$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: qOFBcjDxgc5AXr2anYByKPG4CIRqVUpZci4LRES9XLY= Subject key identifier: 6A:38:74:C4:6D:54:15:63:93:B5:BA:9D:5E:3E:A1:E7:53:B4:AD:71 Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 01E9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 01E4 Signing time: Wed 25 Mar 2026 02:44:35 +0000 Manifest this update: Wed 25 Mar 2026 02:44:35 +0000 Manifest next update: Wed 01 Apr 2026 02:44:35 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: P6L6R7AYRSG8kvWcEItDLGILzfvlBkhOCBXipo4SJS0=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: MzBqBNOieBSY9GInzC0v3uqqkT/gsysN6ytNDyiS4fg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:44:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 489 (0x1e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F, serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Mar 25 02:44:35 2026 GMT Not After : Apr 1 02:44:35 2026 GMT Subject: CN=69c34c13-a771 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4f:51:50:90:5b:bd:3d:b9:51:4d:f6:3b:3e: 77:3e:07:9f:39:4b:bf:a0:ff:ae:b4:45:3e:96:1f: 3d:dd:2b:d0:31:94:b6:f6:11:96:ef:58:93:85:47: e5:c6:ad:cc:08:aa:a4:7d:d7:64:29:7a:6d:a9:cf: 7c:86:12:71:94:42:19:aa:fe:44:cb:e4:c1:43:d2: 0d:8b:c5:68:9a:7a:7d:3f:5e:96:ce:2d:ba:68:0d: 81:97:c9:df:65:52:38:ba:9c:74:de:73:95:e1:8d: 18:44:cf:95:0b:06:64:32:27:d7:c0:d1:47:1c:d4: 98:09:ab:3b:ae:4d:f6:6c:a6:46:6c:ce:64:86:c0: 64:a7:4d:4f:ca:76:28:a4:00:2b:93:75:8c:be:dd: 5e:68:de:77:c1:2e:65:04:28:e1:e6:69:e3:1a:c9: cf:17:72:87:3a:6d:48:79:fd:38:84:8d:f3:5f:16: b1:ed:08:2a:2a:43:f1:c4:90:94:b1:40:1d:09:07: 58:76:78:ff:4a:22:cf:15:9f:1f:ff:c4:bf:ae:6c: 36:62:f8:82:46:2f:a8:cb:c6:5e:fd:5d:1b:9b:ff: d2:78:9a:73:8c:6e:80:af:e1:4e:1e:c0:29:28:89: 3d:5e:55:ce:ea:10:a9:60:78:3f:cc:fe:53:ff:28: 04:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:38:74:C4:6D:54:15:63:93:B5:BA:9D:5E:3E:A1:E7:53:B4:AD:71 X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:ef:f3:4a:6e:e0:c5:25:9e:0d:a9:a5:99:42:71:67:08:5a: 27:87:8c:ff:27:cd:ef:4e:af:55:70:51:f3:44:b8:59:cd:c5: b6:96:58:2a:cc:94:0a:59:51:41:4b:42:25:e7:8f:9a:66:ee: 3e:2e:a7:43:dd:bf:36:aa:2e:53:de:4e:bc:07:39:9f:00:a3: 3a:a8:49:21:cb:38:91:06:32:45:6e:0a:00:50:fd:d5:0d:41: 2c:87:39:a4:af:76:1b:e1:e9:c0:50:f1:03:8c:fa:af:76:c0: 92:3e:fb:ae:bf:89:a8:9b:f9:68:90:54:6a:d3:a0:3b:b2:66: 3a:99:1b:09:15:bd:7f:3b:4e:04:5a:0c:eb:7b:ad:2d:60:b5: b5:a8:e1:94:34:4c:64:ee:b3:c2:6a:ad:c7:26:75:07:48:7d: a9:e9:30:7d:e9:75:cb:81:33:ee:40:d7:d2:e9:72:ed:63:81: ee:f3:5b:90:de:99:f5:a8:2d:04:1d:1c:85:51:e9:db:2a:c3: 15:48:9e:27:41:d5:88:c6:1b:b9:53:2f:d6:41:4c:80:73:90: af:a0:a7:16:fb:4f:37:18:a4:c5:07:04:5d:b5:ea:f8:ef:f6: 50:86:f3:a5:3f:e4:99:6e:cd:71:f0:f3:87:a5:45:13:26:98: a4:13:d2:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjYwMzI1MDI0NDM1WhcNMjYwNDAxMDI0NDM1WjAYMRYwFAYD VQQDEw02OWMzNGMxMy1hNzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtk9RUJBbvT25UU32Oz53PgefOUu/oP+utEU+lh893SvQMZS29hGW71iThUfl xq3MCKqkfddkKXptqc98hhJxlEIZqv5Ey+TBQ9INi8Vomnp9P16Wzi26aA2Bl8nf ZVI4upx03nOV4Y0YRM+VCwZkMifXwNFHHNSYCas7rk32bKZGbM5khsBkp01PynYo pAArk3WMvt1eaN53wS5lBCjh5mnjGsnPF3KHOm1Ief04hI3zXxax7QgqKkPxxJCU sUAdCQdYdnj/SiLPFZ8f/8S/rmw2YviCRi+oy8Ze/V0bm//SeJpzjG6Ar+FOHsAp KIk9XlXO6hCpYHg/zP5T/ygEIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGo4dMRt VBVjk7W6nV4+oedTtK1xMB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAs+/zSm7gxSWeDamlmUJxZwhaJ4eM/yfN706vVXBR80S4Wc3FtpZYKsyUCllR QUtCJeePmmbuPi6nQ92/NqouU95OvAc5nwCjOqhJIcs4kQYyRW4KAFD91Q1BLIc5 pK92G+HpwFDxA4z6r3bAkj77rr+JqJv5aJBUatOgO7JmOpkbCRW9fztOBFoM63ut LWC1tajhlDRMZO6zwmqtxyZ1B0h9qekwfel1y4Ez7kDX0uly7WOB7vNbkN6Z9agt BB0chVHp2yrDFUieJ0HViMYbuVMv1kFMgHOQr6CnFvtPNxikxQcEXbXq+O/2UIbz pT/kmW7NcfDzh6VFEyaYpBPSww== -----END CERTIFICATE-----Generated at Thu Mar 26 16:59:07 2026 by rpki-client