$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft File: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft (raw, json) Hash identifier: Kp0ax4C3G7w6wSG7FB98tp1Rf5zM+DWvqs5X5Ud4exc= Subject key identifier: 25:8D:C4:02:AC:C5:91:BD:6A:FE:AE:90:2A:A5:5C:21:02:63:6E:B3 Authority key identifier: 9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 Certificate issuer: /CN=A91CEAE0/serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Certificate serial: 0180 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft Manifest number: 0168 Signing time: Sun 01 Mar 2026 06:08:52 +0000 Manifest this update: Sun 01 Mar 2026 06:08:51 +0000 Manifest next update: Sun 08 Mar 2026 06:08:51 +0000 Files and hashes: 1: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl (hash: mHtwA/Iwfk6mrPGuy+xk1YCDO+FH3HU0aZe/92Ea7QY=) 2: FF233C70E62111EFACA87766C4F9AE02.roa (hash: 0dsUVKxnnglNpZZhhpBErhWI1oXUDVFF4BUubObFWiM=) 3: 77E54B78C45111EF9D399128C4F9AE02.roa (hash: StZAIMtKvc+DvwzgQ26IlnkW4j9VonIWzSJOuU7IXLU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:08:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 384 (0x180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAE0, serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Validity Not Before: Mar 1 06:08:51 2026 GMT Not After : Mar 8 06:08:51 2026 GMT Subject: CN=69a3d7f3-d99e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c1:e8:3f:c2:73:2b:78:80:95:40:08:b8:5c: 69:55:01:91:6c:38:0d:67:5f:48:f4:35:6e:69:35: fc:d3:e7:ae:2a:19:f1:40:44:2b:f7:49:22:ad:30: 92:0c:c4:26:72:3c:13:5e:66:4a:08:55:e1:88:b4: 80:63:1b:7a:ec:4a:0e:37:d1:af:27:14:77:53:cf: 95:28:80:aa:0a:42:17:46:07:9a:c5:7b:14:0b:71: 3b:62:64:e3:b5:cb:59:60:88:9a:b9:e3:8a:b1:79: 43:15:83:cb:e0:40:ec:60:05:b6:f4:70:61:f5:db: 40:96:b3:8a:7a:a3:30:14:7b:70:20:3d:90:0a:e2: e9:2c:fc:66:81:ed:b2:9f:4e:4f:1b:91:2c:6f:08: c7:37:4a:6d:d4:40:aa:5d:c3:1e:9c:ca:41:d2:49: 06:cb:77:25:e5:4d:85:30:1a:bc:40:40:44:0d:ec: a0:91:a3:d8:a2:c4:f8:68:6b:2a:a7:99:96:69:ae: 2e:e8:3c:1e:d1:b2:61:26:a5:a2:d2:d3:fa:6a:27: c6:88:9e:08:59:20:df:9e:03:87:60:31:a2:c7:04: 0c:18:3a:c3:2f:f4:db:c7:6c:a2:85:06:fa:75:32: 31:5d:c2:43:b5:7f:1f:94:99:f0:22:45:09:4a:be: f9:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:8D:C4:02:AC:C5:91:BD:6A:FE:AE:90:2A:A5:5C:21:02:63:6E:B3 X509v3 Authority Key Identifier: keyid:9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:e9:b7:11:af:3c:10:c4:42:d9:80:2e:28:39:1e:0d:6f:e0: ce:17:75:64:94:ab:45:2e:63:d8:f2:eb:82:b3:e6:9d:cc:f1: d2:a5:b4:fe:d2:01:03:f8:d4:c5:a9:7a:f1:c7:d1:e5:41:cf: 10:2b:2e:83:ec:f9:6b:85:8e:05:3b:97:fa:a6:f0:cd:f1:6e: 76:fc:6c:9b:35:77:78:51:df:25:da:f0:65:80:5a:e2:8b:7d: 21:29:b0:64:92:f6:07:61:8e:6d:ad:46:45:2a:3f:6c:e7:94: ed:c8:2e:7f:54:fa:03:bd:da:b3:f0:49:07:5f:9d:a2:6c:0a: f1:4a:a8:01:56:75:46:c7:9a:88:bf:cc:c6:88:fc:4c:ad:eb: 7a:41:94:b6:47:33:44:78:87:dc:09:a8:3c:4f:7c:a9:89:fc: d5:77:f2:19:33:19:d2:6a:ff:56:b4:f9:d5:7b:e6:db:61:b8: d1:85:98:1f:a7:14:70:92:46:62:0e:e0:ae:f6:2d:7c:f6:ed: 89:2c:28:09:2c:46:26:bf:0d:42:20:40:1b:c6:6c:03:97:58: d4:8b:26:90:64:62:0a:82:4e:82:52:19:31:00:8f:3e:6e:a6: 38:66:20:be:24:99:78:5d:15:24:b3:65:22:51:3c:14:2a:99: 69:d8:a1:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBRTAxMTAvBgNVBAUTKDlERjRGRURGRjkyQTlFN0Y2RTAyQkZDMDU0QUQzMzk4 NTNEOUREMzIwHhcNMjYwMzAxMDYwODUxWhcNMjYwMzA4MDYwODUxWjAYMRYwFAYD VQQDEw02OWEzZDdmMy1kOTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwsHoP8JzK3iAlUAIuFxpVQGRbDgNZ19I9DVuaTX80+euKhnxQEQr90kirTCS DMQmcjwTXmZKCFXhiLSAYxt67EoON9GvJxR3U8+VKICqCkIXRgeaxXsUC3E7YmTj tctZYIiaueOKsXlDFYPL4EDsYAW29HBh9dtAlrOKeqMwFHtwID2QCuLpLPxmge2y n05PG5EsbwjHN0pt1ECqXcMenMpB0kkGy3cl5U2FMBq8QEBEDeygkaPYosT4aGsq p5mWaa4u6Dwe0bJhJqWi0tP6aifGiJ4IWSDfngOHYDGixwQMGDrDL/Tbx2yihQb6 dTIxXcJDtX8flJnwIkUJSr75gQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCWNxAKs xZG9av6ukCqlXCECY26zMB8GA1UdIwQYMBaAFJ30/t/5Kp5/bgK/wFStM5hT2d0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFFMC9BRUY2Mzc2MDE5 NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5uOXVBcl9BVkswem1GUFoz VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25mVC0zX2txbm45dUFyX0FWSzB6bUZQWjNUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUFFMC9BRUY2Mzc2MDE5NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5u OXVBcl9BVkswem1GUFozVEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADem3Ea88EMRC2YAuKDkeDW/gzhd1ZJSrRS5j2PLrgrPmnczx0qW0/tIBA/jU xal68cfR5UHPECsug+z5a4WOBTuX+qbwzfFudvxsmzV3eFHfJdrwZYBa4ot9ISmw ZJL2B2GOba1GRSo/bOeU7cguf1T6A73as/BJB1+domwK8UqoAVZ1RseaiL/Mxoj8 TK3rekGUtkczRHiH3AmoPE98qYn81XfyGTMZ0mr/VrT51Xvm22G40YWYH6cUcJJG Yg7grvYtfPbtiSwoCSxGJr8NQiBAG8ZsA5dY1IsmkGRiCoJOglIZMQCPPm6mOGYg viSZeF0VJLNlIlE8FCqZadihQw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:28:51 2026 by rpki-client