$ rpki-client -vvf rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft File: NxkwlLzz42Ui-tvxlU7l_51gHg4.mft (raw, json) Hash identifier: dOZ4NsWC99OcJeAPtmfGzdwvdBCpxolrKqhnpY/whmU= Subject key identifier: FF:5B:71:48:AA:96:92:0A:8A:04:08:51:01:94:27:D1:81:B7:41:BE Authority key identifier: 37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E Certificate issuer: /CN=A9134285/serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Certificate serial: 06EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft Manifest number: 06E2 Signing time: Thu 16 Apr 2026 22:06:28 +0000 Manifest this update: Thu 16 Apr 2026 22:06:27 +0000 Manifest next update: Thu 23 Apr 2026 22:06:27 +0000 Files and hashes: 1: NxkwlLzz42Ui-tvxlU7l_51gHg4.crl (hash: HF/TO+3z15Sm05FYGFQ7ZkdxZOpUhguRAGq2pzUtc5Y=) 2: 3A00D342928511EB8B3AAC22C4F9AE02.roa (hash: DwLWbaH491LezXO/dRRlBiRkCK9v5uh/8b+Lh4o9bzY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1770 (0x6ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134285, serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Validity Not Before: Apr 16 22:06:27 2026 GMT Not After : Apr 23 22:06:27 2026 GMT Subject: CN=69e15d64-99cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:92:fa:4e:8d:f9:a1:9f:ab:fa:6e:58:57:fa: ec:70:b4:97:20:44:d8:32:56:8d:19:a8:62:0d:dd: 14:78:50:97:b5:39:28:c3:23:d8:4a:fd:a4:ba:c4: 0a:05:50:08:ad:4d:25:ed:a7:90:29:bc:38:f5:a2: 9c:cb:f9:69:f2:c6:20:39:b8:d9:f4:18:e6:70:1a: 95:10:33:20:d2:d5:37:d0:29:3b:1b:13:d7:c4:9c: b2:5b:76:52:bb:e4:55:50:6b:f8:ab:82:0b:55:7e: c7:21:9c:13:1c:33:1d:3e:0b:08:57:42:16:40:f4: 3b:ae:ec:41:ed:37:dd:95:d3:8a:52:1b:73:31:f1: 46:b3:cd:58:76:18:6c:72:be:af:10:6c:70:48:00: bd:fc:73:ad:23:20:47:b3:c9:69:53:dd:49:8f:2f: 20:b8:30:bd:ff:29:bc:ad:77:4b:0c:00:a6:7f:32: 14:ee:63:df:85:e9:69:1b:b5:c9:8f:bc:b4:8f:d5: 70:6e:03:44:17:1c:b9:d0:7b:89:9e:d0:e5:38:d2: 0b:77:98:71:41:02:63:eb:1c:5a:9d:a8:e5:e7:54: fa:14:1b:a6:cd:37:b4:25:82:42:d1:a4:18:4c:7d: bf:23:50:ea:39:f7:c4:8a:9a:aa:f7:03:a6:e4:b1: c1:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:5B:71:48:AA:96:92:0A:8A:04:08:51:01:94:27:D1:81:B7:41:BE X509v3 Authority Key Identifier: keyid:37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:bf:15:82:99:e4:da:bc:6a:f0:e5:4a:68:a9:ee:1e:13:ca: 6a:b6:27:42:f8:a1:b0:59:46:8e:0d:ea:59:d0:05:2d:97:58: f7:49:4e:df:19:23:9b:5a:88:b0:5e:eb:b8:14:c9:c9:8d:6b: b4:6c:8d:1e:13:22:3c:6b:2e:92:0f:b8:8a:96:fd:1b:f9:56: 61:ec:b8:8b:31:98:94:fa:4f:9d:da:4e:39:26:bd:3a:18:ea: 5b:01:ca:45:e6:72:8a:6e:c1:51:23:e8:43:43:36:8a:20:44: 53:41:2f:59:c6:5d:d3:eb:22:23:cc:29:ae:d4:01:a3:e6:46: 37:c4:69:31:1d:71:58:19:28:fc:8f:b8:62:58:31:ae:9f:d7: 3a:b2:d8:dc:74:0a:42:8e:b5:2d:68:35:81:e7:49:74:f6:1d: de:b0:a2:3a:f1:ff:7d:7e:67:64:10:f4:e8:de:05:51:e1:81: b1:2d:77:a8:42:e9:b8:94:da:9e:ea:d4:0a:86:e8:4f:7e:71: c4:3d:21:7b:1c:a6:dc:76:b0:0e:6f:2c:94:8d:cf:0d:44:b6: 9d:36:a1:3e:d3:7f:09:bd:ed:2e:73:c0:94:49:71:5b:67:5e: 80:7a:53:ce:58:54:f9:f9:38:c6:51:17:fc:e6:bf:b8:e0:8f: e7:15:0c:57 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyODUxMTAvBgNVBAUTKDM3MTkzMDk0QkNGM0UzNjUyMkZBREJGMTk1NEVFNUZG OUQ2MDFFMEUwHhcNMjYwNDE2MjIwNjI3WhcNMjYwNDIzMjIwNjI3WjAYMRYwFAYD VQQDEw02OWUxNWQ2NC05OWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAspL6To35oZ+r+m5YV/rscLSXIETYMlaNGahiDd0UeFCXtTkowyPYSv2kusQK BVAIrU0l7aeQKbw49aKcy/lp8sYgObjZ9BjmcBqVEDMg0tU30Ck7GxPXxJyyW3ZS u+RVUGv4q4ILVX7HIZwTHDMdPgsIV0IWQPQ7ruxB7TfdldOKUhtzMfFGs81Ydhhs cr6vEGxwSAC9/HOtIyBHs8lpU91Jjy8guDC9/ym8rXdLDACmfzIU7mPfhelpG7XJ j7y0j9VwbgNEFxy50HuJntDlONILd5hxQQJj6xxanajl51T6FBumzTe0JYJC0aQY TH2/I1DqOffEipqq9wOm5LHBIwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP9bcUiq lpIKigQIUQGUJ9GBt0G+MB8GA1UdIwQYMBaAFDcZMJS88+NlIvrb8ZVO5f+dYB4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDI4NS82RjE1QjU3Mjky ODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQyVWktdHZ4bFU3bF81MWdI ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL054a3dsTHp6NDJVaS10dnhsVTdsXzUxZ0hnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDI4NS82RjE1QjU3MjkyODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQy VWktdHZ4bFU3bF81MWdIZzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnL8Vgpnk2rxq8OVKaKnuHhPKarYnQvihsFlGjg3qWdAFLZdY90lO3xkjm1qI sF7ruBTJyY1rtGyNHhMiPGsukg+4ipb9G/lWYey4izGYlPpPndpOOSa9OhjqWwHK ReZyim7BUSPoQ0M2iiBEU0EvWcZd0+siI8wprtQBo+ZGN8RpMR1xWBko/I+4Ylgx rp/XOrLY3HQKQo61LWg1gedJdPYd3rCiOvH/fX5nZBD06N4FUeGBsS13qELpuJTa nurUCoboT35xxD0hexym3HawDm8slI3PDUS2nTahPtN/Cb3tLnPAlElxW2degHpT zlhU+fk4xlEX/Oa/uOCP5xUMVw== -----END CERTIFICATE-----Generated at Sat Apr 18 00:30:45 2026 by rpki-client