$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft File: NhbgHaMxfwnuypjnvHVMvJkNfWg.mft (raw, json) Hash identifier: kIGwa5Tl5FZAEy3adzanyIkTIRAXwndfGIal762vcTo= Subject key identifier: 59:19:A4:F9:B9:66:DB:49:30:05:77:68:B7:3A:49:68:00:B5:10:70 Authority key identifier: 36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 Certificate issuer: /CN=A9192C72/serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft Manifest number: C7 Signing time: Sun 01 Mar 2026 08:08:15 +0000 Manifest this update: Sun 01 Mar 2026 08:08:15 +0000 Manifest next update: Sun 08 Mar 2026 08:08:15 +0000 Files and hashes: 1: NhbgHaMxfwnuypjnvHVMvJkNfWg.crl (hash: vdEOORNCeWzxMo+wNdD0Y0qenzlR6M16e/W83S2Bt+U=) 2: C2E1583EECFA11EFA881E216C4F9AE02.roa (hash: ZtssBrk5mGxn05SMndIJVGX0dnbxSXKZ14Gt5jpgS38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:08:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C72, serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Validity Not Before: Mar 1 08:08:15 2026 GMT Not After : Mar 8 08:08:15 2026 GMT Subject: CN=69a3f3ef-eb2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1c:c7:40:cc:9f:a8:8f:6d:3d:2f:92:a7:54: 6a:e6:39:1c:ca:33:6c:f1:aa:5b:1d:57:65:17:9d: 48:f0:80:14:08:cd:f4:cd:19:86:0c:84:e9:c5:2f: 70:17:a5:bd:ed:f6:54:de:f1:ba:81:cf:38:5c:e8: 7d:67:66:7e:a1:ee:5b:fe:14:a9:99:b2:95:57:21: 04:e7:7d:55:2d:e6:97:d6:9e:e0:42:ea:56:89:33: cd:76:0f:8e:90:35:36:7b:71:51:fb:7c:a1:13:f8: fc:5d:de:75:f8:58:d4:00:9d:f4:43:93:be:4d:8e: c6:24:06:10:08:f9:0b:01:db:43:08:b6:15:6b:b3: 17:4d:e1:68:2d:8d:d4:4c:9e:e3:eb:7a:b2:4f:82: ad:8b:01:22:25:2c:3c:26:04:cd:45:09:49:1e:c5: b9:ce:c4:33:8f:0c:0d:ce:55:bb:25:a3:00:0e:e9: b3:3e:9a:b9:f9:a1:35:3f:3b:17:29:82:4e:aa:35: b5:de:d5:09:94:4d:1e:b7:76:56:99:e4:c6:af:fe: f1:9f:20:5a:b6:ba:92:11:0a:af:93:16:54:30:82: fe:27:38:62:4a:f4:5e:f6:39:65:72:ca:d3:04:09: d3:ea:4e:db:bb:fb:71:d0:3d:67:08:c0:10:08:4f: e6:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:19:A4:F9:B9:66:DB:49:30:05:77:68:B7:3A:49:68:00:B5:10:70 X509v3 Authority Key Identifier: keyid:36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:cd:fd:85:73:1f:79:16:ff:e4:ae:bc:0f:98:53:a2:d5:07: 4d:5a:b2:1c:93:13:e7:16:ca:47:d1:17:c5:20:9e:ef:d6:c2: 93:32:f8:65:a8:86:a4:cf:3c:23:7c:07:e2:9e:e4:66:a9:f4: a2:32:d5:b2:99:3e:14:a5:c0:c3:e6:3d:50:d5:e3:a7:ce:83: 09:ab:d8:0d:1b:a5:f3:30:14:dc:48:bb:0d:f3:06:35:1a:1f: 35:32:31:c3:70:bc:18:3a:2c:50:4b:21:86:39:75:53:0b:18: 4d:70:4e:d2:43:b8:0e:cc:5a:6c:3a:83:35:30:69:cd:9a:d3: 5a:6e:b2:6d:f9:56:c9:7e:2a:47:d6:5a:c3:d5:58:a5:e6:0e: 38:a5:98:2c:6b:d5:a9:22:af:55:84:ce:02:5f:e8:7f:63:f9: 3a:1f:18:68:a2:f3:b1:3a:26:0e:ab:53:2e:eb:54:41:fd:2c: d9:f6:dd:8a:f8:f4:43:98:ed:2a:b8:9b:e6:08:c9:4a:d9:3a: 08:3b:f0:73:e1:47:f4:8e:43:21:1a:a3:87:23:0f:85:e9:2c: e9:54:76:f5:e1:1b:a8:84:d7:bc:97:c7:b8:fc:c7:87:b7:6e: 54:dc:b2:d2:28:c7:09:96:75:60:14:02:33:fa:38:46:c0:61: 94:db:d9:90 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDNzIxMTAvBgNVBAUTKDM2MTZFMDFEQTMzMTdGMDlFRUNBOThFN0JDNzU0Q0JD OTkwRDdENjgwHhcNMjYwMzAxMDgwODE1WhcNMjYwMzA4MDgwODE1WjAYMRYwFAYD VQQDEw02OWEzZjNlZi1lYjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsRzHQMyfqI9tPS+Sp1Rq5jkcyjNs8apbHVdlF51I8IAUCM30zRmGDITpxS9w F6W97fZU3vG6gc84XOh9Z2Z+oe5b/hSpmbKVVyEE531VLeaX1p7gQupWiTPNdg+O kDU2e3FR+3yhE/j8Xd51+FjUAJ30Q5O+TY7GJAYQCPkLAdtDCLYVa7MXTeFoLY3U TJ7j63qyT4KtiwEiJSw8JgTNRQlJHsW5zsQzjwwNzlW7JaMADumzPpq5+aE1PzsX KYJOqjW13tUJlE0et3ZWmeTGr/7xnyBatrqSEQqvkxZUMIL+JzhiSvRe9jllcsrT BAnT6k7bu/tx0D1nCMAQCE/m6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFkZpPm5 ZttJMAV3aLc6SWgAtRBwMB8GA1UdIwQYMBaAFDYW4B2jMX8J7sqY57x1TLyZDX1o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkM3Mi85RDVCNTE1NkVD RjkxMUVGOTNBMkEyMTNDNEY5QUUwMi9OaGJnSGFNeGZ3bnV5cGpudkhWTXZKa05m V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05oYmdIYU14ZndudXlwam52SFZNdkprTmZXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkM3Mi85RDVCNTE1NkVDRjkxMUVGOTNBMkEyMTNDNEY5QUUwMi9OaGJnSGFNeGZ3 bnV5cGpudkhWTXZKa05mV2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAq839hXMfeRb/5K68D5hTotUHTVqyHJMT5xbKR9EXxSCe79bCkzL4ZaiGpM88 I3wH4p7kZqn0ojLVspk+FKXAw+Y9UNXjp86DCavYDRul8zAU3Ei7DfMGNRofNTIx w3C8GDosUEshhjl1UwsYTXBO0kO4DsxabDqDNTBpzZrTWm6ybflWyX4qR9Zaw9VY peYOOKWYLGvVqSKvVYTOAl/of2P5Oh8YaKLzsTomDqtTLutUQf0s2fbdivj0Q5jt Krib5gjJStk6CDvwc+FH9I5DIRqjhyMPheks6VR29eEbqITXvJfHuPzHh7duVNyy 0ijHCZZ1YBQCM/o4RsBhlNvZkA== -----END CERTIFICATE-----Generated at Mon Mar 2 10:17:06 2026 by rpki-client