$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft File: NNz0cp9FgmKIjvB6K9RnX24xE4A.mft (raw, json) Hash identifier: wX11dMxZLM/YUy4CQq1sZajG+zqON/uUYbebJ97If/I= Subject key identifier: 10:4F:4A:F6:95:A6:B4:5C:69:A6:BC:12:98:BA:BB:4F:D3:FF:1C:88 Authority key identifier: 34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 Certificate issuer: /CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Certificate serial: 0744 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft Manifest number: 0736 Signing time: Thu 16 Apr 2026 21:42:00 +0000 Manifest this update: Thu 16 Apr 2026 21:41:59 +0000 Manifest next update: Thu 23 Apr 2026 21:41:59 +0000 Files and hashes: 1: NNz0cp9FgmKIjvB6K9RnX24xE4A.crl (hash: ziUb9TeKMeF0mlgCAXHlPzhg2gEqHUwUPJYfNPCkTbc=) 2: AE27A8A671B311EBB90BB364C4F9AE02.roa (hash: Yz43RwlZ5yy4nBg8j+EwoqSiXNci2+WLpvODtls54Cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 21:41:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1860 (0x744) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B7F, serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Validity Not Before: Apr 16 21:41:59 2026 GMT Not After : Apr 23 21:41:59 2026 GMT Subject: CN=69e157a8-562c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:68:57:fd:d2:1a:24:6f:b1:45:1e:4e:69:fa: 31:85:e6:17:d2:3e:25:04:df:52:a8:42:08:ee:98: 2d:ed:61:5f:14:f9:44:58:0d:f3:a5:65:ed:f6:0b: 55:03:40:17:87:d5:6f:69:8a:89:45:29:2b:80:e9: 60:5c:75:c1:e1:2a:0a:07:7c:99:87:c9:c4:a9:cb: 85:27:af:5f:ba:5a:db:d0:d8:d1:ed:ac:87:3f:45: ec:3a:ca:bb:bb:11:e7:fb:71:00:7d:52:d6:18:ae: 1f:94:d4:bc:68:75:4e:7b:8e:d6:d3:ad:6b:eb:34: 05:64:c6:a0:0d:61:3b:7b:94:3d:fb:2a:88:12:0f: 6d:d6:71:5f:57:3b:43:e7:22:a5:b2:02:13:14:0c: bc:c6:7b:92:27:7e:3c:28:fb:a6:d9:e6:9a:88:58: ef:e1:47:97:12:b7:21:c5:53:0a:80:8f:ca:15:17: 59:a2:d4:d2:f4:b2:02:c3:f8:9a:85:e9:cd:aa:90: 48:76:40:8d:64:1b:43:ec:c9:4b:69:8c:53:61:5b: 52:61:e4:33:92:e3:e8:5e:51:9b:fa:c2:5c:28:56: dc:3f:e2:4d:a7:f9:0b:9a:c0:19:1e:c2:cc:0f:59: 9a:f9:7a:ca:90:6a:af:4a:30:d4:9b:84:d9:7f:35: 90:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:4F:4A:F6:95:A6:B4:5C:69:A6:BC:12:98:BA:BB:4F:D3:FF:1C:88 X509v3 Authority Key Identifier: keyid:34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:66:6f:d7:74:21:28:36:90:ff:31:09:0d:cb:cf:19:73:78: 76:ed:25:17:e0:2f:10:a4:36:cf:cb:a0:6f:8a:e3:65:46:f6: 4c:86:30:16:9a:ff:77:db:1e:ed:7a:34:c4:70:c1:30:31:d3: 21:62:52:39:75:a7:9c:d6:4e:44:46:bf:bb:cc:84:cd:7d:39: d4:19:fd:77:8f:b0:49:18:66:eb:c8:d8:0f:17:47:32:39:a1: 5b:dd:f4:48:46:24:85:f2:a7:07:df:ab:1a:c6:32:3f:17:f1: 94:d2:b1:ad:8b:bc:79:5e:f0:2c:f5:8e:88:2e:c5:f5:cc:2e: b2:83:8a:14:54:0a:2b:c9:1a:5d:5f:68:db:cc:e2:75:4f:bf: 5e:d0:6f:ed:8e:54:46:58:0c:f9:63:3c:94:15:05:cc:93:81: a6:85:5e:67:61:99:5f:07:eb:f5:b1:d3:d1:fc:a1:af:08:30: 7f:b0:73:ed:a7:13:53:07:b8:1b:b3:c9:2e:4b:a3:f5:c5:78: 50:08:b7:e6:43:37:6d:69:e9:49:26:85:23:df:0e:44:14:1d: d1:64:42:bf:72:ab:97:a3:50:59:c0:9f:f3:0f:a5:a2:17:d1: 6c:27:bb:03:89:27:7e:5b:44:67:f9:5e:67:7d:20:f5:0a:4b: 72:68:42:aa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCN0YxMTAvBgNVBAUTKDM0RENGNDcyOUY0NTgyNjI4ODhFRjA3QTJCRDQ2NzVG NkUzMTEzODAwHhcNMjYwNDE2MjE0MTU5WhcNMjYwNDIzMjE0MTU5WjAYMRYwFAYD VQQDEw02OWUxNTdhOC01NjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02hX/dIaJG+xRR5OafoxheYX0j4lBN9SqEII7pgt7WFfFPlEWA3zpWXt9gtV A0AXh9VvaYqJRSkrgOlgXHXB4SoKB3yZh8nEqcuFJ69fulrb0NjR7ayHP0XsOsq7 uxHn+3EAfVLWGK4flNS8aHVOe47W061r6zQFZMagDWE7e5Q9+yqIEg9t1nFfVztD 5yKlsgITFAy8xnuSJ348KPum2eaaiFjv4UeXErchxVMKgI/KFRdZotTS9LICw/ia henNqpBIdkCNZBtD7MlLaYxTYVtSYeQzkuPoXlGb+sJcKFbcP+JNp/kLmsAZHsLM D1ma+XrKkGqvSjDUm4TZfzWQzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBBPSvaV prRcaaa8Epi6u0/T/xyIMB8GA1UdIwQYMBaAFDTc9HKfRYJiiI7weivUZ19uMROA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3Ri8zN0I4MkM1MDcx QjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5RmdtS0lqdkI2SzlSblgyNHhF NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OejBjcDlGZ21LSWp2QjZLOVJuWDI0eEU0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I3Ri8zN0I4MkM1MDcxQjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5Rmdt S0lqdkI2SzlSblgyNHhFNEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEmZv13QhKDaQ/zEJDcvPGXN4du0lF+AvEKQ2z8ugb4rjZUb2TIYwFpr/d9se 7Xo0xHDBMDHTIWJSOXWnnNZOREa/u8yEzX051Bn9d4+wSRhm68jYDxdHMjmhW930 SEYkhfKnB9+rGsYyPxfxlNKxrYu8eV7wLPWOiC7F9cwusoOKFFQKK8kaXV9o28zi dU+/XtBv7Y5URlgM+WM8lBUFzJOBpoVeZ2GZXwfr9bHT0fyhrwgwf7Bz7acTUwe4 G7PJLkuj9cV4UAi35kM3bWnpSSaFI98ORBQd0WRCv3Krl6NQWcCf8w+lohfRbCe7 A4knfltEZ/leZ30g9QpLcmhCqg== -----END CERTIFICATE-----Generated at Fri Apr 17 21:35:02 2026 by rpki-client