$ rpki-client -vvf rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft File: NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft (raw, json) Hash identifier: 9eiO9f9PrUG/nqCTY+irsaBXS8P+v+l8adpkIPnUVjg= Subject key identifier: 79:49:CE:B7:94:40:2E:91:C7:D2:95:FF:63:E5:D2:FE:D0:AD:1E:16 Authority key identifier: 35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 Certificate issuer: /CN=A9166AFF/serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Certificate serial: 0183 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft Manifest number: 0178 Signing time: Sun 01 Mar 2026 05:45:12 +0000 Manifest this update: Sun 01 Mar 2026 05:45:11 +0000 Manifest next update: Sun 08 Mar 2026 05:45:11 +0000 Files and hashes: 1: NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl (hash: 052x9fRomvefwakB+i4qWqJ4catReFZJkUOcWMK2+tQ=) 2: 8109B4CA9DF211F0B1ED220FC4F9AE02.roa (hash: /KMShVz7xPQb/IFHjv8WLpc7f7w5sCo+1tbPQq7vaKs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 05:45:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166AFF, serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Validity Not Before: Mar 1 05:45:11 2026 GMT Not After : Mar 8 05:45:11 2026 GMT Subject: CN=69a3d268-bd96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:95:f8:53:7d:17:48:b1:49:f4:e2:95:03:6f: 01:4c:5c:d2:bc:03:7f:39:f0:b0:80:68:33:ef:b7: 74:6a:82:35:53:fb:48:ca:be:79:13:40:57:da:49: 3f:44:31:98:71:65:96:39:a2:f4:cc:0f:45:3e:36: 06:c1:ae:56:e1:b7:39:56:e7:5c:16:29:68:2b:a6: 7e:db:87:89:e5:bd:83:7a:a0:67:a5:5c:bf:cd:91: 34:bb:3c:87:8d:53:f4:a5:8c:f2:1f:8c:82:d5:3f: 21:ce:26:13:a4:31:2c:93:87:c5:0c:e1:13:13:0d: 13:d0:91:8a:45:25:fb:b9:da:19:6f:d8:26:fd:aa: b7:76:e2:d2:6e:3f:f3:6c:1d:25:a6:d2:9d:b4:55: 6c:75:c1:45:da:f9:99:07:8a:d8:31:0d:12:62:71: 1b:5d:c6:cf:12:5d:34:30:2f:91:63:97:70:6e:40: 33:98:76:0b:35:0f:34:b3:84:52:ab:5d:b8:0e:2e: d0:c8:0b:c3:b9:bf:3e:74:64:80:bf:0a:57:6a:c9: 0c:e2:c8:cb:47:9e:8b:ae:b8:10:67:ab:15:84:c2: bc:00:25:4a:9a:85:56:b3:c7:a9:36:b5:94:da:0f: 10:0a:27:10:77:97:38:e7:56:86:67:ca:53:3e:89: c6:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:49:CE:B7:94:40:2E:91:C7:D2:95:FF:63:E5:D2:FE:D0:AD:1E:16 X509v3 Authority Key Identifier: keyid:35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:40:bd:56:f5:2f:f1:03:df:ae:e4:95:4c:f5:25:c3:b6:5d: 98:c8:f1:cc:f9:af:85:5a:03:38:35:5d:e6:f0:aa:73:63:0f: cc:27:86:61:da:56:d2:ea:f9:01:f4:d8:f0:2c:e5:70:97:e7: f1:6a:18:f3:0f:38:29:cf:83:25:12:3e:57:b8:9f:35:b6:75: d5:dd:de:2a:79:3a:dc:13:c4:3b:4d:ee:85:f5:b5:d5:6f:c6: 5c:db:93:1d:63:cc:78:57:ee:c1:a6:92:f7:9d:91:c4:6e:68: fe:67:62:cb:88:3c:26:21:0e:23:08:73:69:ad:3d:78:1b:aa: 6e:6d:9b:14:c1:93:55:ef:5f:54:a3:ed:c5:13:62:9e:a4:4f: 4f:5f:74:11:a1:89:05:f5:9f:f1:43:ec:2e:95:ca:35:17:8d: 2f:38:00:a0:e8:dd:70:80:ac:88:8a:3f:15:ff:67:de:e7:50: c5:f2:ba:ce:72:b2:2e:0d:43:5f:53:0c:f6:2c:be:23:e4:62: 18:43:9c:e2:f4:87:75:46:64:a2:e0:a9:fe:e4:7c:98:42:92: 64:3b:83:55:6a:0e:02:43:22:52:74:e1:1d:77:c1:4a:ea:1b: 6d:66:db:af:63:64:ef:e4:27:c3:40:5a:e6:4a:cb:08:8a:27: 01:95:70:be -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZBRkYxMTAvBgNVBAUTKDM1N0ExNzlDREQwQUY5QTNGQjAzRTE3N0Q2QTQzRkI4 QTU3NzU0RTAwHhcNMjYwMzAxMDU0NTExWhcNMjYwMzA4MDU0NTExWjAYMRYwFAYD VQQDEw02OWEzZDI2OC1iZDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmJX4U30XSLFJ9OKVA28BTFzSvAN/OfCwgGgz77d0aoI1U/tIyr55E0BX2kk/ RDGYcWWWOaL0zA9FPjYGwa5W4bc5VudcFiloK6Z+24eJ5b2DeqBnpVy/zZE0uzyH jVP0pYzyH4yC1T8hziYTpDEsk4fFDOETEw0T0JGKRSX7udoZb9gm/aq3duLSbj/z bB0lptKdtFVsdcFF2vmZB4rYMQ0SYnEbXcbPEl00MC+RY5dwbkAzmHYLNQ80s4RS q124Di7QyAvDub8+dGSAvwpXaskM4sjLR56LrrgQZ6sVhMK8ACVKmoVWs8epNrWU 2g8QCicQd5c451aGZ8pTPonGsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHlJzreU QC6Rx9KV/2Pl0v7QrR4WMB8GA1UdIwQYMBaAFDV6F5zdCvmj+wPhd9akP7ild1Tg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkFGRi80MENEMUI1NEU1 MDIxMUVFOUFCRjc2NTVDNEY5QUUwMi9OWG9Ybk4wSy1hUDdBLUYzMXFRX3VLVjNW T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Yb1huTjBLLWFQN0EtRjMxcVFfdUtWM1ZPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkFGRi80MENEMUI1NEU1MDIxMUVFOUFCRjc2NTVDNEY5QUUwMi9OWG9Ybk4wSy1h UDdBLUYzMXFRX3VLVjNWT0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAE0C9VvUv8QPfruSVTPUlw7ZdmMjxzPmvhVoDODVd5vCqc2MPzCeGYdpW0ur5 AfTY8CzlcJfn8WoY8w84Kc+DJRI+V7ifNbZ11d3eKnk63BPEO03uhfW11W/GXNuT HWPMeFfuwaaS952RxG5o/mdiy4g8JiEOIwhzaa09eBuqbm2bFMGTVe9fVKPtxRNi nqRPT190EaGJBfWf8UPsLpXKNReNLzgAoOjdcICsiIo/Ff9n3udQxfK6znKyLg1D X1MM9iy+I+RiGEOc4vSHdUZkouCp/uR8mEKSZDuDVWoOAkMiUnThHXfBSuobbWbb r2Nk7+Qnw0Ba5krLCIonAZVwvg== -----END CERTIFICATE-----Generated at Mon Mar 2 09:44:52 2026 by rpki-client