$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft File: nlE6zE17kAFKhn-1KviSKeALpKw.mft (raw, json) Hash identifier: uTxqhm9pWD1epPmFxNzgYE9Ey+6raHUebGJzD4PYJdY= Subject key identifier: 39:C9:4B:31:65:F3:A9:7B:70:DA:8E:C4:23:CC:79:D4:04:B3:30:FE Authority key identifier: 9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC Certificate issuer: /CN=A91B2472/serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Certificate serial: 0133 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft Manifest number: 012F Signing time: Sun 01 Mar 2026 06:34:37 +0000 Manifest this update: Sun 01 Mar 2026 06:34:37 +0000 Manifest next update: Sun 08 Mar 2026 06:34:37 +0000 Files and hashes: 1: nlE6zE17kAFKhn-1KviSKeALpKw.crl (hash: mw/EuLnLZnc/lL7iPt2ezlznEuGusQLfnr1MrP81uoQ=) 2: 1B4BDA5C48B011EF9D34415EC4F9AE02.roa (hash: gcIhWP5NO91lJBfeWuctKx1kLPZssG1GkCQYCQaZs38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:34:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2472, serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Validity Not Before: Mar 1 06:34:37 2026 GMT Not After : Mar 8 06:34:37 2026 GMT Subject: CN=69a3ddfd-df9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:58:5d:91:91:bb:97:da:01:5a:40:06:83:c3: d3:eb:da:96:9e:78:d5:a2:93:3d:3a:bb:ea:88:aa: 21:1c:8f:99:3b:74:db:6d:00:c0:55:28:bf:91:19: bd:c1:8e:86:d3:be:79:9b:3f:d9:d4:c4:cf:9a:2e: e3:a8:67:2a:4b:f2:31:ae:ee:0f:3b:f6:95:c8:b7: 73:65:df:c7:dc:45:5f:35:df:91:1e:e6:ab:be:16: 24:ea:c3:50:cb:8c:72:5d:8f:21:92:4a:63:e5:a4: 26:f4:32:55:05:f8:88:a2:43:1d:e7:25:cb:45:d2: 1f:fd:21:01:fe:b7:d3:ac:d5:89:0f:82:0e:12:1f: a0:d4:9f:40:ea:fb:8f:20:29:6d:f9:9f:e7:f9:6f: ad:3e:62:14:60:fa:ca:f3:27:a1:76:ba:9b:d4:93: 80:a6:76:fe:d4:5a:e8:9f:ec:18:20:ee:32:d0:1d: ca:82:2d:b6:bc:ee:c7:ab:77:83:be:bb:ed:12:d6: fa:e1:ee:5f:b9:f0:93:31:97:e2:eb:2b:80:2e:d5: a0:78:88:c0:97:92:84:36:e6:e8:7f:24:1c:4c:f6: 5d:a7:82:d4:b3:58:e5:78:38:0a:a2:e8:c9:5f:90: 5a:a8:4a:1f:95:ea:f1:8e:09:1b:93:e1:c4:fe:73: 1b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:C9:4B:31:65:F3:A9:7B:70:DA:8E:C4:23:CC:79:D4:04:B3:30:FE X509v3 Authority Key Identifier: keyid:9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:b1:2e:4b:ac:2c:5a:32:09:4b:1e:49:30:9b:4e:25:fc:20: 76:77:80:72:1e:93:fd:25:fc:8f:50:57:09:00:f9:f1:f5:c7: 8a:ba:95:b6:3f:8a:6d:c9:97:66:e9:c2:95:99:03:c2:b3:48: ab:e7:b8:78:5b:00:6b:7a:94:75:c2:a9:2a:32:f6:da:1d:dd: cf:e2:e6:25:39:53:77:3f:67:b9:fe:36:e9:ab:cf:12:ba:06: d2:17:bd:ad:05:e4:b7:76:6a:22:dc:e9:d6:37:27:7b:46:d4: a7:a3:e9:b3:22:11:83:59:ff:39:eb:ac:a8:4c:a8:ef:93:65: 0c:51:b7:f7:59:b5:4f:6c:17:d9:d7:db:6b:69:a9:a8:f2:67: 7a:a4:c0:3f:5d:65:a0:85:a1:70:ef:08:e9:f6:95:e6:03:cc: c5:2c:6b:95:f1:c2:78:99:88:41:07:47:69:6e:6e:4d:9c:bc: 95:ab:7a:8e:68:c7:5e:2e:ca:28:7e:2f:ff:2f:75:c2:11:58: 79:ed:49:fb:24:f4:5a:39:9f:67:d0:5d:ff:d4:a6:b3:1d:1a: e2:d6:8a:d3:ab:e4:41:3a:e1:09:14:47:3f:b4:61:be:da:e2: 78:84:d0:5d:5d:ba:e7:dc:d0:3e:56:fd:3a:33:a8:7c:71:3a: df:5c:58:dc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI0NzIxMTAvBgNVBAUTKDlFNTEzQUNDNEQ3QjkwMDE0QTg2N0ZCNTJBRjg5MjI5 RTAwQkE0QUMwHhcNMjYwMzAxMDYzNDM3WhcNMjYwMzA4MDYzNDM3WjAYMRYwFAYD VQQDEw02OWEzZGRmZC1kZjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8VhdkZG7l9oBWkAGg8PT69qWnnjVopM9OrvqiKohHI+ZO3TbbQDAVSi/kRm9 wY6G0755mz/Z1MTPmi7jqGcqS/Ixru4PO/aVyLdzZd/H3EVfNd+RHuarvhYk6sNQ y4xyXY8hkkpj5aQm9DJVBfiIokMd5yXLRdIf/SEB/rfTrNWJD4IOEh+g1J9A6vuP IClt+Z/n+W+tPmIUYPrK8yehdrqb1JOApnb+1Fron+wYIO4y0B3Kgi22vO7Hq3eD vrvtEtb64e5fufCTMZfi6yuALtWgeIjAl5KENubofyQcTPZdp4LUs1jleDgKoujJ X5BaqEoflerxjgkbk+HE/nMb1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDnJSzFl 86l7cNqOxCPMedQEszD+MB8GA1UdIwQYMBaAFJ5ROsxNe5ABSoZ/tSr4kingC6Ss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjQ3Mi9FNjJCNzM1QTQ4 MTkxMUVGQjhCRTQ1MzRDNEY5QUUwMi9ubEU2ekUxN2tBRktobi0xS3ZpU0tlQUxw S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25sRTZ6RTE3a0FGS2huLTFLdmlTS2VBTHBLdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjQ3Mi9FNjJCNzM1QTQ4MTkxMUVGQjhCRTQ1MzRDNEY5QUUwMi9ubEU2ekUxN2tB Rktobi0xS3ZpU0tlQUxwS3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQbEuS6wsWjIJSx5JMJtOJfwgdneAch6T/SX8j1BXCQD58fXHirqVtj+KbcmX ZunClZkDwrNIq+e4eFsAa3qUdcKpKjL22h3dz+LmJTlTdz9nuf426avPEroG0he9 rQXkt3ZqItzp1jcne0bUp6PpsyIRg1n/OeusqEyo75NlDFG391m1T2wX2dfba2mp qPJneqTAP11loIWhcO8I6faV5gPMxSxrlfHCeJmIQQdHaW5uTZy8lat6jmjHXi7K KH4v/y91whFYee1J+yT0WjmfZ9Bd/9Smsx0a4taK06vkQTrhCRRHP7RhvtrieITQ XV2659zQPlb9OjOofHE631xY3A== -----END CERTIFICATE-----Generated at Mon Mar 2 15:18:08 2026 by rpki-client