$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft File: nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft (raw, json) Hash identifier: eX76ZFR2FJVJWDex6v8odWTrXi1drtl/ODyGSsOIVhk= Subject key identifier: EA:A0:F5:C8:8C:0B:21:25:5C:9A:B9:08:6E:8C:6C:02:17:31:9B:40 Authority key identifier: 9E:C1:21:6D:25:64:16:40:3C:B5:C5:3E:73:45:53:0F:83:27:2C:DD Certificate issuer: /CN=A9185D34/serialNumber=9EC1216D256416403CB5C53E7345530F83272CDD Certificate serial: 08B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nsEhbSVkFkA8tcU-c0VTD4MnLN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft Manifest number: 08AA Signing time: Thu 16 Apr 2026 20:27:10 +0000 Manifest this update: Thu 16 Apr 2026 20:27:10 +0000 Manifest next update: Thu 23 Apr 2026 20:27:10 +0000 Files and hashes: 1: nsEhbSVkFkA8tcU-c0VTD4MnLN0.crl (hash: WewObTuHmYhUYbn6/Nsrseh3cTsK6rYv29UeN0wEr18=) 2: C1171FCAB1B111ECBA7F614FC4F9AE02.roa (hash: yy56Dhxj1ovpz3FD+DcyQb1Zocg7YLvQqlFzvMeS8+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.crl rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nsEhbSVkFkA8tcU-c0VTD4MnLN0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:27:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2233 (0x8b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D34, serialNumber=9EC1216D256416403CB5C53E7345530F83272CDD Validity Not Before: Apr 16 20:27:10 2026 GMT Not After : Apr 23 20:27:10 2026 GMT Subject: CN=69e1461e-cfb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:1f:fa:f5:1e:e4:a9:d2:90:0d:9a:06:66:15: 05:f3:02:13:c9:f8:09:25:ba:19:7c:fd:9b:35:b0: 91:b9:64:10:cd:85:47:30:ff:49:c4:76:b0:c4:6b: df:75:d4:6f:31:2c:51:b4:db:05:1a:09:57:7c:2a: 05:2a:9d:dc:8c:81:d3:6b:1f:81:86:5e:b9:e0:25: 1a:e2:51:62:b0:d3:4f:62:34:7a:fb:67:11:7c:ca: 14:e5:3e:68:a3:90:c4:9f:ed:71:4b:d7:04:b2:7e: 64:d8:a6:1d:0c:20:a6:28:46:98:b7:56:f7:80:d9: 6b:2b:9e:be:a6:e2:70:d1:6e:67:5f:c5:e4:1f:04: 0d:78:f2:da:e2:b8:3a:8b:6c:61:12:ce:b3:df:a9: 77:3e:75:74:2a:9c:29:c9:61:75:38:df:63:88:c0: c5:6e:3c:57:17:29:af:34:0f:37:bc:b7:db:01:3f: d2:10:b6:de:53:b1:cd:f5:e9:8c:df:1a:a6:55:f4: 7f:fb:0b:a3:a7:6e:87:2d:c7:e7:46:bb:39:84:12: 3f:be:6f:9f:56:93:d8:69:6b:fc:d2:10:ef:dd:d9: cd:26:4b:ff:a5:92:cc:c3:93:2c:0b:ef:6a:1e:d4: 3d:e0:4b:8a:ea:96:c7:a7:e5:a2:3f:b5:01:5e:2b: 15:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:A0:F5:C8:8C:0B:21:25:5C:9A:B9:08:6E:8C:6C:02:17:31:9B:40 X509v3 Authority Key Identifier: keyid:9E:C1:21:6D:25:64:16:40:3C:B5:C5:3E:73:45:53:0F:83:27:2C:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nsEhbSVkFkA8tcU-c0VTD4MnLN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:56:20:59:cf:11:71:d0:f3:2c:f3:f6:73:06:21:2c:3a:0a: 61:7a:a7:d0:63:61:46:6b:db:22:f3:e5:b9:5f:c2:d6:81:19: 08:47:ce:03:5e:8c:bb:66:97:84:4a:ac:93:a7:04:76:a3:f2: e8:65:d8:55:62:28:a1:ca:62:94:28:97:73:42:a0:de:2b:9f: 08:72:f4:2c:fe:fd:17:70:20:71:ab:6f:3d:b5:55:f8:a2:b5: 46:6e:63:d3:b1:c9:bc:90:23:df:5b:a8:a4:22:1f:ac:3a:26: dc:15:a0:b4:f9:7a:2b:32:17:24:bd:04:97:e1:b0:75:22:59: ef:83:41:f0:5c:d1:44:d1:8f:9d:96:40:e4:0d:b9:f6:cf:10: 27:9a:f2:5b:da:0a:6c:54:3c:aa:a3:e4:78:8f:cf:79:5e:ac: 12:08:43:13:dd:9f:cd:f2:0d:3a:18:1f:5f:12:02:a6:75:e6: 2a:a3:81:3e:c4:02:d5:a1:3d:b5:63:64:9b:fa:10:8b:40:69: 05:a3:62:44:b3:f6:d0:aa:8a:d8:39:c2:fd:e2:49:a5:9c:4d: ce:e7:f4:53:23:c3:7f:3e:27:a4:b7:d1:00:77:8a:b4:9c:56: 08:db:94:85:03:d2:a0:b3:ad:3a:11:64:e1:cd:2e:e1:7d:42: b7:01:69:f3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVEMzQxMTAvBgNVBAUTKDlFQzEyMTZEMjU2NDE2NDAzQ0I1QzUzRTczNDU1MzBG ODMyNzJDREQwHhcNMjYwNDE2MjAyNzEwWhcNMjYwNDIzMjAyNzEwWjAYMRYwFAYD VQQDEw02OWUxNDYxZS1jZmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5B/69R7kqdKQDZoGZhUF8wITyfgJJboZfP2bNbCRuWQQzYVHMP9JxHawxGvf ddRvMSxRtNsFGglXfCoFKp3cjIHTax+Bhl654CUa4lFisNNPYjR6+2cRfMoU5T5o o5DEn+1xS9cEsn5k2KYdDCCmKEaYt1b3gNlrK56+puJw0W5nX8XkHwQNePLa4rg6 i2xhEs6z36l3PnV0KpwpyWF1ON9jiMDFbjxXFymvNA83vLfbAT/SELbeU7HN9emM 3xqmVfR/+wujp26HLcfnRrs5hBI/vm+fVpPYaWv80hDv3dnNJkv/pZLMw5MsC+9q HtQ94EuK6pbHp+WiP7UBXisVRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOqg9ciM CyElXJq5CG6MbAIXMZtAMB8GA1UdIwQYMBaAFJ7BIW0lZBZAPLXFPnNFUw+DJyzd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQzNC9EQkE4Nzg1OEU2 QTAxMUVBQTg1NDRCNDNDNEY5QUUwMi9uc0VoYlNWa0ZrQTh0Y1UtYzBWVEQ0TW5M TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25zRWhiU1ZrRmtBOHRjVS1jMFZURDRNbkxOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQzNC9EQkE4Nzg1OEU2QTAxMUVBQTg1NDRCNDNDNEY5QUUwMi9uc0VoYlNWa0Zr QTh0Y1UtYzBWVEQ0TW5MTjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVVYgWc8RcdDzLPP2cwYhLDoKYXqn0GNhRmvbIvPluV/C1oEZCEfOA16Mu2aX hEqsk6cEdqPy6GXYVWIoocpilCiXc0Kg3iufCHL0LP79F3AgcatvPbVV+KK1Rm5j 07HJvJAj31uopCIfrDom3BWgtPl6KzIXJL0El+GwdSJZ74NB8FzRRNGPnZZA5A25 9s8QJ5ryW9oKbFQ8qqPkeI/PeV6sEghDE92fzfINOhgfXxICpnXmKqOBPsQC1aE9 tWNkm/oQi0BpBaNiRLP20KqK2DnC/eJJpZxNzuf0UyPDfz4npLfRAHeKtJxWCNuU hQPSoLOtOhFk4c0u4X1CtwFp8w== -----END CERTIFICATE-----Generated at Fri Apr 17 12:09:04 2026 by rpki-client