$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft File: NctCHFV3F3WBziSzai9syTGEYFI.mft (raw, json) Hash identifier: EMWjp53gWVPEV28McOcjOPbbvKR77QPHrz62EzkB14s= Subject key identifier: 74:4B:0A:97:58:16:6F:13:C7:85:9F:E3:9F:6E:0B:D6:C4:91:5B:78 Authority key identifier: 35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 Certificate issuer: /CN=A91CA3CD/serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Certificate serial: 01CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft Manifest number: 01C3 Signing time: Fri 17 Apr 2026 03:34:11 +0000 Manifest this update: Fri 17 Apr 2026 03:34:11 +0000 Manifest next update: Fri 24 Apr 2026 03:34:11 +0000 Files and hashes: 1: NctCHFV3F3WBziSzai9syTGEYFI.crl (hash: l9K5PIErbNKKds990jgx4DwGvjNTK1uDie50uuYp3L0=) 2: F5121FB090CF11EE8036815AC4F9AE02.roa (hash: fAaur7LW2+pEge7BQCktlo8tOQuU2cmVWJ8Ioa474Lw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:34:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA3CD, serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Validity Not Before: Apr 17 03:34:11 2026 GMT Not After : Apr 24 03:34:11 2026 GMT Subject: CN=69e1aa33-5374 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a4:63:87:8a:59:d3:c5:3a:ff:a2:8d:1e:3b: bb:bb:d7:b0:9c:9c:4c:9a:aa:6e:4c:95:67:85:47: 27:d9:70:4a:7a:4c:81:5e:51:c5:e3:5e:75:e8:23: a2:38:1a:72:91:c6:19:a8:f1:68:88:9c:8f:b0:45: 3e:20:b7:0b:0f:26:5b:e7:7f:da:57:98:b0:79:54: 50:1a:b8:f8:6d:34:b9:57:61:92:81:11:56:c8:d7: 57:a2:70:c8:ab:b7:cb:89:43:77:94:06:3e:f6:87: 11:d7:29:4d:91:6a:fb:9b:2a:a3:12:23:20:8a:49: 50:08:e1:d3:e9:0d:25:28:2c:8f:30:55:d2:b3:24: f8:ad:da:d1:c4:07:fe:27:2f:7e:b4:c0:e5:33:bf: f4:f1:7d:de:6c:af:52:3f:85:75:7e:27:73:5e:64: 97:38:fb:98:2d:ae:38:ae:9e:11:5f:91:9e:5b:01: 18:7e:92:48:07:47:7a:77:e0:6d:ee:3d:78:8b:64: 7a:c1:00:b9:32:14:fa:18:34:d5:d1:86:5a:80:74: 5a:b9:6d:05:bf:f9:4d:07:73:64:55:e5:b7:10:3a: 35:51:54:7b:a8:25:4f:8f:a6:b4:66:e1:7f:5e:70: e1:09:20:05:98:76:83:65:e3:69:b2:95:b0:83:ab: 50:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:4B:0A:97:58:16:6F:13:C7:85:9F:E3:9F:6E:0B:D6:C4:91:5B:78 X509v3 Authority Key Identifier: keyid:35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:d9:aa:4f:1c:6c:81:e8:bb:f2:e0:10:b5:a8:a0:40:c7:56: f3:2a:4b:df:90:72:ab:d1:4e:c1:c3:fb:e4:e9:5a:d1:7e:dc: ed:a6:11:48:5b:ae:d2:77:ef:cd:12:ac:98:89:26:3f:ea:87: 5d:bb:69:18:c3:dd:0d:af:5a:2f:db:e8:9f:e2:73:a7:aa:7c: f2:51:c7:97:cb:46:c3:cb:46:a2:71:c2:66:90:ea:71:e4:92: 69:e4:aa:f6:59:37:50:f3:88:4f:6a:04:12:5e:86:99:b5:3e: b2:1a:41:c8:03:cb:94:e5:1e:ab:52:fb:2d:fe:65:b6:06:c8: b7:19:86:b2:e2:77:7c:da:9d:da:f0:d3:1a:06:22:1b:d2:4d: ab:21:f3:b2:38:c2:d9:f4:47:5f:c9:d4:29:8e:2f:23:61:4e: 80:08:38:21:87:90:07:92:60:8c:5f:62:66:2b:24:47:93:a3: 5a:df:58:0b:b1:a6:de:28:e3:75:a9:5c:fa:5a:c6:3f:d1:e4: 47:f5:7c:1a:7f:66:b3:68:51:a0:82:eb:fa:7b:a8:00:ed:18: 53:fb:68:07:90:a4:48:a0:d5:f2:c1:0c:cf:26:14:72:c3:e1: 6d:19:a9:7f:01:07:a3:fd:56:1b:cd:45:be:e1:70:79:91:37: 5e:fb:c8:e6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0EzQ0QxMTAvBgNVBAUTKDM1Q0I0MjFDNTU3NzE3NzU4MUNFMjRCMzZBMkY2Q0M5 MzE4NDYwNTIwHhcNMjYwNDE3MDMzNDExWhcNMjYwNDI0MDMzNDExWjAYMRYwFAYD VQQDEw02OWUxYWEzMy01Mzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6Rjh4pZ08U6/6KNHju7u9ewnJxMmqpuTJVnhUcn2XBKekyBXlHF41516COi OBpykcYZqPFoiJyPsEU+ILcLDyZb53/aV5iweVRQGrj4bTS5V2GSgRFWyNdXonDI q7fLiUN3lAY+9ocR1ylNkWr7myqjEiMgiklQCOHT6Q0lKCyPMFXSsyT4rdrRxAf+ Jy9+tMDlM7/08X3ebK9SP4V1fidzXmSXOPuYLa44rp4RX5GeWwEYfpJIB0d6d+Bt 7j14i2R6wQC5MhT6GDTV0YZagHRauW0Fv/lNB3NkVeW3EDo1UVR7qCVPj6a0ZuF/ XnDhCSAFmHaDZeNpspWwg6tQiwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHRLCpdY Fm8Tx4Wf459uC9bEkVt4MB8GA1UdIwQYMBaAFDXLQhxVdxd1gc4ks2ovbMkxhGBS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTNDRC8yNjQ1M0ZBMDkw NTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0YzV0J6aVN6YWk5c3lUR0VZ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05jdENIRlYzRjNXQnppU3phaTlzeVRHRVlGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTNDRC8yNjQ1M0ZBMDkwNTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0Yz V0J6aVN6YWk5c3lUR0VZRkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJ9mqTxxsgei78uAQtaigQMdW8ypL35Byq9FOwcP75Ola0X7c7aYRSFuu0nfv zRKsmIkmP+qHXbtpGMPdDa9aL9von+Jzp6p88lHHl8tGw8tGonHCZpDqceSSaeSq 9lk3UPOIT2oEEl6GmbU+shpByAPLlOUeq1L7Lf5ltgbItxmGsuJ3fNqd2vDTGgYi G9JNqyHzsjjC2fRHX8nUKY4vI2FOgAg4IYeQB5JgjF9iZiskR5OjWt9YC7Gm3ijj dalc+lrGP9HkR/V8Gn9ms2hRoILr+nuoAO0YU/toB5CkSKDV8sEMzyYUcsPhbRmp fwEHo/1WG81FvuFweZE3XvvI5g== -----END CERTIFICATE-----Generated at Fri Apr 17 11:49:14 2026 by rpki-client