$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft File: NHTCU5hhEAr9ljoWPIAtAmT47H0.mft (raw, json) Hash identifier: KILeEB30R0mkqYDZrjVsLwhX7KepAT9ZzAQJ3kB1Cbs= Subject key identifier: 80:E2:6A:91:9D:4D:47:96:6D:A9:8D:C2:54:C5:D5:43:69:63:2E:A3 Authority key identifier: 34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D Certificate issuer: /CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft Manifest number: 0191 Signing time: Sun 01 Mar 2026 05:20:40 +0000 Manifest this update: Sun 01 Mar 2026 05:20:40 +0000 Manifest next update: Sun 08 Mar 2026 05:20:40 +0000 Files and hashes: 1: NHTCU5hhEAr9ljoWPIAtAmT47H0.crl (hash: wlC7M6HOq1MvL42kLKBRifcTyd8bux5a/g/Ca1w3coo=) 2: 6241069011E111EFBBB70B32C4F9AE02.roa (hash: 1oT/iS9d2Pt0zquYaFCDfGNU++P67uGYK/ZfWm8Kv/g=) 3: 8C508DC055F711EFA5200828C4F9AE02.roa (hash: ihNWokHlCtMazUN4Q0S1jw6bRWJLab7FqUZHdXu5av8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 05:20:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63AF, serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Validity Not Before: Mar 1 05:20:40 2026 GMT Not After : Mar 8 05:20:40 2026 GMT Subject: CN=69a3cca8-4357 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:89:97:bd:99:45:37:75:1a:3d:4a:e2:80:cc: d2:52:39:75:fa:30:6d:89:42:13:f0:17:de:f9:0d: 6e:6a:bc:c2:d7:e3:d3:75:ad:a5:f7:76:b4:66:c0: 37:26:2f:60:c0:a0:a0:0d:62:9a:aa:d3:eb:d0:e3: c9:87:39:73:95:c8:46:07:20:ad:22:f7:94:a5:c5: 0b:13:32:d5:c1:35:5b:95:b9:c6:d1:9d:83:84:04: 94:29:e8:5f:fd:49:fd:b0:57:85:bf:3f:61:fd:4b: 3e:05:35:05:37:43:dc:e3:28:b3:13:0c:1c:c0:14: 32:a0:60:7a:b0:01:ac:62:45:ad:e9:54:ff:02:a0: 46:2a:b7:c4:10:ee:6a:76:7f:e4:6a:04:25:68:b2: f6:7b:9c:3f:98:7e:90:02:77:bc:ff:e9:90:2d:e5: 25:86:db:5e:89:08:29:a6:04:54:47:b8:0b:dd:ed: 7a:87:be:6d:59:0c:55:3a:f4:3c:68:63:cf:1e:2b: ee:a1:10:9c:d6:58:6f:ea:79:96:f1:8c:4b:23:4b: 19:9f:07:56:07:c8:98:35:c0:0c:92:24:94:aa:ee: 32:5c:52:06:fc:f4:22:cd:42:68:6a:15:0b:53:9c: 25:fd:6c:d6:a7:19:c5:11:d5:4a:fc:30:76:9f:fd: 4b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:E2:6A:91:9D:4D:47:96:6D:A9:8D:C2:54:C5:D5:43:69:63:2E:A3 X509v3 Authority Key Identifier: keyid:34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:58:1f:03:e3:65:eb:91:d3:00:b9:57:ed:73:bf:19:87:15: 6b:3d:e3:52:77:a7:b9:2e:61:a4:7e:aa:61:8b:94:96:11:2f: ed:88:9d:2e:0e:a4:9c:0f:02:ac:fa:10:91:7c:2c:c9:a3:cd: 37:39:90:e4:0c:50:61:6e:35:72:68:44:98:d4:34:a2:5b:f2: 85:b5:c8:e9:48:5f:3d:ca:97:ec:b3:c7:7a:29:bf:a8:73:25: fa:db:6a:98:05:74:84:0c:b9:ff:1c:27:3f:f8:cb:ab:05:f3: 3a:3d:c0:77:b6:c7:3e:84:2c:30:f4:65:01:a4:e8:c3:21:dc: 47:94:ac:2d:16:62:f0:c2:83:8f:c5:cf:17:24:13:43:6f:2f: 80:13:40:a3:bc:ce:da:8c:eb:71:a9:99:8b:16:ff:86:ce:1b: d3:eb:a3:d2:14:46:8a:04:ef:dc:75:fe:d6:c4:a7:6e:aa:90: 36:b5:79:41:4f:59:9b:b3:70:85:bf:8c:11:43:40:37:8a:3b: 2c:84:08:69:76:80:c3:66:29:53:0b:2c:26:7b:3f:cb:a2:97: dd:51:d3:3e:7a:ad:c5:11:36:15:02:76:76:e5:5f:b1:92:1c: 89:bf:be:50:d1:23:86:9e:dd:54:03:a0:f9:5e:f6:36:27:b7: d0:0f:17:c1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYzQUYxMTAvBgNVBAUTKDM0NzRDMjUzOTg2MTEwMEFGRDk2M0ExNjNDODAyRDAy NjRGOEVDN0QwHhcNMjYwMzAxMDUyMDQwWhcNMjYwMzA4MDUyMDQwWjAYMRYwFAYD VQQDEw02OWEzY2NhOC00MzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4mXvZlFN3UaPUrigMzSUjl1+jBtiUIT8Bfe+Q1uarzC1+PTda2l93a0ZsA3 Ji9gwKCgDWKaqtPr0OPJhzlzlchGByCtIveUpcULEzLVwTVblbnG0Z2DhASUKehf /Un9sFeFvz9h/Us+BTUFN0Pc4yizEwwcwBQyoGB6sAGsYkWt6VT/AqBGKrfEEO5q dn/kagQlaLL2e5w/mH6QAne8/+mQLeUlhtteiQgppgRUR7gL3e16h75tWQxVOvQ8 aGPPHivuoRCc1lhv6nmW8YxLI0sZnwdWB8iYNcAMkiSUqu4yXFIG/PQizUJoahUL U5wl/WzWpxnFEdVK/DB2n/1L6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIDiapGd TUeWbamNwlTF1UNpYy6jMB8GA1UdIwQYMBaAFDR0wlOYYRAK/ZY6FjyALQJk+Ox9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjNBRi80REZFNjgyNEI2 QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVBcjlsam9XUElBdEFtVDQ3 SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05IVENVNWhoRUFyOWxqb1dQSUF0QW1UNDdIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjNBRi80REZFNjgyNEI2QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVB cjlsam9XUElBdEFtVDQ3SDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALVgfA+Nl65HTALlX7XO/GYcVaz3jUnenuS5hpH6qYYuUlhEv7YidLg6knA8C rPoQkXwsyaPNNzmQ5AxQYW41cmhEmNQ0olvyhbXI6UhfPcqX7LPHeim/qHMl+ttq mAV0hAy5/xwnP/jLqwXzOj3Ad7bHPoQsMPRlAaTowyHcR5SsLRZi8MKDj8XPFyQT Q28vgBNAo7zO2ozrcamZixb/hs4b0+uj0hRGigTv3HX+1sSnbqqQNrV5QU9Zm7Nw hb+MEUNAN4o7LIQIaXaAw2YpUwssJns/y6KX3VHTPnqtxRE2FQJ2duVfsZIcib++ UNEjhp7dVAOg+V72Nie30A8XwQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:16:14 2026 by rpki-client