$ rpki-client -vvf rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft File: NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft (raw, json) Hash identifier: bo8YJMfP+ugLcU35dD0hAWEox+CGswNFrQgzgwPpiCw= Subject key identifier: 94:44:5E:40:07:35:AE:26:D6:02:B5:82:01:C5:9C:6C:4E:C1:6E:B6 Authority key identifier: 35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 Certificate issuer: /CN=A9166AFF/serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Certificate serial: 01A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft Manifest number: 0194 Signing time: Fri 17 Apr 2026 04:11:31 +0000 Manifest this update: Fri 17 Apr 2026 04:11:31 +0000 Manifest next update: Fri 24 Apr 2026 04:11:31 +0000 Files and hashes: 1: NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl (hash: NLBde+fLobN1l3rgyvxcal8XXfKPbjaRc2/sHUA1P2o=) 2: 8109B4CA9DF211F0B1ED220FC4F9AE02.roa (hash: 3F15rH6YOfm7yUgvAU7B83xmF5fOsfIgjewKISbkfSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:11:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 419 (0x1a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166AFF, serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Validity Not Before: Apr 17 04:11:31 2026 GMT Not After : Apr 24 04:11:31 2026 GMT Subject: CN=69e1b2f3-951c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d0:23:6c:1b:78:55:3a:d4:f2:ed:3a:0c:80: 55:ee:96:7c:be:28:b6:ba:82:b4:6f:59:5d:15:0e: a9:cd:50:f0:2c:92:92:a6:30:1a:b5:67:9e:f8:33: 82:3f:f9:6f:8d:2c:21:21:ed:1d:be:8d:df:ee:07: 6e:ee:73:57:c5:a8:82:4d:cc:e6:09:4e:b8:6a:21: 06:19:74:6b:d3:a3:de:c8:72:2d:3a:85:f3:de:c2: 5b:cb:25:74:d6:3b:ac:a4:05:70:ed:f4:d9:d3:9a: b8:85:d9:ce:a4:54:01:9b:e2:63:00:41:2c:d1:ca: 1a:a1:7f:60:49:7e:9f:16:fe:6c:fa:d0:93:01:10: 6c:3f:df:51:0a:fe:d2:c3:18:e4:97:67:ee:b2:ac: 78:8d:ee:c0:5c:5e:92:60:b1:b2:ec:1e:14:8c:2e: 82:c9:56:35:01:d1:5c:4b:2a:ec:2a:39:6e:51:b7: 88:68:50:2e:de:0b:2f:6d:b1:33:ed:af:e3:3d:c2: 5c:3a:f9:d0:b5:2e:02:64:5d:43:fc:95:14:dc:ab: 48:f5:ae:e0:1c:74:c4:1a:66:94:dd:8f:6c:08:65: cb:89:b5:9f:b0:fc:cd:84:65:48:d3:1e:b7:6e:eb: 0a:7f:74:2f:50:cb:1a:e3:6c:aa:8e:3a:d8:a6:3b: 9c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:44:5E:40:07:35:AE:26:D6:02:B5:82:01:C5:9C:6C:4E:C1:6E:B6 X509v3 Authority Key Identifier: keyid:35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:35:c2:08:75:12:95:df:0a:20:b2:d9:91:e7:60:df:66:57: 0e:9b:de:9d:c0:a0:9d:34:a4:37:81:91:e9:dc:08:a7:e3:f6: d0:55:f0:99:41:bf:e3:fd:ae:53:5d:59:1f:14:a2:e7:78:a0: fe:18:df:e9:2e:94:7d:46:eb:2a:57:30:08:38:63:f6:c2:c1: 89:ef:bb:4e:c1:e9:a1:36:69:89:25:8d:30:3c:5d:8c:10:19: 97:65:b6:c7:b1:0b:82:8c:55:bc:db:09:31:8c:ef:ed:69:d8: 25:24:da:2c:82:3f:3f:68:1a:93:4e:82:12:68:76:44:ca:ff: f2:8b:7f:dc:a1:83:5c:e3:b2:17:18:d5:d2:2c:ef:f0:b2:b9: 32:bc:a1:67:e0:fd:60:b0:e3:93:d1:6f:0c:00:2f:ba:c4:49: cb:b1:7c:49:3a:4a:35:d4:a6:27:0d:23:d8:d5:72:05:61:66: fb:79:73:43:00:2e:f7:91:6f:01:64:ef:0e:9c:8b:b6:9b:3e: 71:02:0a:bc:8b:3c:db:42:8d:22:ee:a8:91:43:e5:2a:24:46: 90:bc:e3:42:66:b9:e2:95:3c:39:8e:dd:5a:a6:9f:90:c6:7c: 9a:fd:0b:76:bd:a4:48:9c:e2:17:44:b6:b5:e2:84:19:7a:c2: b4:04:35:35 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZBRkYxMTAvBgNVBAUTKDM1N0ExNzlDREQwQUY5QTNGQjAzRTE3N0Q2QTQzRkI4 QTU3NzU0RTAwHhcNMjYwNDE3MDQxMTMxWhcNMjYwNDI0MDQxMTMxWjAYMRYwFAYD VQQDEw02OWUxYjJmMy05NTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttAjbBt4VTrU8u06DIBV7pZ8vii2uoK0b1ldFQ6pzVDwLJKSpjAatWee+DOC P/lvjSwhIe0dvo3f7gdu7nNXxaiCTczmCU64aiEGGXRr06PeyHItOoXz3sJbyyV0 1juspAVw7fTZ05q4hdnOpFQBm+JjAEEs0coaoX9gSX6fFv5s+tCTARBsP99RCv7S wxjkl2fusqx4je7AXF6SYLGy7B4UjC6CyVY1AdFcSyrsKjluUbeIaFAu3gsvbbEz 7a/jPcJcOvnQtS4CZF1D/JUU3KtI9a7gHHTEGmaU3Y9sCGXLibWfsPzNhGVI0x63 busKf3QvUMsa42yqjjrYpjucGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJREXkAH Na4m1gK1ggHFnGxOwW62MB8GA1UdIwQYMBaAFDV6F5zdCvmj+wPhd9akP7ild1Tg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkFGRi80MENEMUI1NEU1 MDIxMUVFOUFCRjc2NTVDNEY5QUUwMi9OWG9Ybk4wSy1hUDdBLUYzMXFRX3VLVjNW T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Yb1huTjBLLWFQN0EtRjMxcVFfdUtWM1ZPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkFGRi80MENEMUI1NEU1MDIxMUVFOUFCRjc2NTVDNEY5QUUwMi9OWG9Ybk4wSy1h UDdBLUYzMXFRX3VLVjNWT0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlTXCCHUSld8KILLZkedg32ZXDpvencCgnTSkN4GR6dwIp+P20FXwmUG/4/2u U11ZHxSi53ig/hjf6S6UfUbrKlcwCDhj9sLBie+7TsHpoTZpiSWNMDxdjBAZl2W2 x7ELgoxVvNsJMYzv7WnYJSTaLII/P2gak06CEmh2RMr/8ot/3KGDXOOyFxjV0izv 8LK5MryhZ+D9YLDjk9FvDAAvusRJy7F8STpKNdSmJw0j2NVyBWFm+3lzQwAu95Fv AWTvDpyLtps+cQIKvIs820KNIu6okUPlKiRGkLzjQma54pU8OY7dWqafkMZ8mv0L dr2kSJziF0S2teKEGXrCtAQ1NQ== -----END CERTIFICATE-----Generated at Fri Apr 17 22:17:35 2026 by rpki-client