$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft File: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft (raw, json) Hash identifier: jeIWaq3v/fOk893Ch8IB29aR31DgG/L+Ne5SVdnGPbc= Subject key identifier: 0B:51:CF:1F:3C:1C:97:EF:E8:8A:4C:BA:C7:42:09:48:D0:76:28:39 Authority key identifier: 9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 Certificate issuer: /CN=A91CEAE0/serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Certificate serial: 01A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft Manifest number: 0181 Signing time: Wed 15 Apr 2026 04:27:33 +0000 Manifest this update: Wed 15 Apr 2026 04:27:33 +0000 Manifest next update: Wed 22 Apr 2026 04:27:33 +0000 Files and hashes: 1: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl (hash: qh1HNH4uTP8Nd2IZ4qZuaOhay9W6HZBp34GxXHwvlig=) 2: 77E54B78C45111EF9D399128C4F9AE02.roa (hash: oaVwq+HIN/wyAwR1kQHa3lIBPfZxf93jHy5Nhtjvz8o=) 3: FF233C70E62111EFACA87766C4F9AE02.roa (hash: PYR4UuGGlmCuzo5xccvj2ykJA4EkKftCUqk3OqLHMtk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 04:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAE0, serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Validity Not Before: Apr 15 04:27:33 2026 GMT Not After : Apr 22 04:27:33 2026 GMT Subject: CN=69df13b5-3592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:27:24:5d:01:00:43:96:e3:2c:07:87:33:fb: 37:b3:b7:f4:2e:a9:4e:e6:a4:05:90:61:d5:cf:e9: 4a:9c:e7:6c:f2:da:f5:e7:1f:61:50:16:fa:e5:45: 0e:b1:8a:4d:22:db:a2:1d:5c:ea:88:3c:25:fe:07: 8f:54:9e:3d:e8:97:6a:cc:9a:6d:b5:85:b9:c5:4d: d9:b6:bb:8b:16:ff:f1:97:02:69:e7:b9:b1:8f:c4: 42:eb:5a:7e:c3:40:fd:2b:fa:de:e1:ee:00:a6:09: 12:39:bf:4d:c6:dd:55:ef:9e:ac:98:c1:f5:96:c3: 1c:3e:07:e3:16:93:67:c1:56:76:82:f1:79:d0:a0: 92:15:88:d8:40:fd:2b:73:18:c1:a4:ee:38:3a:b4: 24:a5:f5:35:91:7a:28:5e:f1:fe:a8:ea:68:e6:c2: 09:f8:03:d7:74:f3:33:b7:63:8a:1f:e3:82:5d:2a: 5a:7c:eb:f9:e3:41:0d:89:4a:86:fe:52:2c:4f:21: 38:3f:3e:3a:b9:4d:5e:5c:f8:99:4d:1e:39:f5:ee: cc:6f:70:3e:76:4a:4c:6f:8d:78:11:dc:ba:f3:4a: 22:c3:3d:28:9e:a4:4d:d8:5b:d2:c1:cc:28:43:52: 2c:f0:cc:6c:12:a6:9b:e5:bf:ea:38:1e:31:84:53: 47:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:51:CF:1F:3C:1C:97:EF:E8:8A:4C:BA:C7:42:09:48:D0:76:28:39 X509v3 Authority Key Identifier: keyid:9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:23:e1:70:2d:9c:22:64:59:a0:9d:8e:62:b3:4d:84:55:2a: 99:9f:c6:40:60:79:04:74:4c:35:ca:f8:ce:38:61:ec:e5:a2: 65:16:2b:38:a6:6a:4b:f2:78:c9:09:9e:f4:e0:aa:f2:fb:3d: 15:79:8e:fb:5a:13:66:04:62:ee:6f:9a:f4:64:73:3a:e5:2f: 1f:9a:68:bc:33:92:a7:2c:2e:43:66:a4:11:07:6e:de:78:74: 66:22:94:d5:e4:34:67:b1:65:65:12:75:1a:91:ce:4f:56:23: f9:c5:83:ef:79:03:41:51:60:47:d6:8f:a3:5d:92:ab:75:96: e0:40:96:79:78:6a:39:01:ed:72:a4:a5:38:6d:83:19:36:2e: 44:f6:7a:e2:10:16:89:b6:1b:a7:f9:85:43:25:84:6b:cd:9f: c3:f6:f0:7f:ae:6e:ef:63:85:41:7a:97:e7:ca:79:06:53:1d: 27:74:14:28:9e:2e:02:aa:65:e5:6b:89:cb:22:3d:d9:e7:a8: 93:fa:b6:1d:67:8c:40:25:f0:ed:c7:69:a3:c7:42:10:f0:61: 80:5a:f2:2f:50:91:35:c5:f6:34:dc:49:e4:34:5a:d1:0f:24: 51:74:ff:bf:fa:26:8f:60:d3:fb:b6:04:06:1c:7c:7a:13:f4: ae:42:b9:2d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBRTAxMTAvBgNVBAUTKDlERjRGRURGRjkyQTlFN0Y2RTAyQkZDMDU0QUQzMzk4 NTNEOUREMzIwHhcNMjYwNDE1MDQyNzMzWhcNMjYwNDIyMDQyNzMzWjAYMRYwFAYD VQQDEw02OWRmMTNiNS0zNTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7CckXQEAQ5bjLAeHM/s3s7f0LqlO5qQFkGHVz+lKnOds8tr15x9hUBb65UUO sYpNItuiHVzqiDwl/gePVJ496JdqzJpttYW5xU3ZtruLFv/xlwJp57mxj8RC61p+ w0D9K/re4e4ApgkSOb9Nxt1V756smMH1lsMcPgfjFpNnwVZ2gvF50KCSFYjYQP0r cxjBpO44OrQkpfU1kXooXvH+qOpo5sIJ+APXdPMzt2OKH+OCXSpafOv540ENiUqG /lIsTyE4Pz46uU1eXPiZTR459e7Mb3A+dkpMb414Edy680oiwz0onqRN2FvSwcwo Q1Is8MxsEqab5b/qOB4xhFNH2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAtRzx88 HJfv6IpMusdCCUjQdig5MB8GA1UdIwQYMBaAFJ30/t/5Kp5/bgK/wFStM5hT2d0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFFMC9BRUY2Mzc2MDE5 NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5uOXVBcl9BVkswem1GUFoz VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25mVC0zX2txbm45dUFyX0FWSzB6bUZQWjNUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUFFMC9BRUY2Mzc2MDE5NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5u OXVBcl9BVkswem1GUFozVEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAACPhcC2cImRZoJ2OYrNNhFUqmZ/GQGB5BHRMNcr4zjhh7OWiZRYrOKZqS/J4 yQme9OCq8vs9FXmO+1oTZgRi7m+a9GRzOuUvH5povDOSpywuQ2akEQdu3nh0ZiKU 1eQ0Z7FlZRJ1GpHOT1Yj+cWD73kDQVFgR9aPo12Sq3WW4ECWeXhqOQHtcqSlOG2D GTYuRPZ64hAWibYbp/mFQyWEa82fw/bwf65u72OFQXqX58p5BlMdJ3QUKJ4uAqpl 5WuJyyI92eeok/q2HWeMQCXw7cdpo8dCEPBhgFryL1CRNcX2NNxJ5DRa0Q8kUXT/ v/omj2DT+7YEBhx8ehP0rkK5LQ== -----END CERTIFICATE-----Generated at Fri Apr 17 05:30:01 2026 by rpki-client