$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft File: nssirN4JZ6BYN-WPxzHTV-N2N_g.mft (raw, json) Hash identifier: 2HbDgLNcrA/H9lgVurEbHV+uys0Iblj/CFMAa4T0CF0= Subject key identifier: 0D:88:33:C6:71:B1:58:68:F5:79:2C:59:82:89:79:67:16:6E:31:95 Authority key identifier: 9E:CB:22:AC:DE:09:67:A0:58:37:E5:8F:C7:31:D3:57:E3:76:37:F8 Certificate issuer: /CN=A91C6B27/serialNumber=9ECB22ACDE0967A05837E58FC731D357E37637F8 Certificate serial: 0C0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft Manifest number: 0BF3 Signing time: Mon 02 Mar 2026 01:41:00 +0000 Manifest this update: Mon 02 Mar 2026 01:40:57 +0000 Manifest next update: Mon 09 Mar 2026 01:40:57 +0000 Files and hashes: 1: nssirN4JZ6BYN-WPxzHTV-N2N_g.crl (hash: N0TMkKqL1TCotyCMg0Sn+HA+m3kIdmRT9FBJbG5zQLA=) 2: E4BB99E2336E11EA94623E18C4F9AE02.roa (hash: pnBE91n4MbWlPAPg/bpDpFdbvV8uWC8bNNguZIXX26E=) 3: E5675F48336E11EA94623E18C4F9AE02.roa (hash: 2xiNwjYW2pyIkz7eTV4qaxFN/iMW7ShcypRgqsGtO2A=) 4: 2B1D3BB2305811EA8D5B6479C4F9AE02.roa (hash: N2Nuak7OaRSEZDR308+upPNTawYHUgYAli3HOQeBT88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.crl rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3086 (0xc0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6B27, serialNumber=9ECB22ACDE0967A05837E58FC731D357E37637F8 Validity Not Before: Mar 2 01:40:57 2026 GMT Not After : Mar 9 01:40:57 2026 GMT Subject: CN=69a4eaac-eac8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:36:01:b2:52:f0:c6:ce:f8:92:40:d6:2e:5b: 9a:ef:11:46:a4:b0:be:bd:29:77:68:8b:69:cd:d8: b1:56:d9:ae:57:98:0b:87:41:8a:21:e0:d1:41:2b: 55:bf:21:99:47:fd:16:45:bf:3b:4d:6a:68:e1:46: e1:5e:3a:d1:cc:4f:d5:2b:91:d2:3b:32:f3:08:cd: 60:31:43:66:93:cc:d7:9d:30:3b:a3:1b:c4:af:ea: dc:47:47:35:87:91:c7:6e:57:d3:72:7f:7f:cc:10: 2b:14:0d:4a:2b:7a:38:da:d4:6d:00:33:6e:27:95: 67:5d:37:da:14:50:bf:7f:a8:d4:c1:13:bd:eb:bb: ae:1d:54:be:7d:9b:57:f8:a2:2d:76:7a:f3:15:dc: 1c:e4:a8:71:e4:87:3a:98:13:86:56:d9:b0:6a:87: 58:2a:36:e3:3c:14:e4:c8:e5:a6:ca:e8:1f:b8:10: 32:05:d2:08:ff:d1:c1:cd:e7:33:6b:41:f6:79:67: 53:90:20:2f:8d:ff:e3:d5:1b:b9:37:1d:4e:8d:95: 1f:7b:bc:bd:5a:79:da:a4:5e:35:74:c3:e3:d1:a9: d5:e6:77:63:26:62:72:82:3f:92:a4:bf:38:f3:5e: 48:ae:3a:43:a1:53:0d:9d:67:9c:b4:23:02:93:9a: e5:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:88:33:C6:71:B1:58:68:F5:79:2C:59:82:89:79:67:16:6E:31:95 X509v3 Authority Key Identifier: keyid:9E:CB:22:AC:DE:09:67:A0:58:37:E5:8F:C7:31:D3:57:E3:76:37:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:32:95:f3:b0:fe:a7:c4:b7:6f:c6:7a:27:5c:0e:42:16:16: 34:96:56:8b:b0:fc:f5:9e:2a:cd:c0:6f:63:38:b6:86:ca:5e: 8c:0a:02:f9:f8:30:16:d6:08:c0:72:86:5f:c5:5b:26:43:01: 7a:87:e1:02:6e:ea:d5:d6:26:cb:b1:6d:f2:3b:20:5f:ef:13: 31:db:52:ed:67:48:9b:99:30:ab:c2:1d:ac:77:55:55:ff:5c: 40:f2:14:4d:1d:c7:ba:48:7f:9c:2d:a5:22:4f:66:71:9c:c5: 9f:07:46:29:07:4a:ff:30:b3:0e:20:6e:f6:c7:01:34:d9:cf: f5:5a:1e:0a:48:a7:86:2b:2a:32:e5:f1:39:63:18:91:83:16: f9:61:67:2e:d3:0b:d4:c7:c9:82:be:55:56:c4:bd:1e:f7:5d: ac:85:94:ec:ab:fa:a0:2a:6e:1e:4e:5c:04:fb:56:ed:56:47: a2:18:53:c9:e5:ca:c6:25:a8:1a:fc:1c:61:d0:81:ee:b2:6f: 4c:19:95:34:12:43:5d:d3:e3:d5:53:bc:1a:52:88:4b:25:d3: 25:77:33:0e:05:13:80:5b:f9:a4:75:4a:eb:f9:93:46:20:90: 2c:97:ef:e7:7b:ec:b2:a4:41:d8:b3:c2:24:f1:f4:dd:0d:ac: 21:48:af:3f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCMjcxMTAvBgNVBAUTKDlFQ0IyMkFDREUwOTY3QTA1ODM3RTU4RkM3MzFEMzU3 RTM3NjM3RjgwHhcNMjYwMzAyMDE0MDU3WhcNMjYwMzA5MDE0MDU3WjAYMRYwFAYD VQQDEw02OWE0ZWFhYy1lYWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmzYBslLwxs74kkDWLlua7xFGpLC+vSl3aItpzdixVtmuV5gLh0GKIeDRQStV vyGZR/0WRb87TWpo4UbhXjrRzE/VK5HSOzLzCM1gMUNmk8zXnTA7oxvEr+rcR0c1 h5HHblfTcn9/zBArFA1KK3o42tRtADNuJ5VnXTfaFFC/f6jUwRO967uuHVS+fZtX +KItdnrzFdwc5Khx5Ic6mBOGVtmwaodYKjbjPBTkyOWmyugfuBAyBdII/9HBzecz a0H2eWdTkCAvjf/j1Ru5Nx1OjZUfe7y9WnnapF41dMPj0anV5ndjJmJygj+SpL84 815IrjpDoVMNnWectCMCk5rlxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA2IM8Zx sVho9XksWYKJeWcWbjGVMB8GA1UdIwQYMBaAFJ7LIqzeCWegWDflj8cx01fjdjf4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkIyNy84MkJGMkJGNDMw NTQxMUVBQUZDOTExNkVDNEY5QUUwMi9uc3Npck40Slo2QllOLVdQeHpIVFYtTjJO X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25zc2lyTjRKWjZCWU4tV1B4ekhUVi1OMk5fZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkIyNy84MkJGMkJGNDMwNTQxMUVBQUZDOTExNkVDNEY5QUUwMi9uc3Npck40Slo2 QllOLVdQeHpIVFYtTjJOX2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlTKV87D+p8S3b8Z6J1wOQhYWNJZWi7D89Z4qzcBvYzi2hspejAoC+fgwFtYI wHKGX8VbJkMBeofhAm7q1dYmy7Ft8jsgX+8TMdtS7WdIm5kwq8IdrHdVVf9cQPIU TR3Hukh/nC2lIk9mcZzFnwdGKQdK/zCzDiBu9scBNNnP9VoeCkinhisqMuXxOWMY kYMW+WFnLtML1MfJgr5VVsS9HvddrIWU7Kv6oCpuHk5cBPtW7VZHohhTyeXKxiWo GvwcYdCB7rJvTBmVNBJDXdPj1VO8GlKISyXTJXczDgUTgFv5pHVK6/mTRiCQLJfv 53vssqRB2LPCJPH03Q2sIUivPw== -----END CERTIFICATE-----Generated at Mon Mar 2 07:50:40 2026 by rpki-client