$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft File: NhbgHaMxfwnuypjnvHVMvJkNfWg.mft (raw, json) Hash identifier: jmr2yhAywT1ELP8mJA9lbw2+Px/S+Jua1N9bUuv6H3Y= Subject key identifier: F3:AD:63:4A:D0:42:4D:A8:55:7E:09:34:4A:EE:3B:6D:8F:AC:54:7D Authority key identifier: 36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 Certificate issuer: /CN=A9192C72/serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft Manifest number: DF Signing time: Fri 17 Apr 2026 06:19:21 +0000 Manifest this update: Fri 17 Apr 2026 06:19:21 +0000 Manifest next update: Fri 24 Apr 2026 06:19:21 +0000 Files and hashes: 1: NhbgHaMxfwnuypjnvHVMvJkNfWg.crl (hash: svPbfqeCpi3uKAiEBJCVk3w6VWnhX3NkDi+6rAKamgs=) 2: C2E1583EECFA11EFA881E216C4F9AE02.roa (hash: ZtssBrk5mGxn05SMndIJVGX0dnbxSXKZ14Gt5jpgS38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:19:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C72, serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Validity Not Before: Apr 17 06:19:21 2026 GMT Not After : Apr 24 06:19:21 2026 GMT Subject: CN=69e1d0e9-ed40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ba:3f:2d:74:fb:bc:27:c4:e1:ce:8d:65:2a: 82:60:84:be:14:77:48:6a:57:92:fe:87:5e:45:6a: 56:cf:6e:e4:4e:58:e0:34:88:a1:19:24:c6:ee:57: f4:72:7f:4d:60:54:9c:80:65:09:a6:3d:b9:4d:9e: 7d:76:da:87:0d:c1:2e:71:f4:dd:0e:8c:e4:93:e8: 56:5a:b7:ef:11:29:41:c6:3a:f3:a9:a7:70:bf:04: 29:bf:8f:96:20:83:32:1a:b8:94:f7:a0:ec:3a:cb: 07:ee:88:12:7a:6c:2e:0e:c0:78:8a:e9:37:ef:ee: 05:7a:9f:0e:af:86:b7:b7:8d:ed:a7:14:32:5b:aa: 87:12:41:98:f9:72:81:92:de:9d:6d:1c:56:98:e3: c4:b9:b7:c7:6b:20:c7:95:5a:28:ef:59:21:3e:fe: 3d:6b:d1:a7:23:d7:02:11:18:b6:71:a0:c1:0e:2c: 1a:9a:0e:04:a4:de:83:7a:05:fe:a1:5b:08:72:a9: cf:b0:97:76:45:f9:96:d7:0e:48:bf:c6:b0:40:ad: 58:db:d9:dc:f9:7e:e4:df:2d:0a:dd:51:5a:c4:39: 7c:da:4b:5f:a5:7e:79:7b:b8:c1:5c:d1:85:4e:1c: 91:03:4b:d7:b4:c9:bc:c7:5f:99:15:3c:c2:2b:b5: 32:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:AD:63:4A:D0:42:4D:A8:55:7E:09:34:4A:EE:3B:6D:8F:AC:54:7D X509v3 Authority Key Identifier: keyid:36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:fe:61:e3:8c:ec:45:59:ec:8b:5a:b1:85:8b:91:7a:6b:03: f3:41:09:40:35:65:88:8c:bf:ab:0e:e8:f2:d6:e5:6b:78:f7: 82:65:8f:f9:40:ff:37:9b:cd:62:33:a3:d2:03:93:ed:26:69: a8:4d:53:6e:16:ec:71:ca:9f:f5:5a:23:ad:56:d6:cd:3e:f5: ce:c5:35:20:86:20:41:0b:6e:70:57:e1:de:70:d1:1a:e8:86: 3c:7c:d1:ac:b7:bd:96:31:4d:68:a3:1e:27:93:21:78:8d:d2: a3:ae:9f:55:2f:b0:c7:92:6b:70:f2:ac:df:ac:2e:57:b1:c2: 38:6a:e2:9a:c9:d6:74:96:fa:5c:cb:53:6c:22:25:ea:85:38: 59:e6:69:76:f8:c1:d8:d7:62:0f:4d:cf:77:aa:27:24:ec:11: 25:e7:4d:4e:34:25:4c:08:d4:74:76:87:d6:5d:18:c3:28:d8: f8:fd:f8:0f:77:ef:66:bf:35:ac:5c:14:32:93:35:b3:06:93: b4:28:8c:94:a2:10:9b:47:c0:1c:db:f6:dd:08:30:35:e8:a6: d1:5f:fb:52:bf:4d:55:99:98:b6:9b:2a:86:86:95:81:a3:32: 82:45:c4:2c:c4:ab:35:5c:05:b5:3a:7c:a4:87:76:e6:88:1e: a3:f1:19:b5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDNzIxMTAvBgNVBAUTKDM2MTZFMDFEQTMzMTdGMDlFRUNBOThFN0JDNzU0Q0JD OTkwRDdENjgwHhcNMjYwNDE3MDYxOTIxWhcNMjYwNDI0MDYxOTIxWjAYMRYwFAYD VQQDEw02OWUxZDBlOS1lZDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbo/LXT7vCfE4c6NZSqCYIS+FHdIaleS/odeRWpWz27kTljgNIihGSTG7lf0 cn9NYFScgGUJpj25TZ59dtqHDcEucfTdDozkk+hWWrfvESlBxjrzqadwvwQpv4+W IIMyGriU96DsOssH7ogSemwuDsB4iuk37+4Fep8Or4a3t43tpxQyW6qHEkGY+XKB kt6dbRxWmOPEubfHayDHlVoo71khPv49a9GnI9cCERi2caDBDiwamg4EpN6DegX+ oVsIcqnPsJd2RfmW1w5Iv8awQK1Y29nc+X7k3y0K3VFaxDl82ktfpX55e7jBXNGF ThyRA0vXtMm8x1+ZFTzCK7UyowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPOtY0rQ Qk2oVX4JNEruO22PrFR9MB8GA1UdIwQYMBaAFDYW4B2jMX8J7sqY57x1TLyZDX1o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkM3Mi85RDVCNTE1NkVD RjkxMUVGOTNBMkEyMTNDNEY5QUUwMi9OaGJnSGFNeGZ3bnV5cGpudkhWTXZKa05m V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05oYmdIYU14ZndudXlwam52SFZNdkprTmZXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkM3Mi85RDVCNTE1NkVDRjkxMUVGOTNBMkEyMTNDNEY5QUUwMi9OaGJnSGFNeGZ3 bnV5cGpudkhWTXZKa05mV2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKf5h44zsRVnsi1qxhYuRemsD80EJQDVliIy/qw7o8tbla3j3gmWP+UD/N5vN YjOj0gOT7SZpqE1Tbhbsccqf9VojrVbWzT71zsU1IIYgQQtucFfh3nDRGuiGPHzR rLe9ljFNaKMeJ5MheI3So66fVS+wx5JrcPKs36wuV7HCOGrimsnWdJb6XMtTbCIl 6oU4WeZpdvjB2NdiD03Pd6onJOwRJedNTjQlTAjUdHaH1l0YwyjY+P34D3fvZr81 rFwUMpM1swaTtCiMlKIQm0fAHNv23QgwNeim0V/7Ur9NVZmYtpsqhoaVgaMygkXE LMSrNVwFtTp8pId25ogeo/EZtQ== -----END CERTIFICATE-----Generated at Fri Apr 17 15:58:06 2026 by rpki-client