$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft File: NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft (raw, json) Hash identifier: +mFdAetrWs+ZvkuJFBEK2Ov9P8qqyla8J3FkBKUBgpY= Subject key identifier: E8:59:7A:CF:D9:41:43:D7:A5:49:7F:30:E2:96:F7:D5:E5:9F:BD:4C Authority key identifier: 34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 Certificate issuer: /CN=A91FA562/serialNumber=340F813433719A760E3BFE21933687261179C327 Certificate serial: 0205 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft Manifest number: 01FF Signing time: Sun 01 Mar 2026 23:44:00 +0000 Manifest this update: Sun 01 Mar 2026 23:43:59 +0000 Manifest next update: Sun 08 Mar 2026 23:43:59 +0000 Files and hashes: 1: NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl (hash: aGcb8zqSkB1BWt10aYnZj/3DylhUteL4ULGbAAx0TQU=) 2: 7588035C913E11EFB46E9A72C4F9AE02.roa (hash: MmWRFerEe26M/98UPURwOZll8JnafXZbQUp9p9WdUVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:43:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 517 (0x205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA562, serialNumber=340F813433719A760E3BFE21933687261179C327 Validity Not Before: Mar 1 23:43:59 2026 GMT Not After : Mar 8 23:43:59 2026 GMT Subject: CN=69a4cf40-e39f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:0a:2c:47:d1:84:50:ca:b9:09:49:29:06:e7: fb:1a:6f:e8:9a:a5:3f:44:46:d5:31:07:1b:67:54: e0:d0:8a:6d:6b:7e:b1:19:e5:e8:e7:dd:a5:7b:4a: 50:1a:d2:7d:b4:2c:f7:14:70:9a:47:c4:08:97:6e: 2e:1e:7f:43:b8:37:20:e7:0a:8e:52:b6:9a:f1:b8: e1:a5:6f:1b:81:5d:3e:14:a9:77:71:55:77:af:55: 80:00:7d:c4:a2:5f:11:9c:ed:b3:ef:71:b3:3e:82: e0:ea:a1:c5:a9:3d:74:58:c9:2d:1b:aa:24:a1:1a: f5:e4:2a:f6:eb:9c:6b:78:5f:7c:f0:ac:dd:e1:48: 4f:50:62:e7:a7:6c:ca:18:54:bd:fd:cd:ab:3c:d4: ff:f5:14:ca:7f:d4:c0:83:91:1f:67:1b:0e:ba:6a: 60:1b:6c:84:27:2f:87:46:cc:7b:9a:67:be:bc:76: 24:43:99:c4:42:13:4c:44:e1:8a:de:14:bd:ed:c2: 68:36:fe:bc:1d:75:3d:7b:11:db:c9:65:3b:9d:81: 97:f5:3c:7e:5c:dd:08:8d:34:16:ea:74:e2:d1:a8: 6a:e7:37:e5:d4:98:30:5e:2d:a7:8f:7b:6b:af:c9: 95:66:c6:7e:3f:f4:60:fa:48:c1:9b:14:46:af:70: 25:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:59:7A:CF:D9:41:43:D7:A5:49:7F:30:E2:96:F7:D5:E5:9F:BD:4C X509v3 Authority Key Identifier: keyid:34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:e9:f3:ca:be:44:84:9c:1b:d5:7e:81:4f:b9:1e:26:0f:76: 23:6d:6d:6e:74:02:99:12:a1:0e:8a:85:41:a1:ee:fb:6d:f8: ae:57:be:bb:6f:2e:63:c7:b4:62:56:37:a3:a7:6c:32:05:e3: 3d:da:33:27:b2:87:54:44:ef:07:df:34:d1:6e:83:35:34:12: 69:8e:50:e9:eb:10:8d:17:7b:9d:82:51:d1:e4:54:89:c8:24: 3f:66:7b:97:1e:a4:f9:8f:c4:34:7f:8b:a8:14:49:6d:d0:c8: 11:fa:4e:eb:20:16:78:48:85:82:69:96:ea:d2:bb:47:1c:2b: e9:5e:23:bf:1d:14:7f:c9:7a:d4:07:32:a7:31:c1:5a:4d:a8: 0f:e5:85:5d:a6:6d:78:4a:b6:9d:b9:4c:58:92:20:31:95:e4: ad:50:b9:06:f9:4d:4f:e3:1c:b0:a0:80:36:48:68:0d:18:ab: ad:6d:0d:fc:94:c5:a7:28:a9:96:a4:87:78:72:e9:6b:f7:ae: 45:03:3d:ed:b4:a2:ad:d1:3b:9b:91:c6:f4:6f:33:c0:79:c6: 03:e4:70:6d:b0:3d:31:9e:37:ea:81:5b:1e:e3:2a:b6:ac:7a: 3b:9d:f3:ab:5e:b5:72:1f:09:4f:13:ec:f1:e1:71:e2:ad:6f: be:20:11:d0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1NjIxMTAvBgNVBAUTKDM0MEY4MTM0MzM3MTlBNzYwRTNCRkUyMTkzMzY4NzI2 MTE3OUMzMjcwHhcNMjYwMzAxMjM0MzU5WhcNMjYwMzA4MjM0MzU5WjAYMRYwFAYD VQQDEw02OWE0Y2Y0MC1lMzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAogosR9GEUMq5CUkpBuf7Gm/omqU/REbVMQcbZ1Tg0Ipta36xGeXo592le0pQ GtJ9tCz3FHCaR8QIl24uHn9DuDcg5wqOUraa8bjhpW8bgV0+FKl3cVV3r1WAAH3E ol8RnO2z73GzPoLg6qHFqT10WMktG6okoRr15Cr265xreF988Kzd4UhPUGLnp2zK GFS9/c2rPNT/9RTKf9TAg5EfZxsOumpgG2yEJy+HRsx7mme+vHYkQ5nEQhNMROGK 3hS97cJoNv68HXU9exHbyWU7nYGX9Tx+XN0IjTQW6nTi0ahq5zfl1JgwXi2nj3tr r8mVZsZ+P/Rg+kjBmxRGr3Al5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOhZes/Z QUPXpUl/MOKW99Xln71MMB8GA1UdIwQYMBaAFDQPgTQzcZp2Djv+IZM2hyYRecMn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTU2Mi8yNjU3RjczRTBC QzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1uWU9PXzRoa3phSEpoRjV3 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BLUJORE54bW5ZT09fNGhremFISmhGNXd5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTU2Mi8yNjU3RjczRTBCQzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1u WU9PXzRoa3phSEpoRjV3eWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAc+nzyr5EhJwb1X6BT7keJg92I21tbnQCmRKhDoqFQaHu+234rle+u28uY8e0 YlY3o6dsMgXjPdozJ7KHVETvB9800W6DNTQSaY5Q6esQjRd7nYJR0eRUicgkP2Z7 lx6k+Y/ENH+LqBRJbdDIEfpO6yAWeEiFgmmW6tK7Rxwr6V4jvx0Uf8l61AcypzHB Wk2oD+WFXaZteEq2nblMWJIgMZXkrVC5BvlNT+McsKCANkhoDRirrW0N/JTFpyip lqSHeHLpa/euRQM97bSirdE7m5HG9G8zwHnGA+RwbbA9MZ436oFbHuMqtqx6O53z q161ch8JTxPs8eFx4q1vviAR0A== -----END CERTIFICATE-----Generated at Mon Mar 2 12:51:11 2026 by rpki-client