$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft File: NSX5xUTpmw5jRgCZyS39lNSb9so.mft (raw, json) Hash identifier: Bvfs+jIh3RTDilCJ9fyDu8fhhASA60AfiLtVOYlhc9Q= Subject key identifier: 45:62:41:4A:C1:40:97:D3:63:93:70:F2:E4:00:E5:E0:4A:A6:D0:74 Authority key identifier: 35:25:F9:C5:44:E9:9B:0E:63:46:00:99:C9:2D:FD:94:D4:9B:F6:CA Certificate issuer: /CN=A91D9D7A/serialNumber=3525F9C544E99B0E63460099C92DFD94D49BF6CA Certificate serial: 02E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSX5xUTpmw5jRgCZyS39lNSb9so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft Manifest number: 02DB Signing time: Fri 17 Apr 2026 01:14:41 +0000 Manifest this update: Fri 17 Apr 2026 01:14:40 +0000 Manifest next update: Fri 24 Apr 2026 01:14:40 +0000 Files and hashes: 1: NSX5xUTpmw5jRgCZyS39lNSb9so.crl (hash: sP09V21SicCqu4rFynhSAAHNoKvICw8NbZiL35MRRuw=) 2: 81B7763C280211ED93948C10C4F9AE02.roa (hash: cFYWu32x1i7BJE6ej7tEMyDU8GB+7ACwMuOY9C/hNmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.crl rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSX5xUTpmw5jRgCZyS39lNSb9so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:14:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 737 (0x2e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D7A, serialNumber=3525F9C544E99B0E63460099C92DFD94D49BF6CA Validity Not Before: Apr 17 01:14:40 2026 GMT Not After : Apr 24 01:14:40 2026 GMT Subject: CN=69e18981-a7a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:aa:e6:c1:2d:33:5a:c5:88:83:4a:16:0f:25: 68:84:ee:15:75:95:17:e0:e8:8c:99:96:ed:a4:0f: 91:95:28:24:32:05:23:f3:60:2a:44:7e:9c:db:0e: fb:e3:ff:48:65:be:56:45:c9:6c:93:9d:e9:f3:93: e8:8e:a1:ee:86:28:31:5f:16:d5:29:35:65:75:30: 40:8e:58:15:91:53:c3:da:9f:23:36:98:f5:87:0d: c7:7b:cb:8c:39:f9:dc:c2:56:bf:f5:a8:bb:4a:32: a6:22:ba:5e:8e:89:9f:9b:18:bb:06:b5:5d:af:17: 3b:0d:01:3a:3a:a0:c8:02:5e:bd:85:68:fa:83:a5: e1:22:2a:50:2a:ca:55:bf:7c:1a:73:d7:95:17:1a: 51:a9:89:1d:4a:1a:d9:a0:46:da:94:ce:14:d3:db: 6e:02:0b:68:0d:8e:00:08:50:01:d4:c4:9b:75:fc: 00:4f:96:3e:b1:71:33:92:69:15:6c:31:9e:6a:3b: 09:04:08:21:4d:09:12:ab:0d:0b:62:f0:13:05:71: 8d:be:1e:09:4c:85:b6:7c:25:15:d8:4d:06:f4:eb: ee:0b:28:9d:9d:e7:a4:8f:05:e9:b2:64:f3:98:d6: bc:da:61:b3:b9:99:08:53:7d:e6:25:7b:8a:3b:f1: a9:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:62:41:4A:C1:40:97:D3:63:93:70:F2:E4:00:E5:E0:4A:A6:D0:74 X509v3 Authority Key Identifier: keyid:35:25:F9:C5:44:E9:9B:0E:63:46:00:99:C9:2D:FD:94:D4:9B:F6:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSX5xUTpmw5jRgCZyS39lNSb9so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:e4:ff:50:8a:20:2e:e4:f5:30:7a:19:c2:72:20:ae:9b:fb: d4:fd:0a:6a:a6:7a:0f:28:13:cb:9a:86:82:d5:0d:0f:5f:b3: 57:9d:6d:f1:ab:8d:9f:ff:d4:fd:05:ca:9d:f4:c8:71:cc:08: db:3f:e6:d6:75:a1:5b:48:34:aa:51:54:d6:f5:de:43:2c:9c: 9c:84:6b:dc:bc:ee:09:1e:7a:70:4b:b8:5c:4d:da:46:86:13: bf:1f:c3:54:4e:e0:b8:1e:5b:d4:be:65:4c:66:e1:e5:b5:4a: 15:b6:b7:00:f3:87:b6:ae:9b:16:62:a4:4b:ba:4b:c2:64:eb: 49:ed:1c:82:ce:91:57:34:11:68:af:de:da:44:49:9c:a2:7d: d0:d2:37:1f:5e:82:e4:a8:67:16:1e:77:14:48:63:ec:1e:ca: 4c:5c:8a:28:df:9b:ea:d6:12:72:65:74:bc:40:c8:74:35:5c: 42:30:d7:09:56:bb:e0:1a:9a:f1:5c:fd:a5:4b:87:8a:bc:ad: 63:49:74:37:bd:2e:d6:b2:fd:3b:94:a8:83:47:54:da:24:d0: d3:74:4c:f8:77:6b:c9:b1:78:f6:00:01:f2:43:f3:fd:93:a7: 8f:4f:52:72:1c:e2:ea:1f:2b:72:94:ee:aa:f2:83:e8:6e:67: c3:44:15:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEN0ExMTAvBgNVBAUTKDM1MjVGOUM1NDRFOTlCMEU2MzQ2MDA5OUM5MkRGRDk0 RDQ5QkY2Q0EwHhcNMjYwNDE3MDExNDQwWhcNMjYwNDI0MDExNDQwWjAYMRYwFAYD VQQDEw02OWUxODk4MS1hN2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiKrmwS0zWsWIg0oWDyVohO4VdZUX4OiMmZbtpA+RlSgkMgUj82AqRH6c2w77 4/9IZb5WRclsk53p85PojqHuhigxXxbVKTVldTBAjlgVkVPD2p8jNpj1hw3He8uM Ofncwla/9ai7SjKmIrpejomfmxi7BrVdrxc7DQE6OqDIAl69hWj6g6XhIipQKspV v3wac9eVFxpRqYkdShrZoEbalM4U09tuAgtoDY4ACFAB1MSbdfwAT5Y+sXEzkmkV bDGeajsJBAghTQkSqw0LYvATBXGNvh4JTIW2fCUV2E0G9OvuCyidneekjwXpsmTz mNa82mGzuZkIU33mJXuKO/Gp/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEViQUrB QJfTY5Nw8uQA5eBKptB0MB8GA1UdIwQYMBaAFDUl+cVE6ZsOY0YAmckt/ZTUm/bK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ3QS84OUE5QUEyNDI3 ODMxMUVEOUJBMDI0NTBDNEY5QUUwMi9OU1g1eFVUcG13NWpSZ0NaeVMzOWxOU2I5 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05TWDV4VVRwbXc1alJnQ1p5UzM5bE5TYjlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ3QS84OUE5QUEyNDI3ODMxMUVEOUJBMDI0NTBDNEY5QUUwMi9OU1g1eFVUcG13 NWpSZ0NaeVMzOWxOU2I5c28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAN+T/UIogLuT1MHoZwnIgrpv71P0KaqZ6DygTy5qGgtUND1+zV51t8auNn//U /QXKnfTIccwI2z/m1nWhW0g0qlFU1vXeQyycnIRr3LzuCR56cEu4XE3aRoYTvx/D VE7guB5b1L5lTGbh5bVKFba3APOHtq6bFmKkS7pLwmTrSe0cgs6RVzQRaK/e2kRJ nKJ90NI3H16C5KhnFh53FEhj7B7KTFyKKN+b6tYScmV0vEDIdDVcQjDXCVa74Bqa 8Vz9pUuHirytY0l0N70u1rL9O5Sog0dU2iTQ03RM+HdrybF49gAB8kPz/ZOnj09S chzi6h8rcpTuqvKD6G5nw0QVeQ== -----END CERTIFICATE-----Generated at Fri Apr 17 13:23:30 2026 by rpki-client