$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft File: NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft (raw, json) Hash identifier: DzPVzgHuVkqR88/7CFZ/p15GugHEKalhs4SNveAFT04= Subject key identifier: 65:D6:63:F5:60:17:F4:C7:A7:9C:9D:E4:F5:74:B2:62:BE:C2:DA:BF Authority key identifier: 34:D7:D6:D4:41:C3:2D:7C:87:14:2E:9F:E5:C7:EB:C4:F4:79:B0:CD Certificate issuer: /CN=A91E8F36/serialNumber=34D7D6D441C32D7C87142E9FE5C7EBC4F479B0CD Certificate serial: 0281 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNfW1EHDLXyHFC6f5cfrxPR5sM0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft Manifest number: 0278 Signing time: Fri 17 Apr 2026 01:47:25 +0000 Manifest this update: Fri 17 Apr 2026 01:47:24 +0000 Manifest next update: Fri 24 Apr 2026 01:47:24 +0000 Files and hashes: 1: NNfW1EHDLXyHFC6f5cfrxPR5sM0.crl (hash: uCiox2OCONKbq4hjw2GydslpL9Xu4C4+7UHA1nqdEnI=) 2: AC270A727D0711ED8181DA7FC4F9AE02.roa (hash: pWPy+X5EuBSNslThAxl9vzV4QotLdBFyZSA0fVW7aaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.crl rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNfW1EHDLXyHFC6f5cfrxPR5sM0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:47:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 641 (0x281) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8F36, serialNumber=34D7D6D441C32D7C87142E9FE5C7EBC4F479B0CD Validity Not Before: Apr 17 01:47:24 2026 GMT Not After : Apr 24 01:47:24 2026 GMT Subject: CN=69e1912d-9b29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4e:5e:64:8c:dc:20:45:9e:f2:3d:5b:80:08: 92:16:36:01:c9:0b:f0:bf:e0:9c:56:8d:be:67:ca: bb:10:18:aa:47:32:5f:20:b4:f5:e0:5e:fb:48:c0: 89:9b:29:ef:59:c8:db:3c:2f:b8:43:79:45:96:d8: 89:85:95:46:d7:84:0c:82:83:e4:da:ee:b5:69:cc: aa:63:d6:da:3a:ba:f1:5e:d5:54:ff:43:30:2c:ea: b4:ce:fe:c6:92:43:2f:3a:d6:5a:0f:01:14:5d:1b: 8d:32:10:e3:65:41:76:29:cb:32:c4:f8:0b:a0:cd: 59:01:fa:33:8d:19:c3:36:56:08:13:1e:16:fe:2b: 7c:8d:f5:64:bc:cc:f1:e7:3c:3f:71:b8:26:9c:f3: d9:b8:a8:74:96:17:41:69:5b:53:57:ca:d7:61:4c: c0:59:c0:d3:2b:d8:e8:a1:59:1d:d2:fa:9f:7f:60: 4d:58:d7:e0:f9:0d:af:cc:38:cd:e4:43:61:28:c8: 43:4e:8f:30:8f:43:69:e7:20:5d:8f:8d:2f:5a:38: 73:cf:1f:65:29:31:df:d7:db:7d:07:ca:25:54:25: 57:24:3b:33:79:23:75:91:5d:26:a6:a1:aa:12:c2: db:3d:bb:b2:40:b7:b9:9f:e5:f4:fc:95:3c:1b:13: 40:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:D6:63:F5:60:17:F4:C7:A7:9C:9D:E4:F5:74:B2:62:BE:C2:DA:BF X509v3 Authority Key Identifier: keyid:34:D7:D6:D4:41:C3:2D:7C:87:14:2E:9F:E5:C7:EB:C4:F4:79:B0:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNfW1EHDLXyHFC6f5cfrxPR5sM0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:5b:b9:f8:7b:e9:a0:62:71:a5:0f:d5:c1:36:e9:c6:8f:7b: e2:07:80:ce:60:73:c0:e4:cf:58:de:fa:50:51:5c:b2:de:fd: ea:c4:7c:82:a7:52:9a:a1:19:0e:61:20:35:8c:23:07:42:87: 0f:4f:c3:53:61:10:01:a2:33:ca:aa:fb:11:48:ec:5b:f9:a8: 37:d2:be:f7:31:4b:8f:56:7b:24:80:00:b9:5b:17:c0:46:06: 0d:35:66:37:fc:bb:49:05:1d:89:e5:59:7a:87:d6:a1:f9:ec: db:dd:0a:06:5e:45:4c:a2:bd:63:b2:ed:4b:b1:b3:e6:c2:7f: 03:eb:58:f0:8d:97:b2:ca:b3:e2:3c:0b:fc:ce:8a:f9:93:9e: 5f:55:52:1c:99:4b:fd:7f:ac:85:e2:97:68:fb:8b:f2:ba:92: 2e:f9:4a:83:3b:ae:8d:ce:69:d2:50:b9:df:1e:32:f6:85:61: 60:be:d7:cd:21:bc:77:e9:2f:bd:7d:45:80:0f:8d:63:81:dc: b6:14:49:f1:f9:ba:30:a3:d5:83:16:7c:4f:ba:8e:d0:23:fd: 3c:c3:8b:e8:12:52:63:9e:12:d5:78:4a:03:2a:e2:5e:db:9b: 32:4c:8c:02:8e:cb:26:2a:2c:1b:d6:49:5f:c4:40:75:5d:3b: 97:40:7a:36 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThGMzYxMTAvBgNVBAUTKDM0RDdENkQ0NDFDMzJEN0M4NzE0MkU5RkU1QzdFQkM0 RjQ3OUIwQ0QwHhcNMjYwNDE3MDE0NzI0WhcNMjYwNDI0MDE0NzI0WjAYMRYwFAYD VQQDEw02OWUxOTEyZC05YjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyU5eZIzcIEWe8j1bgAiSFjYByQvwv+CcVo2+Z8q7EBiqRzJfILT14F77SMCJ mynvWcjbPC+4Q3lFltiJhZVG14QMgoPk2u61acyqY9baOrrxXtVU/0MwLOq0zv7G kkMvOtZaDwEUXRuNMhDjZUF2KcsyxPgLoM1ZAfozjRnDNlYIEx4W/it8jfVkvMzx 5zw/cbgmnPPZuKh0lhdBaVtTV8rXYUzAWcDTK9jooVkd0vqff2BNWNfg+Q2vzDjN 5ENhKMhDTo8wj0Np5yBdj40vWjhzzx9lKTHf19t9B8olVCVXJDszeSN1kV0mpqGq EsLbPbuyQLe5n+X0/JU8GxNAmwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGXWY/Vg F/THp5yd5PV0smK+wtq/MB8GA1UdIwQYMBaAFDTX1tRBwy18hxQun+XH68T0ebDN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEYzNi8yNDlGNDE0NjdE MDIxMUVEOUM1RDdENjJDNEY5QUUwMi9OTmZXMUVIRExYeUhGQzZmNWNmcnhQUjVz TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OZlcxRUhETFh5SEZDNmY1Y2ZyeFBSNXNNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEYzNi8yNDlGNDE0NjdEMDIxMUVEOUM1RDdENjJDNEY5QUUwMi9OTmZXMUVIRExY eUhGQzZmNWNmcnhQUjVzTTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiVu5+HvpoGJxpQ/VwTbpxo974geAzmBzwOTPWN76UFFcst796sR8gqdSmqEZ DmEgNYwjB0KHD0/DU2EQAaIzyqr7EUjsW/moN9K+9zFLj1Z7JIAAuVsXwEYGDTVm N/y7SQUdieVZeofWofns290KBl5FTKK9Y7LtS7Gz5sJ/A+tY8I2Xssqz4jwL/M6K +ZOeX1VSHJlL/X+sheKXaPuL8rqSLvlKgzuujc5p0lC53x4y9oVhYL7XzSG8d+kv vX1FgA+NY4HcthRJ8fm6MKPVgxZ8T7qO0CP9PMOL6BJSY54S1XhKAyriXtubMkyM Ao7LJiosG9ZJX8RAdV07l0B6Ng== -----END CERTIFICATE-----Generated at Fri Apr 17 10:36:57 2026 by rpki-client