$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft File: BN7ay9uvpcHBT5KBe5b39QMQCig.mft (raw, json) Hash identifier: WAzEc6sQxAKcD2Rw1pF3a6ZSjz45HAHrL4saunJykY8= Subject key identifier: 15:D3:0E:7A:B8:D7:54:A2:55:EF:5E:A5:1C:86:A6:E5:57:8B:D4:AD Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: 015E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft Manifest number: 0154 Signing time: Wed 25 Mar 2026 04:20:08 +0000 Manifest this update: Wed 25 Mar 2026 04:20:07 +0000 Manifest next update: Wed 01 Apr 2026 04:20:07 +0000 Files and hashes: 1: BN7ay9uvpcHBT5KBe5b39QMQCig.crl (hash: dkw0i+7wbN28y3lzZKscgVm0wOOkA/5/8wIBnff2gvw=) 2: 09EC8E16662211EFB6FA446CC4F9AE02.roa (hash: b75sAYMEIXYdDT25gmVHvykzgLoZpS+x22joZCKSsl4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:20:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 350 (0x15e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36, serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: Mar 25 04:20:07 2026 GMT Not After : Apr 1 04:20:07 2026 GMT Subject: CN=69c36278-99ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:dd:29:7c:03:62:99:17:5a:f9:a0:38:0e:7c: f5:74:14:86:2c:68:a5:8f:90:9f:4c:60:22:e9:be: 97:5d:cf:f1:54:a2:49:87:4c:da:9f:3a:bf:e7:60: f0:c7:64:21:0e:dc:97:85:17:f3:0f:6f:f6:3e:a3: 25:1b:52:d8:53:ee:98:9f:04:4e:a6:0b:74:b0:20: e4:ff:2c:a4:9e:9c:21:4c:24:e5:fa:7c:a5:da:d2: c2:17:68:8a:68:15:65:4b:34:aa:ae:85:d9:48:0a: aa:89:24:8d:da:60:e1:0e:24:19:ce:b1:71:f8:8c: b3:aa:15:7b:d1:7e:e7:02:75:bb:64:9c:89:44:35: 9a:b7:b5:d8:95:77:0b:ee:92:4a:38:22:aa:20:fc: eb:ce:21:54:51:02:01:c7:ac:8c:2f:77:8f:36:e2: 22:83:3b:bd:9d:bf:6e:4e:39:86:b8:20:96:5f:f0: a3:2e:ac:c7:11:1a:c5:4a:26:fa:cd:63:1f:71:30: 98:33:5a:91:12:09:ff:21:37:08:5a:c3:c2:b0:75: 0b:5d:fa:b6:f5:81:fd:93:1d:70:b1:aa:29:1a:a4: 40:28:80:9b:6c:f0:c2:fe:2d:33:05:30:5d:9f:eb: d3:5f:6c:c3:a1:5a:17:60:9f:e7:e3:b2:83:fd:a9: da:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:D3:0E:7A:B8:D7:54:A2:55:EF:5E:A5:1C:86:A6:E5:57:8B:D4:AD X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:3f:a3:54:1b:ba:d0:9e:46:80:ec:46:59:2d:2a:df:8b:b8: e3:b5:43:49:8f:bc:51:3a:33:b7:a7:4e:48:30:6b:b7:b4:84: e4:4a:dd:a7:b7:3a:e9:55:79:ad:a5:46:ae:90:c8:e0:25:2a: 6b:2b:b5:c3:d9:41:fd:44:ec:1a:c6:af:6f:89:3f:d3:f7:86: 8f:d4:af:83:8d:54:2f:ed:d0:78:f3:38:3c:e9:6f:b8:1e:42: 96:05:3c:39:2c:d9:ba:51:22:5a:ce:d1:0d:e7:cf:8a:b4:cc: 67:7a:52:5f:ed:e9:d4:6c:f9:fd:5e:0f:15:3f:66:c5:31:fb: 41:c2:2e:b8:76:6c:98:6d:45:d2:c7:26:b6:4a:dc:1d:43:dd: 35:32:b9:37:6f:f9:8d:25:d5:2d:4c:f9:63:c2:45:ab:6d:3f: dd:97:fd:eb:e8:c8:02:17:09:03:57:19:ee:b2:59:e8:55:79: ac:76:ba:85:e0:cd:d7:4f:44:27:fe:af:b4:21:55:a6:2b:36: 55:d5:a1:06:55:94:1b:05:c8:5d:f0:14:65:b3:7e:3f:a9:79: 02:e0:77:68:83:a8:07:be:85:d0:a5:f5:b6:80:77:94:e6:42: 62:a8:56:7c:f9:f8:a9:19:16:43:f0:4d:5a:54:6e:80:bc:b4: 58:ee:9a:9e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMzYxMTAvBgNVBAUTKDA0REVEQUNCREJBRkE1QzFDMTRGOTI4MTdCOTZGN0Y1 MDMxMDBBMjgwHhcNMjYwMzI1MDQyMDA3WhcNMjYwNDAxMDQyMDA3WjAYMRYwFAYD VQQDEw02OWMzNjI3OC05OWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyd0pfANimRda+aA4Dnz1dBSGLGilj5CfTGAi6b6XXc/xVKJJh0zanzq/52Dw x2QhDtyXhRfzD2/2PqMlG1LYU+6YnwROpgt0sCDk/yyknpwhTCTl+nyl2tLCF2iK aBVlSzSqroXZSAqqiSSN2mDhDiQZzrFx+IyzqhV70X7nAnW7ZJyJRDWat7XYlXcL 7pJKOCKqIPzrziFUUQIBx6yML3ePNuIigzu9nb9uTjmGuCCWX/CjLqzHERrFSib6 zWMfcTCYM1qREgn/ITcIWsPCsHULXfq29YH9kx1wsaopGqRAKICbbPDC/i0zBTBd n+vTX2zDoVoXYJ/n47KD/ana4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBXTDnq4 11SiVe9epRyGpuVXi9StMB8GA1UdIwQYMBaAFATe2svbr6XBwU+SgXuW9/UDEAoo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQzNi83RjQwMjNGMjI1 MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBjSEJUNUtCZTViMzlRTVFD aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQzNi83RjQwMjNGMjI1MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBj SEJUNUtCZTViMzlRTVFDaWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANT+jVBu60J5GgOxGWS0q34u447VDSY+8UTozt6dOSDBrt7SE5Erdp7c66VV5 raVGrpDI4CUqayu1w9lB/UTsGsavb4k/0/eGj9Svg41UL+3QePM4POlvuB5ClgU8 OSzZulEiWs7RDefPirTMZ3pSX+3p1Gz5/V4PFT9mxTH7QcIuuHZsmG1F0scmtkrc HUPdNTK5N2/5jSXVLUz5Y8JFq20/3Zf96+jIAhcJA1cZ7rJZ6FV5rHa6heDN109E J/6vtCFVpis2VdWhBlWUGwXIXfAUZbN+P6l5AuB3aIOoB76F0KX1toB3lOZCYqhW fPn4qRkWQ/BNWlRugLy0WO6ang== -----END CERTIFICATE-----Generated at Thu Mar 26 07:19:00 2026 by rpki-client