$ rpki-client -vvf rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft File: BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft (raw, json) Hash identifier: Wl0v7qYmVahGrMW2IQjKCpqvAnREMRAAdMwBlkC2U7c= Subject key identifier: 5D:04:65:52:47:61:98:F6:32:2E:C8:D2:AD:7E:B7:D4:5B:C0:16:E3 Authority key identifier: 04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D Certificate issuer: /CN=A91238EC/serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Certificate serial: 17E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft Manifest number: 17C9 Signing time: Tue 24 Mar 2026 16:28:21 +0000 Manifest this update: Tue 24 Mar 2026 16:28:21 +0000 Manifest next update: Tue 31 Mar 2026 16:28:21 +0000 Files and hashes: 1: BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl (hash: wlGI7622YycxVv7XJ0P6IrAty7rsmUM05O+/Q72Zcs8=) 2: 2F9D268C76B211ECABA1A612C4F9AE02.roa (hash: uxg1Vz02k9PJduPGV4AMR2b2pATyu+ms5B8uFxBNAz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:28:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6119 (0x17e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238EC, serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Validity Not Before: Mar 24 16:28:21 2026 GMT Not After : Mar 31 16:28:21 2026 GMT Subject: CN=69c2bba5-58ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ff:9a:09:e4:5f:95:66:38:06:e5:a1:ea:1d: 34:26:4d:b9:f8:c5:50:1a:be:2e:fe:5c:b9:b6:49: 23:b0:13:ea:74:56:b3:6f:82:a4:dc:54:12:4f:4c: 2a:16:fd:d6:33:6d:b4:63:f9:28:93:c2:f8:5c:f9: 8a:5f:62:ad:2f:b7:1a:76:98:9f:30:08:b0:6b:cd: 61:38:e2:0b:b5:c5:c6:d1:90:11:39:04:49:32:92: 9f:0b:0e:44:6d:be:f5:6f:38:2d:b1:46:31:d7:c3: c9:97:be:f5:68:45:bf:1d:9e:be:f7:8a:b1:bf:58: 06:ef:2b:2a:35:9e:ee:b0:95:fd:b0:f3:8c:bd:2e: fa:40:b8:b9:2e:5f:c4:c3:84:cb:9e:32:87:7a:5f: 27:68:c6:c2:1e:5d:c5:e9:fa:ed:9c:6d:2e:d2:a9: f2:54:83:00:31:a8:db:08:1d:d3:39:85:72:6a:51: 02:8e:49:af:f0:7b:b7:10:ac:41:09:53:8b:3e:8a: b4:3d:69:8c:47:2f:50:0c:b9:b4:2d:f7:c7:88:93: b3:d6:66:2e:09:45:1f:71:4f:7a:d6:21:7a:0e:73: 1b:7c:74:eb:36:c5:52:54:44:14:5a:85:52:41:1e: 39:bb:95:6b:23:e2:54:e0:93:57:35:84:c4:08:0e: bf:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:04:65:52:47:61:98:F6:32:2E:C8:D2:AD:7E:B7:D4:5B:C0:16:E3 X509v3 Authority Key Identifier: keyid:04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:cc:47:b9:22:1d:6a:f6:d8:22:20:aa:c4:6d:fc:0a:bd:9e: 06:58:7e:a3:c2:e8:fd:6a:5b:2a:ce:6a:5e:d0:ef:ba:18:a1: 62:c0:74:7c:42:76:72:8c:89:3f:1c:d3:b6:2c:50:dd:97:44: 94:92:bf:22:c7:01:ff:dc:ef:07:24:08:26:61:67:c3:5c:5f: f7:46:08:95:0d:4c:50:9c:e2:68:e9:2e:8e:fd:76:02:a2:4c: 8f:d3:17:4e:07:96:d9:fc:98:3e:7a:36:84:0d:ae:56:58:98: cc:6a:c0:a8:e9:cc:91:74:2f:a0:f3:fd:d2:a2:56:53:50:6d: 05:ca:35:8d:00:f1:02:db:25:81:9d:78:48:71:9b:26:04:d9: 09:63:0f:f7:c3:5d:1c:22:ad:69:c0:ab:76:7e:8b:46:41:e7: 0c:48:f2:c6:58:b3:2d:f7:f3:b2:8d:52:35:0e:19:a4:5f:70: 20:14:20:9d:14:b4:c0:3c:f3:69:50:bc:41:4c:89:fc:14:08: 37:a9:99:ac:30:09:20:c7:ef:bf:d4:2b:12:e4:54:94:f6:e3: 84:e0:60:e7:8a:6b:5f:ba:d8:ee:3d:2e:80:c3:66:84:f8:8c: f4:24:7e:5b:5a:95:d9:d8:9a:61:ac:17:51:15:f2:c0:71:38: 47:87:19:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICF+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RUMxMTAvBgNVBAUTKDA0ODMyRkJFNzBDN0I4ODU5Q0ExQTBFM0UwNUEyOTZC QjA5QzVEM0QwHhcNMjYwMzI0MTYyODIxWhcNMjYwMzMxMTYyODIxWjAYMRYwFAYD VQQDEw02OWMyYmJhNS01OGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzf+aCeRflWY4BuWh6h00Jk25+MVQGr4u/ly5tkkjsBPqdFazb4Kk3FQST0wq Fv3WM220Y/kok8L4XPmKX2KtL7cadpifMAiwa81hOOILtcXG0ZAROQRJMpKfCw5E bb71bzgtsUYx18PJl771aEW/HZ6+94qxv1gG7ysqNZ7usJX9sPOMvS76QLi5Ll/E w4TLnjKHel8naMbCHl3F6frtnG0u0qnyVIMAMajbCB3TOYVyalECjkmv8Hu3EKxB CVOLPoq0PWmMRy9QDLm0LffHiJOz1mYuCUUfcU961iF6DnMbfHTrNsVSVEQUWoVS QR45u5VrI+JU4JNXNYTECA6/uQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF0EZVJH YZj2Mi7I0q1+t9RbwBbjMB8GA1UdIwQYMBaAFASDL75wx7iFnKGg4+BaKWuwnF09 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhFQy82MUQ0RjQ4QUUz RTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJV2NvYURqNEZvcGE3Q2NY VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJTXZ2bkRIdUlXY29hRGo0Rm9wYTdDY1hUMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhFQy82MUQ0RjQ4QUUzRTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJ V2NvYURqNEZvcGE3Q2NYVDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARMxHuSIdavbYIiCqxG38Cr2eBlh+o8Lo/WpbKs5qXtDvuhihYsB0fEJ2coyJ PxzTtixQ3ZdElJK/IscB/9zvByQIJmFnw1xf90YIlQ1MUJziaOkujv12AqJMj9MX TgeW2fyYPno2hA2uVliYzGrAqOnMkXQvoPP90qJWU1BtBco1jQDxAtslgZ14SHGb JgTZCWMP98NdHCKtacCrdn6LRkHnDEjyxlizLffzso1SNQ4ZpF9wIBQgnRS0wDzz aVC8QUyJ/BQIN6mZrDAJIMfvv9QrEuRUlPbjhOBg54prX7rY7j0ugMNmhPiM9CR+ W1qV2diaYawXURXywHE4R4cZeQ== -----END CERTIFICATE-----Generated at Thu Mar 26 11:10:02 2026 by rpki-client