$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft File: NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft (raw, json) Hash identifier: +rTWSzAwjSNnwopB43nR4Z2mvKMDo2l4r/ErfDQxA2o= Subject key identifier: E7:04:1E:54:52:B3:B4:B3:06:30:27:F3:BE:63:81:62:6E:2C:36:E7 Authority key identifier: 34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 Certificate issuer: /CN=A91FA562/serialNumber=340F813433719A760E3BFE21933687261179C327 Certificate serial: 021D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft Manifest number: 0217 Signing time: Fri 17 Apr 2026 02:39:07 +0000 Manifest this update: Fri 17 Apr 2026 02:39:06 +0000 Manifest next update: Fri 24 Apr 2026 02:39:06 +0000 Files and hashes: 1: NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl (hash: WmACCj6qpcZrOHguhFVeDIqFuktrYteqtbSAlK/JpT8=) 2: 7588035C913E11EFB46E9A72C4F9AE02.roa (hash: MmWRFerEe26M/98UPURwOZll8JnafXZbQUp9p9WdUVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:39:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 541 (0x21d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA562, serialNumber=340F813433719A760E3BFE21933687261179C327 Validity Not Before: Apr 17 02:39:06 2026 GMT Not After : Apr 24 02:39:06 2026 GMT Subject: CN=69e19d4a-8d3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:9f:46:fc:ac:75:10:2e:d6:e3:58:4d:16:44: fb:fe:5b:45:d2:87:dd:a7:94:cc:f5:fc:1c:d0:23: 30:c2:f2:2d:05:b0:da:05:43:8c:7c:b3:86:ff:59: e1:95:72:d9:17:6e:a4:e8:d6:19:d9:d1:12:c5:fa: 3a:42:47:30:12:f2:91:39:df:aa:3a:4b:ce:c3:df: d4:94:c5:fe:9e:e8:07:2c:b8:1a:7a:59:d5:34:c0: 3a:a7:9f:a1:05:79:d0:5e:6d:49:27:99:9e:b8:a4: a2:9a:66:d2:fc:a8:72:30:95:91:0b:ec:65:2c:40: cb:28:43:9d:f4:41:09:90:57:6c:72:a1:1d:61:cd: 9f:56:25:36:03:f9:95:b3:e8:02:6a:09:3e:ac:2d: 9a:52:94:3f:28:4f:1d:58:30:59:ad:19:d6:7e:f6: 46:2e:5f:14:84:0a:f6:56:fd:9c:51:20:bf:f4:e6: df:fc:b0:c2:12:16:91:83:cc:76:76:04:74:d0:24: 53:64:e4:5b:55:74:53:17:a7:6e:6c:09:cd:7e:ee: 32:75:b3:ab:ed:6d:15:d5:06:2a:80:72:30:86:c4: de:70:64:40:f1:70:93:06:a9:4e:77:5f:eb:cf:24: a2:dc:a1:1a:53:2c:32:aa:2f:bd:33:12:ae:a5:6f: 3c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:04:1E:54:52:B3:B4:B3:06:30:27:F3:BE:63:81:62:6E:2C:36:E7 X509v3 Authority Key Identifier: keyid:34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:fb:c2:c7:da:22:0c:ce:ae:e5:1b:00:7c:77:fe:55:50:04: 4b:46:ad:1d:ef:46:b1:d4:ff:b3:3a:3b:72:cd:fd:e9:a6:4b: f3:67:13:92:03:10:ec:eb:03:32:9b:70:c9:39:63:be:72:1a: c8:85:b2:a5:31:16:60:7c:a6:e7:8a:7a:cc:c1:87:01:ee:37: 0c:db:1c:ad:f4:65:d4:9a:20:ac:04:be:81:7e:01:9e:b5:20: da:d2:07:e5:e8:46:0f:07:85:47:64:9e:b9:6e:07:ab:3c:6f: ed:86:3e:d7:7d:d3:28:e5:ef:54:7a:d6:2d:92:30:6f:26:a7: 6f:c7:d6:de:12:ad:85:d1:80:da:6b:c1:fb:1e:cb:eb:fd:15: b6:40:ef:50:ec:43:88:0a:a5:73:cd:b5:c8:7c:58:34:fa:bb: 09:7c:fc:9d:ea:90:28:5a:7b:f4:2d:f0:8e:cc:d8:c4:52:9f: e8:70:d8:8b:26:ba:75:48:d4:95:d0:fb:f5:51:28:92:16:31: d4:30:a1:21:c2:0d:47:a8:7e:0c:8e:cd:0f:08:c2:6a:37:be: e1:26:63:67:ab:ac:e9:57:e0:f3:74:dd:67:64:d4:52:86:73: a5:e0:c8:c2:0d:21:fb:c4:9f:7d:1c:03:a0:88:f9:2c:0f:5a: ec:48:c8:70 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1NjIxMTAvBgNVBAUTKDM0MEY4MTM0MzM3MTlBNzYwRTNCRkUyMTkzMzY4NzI2 MTE3OUMzMjcwHhcNMjYwNDE3MDIzOTA2WhcNMjYwNDI0MDIzOTA2WjAYMRYwFAYD VQQDEw02OWUxOWQ0YS04ZDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2p9G/Kx1EC7W41hNFkT7/ltF0ofdp5TM9fwc0CMwwvItBbDaBUOMfLOG/1nh lXLZF26k6NYZ2dESxfo6QkcwEvKROd+qOkvOw9/UlMX+nugHLLgaelnVNMA6p5+h BXnQXm1JJ5meuKSimmbS/KhyMJWRC+xlLEDLKEOd9EEJkFdscqEdYc2fViU2A/mV s+gCagk+rC2aUpQ/KE8dWDBZrRnWfvZGLl8UhAr2Vv2cUSC/9Obf/LDCEhaRg8x2 dgR00CRTZORbVXRTF6dubAnNfu4ydbOr7W0V1QYqgHIwhsTecGRA8XCTBqlOd1/r zySi3KEaUywyqi+9MxKupW881QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOcEHlRS s7SzBjAn875jgWJuLDbnMB8GA1UdIwQYMBaAFDQPgTQzcZp2Djv+IZM2hyYRecMn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTU2Mi8yNjU3RjczRTBC QzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1uWU9PXzRoa3phSEpoRjV3 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BLUJORE54bW5ZT09fNGhremFISmhGNXd5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTU2Mi8yNjU3RjczRTBCQzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1u WU9PXzRoa3phSEpoRjV3eWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAw/vCx9oiDM6u5RsAfHf+VVAES0atHe9GsdT/szo7cs396aZL82cTkgMQ7OsD MptwyTljvnIayIWypTEWYHym54p6zMGHAe43DNscrfRl1JogrAS+gX4BnrUg2tIH 5ehGDweFR2SeuW4Hqzxv7YY+133TKOXvVHrWLZIwbyanb8fW3hKthdGA2mvB+x7L 6/0VtkDvUOxDiAqlc821yHxYNPq7CXz8neqQKFp79C3wjszYxFKf6HDYiya6dUjU ldD79VEokhYx1DChIcINR6h+DI7NDwjCaje+4SZjZ6us6Vfg83TdZ2TUUoZzpeDI wg0h+8SffRwDoIj5LA9a7EjIcA== -----END CERTIFICATE-----Generated at Fri Apr 17 18:31:52 2026 by rpki-client