$ rpki-client -vvf rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft File: NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft (raw, json) Hash identifier: pXmv2d7qu9Fvsqh+8TfSxlIXQJilSN0Rd+SHlhqvlqg= Subject key identifier: C4:B6:F5:10:C8:E4:87:D8:95:14:1A:CE:7D:BB:B8:A2:31:3E:DF:AB Authority key identifier: 36:40:8C:11:C5:47:2B:82:24:8A:FF:EB:EE:DB:B2:0E:3E:07:A6:CD Certificate issuer: /CN=A913F333/serialNumber=36408C11C5472B82248AFFEBEEDBB20E3E07A6CD Certificate serial: 02E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft Manifest number: 02D9 Signing time: Sun 01 Mar 2026 02:14:14 +0000 Manifest this update: Sun 01 Mar 2026 02:14:14 +0000 Manifest next update: Sun 08 Mar 2026 02:14:14 +0000 Files and hashes: 1: NkCMEcVHK4Ikiv_r7tuyDj4Hps0.crl (hash: YJO3LHeGpkFRp+uWA3nOW9aJubNUn964bZqCKsT7f0o=) 2: 134B439A91B611ED8BA25C80C4F9AE02.roa (hash: jNBzv9AEhkETumwnZVmfkixYJ4ySA7uLCgYaGX6tsDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.crl rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 02:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 743 (0x2e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F333, serialNumber=36408C11C5472B82248AFFEBEEDBB20E3E07A6CD Validity Not Before: Mar 1 02:14:14 2026 GMT Not After : Mar 8 02:14:14 2026 GMT Subject: CN=69a3a0f6-ef5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:dc:b8:94:73:2b:35:a3:54:5b:48:89:42:69: 73:a1:03:c4:16:9b:9d:d1:99:62:a3:38:c6:6e:c6: bd:a4:32:60:18:ed:8e:46:66:82:cd:72:2f:ab:20: 46:1e:ab:6f:0c:30:7e:32:97:59:46:53:c9:de:78: 01:9d:f4:92:1f:82:a0:e5:7b:82:bd:7a:08:dd:f5: d4:da:e8:a7:ea:96:bb:31:7c:ce:a5:9d:94:2d:f2: 57:a0:e6:ca:ec:2c:97:17:90:32:46:4f:6d:eb:78: af:f2:4f:11:f1:d6:aa:48:0c:87:d3:60:3f:8e:75: 7c:28:8d:1b:88:42:37:8f:e2:d2:a4:41:c3:8e:f7: 6c:ec:fb:12:24:8f:a8:55:79:de:7f:36:9c:c1:67: a8:53:8f:8a:3a:65:e8:cd:ee:48:55:87:e5:97:c5: 4e:d6:75:5b:74:4b:3d:20:13:04:d3:df:5b:ba:b4: 2b:df:a2:64:a8:aa:9f:2b:c0:b5:e0:de:42:36:e0: c6:80:9b:62:27:da:e8:44:24:ce:b4:5c:91:8f:46: b8:ef:a4:b5:94:44:2b:97:6d:47:fb:96:99:83:3b: 0b:7e:92:d6:0b:7a:c7:b0:87:6e:7e:74:af:29:e0: 50:6a:36:db:b3:ef:85:fc:80:c6:0b:24:29:6f:0f: 67:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:B6:F5:10:C8:E4:87:D8:95:14:1A:CE:7D:BB:B8:A2:31:3E:DF:AB X509v3 Authority Key Identifier: keyid:36:40:8C:11:C5:47:2B:82:24:8A:FF:EB:EE:DB:B2:0E:3E:07:A6:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:08:f0:b3:25:32:5d:25:15:fa:43:25:49:02:68:a4:28:ad: 72:e8:26:07:d2:4d:f8:4c:2b:5f:57:cf:a8:3a:d0:f9:7b:61: 86:f9:76:cf:b1:6b:fc:54:a1:ec:e7:09:2a:cb:f7:16:5f:73: 7d:f4:75:48:ed:67:b2:bf:20:a0:98:9d:5f:08:69:b0:3f:53: 31:1b:d0:b8:f7:ff:24:78:09:b4:f0:47:58:1f:d1:da:fb:35: 53:63:6f:60:37:f3:18:81:cf:4f:9a:7b:88:5c:86:da:3b:c7: 40:50:8d:7a:b0:6d:73:72:6b:ee:ae:17:69:c8:cb:b5:75:ef: 25:1d:d5:9f:af:29:35:8f:32:ca:1c:62:b6:00:2d:a1:df:e0: 96:46:9f:b3:da:d7:94:71:0d:2e:d2:cf:8f:b1:06:d0:a1:40: 5f:a8:01:c6:7a:95:6f:7d:4e:f6:60:9b:a6:00:50:de:e4:65: c0:26:b6:d0:83:18:76:5f:17:dc:8d:2c:a8:21:8c:18:f2:c3: 88:cc:f9:db:d0:3b:fb:78:0e:d9:a5:bf:87:bf:43:f2:e9:31: fc:0b:bc:9f:5d:e6:0d:7a:a7:29:7d:b2:56:96:48:da:27:e2: b0:93:c0:29:6a:2b:31:d3:0b:ac:86:07:d5:36:25:5f:17:ab: d4:18:85:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YzMzMxMTAvBgNVBAUTKDM2NDA4QzExQzU0NzJCODIyNDhBRkZFQkVFREJCMjBF M0UwN0E2Q0QwHhcNMjYwMzAxMDIxNDE0WhcNMjYwMzA4MDIxNDE0WjAYMRYwFAYD VQQDDA02OWEzYTBmNi1lZjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ty4lHMrNaNUW0iJQmlzoQPEFpud0ZliozjGbsa9pDJgGO2ORmaCzXIvqyBG HqtvDDB+MpdZRlPJ3ngBnfSSH4Kg5XuCvXoI3fXU2uin6pa7MXzOpZ2ULfJXoObK 7CyXF5AyRk9t63iv8k8R8daqSAyH02A/jnV8KI0biEI3j+LSpEHDjvds7PsSJI+o VXnefzacwWeoU4+KOmXoze5IVYfll8VO1nVbdEs9IBME099burQr36JkqKqfK8C1 4N5CNuDGgJtiJ9roRCTOtFyRj0a476S1lEQrl21H+5aZgzsLfpLWC3rHsIdufnSv KeBQajbbs++F/IDGCyQpbw9nnwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMS29RDI 5IfYlRQazn27uKIxPt+rMB8GA1UdIwQYMBaAFDZAjBHFRyuCJIr/6+7bsg4+B6bN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjMzMy9ERUNCNjVBNDIz OTgxMUVEOTA2NzIyNkZDNEY5QUUwMi9Oa0NNRWNWSEs0SWtpdl9yN3R1eURqNEhw czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05rQ01FY1ZISzRJa2l2X3I3dHV5RGo0SHBzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjMzMy9ERUNCNjVBNDIzOTgxMUVEOTA2NzIyNkZDNEY5QUUwMi9Oa0NNRWNWSEs0 SWtpdl9yN3R1eURqNEhwczAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYwjwsyUyXSUV+kMlSQJopCitcugmB9JN+EwrX1fPqDrQ+Xthhvl2z7Fr/FSh 7OcJKsv3Fl9zffR1SO1nsr8goJidXwhpsD9TMRvQuPf/JHgJtPBHWB/R2vs1U2Nv YDfzGIHPT5p7iFyG2jvHQFCNerBtc3Jr7q4XacjLtXXvJR3Vn68pNY8yyhxitgAt od/glkafs9rXlHENLtLPj7EG0KFAX6gBxnqVb31O9mCbpgBQ3uRlwCa20IMYdl8X 3I0sqCGMGPLDiMz529A7+3gO2aW/h79D8ukx/Au8n13mDXqnKX2yVpZI2ifisJPA KWorMdMLrIYH1TYlXxer1BiFKA== -----END CERTIFICATE-----Generated at Sun Mar 1 21:06:24 2026 by rpki-client