$ rpki-client -vvf rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft File: NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft (raw, json) Hash identifier: 9DcWSXaYUGBr+azl8jKCHfuxp7jJ4giiDu6+Q6JFsXI= Subject key identifier: 05:6E:B4:5B:FE:D6:EC:F5:C3:C8:8C:F5:D4:BB:EA:71:1A:9E:47:F9 Authority key identifier: 34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 Certificate issuer: /CN=A9148DB2/serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Certificate serial: 0362 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft Manifest number: 035A Signing time: Fri 17 Apr 2026 00:50:35 +0000 Manifest this update: Fri 17 Apr 2026 00:50:34 +0000 Manifest next update: Fri 24 Apr 2026 00:50:34 +0000 Files and hashes: 1: NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl (hash: CrorgoHTa7tOZXabNxjCDOjV6k/ihhBBxy3bwYBI5Jk=) 2: F343C4ECF93911ECBD1E663DC4F9AE02.roa (hash: QwQkgtoePZKxFtkm4cXFgAdorKM4wsMJHhlleIVTFws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:50:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 866 (0x362) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148DB2, serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Validity Not Before: Apr 17 00:50:34 2026 GMT Not After : Apr 24 00:50:34 2026 GMT Subject: CN=69e183db-5f59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:45:17:0f:7e:74:3e:f1:b4:f6:a4:8b:60:33: 25:cf:90:c7:77:40:55:9c:f0:51:dd:a2:86:01:4f: b8:7a:b9:61:8b:40:be:10:71:1a:34:0d:4d:09:97: 7e:10:20:75:3e:ef:2c:91:e3:62:0a:66:0b:56:63: 8c:f7:08:a3:24:b8:8e:7b:80:e4:89:4d:7c:9b:a0: 2b:74:df:37:42:4a:e3:94:eb:4d:67:24:1c:03:da: 9d:6d:2f:37:ab:8b:ca:ab:fb:b2:bc:66:fa:7a:5b: 08:0e:04:bb:d4:23:c3:0c:ba:5b:00:2b:e0:dd:52: 2b:dc:a9:5a:13:6d:7d:4f:1d:86:3b:da:32:95:0c: c0:ce:32:2c:55:30:c3:c1:f5:da:a5:f1:40:f7:2d: 4c:58:1c:57:44:24:e5:ca:e2:c5:3d:4c:25:28:a0: 79:fd:c9:e1:da:8c:ca:cf:ff:2c:e2:47:b7:3d:ac: fa:7c:d8:bc:23:59:fa:7d:e2:4a:89:97:b3:25:b3: 23:15:87:55:f1:a6:12:7e:f0:7a:15:41:b0:f3:8f: fd:9f:5c:73:68:2b:f3:0e:d0:0f:83:8a:7d:95:e3: 14:fa:a4:32:a2:61:e1:5d:f7:9b:45:ee:2e:fa:71: 51:21:4a:7c:4f:a3:5f:46:95:3d:07:2d:1e:a4:56: 3b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:6E:B4:5B:FE:D6:EC:F5:C3:C8:8C:F5:D4:BB:EA:71:1A:9E:47:F9 X509v3 Authority Key Identifier: keyid:34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:76:b1:e1:fc:bf:2f:e9:54:7f:e6:17:a2:cc:49:ff:71:d2: 4d:23:b4:75:2e:7b:03:d8:c8:08:00:7a:16:6d:0e:de:9a:f9: 1c:f6:49:e9:13:73:47:f6:18:0d:0b:7a:0b:f5:aa:12:14:e1: 1f:d7:0d:06:18:51:95:7d:78:80:09:e7:69:71:e1:34:81:e6: 68:6c:6d:8e:48:8f:26:55:45:9b:43:e9:fa:e1:85:4f:68:52: 1d:2f:46:ef:9f:1f:fa:4c:27:e3:97:4b:3b:8e:6c:9d:e3:3e: ff:c2:24:2c:f6:a9:4f:3b:5e:2d:a1:89:09:6d:0f:3a:78:3c: 32:70:62:56:96:d3:ef:ca:57:63:00:8e:1e:8f:78:ff:65:fc: 75:88:67:0b:3d:38:56:38:7f:15:14:e2:cd:2d:11:bf:d6:d2: 18:b4:2f:9e:c1:2b:76:72:c1:8d:6e:29:d2:ca:72:f1:06:e6: 48:90:66:4e:7c:87:68:db:fe:d3:bb:a8:da:21:4a:05:49:9b: 71:d5:e7:fd:18:c1:e6:ea:13:d8:ea:e7:e7:46:23:94:8b:0a: 16:5e:9c:7b:b4:d7:4d:f5:fa:19:2b:05:73:6f:2a:1b:0f:79: ce:46:ec:fd:45:e8:f3:9b:a7:fa:30:af:de:4f:ac:53:ff:70: 65:68:c1:ed -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhEQjIxMTAvBgNVBAUTKDM0QUJFRjg0NjQ3NEJCREEwQzU1NjQ2NUREN0U5RUMw RkE2NzRCQjUwHhcNMjYwNDE3MDA1MDM0WhcNMjYwNDI0MDA1MDM0WjAYMRYwFAYD VQQDEw02OWUxODNkYi01ZjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskUXD350PvG09qSLYDMlz5DHd0BVnPBR3aKGAU+4erlhi0C+EHEaNA1NCZd+ ECB1Pu8skeNiCmYLVmOM9wijJLiOe4DkiU18m6ArdN83QkrjlOtNZyQcA9qdbS83 q4vKq/uyvGb6elsIDgS71CPDDLpbACvg3VIr3KlaE219Tx2GO9oylQzAzjIsVTDD wfXapfFA9y1MWBxXRCTlyuLFPUwlKKB5/cnh2ozKz/8s4ke3Paz6fNi8I1n6feJK iZezJbMjFYdV8aYSfvB6FUGw84/9n1xzaCvzDtAPg4p9leMU+qQyomHhXfebRe4u +nFRIUp8T6NfRpU9By0epFY7SwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAVutFv+ 1uz1w8iM9dS76nEankf5MB8GA1UdIwQYMBaAFDSr74RkdLvaDFVkZd1+nsD6Z0u1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OERCMi8wNDdEQzM4OEY5 MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5b01WV1JsM1g2ZXdQcG5T N1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05LdnZoR1IwdTlvTVZXUmwzWDZld1BwblM3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OERCMi8wNDdEQzM4OEY5MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5 b01WV1JsM1g2ZXdQcG5TN1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfXax4fy/L+lUf+YXosxJ/3HSTSO0dS57A9jICAB6Fm0O3pr5HPZJ6RNzR/YY DQt6C/WqEhThH9cNBhhRlX14gAnnaXHhNIHmaGxtjkiPJlVFm0Pp+uGFT2hSHS9G 758f+kwn45dLO45sneM+/8IkLPapTzteLaGJCW0POng8MnBiVpbT78pXYwCOHo94 /2X8dYhnCz04Vjh/FRTizS0Rv9bSGLQvnsErdnLBjW4p0spy8QbmSJBmTnyHaNv+ 07uo2iFKBUmbcdXn/RjB5uoT2Orn50YjlIsKFl6ce7TXTfX6GSsFc28qGw95zkbs /UXo85un+jCv3k+sU/9wZWjB7Q== -----END CERTIFICATE-----Generated at Fri Apr 17 19:21:31 2026 by rpki-client