$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft File: Nh-touCojPKH9M5sw7RGLJEzC_w.mft (raw, json) Hash identifier: HBCN3v9jJlLMhcnXZk1cAXtUsLCwKuE66Lorcszq0/Q= Subject key identifier: 67:F6:AE:C5:0E:A6:A6:50:F6:2A:35:FE:F6:11:5B:18:41:C0:B5:37 Authority key identifier: 36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC Certificate issuer: /CN=A91F8357/serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft Manifest number: D3 Signing time: Mon 02 Mar 2026 13:19:43 +0000 Manifest this update: Mon 02 Mar 2026 13:19:43 +0000 Manifest next update: Mon 09 Mar 2026 13:19:43 +0000 Files and hashes: 1: Nh-touCojPKH9M5sw7RGLJEzC_w.crl (hash: sw+jst8hEXO7Bl1S/e/sxXRJ4fYp4PkAuKLbXpAVEoA=) 2: 89E51722DF9011EFB2CE892EC4F9AE02.roa (hash: Nuy8wkTfNQsDA+tWgvTQcyjhbo91R+mIegI98+xjZxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:19:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8357, serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC Validity Not Before: Mar 2 13:19:43 2026 GMT Not After : Mar 9 13:19:43 2026 GMT Subject: CN=69a58e6f-24a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e6:20:50:40:f2:f0:6d:b4:9a:2e:d3:ee:af: 81:c8:f9:74:9b:22:0b:59:15:a6:b3:c3:20:96:dc: 47:58:f6:71:a2:66:a3:7c:25:5a:5e:9b:a3:c9:fb: 6f:19:97:74:3a:b6:fc:f7:08:9b:c1:e6:ed:19:59: 25:90:5c:3b:5e:ad:bb:4d:47:10:b2:c8:fd:7d:08: 8b:18:5f:47:96:88:7d:1d:fb:46:e1:c2:a5:6a:22: ea:fe:71:47:1e:3f:ff:3f:a5:8e:e8:3b:4c:eb:01: e5:84:11:f0:60:6d:48:65:c5:71:e2:fb:1a:ca:93: 50:0b:a9:fb:c1:f5:75:a9:9d:bf:2f:07:48:da:61: 19:af:10:76:b1:18:a2:df:ee:63:b2:4a:9d:17:f9: dd:70:6a:38:9d:b6:6c:99:b7:7c:77:d1:c5:11:01: e1:6c:a2:36:54:85:94:ac:cd:20:5c:90:cb:90:f0: 66:ed:12:fb:7f:43:8f:9c:00:5a:44:9a:7b:06:9a: ed:23:dc:31:6f:54:3c:20:44:c3:b6:bb:ee:e6:30: 1a:6a:bc:d4:98:3b:85:f7:40:80:af:fc:cf:c1:36: bf:b8:0e:c9:cb:bf:2c:5c:9a:a7:8e:09:2c:33:19: 42:6f:6d:8a:46:d0:af:90:05:8c:1d:ee:4c:65:ae: a2:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:F6:AE:C5:0E:A6:A6:50:F6:2A:35:FE:F6:11:5B:18:41:C0:B5:37 X509v3 Authority Key Identifier: keyid:36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:72:0b:d6:9b:7e:7e:ae:87:c1:b2:26:df:ec:5a:68:9b:d8: e3:8f:06:2b:f7:ff:ea:4b:c2:8e:2d:e9:06:bf:f2:eb:f0:a3: 0d:85:5b:7c:64:7c:51:73:48:23:72:54:c9:eb:72:da:f0:f6: 29:79:c1:e1:aa:ad:c4:d5:3d:c9:64:4f:1e:3a:43:12:16:d7: 2f:90:e3:0c:27:66:84:65:86:56:1a:8b:58:1d:1e:b9:37:73: 26:9f:ff:96:52:f8:4a:c9:9b:bf:06:9f:de:80:aa:43:80:eb: cd:6e:2c:97:35:c7:af:55:ff:e8:1e:e4:72:ee:1a:72:73:3f: 66:7f:43:04:3a:ab:9f:a3:2e:df:fb:33:03:80:48:2c:f8:f6: 5f:ef:78:d9:cb:26:8a:04:a4:ae:f6:81:77:3f:e4:f9:68:74: 36:f7:c4:6b:07:b5:63:e7:cf:36:e8:9c:10:ee:0a:30:c8:12: 1b:dd:4c:9f:d0:3c:ab:8e:fc:22:a4:6a:c0:c3:ff:d2:87:90: 59:13:6e:9a:84:90:06:b1:1a:4a:8f:bc:d9:d9:76:79:91:df: 1e:22:40:d9:aa:ac:49:e8:4a:5a:31:ab:98:68:1d:c4:44:dc: 46:29:5f:68:2d:e2:eb:89:da:84:c0:00:fa:a4:a5:68:8c:ee: 26:57:6e:39 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgzNTcxMTAvBgNVBAUTKDM2MUZBREEyRTBBODhDRjI4N0Y0Q0U2Q0MzQjQ0NjJD OTEzMzBCRkMwHhcNMjYwMzAyMTMxOTQzWhcNMjYwMzA5MTMxOTQzWjAYMRYwFAYD VQQDEw02OWE1OGU2Zi0yNGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3uYgUEDy8G20mi7T7q+ByPl0myILWRWms8MgltxHWPZxomajfCVaXpujyftv GZd0Orb89wibwebtGVklkFw7Xq27TUcQssj9fQiLGF9Hloh9HftG4cKlaiLq/nFH Hj//P6WO6DtM6wHlhBHwYG1IZcVx4vsaypNQC6n7wfV1qZ2/LwdI2mEZrxB2sRii 3+5jskqdF/ndcGo4nbZsmbd8d9HFEQHhbKI2VIWUrM0gXJDLkPBm7RL7f0OPnABa RJp7BprtI9wxb1Q8IETDtrvu5jAaarzUmDuF90CAr/zPwTa/uA7Jy78sXJqnjgks MxlCb22KRtCvkAWMHe5MZa6iXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGf2rsUO pqZQ9io1/vYRWxhBwLU3MB8GA1UdIwQYMBaAFDYfraLgqIzyh/TObMO0RiyRMwv8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODM1Ny8xNEE3OEYyQ0RG OEExMUVGODc0NzJCNzRDNEY5QUUwMi9OaC10b3VDb2pQS0g5TTVzdzdSR0xKRXpD X3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05oLXRvdUNvalBLSDlNNXN3N1JHTEpFekNfdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODM1Ny8xNEE3OEYyQ0RGOEExMUVGODc0NzJCNzRDNEY5QUUwMi9OaC10b3VDb2pQ S0g5TTVzdzdSR0xKRXpDX3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcHIL1pt+fq6HwbIm3+xaaJvY448GK/f/6kvCji3pBr/y6/CjDYVbfGR8UXNI I3JUyety2vD2KXnB4aqtxNU9yWRPHjpDEhbXL5DjDCdmhGWGVhqLWB0euTdzJp// llL4Ssmbvwaf3oCqQ4DrzW4slzXHr1X/6B7kcu4acnM/Zn9DBDqrn6Mu3/szA4BI LPj2X+942csmigSkrvaBdz/k+Wh0NvfEawe1Y+fPNuicEO4KMMgSG91Mn9A8q478 IqRqwMP/0oeQWRNumoSQBrEaSo+82dl2eZHfHiJA2aqsSehKWjGrmGgdxETcRilf aC3i64nahMAA+qSlaIzuJlduOQ== -----END CERTIFICATE-----Generated at Mon Mar 2 21:26:02 2026 by rpki-client