$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft File: NctCHFV3F3WBziSzai9syTGEYFI.mft (raw, json) Hash identifier: m+R7hVcsA21mOWSwlpb4u6VOln7kZkplXsULSG6+ths= Subject key identifier: ED:9E:66:97:49:A4:43:C1:8A:9D:81:F9:38:F5:38:87:93:D0:95:EE Authority key identifier: 35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 Certificate issuer: /CN=A91CA3CD/serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Certificate serial: 01B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft Manifest number: 01AB Signing time: Mon 02 Mar 2026 01:47:53 +0000 Manifest this update: Mon 02 Mar 2026 01:47:51 +0000 Manifest next update: Mon 09 Mar 2026 01:47:51 +0000 Files and hashes: 1: NctCHFV3F3WBziSzai9syTGEYFI.crl (hash: Ym/0wdu4KF4tRsPd6O1klaPgECxFX2PrbYT0tmUtavg=) 2: F5121FB090CF11EE8036815AC4F9AE02.roa (hash: fAaur7LW2+pEge7BQCktlo8tOQuU2cmVWJ8Ioa474Lw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA3CD, serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Validity Not Before: Mar 2 01:47:51 2026 GMT Not After : Mar 9 01:47:51 2026 GMT Subject: CN=69a4ec48-b932 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:3b:d9:f3:27:95:df:2a:3b:6f:5f:c0:f8:8a: 0b:4c:a9:3c:12:ab:51:81:09:3e:a7:53:9d:8d:db: 23:b9:80:28:92:38:8c:e3:20:72:c1:11:d8:b7:20: 45:6b:5d:f8:bd:2c:ad:56:e7:a2:e2:54:17:18:3d: 4c:b5:5c:b0:60:25:4e:13:ed:94:aa:0d:8b:c6:c6: 3e:1f:2b:b4:b2:09:8d:3b:29:2d:f6:46:14:fa:d4: ee:0d:39:99:91:21:3b:17:90:07:5f:c1:0d:b6:66: d7:cf:ac:36:96:9e:e9:65:f3:eb:b7:a4:a2:a1:03: 58:ca:47:16:60:d3:6d:ee:7b:ea:7e:f6:f2:9b:1f: 6d:07:7b:42:85:24:d0:86:3c:f3:a9:a0:73:8e:92: 08:bc:b1:47:14:ca:20:5e:5f:44:ae:02:f9:7b:85: 97:ba:02:b5:cc:fe:70:ef:df:01:9d:b1:0d:f1:aa: 11:f1:74:1b:a6:bd:d6:76:cf:e4:67:6c:df:f7:66: a6:ee:b0:e7:5e:a0:42:d2:1b:cb:1e:e2:49:96:88: e4:3c:43:80:88:e9:cc:b7:54:b8:22:1b:0f:84:23: 0f:ae:1d:32:cf:4d:24:ea:dd:66:6a:b9:32:70:86: d9:c3:19:36:9a:01:eb:29:37:af:a5:21:4d:87:09: 4d:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:9E:66:97:49:A4:43:C1:8A:9D:81:F9:38:F5:38:87:93:D0:95:EE X509v3 Authority Key Identifier: keyid:35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:69:f0:9e:cb:5c:64:6c:e6:d0:c6:6a:4c:4c:eb:75:86:d7: 3b:e8:bb:c3:90:72:08:a0:8f:c9:3a:ed:4b:ba:42:69:d7:05: 5d:8c:a4:de:40:52:ed:7c:aa:62:a1:c1:c8:cd:d9:1c:0b:62: 53:f3:88:78:ac:77:cf:cc:33:dc:a7:bc:e8:54:03:7c:5c:4b: 3c:f3:78:a1:45:32:30:5f:7e:35:3d:48:a3:f8:58:59:4c:09: 12:0d:38:66:d8:1d:14:df:f0:50:b9:2f:71:3d:7d:3a:3b:53: 91:fe:db:7b:d7:ed:c1:a4:f8:0f:4b:9d:36:44:cd:eb:4b:d3: 74:45:33:0e:ee:82:b9:71:dd:5c:f7:33:40:5c:98:00:ab:bc: 8a:66:40:03:f3:a1:69:c1:82:cf:d6:df:0d:e9:fb:75:d0:21: 78:28:aa:0b:29:a5:37:ee:b6:fc:da:20:f6:d2:1a:8c:43:2a: fc:f9:1b:b5:8d:57:63:d6:08:5e:42:49:39:5a:1b:a2:e3:81: b2:c2:c9:14:aa:ec:72:d3:0c:ed:a2:1f:e8:aa:9f:64:e7:37: 2c:34:92:97:28:9f:b6:01:82:59:be:3e:d4:41:59:5e:50:b0: d9:05:04:a7:a5:c2:6a:c9:67:63:7c:2b:e8:43:61:24:3c:47: 09:d5:78:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0EzQ0QxMTAvBgNVBAUTKDM1Q0I0MjFDNTU3NzE3NzU4MUNFMjRCMzZBMkY2Q0M5 MzE4NDYwNTIwHhcNMjYwMzAyMDE0NzUxWhcNMjYwMzA5MDE0NzUxWjAYMRYwFAYD VQQDEw02OWE0ZWM0OC1iOTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2DvZ8yeV3yo7b1/A+IoLTKk8EqtRgQk+p1OdjdsjuYAokjiM4yBywRHYtyBF a134vSytVuei4lQXGD1MtVywYCVOE+2Uqg2LxsY+Hyu0sgmNOykt9kYU+tTuDTmZ kSE7F5AHX8ENtmbXz6w2lp7pZfPrt6SioQNYykcWYNNt7nvqfvbymx9tB3tChSTQ hjzzqaBzjpIIvLFHFMogXl9ErgL5e4WXugK1zP5w798BnbEN8aoR8XQbpr3Wds/k Z2zf92am7rDnXqBC0hvLHuJJlojkPEOAiOnMt1S4IhsPhCMPrh0yz00k6t1marky cIbZwxk2mgHrKTevpSFNhwlNcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO2eZpdJ pEPBip2B+Tj1OIeT0JXuMB8GA1UdIwQYMBaAFDXLQhxVdxd1gc4ks2ovbMkxhGBS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTNDRC8yNjQ1M0ZBMDkw NTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0YzV0J6aVN6YWk5c3lUR0VZ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05jdENIRlYzRjNXQnppU3phaTlzeVRHRVlGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTNDRC8yNjQ1M0ZBMDkwNTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0Yz V0J6aVN6YWk5c3lUR0VZRkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQmnwnstcZGzm0MZqTEzrdYbXO+i7w5ByCKCPyTrtS7pCadcFXYyk3kBS7Xyq YqHByM3ZHAtiU/OIeKx3z8wz3Ke86FQDfFxLPPN4oUUyMF9+NT1Io/hYWUwJEg04 ZtgdFN/wULkvcT19OjtTkf7be9ftwaT4D0udNkTN60vTdEUzDu6CuXHdXPczQFyY AKu8imZAA/OhacGCz9bfDen7ddAheCiqCymlN+62/Nog9tIajEMq/PkbtY1XY9YI XkJJOVobouOBssLJFKrsctMM7aIf6KqfZOc3LDSSlyiftgGCWb4+1EFZXlCw2QUE p6XCaslnY3wr6ENhJDxHCdV4QA== -----END CERTIFICATE-----Generated at Mon Mar 2 04:41:25 2026 by rpki-client