$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft File: NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft (raw, json) Hash identifier: znxPZppzQod5UkbkGdIqyv+KThiF/F7IHftRaZLjCyQ= Subject key identifier: 9E:79:0C:6A:86:0D:A2:57:0F:BF:F4:EB:25:92:D0:A8:E7:C4:A4:BB Authority key identifier: 34:D7:D6:D4:41:C3:2D:7C:87:14:2E:9F:E5:C7:EB:C4:F4:79:B0:CD Certificate issuer: /CN=A91E8F36/serialNumber=34D7D6D441C32D7C87142E9FE5C7EBC4F479B0CD Certificate serial: 0263 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNfW1EHDLXyHFC6f5cfrxPR5sM0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft Manifest number: 025C Signing time: Sun 01 Mar 2026 02:52:55 +0000 Manifest this update: Sun 01 Mar 2026 02:52:55 +0000 Manifest next update: Sun 08 Mar 2026 02:52:55 +0000 Files and hashes: 1: NNfW1EHDLXyHFC6f5cfrxPR5sM0.crl (hash: +v7IJP8fHEgx/WRNzNfNonMcOmKvm46EKoWYuRjezi8=) 2: AC270A727D0711ED8181DA7FC4F9AE02.roa (hash: iIeWWLVIFJDjrG1ibZP/xl+WAjIK44IJWqOkBlQGCcU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.crl rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNfW1EHDLXyHFC6f5cfrxPR5sM0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 02:52:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 611 (0x263) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8F36, serialNumber=34D7D6D441C32D7C87142E9FE5C7EBC4F479B0CD Validity Not Before: Mar 1 02:52:55 2026 GMT Not After : Mar 8 02:52:55 2026 GMT Subject: CN=69a3aa07-f4c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4e:09:dd:f5:ef:d8:2f:50:25:02:dd:23:a6: ce:fd:29:5e:99:41:45:d3:7b:82:4b:cb:d1:5c:9f: 84:c8:0d:f1:7f:7a:d6:85:64:17:71:04:cd:59:d4: f8:90:ab:4d:e9:cb:75:91:31:99:f4:f5:4b:ae:9e: 3e:5e:1f:ce:05:7e:63:59:a7:aa:7f:d3:e6:6c:60: 93:b5:cb:11:a9:72:ad:a0:8c:bf:75:59:b7:be:93: 14:cc:14:39:95:e9:9c:06:d3:dc:c2:80:15:c4:ab: 84:96:36:98:37:22:df:1d:41:77:4a:23:be:ee:84: ff:6c:29:ca:ec:f6:d6:bd:56:a3:62:46:0c:dd:32: 15:03:7d:dc:32:45:3a:21:9b:8f:25:61:b2:12:2e: fa:9c:08:e1:53:56:aa:69:f2:a0:94:11:e3:b2:75: 2f:d1:82:32:9f:6a:5d:ff:32:a6:71:f2:b9:83:88: 9d:f6:4e:e7:b5:a3:14:56:78:a8:53:55:7d:0e:e4: 71:90:55:b4:39:75:c3:a3:9f:e7:c4:24:67:17:aa: 04:86:59:df:53:b1:5e:23:80:09:b3:c6:0c:88:8e: 37:3c:3f:10:bd:41:0f:d1:4d:2e:fe:01:0d:71:80: 58:1f:cf:8d:e5:2d:a7:f5:87:bf:93:00:d5:66:5e: 89:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:79:0C:6A:86:0D:A2:57:0F:BF:F4:EB:25:92:D0:A8:E7:C4:A4:BB X509v3 Authority Key Identifier: keyid:34:D7:D6:D4:41:C3:2D:7C:87:14:2E:9F:E5:C7:EB:C4:F4:79:B0:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNfW1EHDLXyHFC6f5cfrxPR5sM0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:ec:f6:70:3b:cf:f3:d6:c0:87:65:6f:e8:4f:24:04:7e:cf: 00:2c:9e:2c:0a:d9:8a:25:06:ae:82:96:0b:67:51:a4:c0:fe: 75:64:d1:e7:a9:fc:24:58:5c:12:2b:4b:d8:d0:e6:7b:a7:cd: 17:d2:53:2e:eb:9c:1b:ee:3a:f8:ce:7e:a9:7a:6a:2c:4a:5d: 86:91:1a:57:9a:03:df:5b:85:e5:34:b2:a9:ca:4a:63:96:78: 3b:ac:81:89:bf:c8:3d:0b:5f:48:08:e7:62:14:b0:15:6f:a8: c2:9e:87:e5:ae:2d:a6:6d:96:98:d6:da:b6:56:50:dd:4c:48: 4a:e4:69:ce:cc:2e:6b:17:46:bf:9d:1b:f2:ff:10:52:3c:d8: a6:6b:c8:ee:72:d9:2e:f7:8c:2f:a4:ef:be:92:e6:d1:28:2d: 97:08:43:76:50:9f:29:2f:7b:f8:f5:ea:3b:68:af:9f:48:20: 32:68:a8:63:5a:12:c0:8c:41:61:9d:23:f1:bb:7b:2f:ed:42: ff:ce:bd:83:12:bb:33:be:1b:2f:cc:59:39:0d:03:64:14:4f: 2d:a7:12:8d:74:cb:16:24:50:32:44:0b:14:c5:81:82:cf:4c: 2a:7a:f4:36:77:75:c1:77:11:92:f0:ff:6a:6b:9a:85:80:86: 6d:42:31:6e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThGMzYxMTAvBgNVBAUTKDM0RDdENkQ0NDFDMzJEN0M4NzE0MkU5RkU1QzdFQkM0 RjQ3OUIwQ0QwHhcNMjYwMzAxMDI1MjU1WhcNMjYwMzA4MDI1MjU1WjAYMRYwFAYD VQQDDA02OWEzYWEwNy1mNGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsE4J3fXv2C9QJQLdI6bO/SlemUFF03uCS8vRXJ+EyA3xf3rWhWQXcQTNWdT4 kKtN6ct1kTGZ9PVLrp4+Xh/OBX5jWaeqf9PmbGCTtcsRqXKtoIy/dVm3vpMUzBQ5 lemcBtPcwoAVxKuEljaYNyLfHUF3SiO+7oT/bCnK7PbWvVajYkYM3TIVA33cMkU6 IZuPJWGyEi76nAjhU1aqafKglBHjsnUv0YIyn2pd/zKmcfK5g4id9k7ntaMUVnio U1V9DuRxkFW0OXXDo5/nxCRnF6oEhlnfU7FeI4AJs8YMiI43PD8QvUEP0U0u/gEN cYBYH8+N5S2n9Ye/kwDVZl6JgQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ55DGqG DaJXD7/06yWS0KjnxKS7MB8GA1UdIwQYMBaAFDTX1tRBwy18hxQun+XH68T0ebDN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEYzNi8yNDlGNDE0NjdE MDIxMUVEOUM1RDdENjJDNEY5QUUwMi9OTmZXMUVIRExYeUhGQzZmNWNmcnhQUjVz TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OZlcxRUhETFh5SEZDNmY1Y2ZyeFBSNXNNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEYzNi8yNDlGNDE0NjdEMDIxMUVEOUM1RDdENjJDNEY5QUUwMi9OTmZXMUVIRExY eUhGQzZmNWNmcnhQUjVzTTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgez2cDvP89bAh2Vv6E8kBH7PACyeLArZiiUGroKWC2dRpMD+dWTR56n8JFhc EitL2NDme6fNF9JTLuucG+46+M5+qXpqLEpdhpEaV5oD31uF5TSyqcpKY5Z4O6yB ib/IPQtfSAjnYhSwFW+owp6H5a4tpm2WmNbatlZQ3UxISuRpzswuaxdGv50b8v8Q UjzYpmvI7nLZLveML6TvvpLm0SgtlwhDdlCfKS97+PXqO2ivn0ggMmioY1oSwIxB YZ0j8bt7L+1C/869gxK7M74bL8xZOQ0DZBRPLacSjXTLFiRQMkQLFMWBgs9MKnr0 Nnd1wXcRkvD/amuahYCGbUIxbg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:27:20 2026 by rpki-client