$ rpki-client -vvf rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft File: NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft (raw, json) Hash identifier: hPwAs6d1Q1NXEEzxQecrgKyL1e5rV+R8AXXI2NHrMSI= Subject key identifier: 2D:75:39:84:5F:F5:EB:2A:D9:C6:44:16:50:BF:71:4F:85:CF:16:38 Authority key identifier: 34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 Certificate issuer: /CN=A9148DB2/serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Certificate serial: 0346 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft Manifest number: 0340 Signing time: Sun 01 Mar 2026 01:51:40 +0000 Manifest this update: Sun 01 Mar 2026 01:51:40 +0000 Manifest next update: Sun 08 Mar 2026 01:51:40 +0000 Files and hashes: 1: NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl (hash: q0+mUyYL1XThS7ZMaEIn1/aNIKnMvG2AeCJ1flHsHHw=) 2: F343C4ECF93911ECBD1E663DC4F9AE02.roa (hash: HI47TeUKkkUj9tj7DCBcCUp4twqgQ+xfdt81d27bT2U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:51:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 838 (0x346) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148DB2, serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Validity Not Before: Mar 1 01:51:40 2026 GMT Not After : Mar 8 01:51:40 2026 GMT Subject: CN=69a39bac-fe31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:63:25:e9:5e:d4:f2:98:39:54:2f:d3:63:09: e2:8e:56:c1:d0:f9:b7:a0:67:e7:2e:42:c4:81:08: 48:6c:c5:fc:14:2b:59:a0:e1:ab:68:27:dd:ca:34: 9c:c5:85:77:70:9e:e8:7a:9b:a1:a6:c8:74:97:09: 31:97:ed:f4:c7:10:71:82:ed:98:5b:7d:12:cb:e7: e1:2b:c1:e5:93:97:7e:df:b6:3b:9b:3f:04:4c:f1: 28:d5:6d:d0:fb:2c:6d:5e:19:6c:e9:50:5e:61:0d: 87:08:5a:aa:1f:f2:50:94:17:a6:a9:0b:e8:36:1e: 3c:a6:f4:5c:98:14:b5:86:59:bb:79:b6:5b:d3:b8: ae:5f:54:e0:82:aa:47:1a:17:9a:7f:d5:e2:69:eb: c5:91:49:dc:ad:7b:02:c7:87:78:60:e9:82:96:c5: 3f:ce:70:db:6d:d2:e9:cc:f9:16:42:ce:98:19:ff: bc:d5:46:d4:50:fe:32:e8:df:4a:dc:97:dc:7e:18: 75:aa:32:ee:e7:c5:1e:c3:ba:ee:46:d6:6a:ab:ad: 24:dc:e8:af:a1:03:b9:cf:a3:2a:8b:b0:b7:58:51: f0:39:fb:44:ec:16:57:49:08:9d:4a:14:1b:13:f8: d6:b6:ed:ae:80:1b:b2:67:a2:58:1a:55:50:97:74: 29:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:75:39:84:5F:F5:EB:2A:D9:C6:44:16:50:BF:71:4F:85:CF:16:38 X509v3 Authority Key Identifier: keyid:34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:0a:01:d0:76:61:2c:d8:5c:09:b6:c4:27:2f:28:da:89:e9: 7f:4f:0c:f7:12:bb:e3:21:44:a2:8c:9c:52:6e:be:ed:a4:72: fe:ef:09:f8:db:f4:f6:f3:18:4b:78:f9:aa:06:61:b7:16:73: 08:e4:d6:f7:17:aa:1e:a3:c3:09:06:1e:15:75:b8:68:78:4c: 9c:22:eb:3c:6b:e7:67:31:18:6a:29:30:cf:4c:81:cb:c4:ba: 30:c8:ea:ff:ec:0f:47:9d:d8:04:c7:c1:0c:43:8a:3b:34:29: 71:68:29:ae:8a:8c:58:2a:9e:2b:46:24:5a:ef:05:9b:e4:06: 39:24:6b:d6:58:c1:6e:bf:f8:c6:5f:dc:8c:2a:44:4c:8b:b7: 24:dc:6a:92:9d:20:03:f6:f6:06:c3:bc:e0:47:f9:43:5a:cc: 40:d5:00:18:17:8a:d1:07:52:ba:b1:6a:af:73:6a:21:dd:09: 05:8f:12:07:18:c1:96:5c:c0:28:bf:7e:e1:ed:f8:aa:9c:92: 99:22:c6:59:0f:7d:84:c0:06:c2:b6:34:c7:7e:a2:17:a1:91: bf:1f:47:2e:5b:8c:45:98:e2:67:0f:48:09:25:59:c5:8b:f1: 99:46:f2:98:1d:e6:18:21:d9:72:78:50:e3:f8:16:9c:1f:2a: 5f:2d:4a:ea -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhEQjIxMTAvBgNVBAUTKDM0QUJFRjg0NjQ3NEJCREEwQzU1NjQ2NUREN0U5RUMw RkE2NzRCQjUwHhcNMjYwMzAxMDE1MTQwWhcNMjYwMzA4MDE1MTQwWjAYMRYwFAYD VQQDDA02OWEzOWJhYy1mZTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWMl6V7U8pg5VC/TYwnijlbB0Pm3oGfnLkLEgQhIbMX8FCtZoOGraCfdyjSc xYV3cJ7oepuhpsh0lwkxl+30xxBxgu2YW30Sy+fhK8Hlk5d+37Y7mz8ETPEo1W3Q +yxtXhls6VBeYQ2HCFqqH/JQlBemqQvoNh48pvRcmBS1hlm7ebZb07iuX1TggqpH Gheaf9XiaevFkUncrXsCx4d4YOmClsU/znDbbdLpzPkWQs6YGf+81UbUUP4y6N9K 3Jfcfhh1qjLu58Uew7ruRtZqq60k3OivoQO5z6Mqi7C3WFHwOftE7BZXSQidShQb E/jWtu2ugBuyZ6JYGlVQl3QpxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC11OYRf 9esq2cZEFlC/cU+FzxY4MB8GA1UdIwQYMBaAFDSr74RkdLvaDFVkZd1+nsD6Z0u1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OERCMi8wNDdEQzM4OEY5 MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5b01WV1JsM1g2ZXdQcG5T N1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05LdnZoR1IwdTlvTVZXUmwzWDZld1BwblM3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OERCMi8wNDdEQzM4OEY5MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5 b01WV1JsM1g2ZXdQcG5TN1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANgoB0HZhLNhcCbbEJy8o2onpf08M9xK74yFEooycUm6+7aRy/u8J+Nv09vMY S3j5qgZhtxZzCOTW9xeqHqPDCQYeFXW4aHhMnCLrPGvnZzEYaikwz0yBy8S6MMjq /+wPR53YBMfBDEOKOzQpcWgproqMWCqeK0YkWu8Fm+QGOSRr1ljBbr/4xl/cjCpE TIu3JNxqkp0gA/b2BsO84Ef5Q1rMQNUAGBeK0QdSurFqr3NqId0JBY8SBxjBllzA KL9+4e34qpySmSLGWQ99hMAGwrY0x36iF6GRvx9HLluMRZjiZw9ICSVZxYvxmUby mB3mGCHZcnhQ4/gWnB8qXy1K6g== -----END CERTIFICATE-----Generated at Sun Mar 1 22:44:43 2026 by rpki-client