$ rpki-client -vvf rpki.apnic.net/member_repository/A91357FC/884572D4BDF911F0B3E0526CC4F9AE02/k-bMnLyUxrTox9mGQYMN5mORud8.mft File: k-bMnLyUxrTox9mGQYMN5mORud8.mft (raw, json) Hash identifier: 34OCwY/mZd748CbJmFhD+EMTZH96nmuLrjypKwTpWVw= Subject key identifier: 32:DD:35:DF:B5:BF:55:09:91:81:55:F6:2C:C3:6D:B9:30:54:61:0C Authority key identifier: 93:E6:CC:9C:BC:94:C6:B4:E8:C7:D9:86:41:83:0D:E6:63:91:B9:DF Certificate issuer: /CN=A91357FC/serialNumber=93E6CC9CBC94C6B4E8C7D98641830DE66391B9DF Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k-bMnLyUxrTox9mGQYMN5mORud8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91357FC/884572D4BDF911F0B3E0526CC4F9AE02/k-bMnLyUxrTox9mGQYMN5mORud8.mft Manifest number: 47 Signing time: Wed 25 Mar 2026 07:30:22 +0000 Manifest this update: Wed 25 Mar 2026 07:30:22 +0000 Manifest next update: Wed 01 Apr 2026 07:30:22 +0000 Files and hashes: 1: k-bMnLyUxrTox9mGQYMN5mORud8.crl (hash: W0c/IHtWjV6wxlRML/mIkZg4n4yrgvISQqeZT0rzvLQ=) 2: 115DA80CBDFA11F0AC07856DC4F9AE02.roa (hash: W13G9UJDUOXNhE35H+xQmcCjaFGO3pjeXgy05QF6k+E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91357FC/884572D4BDF911F0B3E0526CC4F9AE02/k-bMnLyUxrTox9mGQYMN5mORud8.crl rsync://rpki.apnic.net/member_repository/A91357FC/884572D4BDF911F0B3E0526CC4F9AE02/k-bMnLyUxrTox9mGQYMN5mORud8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k-bMnLyUxrTox9mGQYMN5mORud8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:30:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91357FC, serialNumber=93E6CC9CBC94C6B4E8C7D98641830DE66391B9DF Validity Not Before: Mar 25 07:30:22 2026 GMT Not After : Apr 1 07:30:22 2026 GMT Subject: CN=69c38f0e-e789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ef:cc:a9:66:63:16:5f:6f:3a:4e:00:74:96: 76:d5:cc:e0:3d:3b:36:ba:6f:37:07:4d:37:e9:6d: 98:e5:9b:ff:a1:91:09:09:7f:d4:bb:43:78:1d:01: 72:06:94:71:08:06:5b:d3:41:a4:e5:7f:49:d2:ee: dd:d0:5d:d3:10:15:91:3d:52:90:47:82:2c:d5:cc: e3:c7:0f:76:35:18:55:de:15:26:27:f1:c2:b3:51: 78:ad:32:ec:cd:cd:27:b8:76:0d:64:de:fb:f6:cc: 24:09:44:31:a0:c8:e5:73:a3:39:e6:19:5d:32:df: 30:17:48:fc:86:b6:fb:28:ad:17:01:53:37:72:6d: 30:ad:30:67:ee:6f:54:58:4a:9d:db:d3:75:0d:8c: 4d:5a:70:16:de:ef:e3:c2:1e:b2:93:b6:6a:b7:bf: 29:5f:22:3d:f2:d5:73:12:81:ae:46:81:8c:62:40: ea:0e:9d:99:66:be:d9:df:8f:7c:32:4b:81:d2:1a: 6a:a7:52:85:b7:0d:cf:30:83:ca:77:cd:7b:4f:06: 77:d2:e7:15:6b:47:fc:e1:72:e1:c6:92:5d:ac:5d: d2:c2:22:ca:46:2d:dc:05:44:34:0e:4b:ad:d4:85: 96:7b:36:e4:4a:9e:f2:f2:72:1b:0f:cc:ca:21:81: ca:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:DD:35:DF:B5:BF:55:09:91:81:55:F6:2C:C3:6D:B9:30:54:61:0C X509v3 Authority Key Identifier: keyid:93:E6:CC:9C:BC:94:C6:B4:E8:C7:D9:86:41:83:0D:E6:63:91:B9:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91357FC/884572D4BDF911F0B3E0526CC4F9AE02/k-bMnLyUxrTox9mGQYMN5mORud8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k-bMnLyUxrTox9mGQYMN5mORud8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91357FC/884572D4BDF911F0B3E0526CC4F9AE02/k-bMnLyUxrTox9mGQYMN5mORud8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:5b:81:7a:ce:5d:03:8e:7f:9c:ce:8d:a6:ee:33:20:5c:48: 34:e6:2b:93:43:03:8f:54:a2:31:b0:4c:67:74:3f:39:19:5a: 14:68:a2:53:64:3e:10:fa:e9:84:53:dc:11:95:f1:86:1a:81: bf:2a:3b:56:c8:83:43:d4:37:5b:5b:da:53:1c:e2:9e:16:4e: 2b:54:14:42:4b:b3:01:83:8b:16:d5:74:d8:2b:04:a1:85:84: 20:62:f5:e3:44:9b:23:07:29:11:1d:33:c1:81:13:47:fb:d3: 58:73:77:39:c4:89:e0:34:75:c6:08:f2:82:1f:b2:03:01:64: ed:4f:98:c3:56:d1:e6:e5:b7:58:fe:c2:8a:81:ab:73:04:b1: 01:af:53:ac:a3:dc:d4:e7:12:88:e0:56:e0:81:d2:d1:28:86: 51:d1:8d:f2:4a:ee:9f:56:5a:eb:71:f0:18:e7:d2:fb:45:e0: 68:b3:a2:a5:d0:af:a5:7e:3c:2b:df:55:45:ff:4b:3b:34:16: 79:15:8c:19:b1:b6:98:dc:54:45:3d:37:01:44:ff:a1:1a:3b: fc:d0:1b:0e:51:71:dc:9c:a2:c1:61:96:b9:b6:b0:5d:e3:5a: f7:36:46:77:24:f2:20:9a:2f:17:b8:fa:74:c4:6c:0b:85:df: cd:28:97:ba -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NTdGQzExMC8GA1UEBRMoOTNFNkNDOUNCQzk0QzZCNEU4QzdEOTg2NDE4MzBERTY2 MzkxQjlERjAeFw0yNjAzMjUwNzMwMjJaFw0yNjA0MDEwNzMwMjJaMBgxFjAUBgNV BAMTDTY5YzM4ZjBlLWU3ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCj78ypZmMWX286TgB0lnbVzOA9Oza6bzcHTTfpbZjlm/+hkQkJf9S7Q3gdAXIG lHEIBlvTQaTlf0nS7t3QXdMQFZE9UpBHgizVzOPHD3Y1GFXeFSYn8cKzUXitMuzN zSe4dg1k3vv2zCQJRDGgyOVzoznmGV0y3zAXSPyGtvsorRcBUzdybTCtMGfub1RY Sp3b03UNjE1acBbe7+PCHrKTtmq3vylfIj3y1XMSga5GgYxiQOoOnZlmvtnfj3wy S4HSGmqnUoW3Dc8wg8p3zXtPBnfS5xVrR/zhcuHGkl2sXdLCIspGLdwFRDQOS63U hZZ7NuRKnvLychsPzMohgcrZAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUMt0137W/ VQmRgVX2LMNtuTBUYQwwHwYDVR0jBBgwFoAUk+bMnLyUxrTox9mGQYMN5mORud8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM1N0ZDLzg4NDU3MkQ0QkRG OTExRjBCM0UwNTI2Q0M0RjlBRTAyL2stYk1uTHlVeHJUb3g5bUdRWU1ONW1PUnVk OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvay1iTW5MeVV4clRveDltR1FZTU41bU9SdWQ4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM1 N0ZDLzg4NDU3MkQ0QkRGOTExRjBCM0UwNTI2Q0M0RjlBRTAyL2stYk1uTHlVeHJU b3g5bUdRWU1ONW1PUnVkOC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQC4W4F6zl0Djn+czo2m7jMgXEg05iuTQwOPVKIxsExndD85GVoUaKJTZD4Q+umE U9wRlfGGGoG/KjtWyIND1DdbW9pTHOKeFk4rVBRCS7MBg4sW1XTYKwShhYQgYvXj RJsjBykRHTPBgRNH+9NYc3c5xIngNHXGCPKCH7IDAWTtT5jDVtHm5bdY/sKKgatz BLEBr1Oso9zU5xKI4FbggdLRKIZR0Y3ySu6fVlrrcfAY59L7ReBos6Kl0K+lfjwr 31VF/0s7NBZ5FYwZsbaY3FRFPTcBRP+hGjv80BsOUXHcnKLBYZa5trBd41r3NkZ3 JPIgmi8XuPp0xGwLhd/NKJe6 -----END CERTIFICATE-----Generated at Thu Mar 26 19:07:19 2026 by rpki-client