$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft File: nssirN4JZ6BYN-WPxzHTV-N2N_g.mft (raw, json) Hash identifier: GC4+3ZDV1ucQ5aIu0PRVPBGF92DQFtzEyRKasK7ejxg= Subject key identifier: 50:5B:1A:38:50:2B:D3:F7:B2:AF:4F:BC:DA:61:8F:CA:17:96:38:0D Authority key identifier: 9E:CB:22:AC:DE:09:67:A0:58:37:E5:8F:C7:31:D3:57:E3:76:37:F8 Certificate issuer: /CN=A91C6B27/serialNumber=9ECB22ACDE0967A05837E58FC731D357E37637F8 Certificate serial: 0C26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft Manifest number: 0C0B Signing time: Thu 16 Apr 2026 18:43:32 +0000 Manifest this update: Thu 16 Apr 2026 18:43:31 +0000 Manifest next update: Thu 23 Apr 2026 18:43:31 +0000 Files and hashes: 1: nssirN4JZ6BYN-WPxzHTV-N2N_g.crl (hash: ke8aob0avX7BDdGNRSX+L8LqdUayogu4NbGzJJyNRpU=) 2: 2B1D3BB2305811EA8D5B6479C4F9AE02.roa (hash: N2Nuak7OaRSEZDR308+upPNTawYHUgYAli3HOQeBT88=) 3: E4BB99E2336E11EA94623E18C4F9AE02.roa (hash: pnBE91n4MbWlPAPg/bpDpFdbvV8uWC8bNNguZIXX26E=) 4: E5675F48336E11EA94623E18C4F9AE02.roa (hash: 2xiNwjYW2pyIkz7eTV4qaxFN/iMW7ShcypRgqsGtO2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.crl rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:43:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3110 (0xc26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6B27, serialNumber=9ECB22ACDE0967A05837E58FC731D357E37637F8 Validity Not Before: Apr 16 18:43:31 2026 GMT Not After : Apr 23 18:43:31 2026 GMT Subject: CN=69e12dd3-802c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:78:db:9f:2d:97:9c:62:40:dd:7d:5c:45:1b: fb:ef:10:88:59:12:aa:2d:2a:64:ba:a9:2b:cc:ba: 50:d2:3d:54:8e:5c:cd:dd:45:3d:5a:cb:61:05:20: 58:0e:15:c2:79:f0:0a:40:dd:2e:82:ff:e3:76:78: 29:00:22:fe:85:fd:7d:18:3b:37:bf:1f:d7:77:0a: 68:49:09:36:72:89:5d:bc:fb:26:7f:bf:f7:84:57: c4:fc:3f:50:de:1f:68:4b:a2:df:ca:fa:15:ac:92: bc:10:00:ef:19:13:18:23:4f:d3:d8:7e:fb:63:53: bc:7a:e8:db:9e:16:4c:f0:ca:f3:10:2e:fa:a3:62: b7:36:7b:9c:ff:a4:76:15:9d:33:0d:db:62:45:f6: da:00:14:0e:48:bd:2e:e3:9b:2a:5a:56:2b:41:7f: d7:96:48:29:b6:0a:d3:b5:15:a6:00:92:ec:d9:7d: e6:02:b7:d4:6b:39:98:68:a4:be:09:69:a7:2b:6f: ac:e6:89:fc:1b:89:4f:d6:75:49:b9:33:e6:9d:e2: f7:09:95:8e:ca:af:84:9b:a1:dd:cb:34:f1:ee:fe: fc:59:b8:d4:d8:dd:37:c8:28:43:7b:ea:2d:e2:8c: e3:e1:da:cf:c5:1b:52:cc:2a:68:cb:59:f9:be:bc: b7:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:5B:1A:38:50:2B:D3:F7:B2:AF:4F:BC:DA:61:8F:CA:17:96:38:0D X509v3 Authority Key Identifier: keyid:9E:CB:22:AC:DE:09:67:A0:58:37:E5:8F:C7:31:D3:57:E3:76:37:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:75:d5:1a:9f:4a:b6:fa:b0:5d:9a:85:2b:52:b6:b6:f3:c1: 43:98:ec:65:d4:9c:80:d3:5d:a8:04:cb:71:e4:a5:36:cc:47: b5:98:f9:0c:be:3f:5b:65:f1:31:41:09:f4:c7:6f:a6:42:77: a3:c3:51:43:96:69:c8:88:e6:31:de:a9:c8:d8:5a:12:9f:b4: 03:a9:03:2a:b4:e3:30:8c:88:8a:67:2d:25:dc:10:59:b7:a3: 9c:c4:9e:ed:c7:cb:78:91:14:3b:37:27:23:19:1c:6f:4c:80: d0:37:2f:6a:93:d9:de:cd:4f:4b:5e:40:9d:c4:69:2f:f4:f4: ec:c1:8c:63:68:ab:f0:54:26:15:87:6e:66:90:36:3a:f8:eb: 62:bd:7d:d5:d8:cf:a8:53:54:28:7a:d1:8e:9d:9d:7c:a8:1a: 4b:ec:39:83:26:0a:67:cf:79:de:de:18:1a:f3:ae:69:34:3b: ab:63:d3:9d:fe:f5:39:6a:ef:31:31:1e:8a:4c:3a:17:c4:87: d6:c7:24:1d:a1:ab:f2:ef:c6:95:eb:1d:1b:87:61:f6:f0:7a: f1:43:47:f0:cb:d6:3c:d2:be:f0:2e:37:10:27:64:67:db:16: b1:94:4a:0e:d3:1a:99:08:f0:87:e3:2c:39:63:aa:c3:55:09: c7:59:0e:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCMjcxMTAvBgNVBAUTKDlFQ0IyMkFDREUwOTY3QTA1ODM3RTU4RkM3MzFEMzU3 RTM3NjM3RjgwHhcNMjYwNDE2MTg0MzMxWhcNMjYwNDIzMTg0MzMxWjAYMRYwFAYD VQQDEw02OWUxMmRkMy04MDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApXjbny2XnGJA3X1cRRv77xCIWRKqLSpkuqkrzLpQ0j1UjlzN3UU9WsthBSBY DhXCefAKQN0ugv/jdngpACL+hf19GDs3vx/XdwpoSQk2coldvPsmf7/3hFfE/D9Q 3h9oS6LfyvoVrJK8EADvGRMYI0/T2H77Y1O8eujbnhZM8MrzEC76o2K3Nnuc/6R2 FZ0zDdtiRfbaABQOSL0u45sqWlYrQX/XlkgptgrTtRWmAJLs2X3mArfUazmYaKS+ CWmnK2+s5on8G4lP1nVJuTPmneL3CZWOyq+Em6HdyzTx7v78WbjU2N03yChDe+ot 4ozj4drPxRtSzCpoy1n5vry3TQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFBbGjhQ K9P3sq9PvNphj8oXljgNMB8GA1UdIwQYMBaAFJ7LIqzeCWegWDflj8cx01fjdjf4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkIyNy84MkJGMkJGNDMw NTQxMUVBQUZDOTExNkVDNEY5QUUwMi9uc3Npck40Slo2QllOLVdQeHpIVFYtTjJO X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25zc2lyTjRKWjZCWU4tV1B4ekhUVi1OMk5fZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkIyNy84MkJGMkJGNDMwNTQxMUVBQUZDOTExNkVDNEY5QUUwMi9uc3Npck40Slo2 QllOLVdQeHpIVFYtTjJOX2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQ3XVGp9KtvqwXZqFK1K2tvPBQ5jsZdScgNNdqATLceSlNsxHtZj5DL4/W2Xx MUEJ9MdvpkJ3o8NRQ5ZpyIjmMd6pyNhaEp+0A6kDKrTjMIyIimctJdwQWbejnMSe 7cfLeJEUOzcnIxkcb0yA0DcvapPZ3s1PS15AncRpL/T07MGMY2ir8FQmFYduZpA2 OvjrYr191djPqFNUKHrRjp2dfKgaS+w5gyYKZ8953t4YGvOuaTQ7q2PTnf71OWrv MTEeikw6F8SH1sckHaGr8u/GlesdG4dh9vB68UNH8MvWPNK+8C43ECdkZ9sWsZRK DtMamQjwh+MsOWOqw1UJx1kOhA== -----END CERTIFICATE-----Generated at Fri Apr 17 13:39:54 2026 by rpki-client