$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft File: NpQoPSE6XlZ5WORs29gStcxynXE.mft (raw, json) Hash identifier: HulzvIDut2ad0qB6lO+IYQ5t+wWV8YwPEHDOkoK+aP0= Subject key identifier: F9:C2:7C:43:80:DD:C1:16:50:DB:74:62:83:D5:C8:14:75:1B:89:4F Authority key identifier: 36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 Certificate issuer: /CN=A91A2F88/serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Certificate serial: 037F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft Manifest number: 037A Signing time: Sun 01 Mar 2026 01:41:36 +0000 Manifest this update: Sun 01 Mar 2026 01:41:36 +0000 Manifest next update: Sun 08 Mar 2026 01:41:36 +0000 Files and hashes: 1: NpQoPSE6XlZ5WORs29gStcxynXE.crl (hash: BF5OtKuUdZJTf5wfyekWwXPnW4qJt3/X84ifplkAXrI=) 2: 54467164E0A711EC8F4D5B5FC4F9AE02.roa (hash: HwkSTw7raizrXpljDXnHXfZQCr+VPlFOvS2ci48bY0A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:41:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 895 (0x37f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F88, serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Validity Not Before: Mar 1 01:41:36 2026 GMT Not After : Mar 8 01:41:36 2026 GMT Subject: CN=69a39950-a31e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8d:b8:43:4c:28:cb:8c:0a:06:8d:9f:b7:b1: 1b:25:af:35:3a:8e:92:88:64:0e:62:8a:c9:3e:87: 79:05:43:d5:5f:e2:6b:6d:9c:d1:b0:c3:3f:ba:cd: f3:9e:c2:6e:7a:cd:4b:5f:f2:32:e3:77:33:02:f2: 65:eb:5a:02:b5:88:0f:c9:65:ef:88:aa:32:fc:18: 4d:0d:27:b2:7b:d9:73:97:05:5e:01:03:a4:74:1f: 65:f0:56:c8:57:2f:37:96:52:b2:8b:e2:9f:2e:cd: 66:ca:1f:a4:c2:98:54:64:46:24:9b:60:84:b0:41: f4:1d:53:79:28:de:b5:e7:40:ac:84:06:98:1a:c8: 19:88:6b:75:83:bc:b5:7c:b7:dc:c0:c7:85:fb:f6: ae:6b:bb:ec:6f:2d:4e:0f:76:b6:a3:3e:29:06:03: a0:e0:60:55:86:76:2e:2a:f8:38:3d:6d:f1:bf:e5: bb:46:7d:31:17:b9:cf:d0:86:d1:3d:76:c0:d4:de: 91:00:b6:30:8f:67:78:90:3d:9a:26:4d:e2:27:b6: 77:b6:d7:e3:21:a9:e1:32:f4:85:f6:8c:1a:bb:30: c8:bd:1f:3a:11:42:a9:21:ee:d7:c0:11:60:8b:ac: 2b:0f:c1:65:4c:03:67:e5:ef:60:e5:c1:0d:24:9b: 1b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:C2:7C:43:80:DD:C1:16:50:DB:74:62:83:D5:C8:14:75:1B:89:4F X509v3 Authority Key Identifier: keyid:36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:a2:2a:da:db:a7:59:1c:83:ca:c1:3d:2d:46:dc:ab:67:05: bc:56:87:ec:77:4a:41:0d:38:cd:ee:29:2a:61:4a:d0:9f:b3: 94:cd:9e:62:b7:47:ed:84:21:2f:33:39:02:c5:48:1b:70:8c: 1e:ea:a4:f2:93:2f:e9:e7:be:96:63:43:54:20:22:eb:aa:87: bc:e8:ed:ff:c8:ae:f8:cb:e4:9a:76:ca:d7:4d:a0:99:da:23: b5:53:66:5b:0f:2a:3a:f5:d5:d4:49:99:84:75:a6:df:f5:69: 1c:79:ad:43:e7:2d:2e:41:6b:98:de:0e:7e:88:d0:f9:e1:ca: 65:39:31:60:08:06:cd:e3:08:8d:4d:fe:b5:c2:83:55:6a:8d: 35:a1:3d:9b:d2:1f:18:e1:e5:fb:cb:4e:75:9d:8a:24:90:20: 98:16:fc:66:71:08:3e:06:48:51:d9:6f:b6:7c:0d:d8:92:36: 9e:cd:a1:5f:72:66:f9:c7:e0:00:0c:aa:eb:7b:a3:0c:bf:fd: f8:46:9d:d7:e3:e7:b9:4b:c2:df:6b:d0:af:b9:61:7a:20:bf: 97:bd:47:9c:2e:2f:2c:54:ff:eb:08:19:2d:6c:d1:d0:26:57: ea:4a:ef:c3:93:3d:4a:57:3a:ea:3d:85:a7:ca:bd:9b:2f:3d: 00:f6:23:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGODgxMTAvBgNVBAUTKDM2OTQyODNEMjEzQTVFNTY3OTU4RTQ2Q0RCRDgxMkI1 Q0M3MjlENzEwHhcNMjYwMzAxMDE0MTM2WhcNMjYwMzA4MDE0MTM2WjAYMRYwFAYD VQQDDA02OWEzOTk1MC1hMzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt424Q0woy4wKBo2ft7EbJa81Oo6SiGQOYorJPod5BUPVX+JrbZzRsMM/us3z nsJues1LX/Iy43czAvJl61oCtYgPyWXviKoy/BhNDSeye9lzlwVeAQOkdB9l8FbI Vy83llKyi+KfLs1myh+kwphUZEYkm2CEsEH0HVN5KN6150CshAaYGsgZiGt1g7y1 fLfcwMeF+/aua7vsby1OD3a2oz4pBgOg4GBVhnYuKvg4PW3xv+W7Rn0xF7nP0IbR PXbA1N6RALYwj2d4kD2aJk3iJ7Z3ttfjIanhMvSF9owauzDIvR86EUKpIe7XwBFg i6wrD8FlTANn5e9g5cENJJsbowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPnCfEOA 3cEWUNt0YoPVyBR1G4lPMB8GA1UdIwQYMBaAFDaUKD0hOl5WeVjkbNvYErXMcp1x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkY4OC80QzdEQTNDMEUw QTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhsWjVXT1JzMjlnU3RjeHlu WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05wUW9QU0U2WGxaNVdPUnMyOWdTdGN4eW5YRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkY4OC80QzdEQTNDMEUwQTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhs WjVXT1JzMjlnU3RjeHluWEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVaIq2tunWRyDysE9LUbcq2cFvFaH7HdKQQ04ze4pKmFK0J+zlM2eYrdH7YQh LzM5AsVIG3CMHuqk8pMv6ee+lmNDVCAi66qHvOjt/8iu+MvkmnbK102gmdojtVNm Ww8qOvXV1EmZhHWm3/VpHHmtQ+ctLkFrmN4OfojQ+eHKZTkxYAgGzeMIjU3+tcKD VWqNNaE9m9IfGOHl+8tOdZ2KJJAgmBb8ZnEIPgZIUdlvtnwN2JI2ns2hX3Jm+cfg AAyq63ujDL/9+Ead1+PnuUvC32vQr7lheiC/l71HnC4vLFT/6wgZLWzR0CZX6krv w5M9Slc66j2Fp8q9my89APYjxg== -----END CERTIFICATE-----Generated at Sun Mar 1 20:29:58 2026 by rpki-client