$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft File: NyCB99vi7xGkQRvU5q-G8yaYyvo.mft (raw, json) Hash identifier: lY+PhXTVMKx2yqahu40F9yahceWUoccIu8ZjDzf++dk= Subject key identifier: AE:4E:17:36:66:12:12:6F:86:93:CB:C8:03:FB:01:86:81:E8:88:4F Authority key identifier: 37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA Certificate issuer: /CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Certificate serial: 0177 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft Manifest number: 016E Signing time: Fri 17 Apr 2026 04:31:09 +0000 Manifest this update: Fri 17 Apr 2026 04:31:09 +0000 Manifest next update: Fri 24 Apr 2026 04:31:09 +0000 Files and hashes: 1: NyCB99vi7xGkQRvU5q-G8yaYyvo.crl (hash: SHk6I0dKVQweJJABzbwbvN6zjSrb3bUGTqA9F8kGr3E=) 2: 82748D8A8D3A11F0833AB01AC4F9AE02.roa (hash: Vtl8KL5Go1ow8PZTf8Hy33WmoVT99sVBAqdfhxvXdk0=) 3: 4ABCFD508D3A11F0B6F4F46FC4F9AE02.roa (hash: Ys6z3KTyTUcEA7nCCEeVfOAk4o97hw5MQktE+xzWfDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:31:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E19, serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Validity Not Before: Apr 17 04:31:09 2026 GMT Not After : Apr 24 04:31:09 2026 GMT Subject: CN=69e1b78d-55d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3b:56:9b:07:d7:9b:1e:02:07:8d:bf:df:45: 69:ce:df:cd:40:48:00:9b:ed:1b:0e:a2:50:d3:a9: 88:4a:1f:4b:39:1b:38:f9:79:c5:82:5d:b1:a9:1b: 32:34:05:e1:ec:3b:1d:df:d3:7e:5c:78:4b:ae:5c: 98:be:13:c2:cb:a9:b1:75:98:53:09:d4:c6:31:56: 46:bb:69:bb:5b:9b:7d:3f:a0:a6:9b:6a:f9:cc:f1: ca:a3:50:a0:4d:2e:d3:db:58:d5:8e:09:2a:04:ff: e2:1c:a7:67:19:72:82:dd:97:6d:b2:88:f6:44:e5: 10:4c:7f:c1:18:3b:7b:e1:51:9d:aa:39:fd:f9:3b: c2:b5:6b:fc:68:bf:66:1b:5b:0b:a5:79:14:34:d3: 5e:d0:28:9a:34:33:4b:54:64:c3:d8:cf:d2:34:3a: f1:2a:37:68:ea:e1:81:23:ff:17:fe:4a:3f:1d:65: 4f:f4:38:c0:c4:46:a2:3a:79:b8:3a:b1:af:be:9c: c8:df:84:31:e8:11:40:1f:30:18:27:11:c4:c5:0e: 46:6a:3e:8e:76:45:9a:b3:49:be:1d:53:aa:a5:62: bc:2a:5b:e0:a5:d8:61:33:1e:c0:da:70:16:62:ef: e0:d1:d6:ad:41:3a:b3:61:29:ef:ad:7f:dd:e8:2e: 6e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:4E:17:36:66:12:12:6F:86:93:CB:C8:03:FB:01:86:81:E8:88:4F X509v3 Authority Key Identifier: keyid:37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:1b:7f:34:d7:f8:0d:e6:6f:95:0d:70:b7:1c:d0:82:b5:dd: 8c:c6:d3:b4:5a:af:a5:4b:bb:1c:3d:65:79:89:37:e2:e9:5f: 81:ce:24:ec:82:98:3b:15:69:54:e0:23:77:3a:8f:0c:36:2d: 7e:cd:ae:df:fe:bd:ba:9e:ec:c2:6f:f1:6b:0d:42:52:89:59: 87:0d:7e:23:81:a9:53:9c:7a:3a:41:e4:c2:32:94:b9:db:2a: 2d:09:e4:8f:37:17:04:ad:7e:fb:06:b2:7f:dd:55:30:de:da: 1b:ff:a6:4b:f0:b6:9f:4d:6e:1a:e6:14:c7:be:01:34:e2:50: 71:cf:44:fc:26:fe:5c:21:91:8a:16:8b:a2:de:fc:13:22:d7: cd:11:3a:c7:87:3a:6d:d6:8c:47:e0:9b:7c:e0:bd:b1:ff:36: 9c:c2:4d:46:92:eb:35:af:63:69:0a:a7:f5:ff:88:3d:a1:4d: 61:6a:57:47:85:7b:13:6c:ab:fb:eb:13:91:0e:ff:6a:1a:2e: d5:5b:73:72:f8:e4:44:66:fa:7f:39:6c:10:08:12:c6:5a:da: 5f:77:26:7c:7b:92:f2:35:24:cf:d7:48:33:e1:33:22:ee:b9: c8:f6:7b:71:cd:75:a4:d5:97:86:ba:cd:b3:55:59:f3:11:9c: 1a:24:79:d0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMTkxMTAvBgNVBAUTKDM3MjA4MUY3REJFMkVGMTFBNDQxMUJENEU2QUY4NkYz MjY5OENBRkEwHhcNMjYwNDE3MDQzMTA5WhcNMjYwNDI0MDQzMTA5WjAYMRYwFAYD VQQDEw02OWUxYjc4ZC01NWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujtWmwfXmx4CB42/30Vpzt/NQEgAm+0bDqJQ06mISh9LORs4+XnFgl2xqRsy NAXh7Dsd39N+XHhLrlyYvhPCy6mxdZhTCdTGMVZGu2m7W5t9P6Cmm2r5zPHKo1Cg TS7T21jVjgkqBP/iHKdnGXKC3Zdtsoj2ROUQTH/BGDt74VGdqjn9+TvCtWv8aL9m G1sLpXkUNNNe0CiaNDNLVGTD2M/SNDrxKjdo6uGBI/8X/ko/HWVP9DjAxEaiOnm4 OrGvvpzI34Qx6BFAHzAYJxHExQ5Gaj6OdkWas0m+HVOqpWK8KlvgpdhhMx7A2nAW Yu/g0datQTqzYSnvrX/d6C5ufwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK5OFzZm EhJvhpPLyAP7AYaB6IhPMB8GA1UdIwQYMBaAFDcggffb4u8RpEEb1OavhvMmmMr6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUxOS8xMEM3RjBBQTE0 MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4R2tRUnZVNXEtRzh5YVl5 dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055Q0I5OXZpN3hHa1FSdlU1cS1HOHlhWXl2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUUxOS8xMEM3RjBBQTE0MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4 R2tRUnZVNXEtRzh5YVl5dm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAxt/NNf4DeZvlQ1wtxzQgrXdjMbTtFqvpUu7HD1leYk34ulfgc4k7IKYOxVp VOAjdzqPDDYtfs2u3/69up7swm/xaw1CUolZhw1+I4GpU5x6OkHkwjKUudsqLQnk jzcXBK1++wayf91VMN7aG/+mS/C2n01uGuYUx74BNOJQcc9E/Cb+XCGRihaLot78 EyLXzRE6x4c6bdaMR+CbfOC9sf82nMJNRpLrNa9jaQqn9f+IPaFNYWpXR4V7E2yr ++sTkQ7/ahou1VtzcvjkRGb6fzlsEAgSxlraX3cmfHuS8jUkz9dIM+EzIu65yPZ7 cc11pNWXhrrNs1VZ8xGcGiR50A== -----END CERTIFICATE-----Generated at Fri Apr 17 22:49:18 2026 by rpki-client