-----Generated at Sun Mar 1 23:13:52 2026 by rpki-client