$ rpki-client -vvf rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft File: nT4CCLhd8EngI7NH2psYP8Vrqx4.mft (raw, json) Hash identifier: zB91SHV1P45hsmTNcF5K5Zf6ld45R5lQDB4xhZqqq+k= Subject key identifier: B5:41:B7:1B:C3:68:96:91:8E:5E:0A:23:49:F0:50:FD:CD:26:26:A3 Authority key identifier: 9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E Certificate issuer: /CN=A919D6D8/serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Certificate serial: 0B3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft Manifest number: 1434 Signing time: Sat 28 Feb 2026 19:27:35 +0000 Manifest this update: Sat 28 Feb 2026 19:27:35 +0000 Manifest next update: Sat 07 Mar 2026 19:27:35 +0000 Files and hashes: 1: nT4CCLhd8EngI7NH2psYP8Vrqx4.crl (hash: BQAcBqHN3MA/G9/3xfhUiF4T+SD8ONFM7sVv0cpf0uM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 19:27:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2879 (0xb3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D6D8, serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Validity Not Before: Feb 28 19:27:35 2026 GMT Not After : Mar 7 19:27:35 2026 GMT Subject: CN=69a341a7-10af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:96:ab:f7:71:a9:6e:f7:8e:05:90:f2:8e:44: b3:21:84:cb:7c:ca:4e:6e:e4:c6:a1:80:ac:56:b7: 8e:c8:77:d0:3d:2f:10:56:0e:c8:b3:2b:17:f6:9e: 02:2a:d3:de:a6:4a:00:e4:7a:3c:a7:c5:10:b3:99: fc:ba:97:9c:61:46:4e:4e:99:c9:f1:7d:0a:1f:99: ab:cd:a6:fc:05:3d:e5:13:90:3c:43:02:1e:36:4b: 91:5b:ab:71:ca:14:2e:8d:6c:c0:02:16:4c:3e:b5: 0e:ac:0f:39:35:8e:56:e5:0c:21:1b:5c:29:79:4f: a1:9a:fa:79:b3:f2:80:cc:61:f6:b0:1e:a7:9b:22: b9:59:a8:0c:89:2a:0c:29:5b:bf:88:aa:2a:b5:f2: 44:ff:18:45:34:0e:9d:19:96:03:2c:57:fe:a7:99: 02:3d:ff:cb:d5:73:37:31:93:7c:c9:02:ce:99:c5: 72:bb:11:08:39:37:05:78:51:6e:14:0b:2c:d1:12: 7a:d7:00:77:a2:fc:0f:c1:f7:07:91:2b:52:4e:ea: a1:e0:48:fb:42:21:00:de:da:f5:38:82:33:88:14: 44:a8:58:eb:72:96:73:6c:89:a8:b9:be:53:19:96: 6f:90:c7:a0:94:f8:90:7a:ca:6c:e5:18:52:34:07: 2b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:41:B7:1B:C3:68:96:91:8E:5E:0A:23:49:F0:50:FD:CD:26:26:A3 X509v3 Authority Key Identifier: keyid:9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:fc:e7:1d:95:13:b7:91:8d:58:6e:ea:40:87:70:ef:8d:c4: 87:d1:2e:0b:6a:bc:e4:63:3e:b1:2e:2b:02:3c:1e:c1:6c:88: 1e:3b:26:46:eb:21:b7:fc:48:18:64:81:00:29:56:ec:fa:84: 20:80:57:7e:1a:0b:06:cf:55:d8:6f:cd:fc:d7:8f:8b:f1:41: 4a:9e:23:b2:9d:2e:6f:24:76:bc:34:d1:e2:76:43:4e:ec:5f: e8:be:a3:dc:9e:08:00:58:f1:48:55:74:5d:ee:89:a7:2d:fa: 8e:a5:0f:6f:9a:b3:9a:ce:6d:99:41:9e:fb:62:f6:e6:f2:66: 52:e3:0c:1d:ac:0a:ce:0b:3c:d0:0a:e8:7e:dd:5a:fa:fc:e6: e2:30:a3:71:a0:ea:67:3a:59:43:e2:1c:b6:e0:68:dc:10:28: 17:4b:c4:2c:8a:b0:2b:ca:0a:04:8a:05:47:42:9b:90:54:0e: b5:1b:09:41:1c:b9:d3:db:04:1d:67:d1:29:72:c5:26:38:c1: 51:88:4a:59:19:bb:a4:33:d1:7d:17:1a:58:0d:82:2d:19:bd: 8c:09:f9:1f:1a:11:60:6d:c0:42:56:64:2c:3b:d2:d1:d8:dc: ff:28:1d:5c:a8:10:94:80:6c:9a:ed:28:d6:61:f9:c3:3f:cc: fd:8e:f4:17 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2RDgxMTAvBgNVBAUTKDlEM0UwMjA4Qjg1REYwNDlFMDIzQjM0N0RBOUIxODNG QzU2QkFCMUUwHhcNMjYwMjI4MTkyNzM1WhcNMjYwMzA3MTkyNzM1WjAYMRYwFAYD VQQDEw02OWEzNDFhNy0xMGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm5ar93GpbveOBZDyjkSzIYTLfMpObuTGoYCsVreOyHfQPS8QVg7IsysX9p4C KtPepkoA5Ho8p8UQs5n8upecYUZOTpnJ8X0KH5mrzab8BT3lE5A8QwIeNkuRW6tx yhQujWzAAhZMPrUOrA85NY5W5QwhG1wpeU+hmvp5s/KAzGH2sB6nmyK5WagMiSoM KVu/iKoqtfJE/xhFNA6dGZYDLFf+p5kCPf/L1XM3MZN8yQLOmcVyuxEIOTcFeFFu FAss0RJ61wB3ovwPwfcHkStSTuqh4Ej7QiEA3tr1OIIziBREqFjrcpZzbImoub5T GZZvkMeglPiQesps5RhSNAcrFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLVBtxvD aJaRjl4KI0nwUP3NJiajMB8GA1UdIwQYMBaAFJ0+Agi4XfBJ4COzR9qbGD/Fa6se MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDZEOC9BMDM3OTZERTUx QzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhFbmdJN05IMnBzWVA4VnJx eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UNENDTGhkOEVuZ0k3TkgycHNZUDhWcnF4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDZEOC9BMDM3OTZERTUxQzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhF bmdJN05IMnBzWVA4VnJxeDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA0/znHZUTt5GNWG7qQIdw743Eh9EuC2q85GM+sS4rAjwewWyIHjsmRusht/xI GGSBAClW7PqEIIBXfhoLBs9V2G/N/NePi/FBSp4jsp0ubyR2vDTR4nZDTuxf6L6j 3J4IAFjxSFV0Xe6Jpy36jqUPb5qzms5tmUGe+2L25vJmUuMMHawKzgs80Aroft1a +vzm4jCjcaDqZzpZQ+IctuBo3BAoF0vELIqwK8oKBIoFR0KbkFQOtRsJQRy509sE HWfRKXLFJjjBUYhKWRm7pDPRfRcaWA2CLRm9jAn5HxoRYG3AQlZkLDvS0djc/ygd XKgQlIBsmu0o1mH5wz/M/Y70Fw== -----END CERTIFICATE-----Generated at Sun Mar 1 20:56:15 2026 by rpki-client