$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft File: NXR5DY34KztVHjtwJXG69VqemWE.mft (raw, json) Hash identifier: S6vBA+vxSZud8gjqVU4DAflHzQ/1NW52wnIdOrldrpQ= Subject key identifier: 87:1F:47:51:65:9E:43:F0:C5:FB:E3:3A:42:BC:28:41:B3:9E:3D:BD Authority key identifier: 35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 Certificate issuer: /CN=A91CD40B/serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft Manifest number: 011A Signing time: Sun 01 Mar 2026 07:06:17 +0000 Manifest this update: Sun 01 Mar 2026 07:06:17 +0000 Manifest next update: Sun 08 Mar 2026 07:06:17 +0000 Files and hashes: 1: NXR5DY34KztVHjtwJXG69VqemWE.crl (hash: EXp/W8x64KOiOQid80GuL3cJzqzXNhpVFxrgLPPl35w=) 2: DA8D1C7EA72311EFBCEB047EC4F9AE02.roa (hash: v8ohmUSHk0fnin1T0AiYUETFghcnt5SEXbq5Yrmd+XU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Validity Not Before: Mar 1 07:06:17 2026 GMT Not After : Mar 8 07:06:17 2026 GMT Subject: CN=69a3e569-3606 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:21:4b:14:ef:bb:18:b1:42:91:3c:05:a1:53: b8:57:95:60:37:12:86:d4:81:06:9a:f9:ca:b5:14: 8b:15:2f:6b:51:e1:9d:6c:b1:94:2f:bf:d7:9e:99: f8:89:e0:79:73:7f:cc:3b:73:6a:08:28:78:f0:e2: 61:3a:c5:6f:ea:da:2b:eb:bc:10:a0:99:ad:bb:6f: bf:19:1b:af:8c:bd:b3:c4:f0:0b:8d:e0:31:8d:dc: 51:ea:0f:02:3a:37:dc:61:9d:50:cc:08:30:e3:59: ae:a0:9c:28:22:eb:ff:8c:ed:00:b5:dc:2e:3a:93: 76:63:f7:66:ae:66:29:e0:85:bf:e8:10:3a:35:66: 70:f0:8b:3f:b9:79:22:d3:7f:c8:a2:42:64:59:c8: 5c:50:a8:21:22:8c:1f:f4:a0:f2:ef:43:28:49:60: ee:75:78:15:68:5f:5e:ff:01:33:5b:c1:17:78:50: e2:60:b2:9b:6b:32:de:68:3d:b6:ae:e9:ac:5e:d4: 16:f3:f7:58:27:9b:c8:1c:d1:44:13:05:89:43:31: 74:91:7d:9b:38:cb:2c:cb:d2:e6:f2:a8:19:03:5f: 3e:0e:ab:95:6c:a0:83:fa:1a:3e:b7:fb:6a:4f:3b: 7b:c0:51:42:bd:7a:bb:b2:90:89:bb:e7:5d:e7:ca: fd:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:1F:47:51:65:9E:43:F0:C5:FB:E3:3A:42:BC:28:41:B3:9E:3D:BD X509v3 Authority Key Identifier: keyid:35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:91:1c:88:c1:65:e7:32:3d:6c:0e:ad:01:2e:b4:fe:8d:22: 02:bf:e3:d0:7e:db:61:51:ee:c1:7b:9a:b1:09:5f:4e:68:9c: 6b:8f:69:4d:f1:bf:c7:b4:7d:8b:31:f8:b9:79:91:cd:6a:40: 05:9c:7d:5d:88:0e:08:e7:5a:76:13:9d:26:e5:23:ef:19:4a: fb:d0:e9:3b:9e:2f:0d:d5:d5:3f:cf:3f:89:7c:de:e3:f4:1c: 92:2a:0a:bc:6d:29:da:b9:4b:de:a8:10:e3:52:b5:70:73:c1: f4:aa:30:e7:bb:dc:5b:df:2f:2a:a5:b4:fe:ab:41:82:23:df: bb:71:86:cc:72:9e:14:db:50:43:51:a8:de:36:e5:94:c1:62: 81:e8:b9:c0:70:d0:e7:1a:0c:4e:d3:7a:99:da:37:d1:d5:69: b6:8e:31:03:31:92:ab:1c:78:3b:48:da:25:d3:6b:80:3c:bf: 16:79:26:e9:89:c8:64:f7:fd:28:e2:fc:61:3f:e9:a2:b4:b2: f6:8e:33:81:2e:08:e0:b8:a7:a3:d5:8a:8a:5d:4f:ff:9c:dc: ac:df:7e:31:f0:85:34:70:92:0f:9a:cc:cd:a5:d7:a3:32:09: 11:46:44:45:44:d8:57:c1:da:a7:1c:63:39:df:7f:99:df:6b: 9a:32:f9:09 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDM1NzQ3OTBEOERGODJCM0I1NTFFM0I3MDI1NzFCQUY1 NUE5RTk5NjEwHhcNMjYwMzAxMDcwNjE3WhcNMjYwMzA4MDcwNjE3WjAYMRYwFAYD VQQDEw02OWEzZTU2OS0zNjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2CFLFO+7GLFCkTwFoVO4V5VgNxKG1IEGmvnKtRSLFS9rUeGdbLGUL7/Xnpn4 ieB5c3/MO3NqCCh48OJhOsVv6tor67wQoJmtu2+/GRuvjL2zxPALjeAxjdxR6g8C OjfcYZ1QzAgw41muoJwoIuv/jO0AtdwuOpN2Y/dmrmYp4IW/6BA6NWZw8Is/uXki 03/IokJkWchcUKghIowf9KDy70MoSWDudXgVaF9e/wEzW8EXeFDiYLKbazLeaD22 rumsXtQW8/dYJ5vIHNFEEwWJQzF0kX2bOMssy9Lm8qgZA18+DquVbKCD+ho+t/tq Tzt7wFFCvXq7spCJu+dd58r9FwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIcfR1Fl nkPwxfvjOkK8KEGznj29MB8GA1UdIwQYMBaAFDV0eQ2N+Cs7VR47cCVxuvVanplh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi82QjVEMkE3Qzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6dFZIanR3SlhHNjlWcWVt V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05YUjVEWTM0S3p0VkhqdHdKWEc2OVZxZW1XRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi82QjVEMkE3Qzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6 dFZIanR3SlhHNjlWcWVtV0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxJEciMFl5zI9bA6tAS60/o0iAr/j0H7bYVHuwXuasQlfTmica49pTfG/x7R9 izH4uXmRzWpABZx9XYgOCOdadhOdJuUj7xlK+9DpO54vDdXVP88/iXze4/QckioK vG0p2rlL3qgQ41K1cHPB9Kow57vcW98vKqW0/qtBgiPfu3GGzHKeFNtQQ1Go3jbl lMFigei5wHDQ5xoMTtN6mdo30dVpto4xAzGSqxx4O0jaJdNrgDy/Fnkm6YnIZPf9 KOL8YT/porSy9o4zgS4I4Lino9WKil1P/5zcrN9+MfCFNHCSD5rMzaXXozIJEUZE RUTYV8HapxxjOd9/md9rmjL5CQ== -----END CERTIFICATE-----Generated at Mon Mar 2 12:41:08 2026 by rpki-client