$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.mft File: Nvf123A1uQ_bKShY4vz45rmRgXg.mft (raw, json) Hash identifier: hmKa+1aY4V8KvJvvefIV6oCjCRo1eSJgdmidYnNC1kE= Subject key identifier: 8E:AF:C6:E9:68:5D:90:12:9F:BD:51:B6:A0:A7:60:95:87:F7:6B:B3 Authority key identifier: 36:F7:F5:DB:70:35:B9:0F:DB:29:28:58:E2:FC:F8:E6:B9:91:81:78 Certificate issuer: /CN=A91CC636/serialNumber=36F7F5DB7035B90FDB292858E2FCF8E6B9918178 Certificate serial: 01D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nvf123A1uQ_bKShY4vz45rmRgXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.mft Manifest number: 01D9 Signing time: Sun 01 Mar 2026 04:16:33 +0000 Manifest this update: Sun 01 Mar 2026 04:16:33 +0000 Manifest next update: Sun 08 Mar 2026 04:16:33 +0000 Files and hashes: 1: Nvf123A1uQ_bKShY4vz45rmRgXg.crl (hash: X4zagLhRG9r+eXIuQ5lGz6HPhHd2tofBy7CVFrs8FHU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.crl rsync://rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nvf123A1uQ_bKShY4vz45rmRgXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:16:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC636, serialNumber=36F7F5DB7035B90FDB292858E2FCF8E6B9918178 Validity Not Before: Mar 1 04:16:33 2026 GMT Not After : Mar 8 04:16:33 2026 GMT Subject: CN=69a3bda1-a977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:c2:38:c5:24:18:e6:db:4e:87:43:40:ca:0b: 23:7c:5d:e8:44:67:bb:70:c6:da:9b:87:46:b8:92: 6c:ff:8d:82:84:5f:37:7e:58:11:3a:c0:0c:fb:8c: d1:20:3a:4c:0a:9f:d1:2a:5c:98:01:9d:4f:d1:0f: f9:00:6a:da:8b:f8:0a:ea:ac:f9:e3:67:99:49:3b: e3:7f:32:45:19:1f:20:8f:ed:40:c0:42:52:4d:26: ae:e1:29:38:dd:85:8e:95:44:9f:dd:fe:ae:a5:0a: 1c:c2:83:79:96:7f:d5:07:58:9d:7b:29:f6:52:01: 37:a1:d4:5f:ab:2a:b7:9c:58:f9:06:38:b1:d8:34: a8:15:3e:7e:4e:d9:5f:f8:78:f9:68:5d:9c:9a:e2: 0a:d4:7d:6d:b6:f7:c8:88:59:94:5c:95:bd:b7:d6: 5c:1d:3c:49:a8:66:1f:1b:a2:c1:a9:05:5a:c3:76: 4a:6e:8b:ff:d7:15:d7:14:ec:9e:07:ad:89:43:ce: 96:77:cb:24:ba:66:72:dd:6d:7c:9d:92:bd:ec:e9: 6b:f5:9d:f9:10:89:d1:48:03:10:51:84:23:61:0c: cf:c0:88:01:e0:69:c2:0a:85:47:47:dd:15:e4:77: 69:55:9f:99:5a:44:6e:26:b7:87:94:4a:87:b8:03: 96:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:AF:C6:E9:68:5D:90:12:9F:BD:51:B6:A0:A7:60:95:87:F7:6B:B3 X509v3 Authority Key Identifier: keyid:36:F7:F5:DB:70:35:B9:0F:DB:29:28:58:E2:FC:F8:E6:B9:91:81:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nvf123A1uQ_bKShY4vz45rmRgXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:e9:5f:42:b3:22:6d:60:cc:8e:69:f4:df:99:ef:91:97:63: 22:7a:c9:e3:4c:09:3f:89:67:37:8f:f5:ac:2a:ae:c4:ae:b0: b2:52:0f:93:65:4c:2a:46:90:18:35:2b:ac:d7:97:d0:5b:6b: e9:dc:4e:ef:09:6b:0d:75:56:e0:7e:c3:45:d9:86:00:a9:00: 02:0e:1f:68:99:65:54:15:cb:28:12:13:fb:b5:d8:b6:59:a7: 36:3d:d4:31:41:76:ac:3e:6f:ae:8f:cb:da:f4:65:c5:94:21: 34:7d:11:c1:7e:8d:16:4c:70:dd:80:03:8d:a8:cf:5f:5c:f1: 4b:6b:b2:18:cb:7e:c9:73:39:72:b2:23:1e:ca:1a:3f:1d:07: d1:2a:7f:e5:4b:cf:12:88:63:59:cd:47:51:cd:68:7a:50:e2: 29:99:9f:8a:95:53:8e:43:47:ab:6e:63:31:6e:bd:b9:ec:f4: ad:2e:94:98:72:03:a7:a1:1c:5a:2e:13:f6:be:fb:57:eb:2b: a1:31:7c:70:a5:b6:bb:de:ae:bd:7e:71:15:c0:6c:0d:6b:72: 22:c1:3a:20:90:f9:17:78:8e:20:40:0b:8c:36:dd:c9:06:e0: 71:a0:41:bd:36:f8:04:9e:b8:b1:3c:3b:e9:50:22:d8:f5:1c: 9b:91:54:bf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M2MzYxMTAvBgNVBAUTKDM2RjdGNURCNzAzNUI5MEZEQjI5Mjg1OEUyRkNGOEU2 Qjk5MTgxNzgwHhcNMjYwMzAxMDQxNjMzWhcNMjYwMzA4MDQxNjMzWjAYMRYwFAYD VQQDEw02OWEzYmRhMS1hOTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7sI4xSQY5ttOh0NAygsjfF3oRGe7cMbam4dGuJJs/42ChF83flgROsAM+4zR IDpMCp/RKlyYAZ1P0Q/5AGrai/gK6qz542eZSTvjfzJFGR8gj+1AwEJSTSau4Sk4 3YWOlUSf3f6upQocwoN5ln/VB1ideyn2UgE3odRfqyq3nFj5Bjix2DSoFT5+Ttlf +Hj5aF2cmuIK1H1ttvfIiFmUXJW9t9ZcHTxJqGYfG6LBqQVaw3ZKbov/1xXXFOye B62JQ86Wd8skumZy3W18nZK97Olr9Z35EInRSAMQUYQjYQzPwIgB4GnCCoVHR90V 5HdpVZ+ZWkRuJreHlEqHuAOW0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI6vxulo XZASn71RtqCnYJWH92uzMB8GA1UdIwQYMBaAFDb39dtwNbkP2ykoWOL8+Oa5kYF4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzYzNi81NEQyN0UyMDQy MzUxMUVFQTg0MEYxNDhDNEY5QUUwMi9OdmYxMjNBMXVRX2JLU2hZNHZ6NDVybVJn WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL052ZjEyM0ExdVFfYktTaFk0dno0NXJtUmdYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzYzNi81NEQyN0UyMDQyMzUxMUVFQTg0MEYxNDhDNEY5QUUwMi9OdmYxMjNBMXVR X2JLU2hZNHZ6NDVybVJnWGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApOlfQrMibWDMjmn035nvkZdjInrJ40wJP4lnN4/1rCquxK6wslIPk2VMKkaQ GDUrrNeX0Ftr6dxO7wlrDXVW4H7DRdmGAKkAAg4faJllVBXLKBIT+7XYtlmnNj3U MUF2rD5vro/L2vRlxZQhNH0RwX6NFkxw3YADjajPX1zxS2uyGMt+yXM5crIjHsoa Px0H0Sp/5UvPEohjWc1HUc1oelDiKZmfipVTjkNHq25jMW69uez0rS6UmHIDp6Ec Wi4T9r77V+sroTF8cKW2u96uvX5xFcBsDWtyIsE6IJD5F3iOIEALjDbdyQbgcaBB vTb4BJ64sTw76VAi2PUcm5FUvw== -----END CERTIFICATE-----Generated at Mon Mar 2 17:30:10 2026 by rpki-client