$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft File: NXR5DY34KztVHjtwJXG69VqemWE.mft (raw, json) Hash identifier: rv1Ow6zg/yilf8+vhbYsMjnXbktJ0qdNZO+kVMd11I0= Subject key identifier: D6:EB:22:9B:3D:E6:7C:D6:75:B8:FB:28:22:99:9B:07:A2:1C:FC:69 Authority key identifier: 35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 Certificate issuer: /CN=A91CD40B/serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft Manifest number: 0134 Signing time: Fri 17 Apr 2026 05:25:38 +0000 Manifest this update: Fri 17 Apr 2026 05:25:37 +0000 Manifest next update: Fri 24 Apr 2026 05:25:37 +0000 Files and hashes: 1: NXR5DY34KztVHjtwJXG69VqemWE.crl (hash: lI7d5cADKGK69lB59ujszfVaYmQ4/fHfkmlLHyGOzpw=) 2: DA8D1C7EA72311EFBCEB047EC4F9AE02.roa (hash: KOPGS6LMhund+vJdD6XHT18EgiJR1qKIzzUaEq9CH3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Validity Not Before: Apr 17 05:25:37 2026 GMT Not After : Apr 24 05:25:37 2026 GMT Subject: CN=69e1c452-96cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:00:6f:0d:6e:b0:20:83:8f:73:7c:de:95:2d: 75:71:ed:0b:12:5c:f0:42:2d:80:75:47:de:be:f3: 9e:f9:fb:a5:c7:26:69:2b:4a:bc:a5:84:51:55:58: 2d:78:63:cd:b6:59:0b:e1:bd:7d:9c:ae:bd:9d:6b: ec:9b:90:ff:2e:76:d5:d6:32:6b:aa:78:de:31:7e: 3d:cc:ac:fb:93:fe:9c:68:bf:1a:76:24:41:bc:6f: 31:aa:1f:8a:1e:6e:79:85:3f:10:78:9c:32:df:cb: b2:49:45:61:4f:82:4c:00:ae:91:7d:d2:77:43:e1: 8a:e5:68:57:fc:3d:ab:e5:f0:17:4a:a0:2a:67:9c: 7c:39:46:b9:fe:02:a5:80:d5:e0:af:0f:c4:10:9f: 7c:9d:38:7d:7b:3e:b8:89:36:ce:d1:dd:fd:05:f5: 5b:71:ac:d0:0b:64:f5:90:dd:a9:49:05:9a:82:f5: 2a:8b:22:80:4a:a5:85:ce:08:38:b2:66:46:80:65: 3a:e5:f7:a2:01:da:a8:fb:93:79:e7:49:b0:79:07: ec:7d:72:05:5a:35:d8:a0:37:7e:4d:2c:f2:6f:d1: 8e:76:80:d9:1b:80:93:b1:6c:85:1d:e2:5c:29:d5: c1:f0:b2:7a:da:33:1a:c0:ce:8c:70:50:a7:97:e3: db:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:EB:22:9B:3D:E6:7C:D6:75:B8:FB:28:22:99:9B:07:A2:1C:FC:69 X509v3 Authority Key Identifier: keyid:35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:00:bd:4a:8c:39:11:d3:7f:1d:85:04:63:17:71:3f:86:51: db:9e:97:c5:97:a3:ac:f2:64:15:56:f1:aa:45:ca:21:79:8a: d8:4c:07:9b:0a:23:fd:3f:2f:73:65:dd:f6:4e:e6:f4:a8:21: 63:1e:22:27:ab:65:46:d6:7c:be:d4:e3:64:d8:bb:18:4b:27: b3:01:5b:91:63:ab:a7:33:c5:cd:24:6b:6b:cf:41:3b:17:cb: fe:ae:af:b2:0a:ae:81:7b:65:42:46:59:2b:b4:80:2f:c8:ed: af:10:37:32:87:1b:f8:ff:a6:f1:67:1b:b8:88:87:62:f9:93: 3d:25:eb:a9:8d:89:f3:e2:ff:44:7e:65:f2:f4:a3:01:95:58: 77:5b:09:ea:9e:6c:22:40:2a:d2:9d:de:71:94:9d:68:90:a3: a9:99:25:09:f1:2d:52:ea:cf:19:6a:90:44:e5:ce:4f:db:ca: 75:ab:b3:80:93:dc:6d:43:c4:57:fa:7b:96:a2:75:b9:e0:17: 1b:73:a9:72:41:bc:0c:95:82:9c:ef:3e:11:4b:de:4a:14:45: 35:74:cf:88:b6:a5:46:c9:bd:1c:fb:cf:6f:17:1f:7b:86:d3: 8e:7e:4f:d6:35:54:45:4c:e1:eb:a9:41:cf:b3:6e:7e:fa:f2: b2:69:80:45 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDM1NzQ3OTBEOERGODJCM0I1NTFFM0I3MDI1NzFCQUY1 NUE5RTk5NjEwHhcNMjYwNDE3MDUyNTM3WhcNMjYwNDI0MDUyNTM3WjAYMRYwFAYD VQQDEw02OWUxYzQ1Mi05NmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuABvDW6wIIOPc3zelS11ce0LElzwQi2AdUfevvOe+fulxyZpK0q8pYRRVVgt eGPNtlkL4b19nK69nWvsm5D/LnbV1jJrqnjeMX49zKz7k/6caL8adiRBvG8xqh+K Hm55hT8QeJwy38uySUVhT4JMAK6RfdJ3Q+GK5WhX/D2r5fAXSqAqZ5x8OUa5/gKl gNXgrw/EEJ98nTh9ez64iTbO0d39BfVbcazQC2T1kN2pSQWagvUqiyKASqWFzgg4 smZGgGU65feiAdqo+5N550mweQfsfXIFWjXYoDd+TSzyb9GOdoDZG4CTsWyFHeJc KdXB8LJ62jMawM6McFCnl+PbNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNbrIps9 5nzWdbj7KCKZmweiHPxpMB8GA1UdIwQYMBaAFDV0eQ2N+Cs7VR47cCVxuvVanplh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi82QjVEMkE3Qzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6dFZIanR3SlhHNjlWcWVt V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05YUjVEWTM0S3p0VkhqdHdKWEc2OVZxZW1XRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi82QjVEMkE3Qzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6 dFZIanR3SlhHNjlWcWVtV0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiQC9Sow5EdN/HYUEYxdxP4ZR256XxZejrPJkFVbxqkXKIXmK2EwHmwoj/T8v c2Xd9k7m9KghYx4iJ6tlRtZ8vtTjZNi7GEsnswFbkWOrpzPFzSRra89BOxfL/q6v sgqugXtlQkZZK7SAL8jtrxA3Mocb+P+m8WcbuIiHYvmTPSXrqY2J8+L/RH5l8vSj AZVYd1sJ6p5sIkAq0p3ecZSdaJCjqZklCfEtUurPGWqQROXOT9vKdauzgJPcbUPE V/p7lqJ1ueAXG3OpckG8DJWCnO8+EUveShRFNXTPiLalRsm9HPvPbxcfe4bTjn5P 1jVURUzh66lBz7NufvrysmmARQ== -----END CERTIFICATE-----Generated at Fri Apr 17 10:40:51 2026 by rpki-client