$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft File: NSX5xUTpmw5jRgCZyS39lNSb9so.mft (raw, json) Hash identifier: 1B1Blg2/MtpqIYdffB2F+giG4q5FUXrN0dJxQdiPOz4= Subject key identifier: AE:E0:A1:77:4D:B4:F1:DF:5A:63:0B:3A:A9:1A:72:4D:63:4D:BE:92 Authority key identifier: 35:25:F9:C5:44:E9:9B:0E:63:46:00:99:C9:2D:FD:94:D4:9B:F6:CA Certificate issuer: /CN=A91D9D7A/serialNumber=3525F9C544E99B0E63460099C92DFD94D49BF6CA Certificate serial: 02C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSX5xUTpmw5jRgCZyS39lNSb9so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft Manifest number: 02C1 Signing time: Sun 01 Mar 2026 02:16:41 +0000 Manifest this update: Sun 01 Mar 2026 02:16:41 +0000 Manifest next update: Sun 08 Mar 2026 02:16:41 +0000 Files and hashes: 1: NSX5xUTpmw5jRgCZyS39lNSb9so.crl (hash: 1v4VHcn0uo4+BthsUT9/nMKA5n5JMdqqyRSNkdPzils=) 2: 81B7763C280211ED93948C10C4F9AE02.roa (hash: EUxX4jfQlcU/1uY0IOylmxYMPcoOQVgae213RHQG1Xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.crl rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSX5xUTpmw5jRgCZyS39lNSb9so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 02:16:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 709 (0x2c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D7A, serialNumber=3525F9C544E99B0E63460099C92DFD94D49BF6CA Validity Not Before: Mar 1 02:16:41 2026 GMT Not After : Mar 8 02:16:41 2026 GMT Subject: CN=69a3a189-957b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:28:b1:a9:8f:d5:07:7a:70:24:c6:57:b3:84: dc:2d:12:8e:79:99:6e:a1:03:22:f0:f9:99:05:7d: 7c:81:f9:b3:6e:76:8c:9a:a2:6b:12:60:15:27:f6: db:9b:a1:94:2c:87:89:77:bf:dd:cc:30:53:e1:c5: 99:71:ab:27:ef:41:a2:3e:3f:56:e3:4d:f2:64:0f: 53:78:15:31:fa:ef:ea:20:c0:3e:c1:65:cc:b7:29: 8e:31:5f:c4:b4:40:bc:e7:c1:29:74:44:e0:cf:21: d3:76:be:07:42:d8:86:82:6a:4f:4a:91:ff:05:5e: 90:56:b3:a6:89:a6:15:e2:02:1f:ae:c0:d4:79:7e: 4e:57:60:57:38:cc:82:8c:13:7a:f8:94:04:6a:2d: a9:e8:9e:3e:91:77:8a:76:08:e8:c3:67:df:4f:f0: 47:c3:2e:6f:7d:4f:63:e8:01:d7:ad:73:bd:89:c7: 43:be:80:8d:ca:07:24:e7:69:f0:8b:e6:c4:93:26: fa:fa:49:26:bc:62:e9:10:95:e5:1c:81:ec:e0:71: ee:00:13:c6:3f:fd:75:ce:43:1b:c7:18:a8:08:9d: fe:30:3d:cd:75:ed:41:f0:49:08:f6:11:45:79:84: 63:5a:19:98:5d:ee:e6:02:35:1f:d8:3d:f7:4f:bd: fc:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:E0:A1:77:4D:B4:F1:DF:5A:63:0B:3A:A9:1A:72:4D:63:4D:BE:92 X509v3 Authority Key Identifier: keyid:35:25:F9:C5:44:E9:9B:0E:63:46:00:99:C9:2D:FD:94:D4:9B:F6:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSX5xUTpmw5jRgCZyS39lNSb9so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:d8:90:b3:fc:24:b1:1e:0b:ce:b5:01:99:d9:b8:00:2c:73: 46:25:4d:e5:a3:85:b3:a1:0e:0a:4d:92:5c:50:bf:6b:33:6f: 84:fc:2a:fb:59:40:85:23:f3:49:a7:7a:c1:51:19:4e:76:2b: f5:37:99:1e:2c:e0:1d:f7:a7:26:53:bd:8f:6a:ee:e0:7e:aa: 8d:a7:44:dd:15:f5:ef:66:8c:75:de:8f:47:99:b7:aa:bb:49: a1:5b:58:5c:9e:71:7e:aa:65:8f:92:c3:69:63:ca:02:22:13: 7b:24:0f:ee:6a:59:2e:ff:26:7c:4e:3b:1f:ec:09:a7:01:65: 65:d5:2f:30:c9:f6:de:b5:ff:ae:8d:2b:c0:c1:a9:a0:7e:bc: 7d:4f:82:fe:0c:59:61:48:c1:56:14:14:70:f3:be:50:3f:58: 1b:5e:f2:93:87:f8:c8:4c:69:ba:86:e4:ce:4d:e1:d0:01:15: 86:71:69:e1:4d:85:86:88:d5:c0:6f:d3:9b:57:a7:a9:f4:3b: 51:f9:d5:c1:7d:fb:c0:e0:70:86:91:da:40:ac:25:9c:0a:94: e5:1b:00:36:15:6b:c9:9b:74:03:d8:85:c6:11:cb:e3:5e:dd: d7:9a:f7:36:1e:d6:28:8e:61:0a:53:06:c7:a0:49:1d:d1:f2: f4:56:25:46 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEN0ExMTAvBgNVBAUTKDM1MjVGOUM1NDRFOTlCMEU2MzQ2MDA5OUM5MkRGRDk0 RDQ5QkY2Q0EwHhcNMjYwMzAxMDIxNjQxWhcNMjYwMzA4MDIxNjQxWjAYMRYwFAYD VQQDDA02OWEzYTE4OS05NTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2SixqY/VB3pwJMZXs4TcLRKOeZluoQMi8PmZBX18gfmzbnaMmqJrEmAVJ/bb m6GULIeJd7/dzDBT4cWZcasn70GiPj9W403yZA9TeBUx+u/qIMA+wWXMtymOMV/E tEC858EpdETgzyHTdr4HQtiGgmpPSpH/BV6QVrOmiaYV4gIfrsDUeX5OV2BXOMyC jBN6+JQEai2p6J4+kXeKdgjow2ffT/BHwy5vfU9j6AHXrXO9icdDvoCNygck52nw i+bEkyb6+kkmvGLpEJXlHIHs4HHuABPGP/11zkMbxxioCJ3+MD3Nde1B8EkI9hFF eYRjWhmYXe7mAjUf2D33T738pQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK7goXdN tPHfWmMLOqkack1jTb6SMB8GA1UdIwQYMBaAFDUl+cVE6ZsOY0YAmckt/ZTUm/bK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ3QS84OUE5QUEyNDI3 ODMxMUVEOUJBMDI0NTBDNEY5QUUwMi9OU1g1eFVUcG13NWpSZ0NaeVMzOWxOU2I5 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05TWDV4VVRwbXc1alJnQ1p5UzM5bE5TYjlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ3QS84OUE5QUEyNDI3ODMxMUVEOUJBMDI0NTBDNEY5QUUwMi9OU1g1eFVUcG13 NWpSZ0NaeVMzOWxOU2I5c28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGtiQs/wksR4LzrUBmdm4ACxzRiVN5aOFs6EOCk2SXFC/azNvhPwq+1lAhSPz Sad6wVEZTnYr9TeZHizgHfenJlO9j2ru4H6qjadE3RX172aMdd6PR5m3qrtJoVtY XJ5xfqplj5LDaWPKAiITeyQP7mpZLv8mfE47H+wJpwFlZdUvMMn23rX/ro0rwMGp oH68fU+C/gxZYUjBVhQUcPO+UD9YG17yk4f4yExpuobkzk3h0AEVhnFp4U2FhojV wG/Tm1enqfQ7UfnVwX37wOBwhpHaQKwlnAqU5RsANhVryZt0A9iFxhHL417d15r3 Nh7WKI5hClMGx6BJHdHy9FYlRg== -----END CERTIFICATE-----Generated at Sun Mar 1 23:30:58 2026 by rpki-client