$ rpki-client -vvf rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft File: NsqppHOp6nOCn3NWgJvBYQOtA64.mft (raw, json) Hash identifier: 8qUCed6tl8Pv6Pi4x1MYT/c4i3R+Kb9IwSUifXmGaAo= Subject key identifier: 5A:68:A4:7F:83:1C:1A:E7:EC:3D:8E:59:D2:E0:A5:DE:F5:A7:93:A9 Authority key identifier: 36:CA:A9:A4:73:A9:EA:73:82:9F:73:56:80:9B:C1:61:03:AD:03:AE Certificate issuer: /CN=A9152329/serialNumber=36CAA9A473A9EA73829F7356809BC16103AD03AE Certificate serial: 010D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NsqppHOp6nOCn3NWgJvBYQOtA64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft Manifest number: 010D Signing time: Fri 17 Apr 2026 05:42:29 +0000 Manifest this update: Fri 17 Apr 2026 05:42:29 +0000 Manifest next update: Fri 24 Apr 2026 05:42:29 +0000 Files and hashes: 1: NsqppHOp6nOCn3NWgJvBYQOtA64.crl (hash: rS6yR2c5YyO/Pc6ZGK99ARnRzp0Jc3ST+IBQCNYHreo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.crl rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NsqppHOp6nOCn3NWgJvBYQOtA64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:42:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152329, serialNumber=36CAA9A473A9EA73829F7356809BC16103AD03AE Validity Not Before: Apr 17 05:42:29 2026 GMT Not After : Apr 24 05:42:29 2026 GMT Subject: CN=69e1c845-d857 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:35:9b:8b:bb:20:e2:0c:03:20:d7:58:8f:5e: 1a:41:4c:22:8d:6c:26:27:81:a2:42:9c:15:cc:4e: 46:51:51:4f:81:d9:4f:d0:43:81:ed:ee:1b:6c:9f: 6f:95:b3:27:40:ff:90:bf:7f:4e:d2:58:d0:f6:f0: 72:ad:01:8f:87:18:7a:88:23:f4:bf:f9:be:74:21: 99:d9:98:4c:ae:a1:c8:ef:5d:db:24:8b:ef:d0:c4: 13:80:b8:dd:21:16:03:e4:79:8d:c1:de:f1:08:1e: 3a:2a:76:20:c5:1a:d7:7c:ad:24:9a:30:5a:54:4d: 34:b7:27:60:c4:05:15:82:36:0b:0c:3c:40:a7:e9: 87:58:e1:91:38:64:8a:d5:85:aa:61:3c:0e:47:bf: 49:8f:70:15:97:2c:10:9c:44:dd:c8:46:73:df:9e: 32:11:0a:1c:bb:b8:34:8f:56:7f:34:96:d7:ad:69: 3b:ba:d5:7f:81:2b:f8:d6:47:c5:1b:27:31:b5:31: 7f:ff:93:38:2a:52:6e:97:10:ac:52:79:db:1b:d7: 5b:d4:f2:6a:6b:39:46:37:98:5b:3a:e3:ab:83:6d: 63:4e:bf:18:26:f2:0e:0e:b5:71:c7:57:d3:7c:eb: 2b:bd:2b:e5:e3:b7:7e:d7:7f:65:98:cf:aa:77:ef: c2:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:68:A4:7F:83:1C:1A:E7:EC:3D:8E:59:D2:E0:A5:DE:F5:A7:93:A9 X509v3 Authority Key Identifier: keyid:36:CA:A9:A4:73:A9:EA:73:82:9F:73:56:80:9B:C1:61:03:AD:03:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NsqppHOp6nOCn3NWgJvBYQOtA64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:f5:9e:ff:ab:bb:b7:ff:87:54:44:b0:53:b0:a0:29:7a:46: cb:58:57:98:68:17:1b:a1:4b:37:e7:51:45:3e:17:d2:3a:10: be:aa:74:94:d9:9e:84:c8:c4:26:63:70:d2:97:78:2d:15:46: 1c:bc:2d:c0:5d:24:d9:7c:c8:a4:fd:68:69:00:5d:80:8e:53: c6:af:e8:5a:f1:7f:f1:b5:72:49:f2:13:52:41:2c:b6:fd:1f: eb:4b:d6:f4:33:b0:5f:b6:19:f6:36:c3:42:87:2e:61:70:fa: ff:98:b6:bc:b1:d7:8a:d8:eb:13:ef:25:75:30:5e:9f:8a:a5: ab:25:3d:27:af:87:3f:b9:8a:ed:ca:80:39:c2:76:57:7e:56: a2:6b:50:79:10:e0:da:cc:f2:87:14:8b:fd:47:31:f5:1b:0a: 50:2a:d2:24:ce:a6:bf:de:11:76:19:8a:2a:4e:ed:84:04:1f: 72:71:bc:ed:f3:ca:5e:04:b7:d6:b4:ee:d9:17:03:cd:3c:6e: 1c:fe:de:c1:f8:78:86:ce:b1:aa:18:eb:0d:11:4b:e2:d7:c2: 9b:7f:ed:64:63:0c:93:0f:86:3d:26:cc:64:f4:5d:56:b9:a8: 4d:05:dc:98:a5:01:94:b7:f1:ad:3d:79:bf:fc:25:f7:87:a7: fc:2e:c4:d6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzMjkxMTAvBgNVBAUTKDM2Q0FBOUE0NzNBOUVBNzM4MjlGNzM1NjgwOUJDMTYx MDNBRDAzQUUwHhcNMjYwNDE3MDU0MjI5WhcNMjYwNDI0MDU0MjI5WjAYMRYwFAYD VQQDEw02OWUxYzg0NS1kODU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjWbi7sg4gwDINdYj14aQUwijWwmJ4GiQpwVzE5GUVFPgdlP0EOB7e4bbJ9v lbMnQP+Qv39O0ljQ9vByrQGPhxh6iCP0v/m+dCGZ2ZhMrqHI713bJIvv0MQTgLjd IRYD5HmNwd7xCB46KnYgxRrXfK0kmjBaVE00tydgxAUVgjYLDDxAp+mHWOGROGSK 1YWqYTwOR79Jj3AVlywQnETdyEZz354yEQocu7g0j1Z/NJbXrWk7utV/gSv41kfF GycxtTF//5M4KlJulxCsUnnbG9db1PJqazlGN5hbOuOrg21jTr8YJvIODrVxx1fT fOsrvSvl47d+139lmM+qd+/C7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFpopH+D HBrn7D2OWdLgpd71p5OpMB8GA1UdIwQYMBaAFDbKqaRzqepzgp9zVoCbwWEDrQOu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjMyOS9EMDg2RDU1RUEy NjgxMUVGOUQ5MTQxMThDNEY5QUUwMi9Oc3FwcEhPcDZuT0NuM05XZ0p2QllRT3RB NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05zcXBwSE9wNm5PQ24zTldnSnZCWVFPdEE2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjMyOS9EMDg2RDU1RUEyNjgxMUVGOUQ5MTQxMThDNEY5QUUwMi9Oc3FwcEhPcDZu T0NuM05XZ0p2QllRT3RBNjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdvWe/6u7t/+HVESwU7CgKXpGy1hXmGgXG6FLN+dRRT4X0joQvqp0lNmehMjE JmNw0pd4LRVGHLwtwF0k2XzIpP1oaQBdgI5Txq/oWvF/8bVySfITUkEstv0f60vW 9DOwX7YZ9jbDQocuYXD6/5i2vLHXitjrE+8ldTBen4qlqyU9J6+HP7mK7cqAOcJ2 V35WomtQeRDg2szyhxSL/Ucx9RsKUCrSJM6mv94RdhmKKk7thAQfcnG87fPKXgS3 1rTu2RcDzTxuHP7ewfh4hs6xqhjrDRFL4tfCm3/tZGMMkw+GPSbMZPRdVrmoTQXc mKUBlLfxrT15v/wl94en/C7E1g== -----END CERTIFICATE-----Generated at Fri Apr 17 23:03:33 2026 by rpki-client