$ rpki-client -vvf rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft File: NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft (raw, json) Hash identifier: xbrn6zi8XPT+tgdJi2zcRzfJjWcbPM5BLqaQDb5iWSw= Subject key identifier: 41:7F:20:90:12:42:9E:16:53:13:22:E1:64:3F:97:AC:E2:91:E2:64 Authority key identifier: 35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 Certificate issuer: /CN=A9166AFF/serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Certificate serial: 01BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft Manifest number: 01B0 Signing time: Sat 13 Jun 2026 04:09:43 +0000 Manifest this update: Sat 13 Jun 2026 04:09:43 +0000 Manifest next update: Sat 20 Jun 2026 04:09:43 +0000 Files and hashes: 1: NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl (hash: kNyikC/Wsp5M8AS1S/5ZvYPZ6QKnOPbqYLyD70uxEcc=) 2: 8109B4CA9DF211F0B1ED220FC4F9AE02.roa (hash: 3F15rH6YOfm7yUgvAU7B83xmF5fOsfIgjewKISbkfSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 04:09:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 447 (0x1bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166AFF, serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Validity Not Before: Jun 13 04:09:43 2026 GMT Not After : Jun 20 04:09:43 2026 GMT Subject: CN=6a2cd807-81a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:47:90:84:8d:f8:eb:0b:6e:2c:07:16:e5:fc: 05:30:24:1b:2a:c6:4d:53:ff:02:3b:f4:0c:e3:30: 12:33:46:01:a8:49:5f:39:3c:6b:10:49:7c:54:ad: e8:ad:18:07:88:23:ca:05:14:77:a2:1e:9e:47:d5: 71:60:3e:85:bd:00:c4:60:d6:c1:b4:41:fc:03:b2: a6:9a:54:23:94:6e:fc:1e:3c:13:6d:35:e7:15:fc: 49:77:e9:8e:0d:dc:38:a4:92:fa:28:9c:2b:24:c9: da:4c:5f:98:33:84:e7:7a:74:9e:4d:f8:6b:2d:20: de:68:29:b2:9a:7d:34:0c:16:75:1c:aa:97:fa:63: 8b:99:37:3d:ec:2b:f2:44:5c:fc:36:6d:1f:d7:c3: 21:21:cc:fe:1b:ea:47:7e:ee:d5:04:38:91:81:55: de:26:ff:09:f9:a5:53:bf:52:03:a4:31:aa:11:c2: c6:cf:86:9f:d1:4a:03:72:8b:aa:81:19:42:4e:81: 22:4c:72:ec:78:76:b3:c4:29:85:66:56:09:d7:56: d5:bb:69:c5:ee:7b:cb:52:a8:be:96:3f:68:8b:d4: 36:d5:60:7d:33:e8:60:ad:a4:de:05:4b:24:0e:51: ec:17:fb:7f:df:6c:12:4e:27:01:e9:89:14:62:c8: 60:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:7F:20:90:12:42:9E:16:53:13:22:E1:64:3F:97:AC:E2:91:E2:64 X509v3 Authority Key Identifier: keyid:35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:fa:44:04:1a:45:79:cc:10:b2:0e:a6:19:0f:cf:ad:c1:4d: 82:08:6e:3b:d1:19:27:66:e6:7f:d1:97:e9:3b:9c:fb:cf:7b: 72:f3:97:dc:43:23:02:f7:58:8e:89:c8:84:dd:9c:31:75:8c: f3:2f:ed:f1:0c:b1:0b:af:4e:81:db:e5:c9:89:50:58:91:67: 23:2f:33:2f:84:89:e2:39:83:ce:a5:03:4b:da:4f:e7:84:18: 52:a8:b9:4c:a0:fe:81:24:ee:98:50:61:92:80:60:e0:fa:86: 5e:7f:9d:d6:93:81:44:44:e6:f4:32:3f:d4:db:25:ab:10:72: d2:43:a7:fd:8b:2e:65:0f:46:f9:91:cc:b6:c0:37:5c:d5:2a: e9:51:42:f4:a4:44:d4:ba:bb:27:a7:1c:07:d7:c6:37:c3:cb: bb:cc:1d:d4:66:de:79:1a:98:40:6e:79:36:a8:fe:e0:9f:8a: 44:49:4a:85:d6:10:21:91:2d:d3:7b:42:d7:79:e6:97:fc:80: bb:09:77:12:55:62:94:99:55:3f:0b:77:a5:84:c0:98:89:db: 0c:bf:d8:d4:40:f3:5a:a7:75:fc:3e:83:5d:d7:81:3d:ee:23: a2:f6:a8:33:17:00:56:b6:6f:6d:7f:e4:c6:5f:a9:6b:73:50: 8a:b6:72:63 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZBRkYxMTAvBgNVBAUTKDM1N0ExNzlDREQwQUY5QTNGQjAzRTE3N0Q2QTQzRkI4 QTU3NzU0RTAwHhcNMjYwNjEzMDQwOTQzWhcNMjYwNjIwMDQwOTQzWjAYMRYwFAYD VQQDEw02YTJjZDgwNy04MWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEeQhI346wtuLAcW5fwFMCQbKsZNU/8CO/QM4zASM0YBqElfOTxrEEl8VK3o rRgHiCPKBRR3oh6eR9VxYD6FvQDEYNbBtEH8A7KmmlQjlG78HjwTbTXnFfxJd+mO Ddw4pJL6KJwrJMnaTF+YM4TnenSeTfhrLSDeaCmymn00DBZ1HKqX+mOLmTc97Cvy RFz8Nm0f18MhIcz+G+pHfu7VBDiRgVXeJv8J+aVTv1IDpDGqEcLGz4af0UoDcouq gRlCToEiTHLseHazxCmFZlYJ11bVu2nF7nvLUqi+lj9oi9Q21WB9M+hgraTeBUsk DlHsF/t/32wSTicB6YkUYshgDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEF/IJAS Qp4WUxMi4WQ/l6zikeJkMB8GA1UdIwQYMBaAFDV6F5zdCvmj+wPhd9akP7ild1Tg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkFGRi80MENEMUI1NEU1 MDIxMUVFOUFCRjc2NTVDNEY5QUUwMi9OWG9Ybk4wSy1hUDdBLUYzMXFRX3VLVjNW T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Yb1huTjBLLWFQN0EtRjMxcVFfdUtWM1ZPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkFGRi80MENEMUI1NEU1MDIxMUVFOUFCRjc2NTVDNEY5QUUwMi9OWG9Ybk4wSy1h UDdBLUYzMXFRX3VLVjNWT0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASvpEBBpFecwQsg6mGQ/PrcFNgghuO9EZJ2bmf9GX6Tuc+897cvOX3EMjAvdY jonIhN2cMXWM8y/t8QyxC69OgdvlyYlQWJFnIy8zL4SJ4jmDzqUDS9pP54QYUqi5 TKD+gSTumFBhkoBg4PqGXn+d1pOBRETm9DI/1NslqxBy0kOn/YsuZQ9G+ZHMtsA3 XNUq6VFC9KRE1Lq7J6ccB9fGN8PLu8wd1GbeeRqYQG55Nqj+4J+KRElKhdYQIZEt 03tC13nml/yAuwl3ElVilJlVPwt3pYTAmInbDL/Y1EDzWqd1/D6DXdeBPe4jovao MxcAVrZvbX/kxl+pa3NQirZyYw== -----END CERTIFICATE-----Generated at Sat Jun 13 14:54:24 2026 by rpki-client