$ rpki-client -vvf rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.mft File: BYl-c1406PZYdVSprzc0CCziidk.mft (raw, json) Hash identifier: 9FvMdM97EtQ6LNga4es2glNCeAZmaHRBCGAUN4Xj/3A= Subject key identifier: CA:D9:B8:B5:8D:AD:8F:B6:F3:F6:D6:A1:C8:9D:31:F0:96:07:E4:42 Authority key identifier: 05:89:7E:73:5E:34:E8:F6:58:75:54:A9:AF:37:34:08:2C:E2:89:D9 Certificate issuer: /CN=A91389E7/serialNumber=05897E735E34E8F6587554A9AF3734082CE289D9 Certificate serial: 96 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BYl-c1406PZYdVSprzc0CCziidk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.mft Manifest number: 93 Signing time: Wed 25 Mar 2026 06:42:38 +0000 Manifest this update: Wed 25 Mar 2026 06:42:38 +0000 Manifest next update: Wed 01 Apr 2026 06:42:38 +0000 Files and hashes: 1: BYl-c1406PZYdVSprzc0CCziidk.crl (hash: bJqMWLuyV7dRczBFHlH51RBgJbRm6tphMTx/qEQvZk8=) 2: 2C3D8AAA50B511F09288303CC4F9AE02.roa (hash: 6W/VukXB5c5TI5sHg/exLjmPP5EzgCxNCDZkTAkJ9NI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.crl rsync://rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BYl-c1406PZYdVSprzc0CCziidk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:42:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91389E7, serialNumber=05897E735E34E8F6587554A9AF3734082CE289D9 Validity Not Before: Mar 25 06:42:38 2026 GMT Not After : Apr 1 06:42:38 2026 GMT Subject: CN=69c383de-a4e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:e4:70:29:32:8a:bc:1c:77:2e:45:9d:08:72: 0b:e4:d8:64:fe:4b:28:19:30:67:e8:51:8c:67:5a: ed:53:aa:57:7f:f5:db:cf:31:54:d6:13:6f:f8:66: f5:1e:dd:26:b9:bc:da:b2:a1:7f:18:ae:22:c1:f2: 69:c7:ef:58:61:23:65:12:41:d0:ec:61:9a:82:a4: 6a:e6:5f:21:7b:9e:b5:d5:ca:15:bd:59:2c:6e:33: fb:e0:0f:86:44:27:dc:a3:82:41:1a:11:10:82:a8: ad:18:72:ed:e1:e6:61:06:c6:06:df:a8:05:8f:d6: f3:5d:2f:c0:e6:88:76:12:97:ee:a9:7c:82:e9:4b: 6b:55:ef:e7:c4:6d:3d:d6:74:26:3f:3b:42:06:56: be:20:56:47:62:cb:2d:a7:74:fd:0f:c5:1c:a9:2a: c7:25:ea:35:11:b6:7b:71:b1:ca:49:5a:2b:42:ff: 78:d2:cb:be:19:c6:a4:1b:bb:7a:bd:68:af:1c:e0: f6:c0:3f:9c:98:6e:1e:29:a5:2b:86:ca:ae:0e:fc: bb:4a:fb:e5:42:52:1f:53:64:b3:cd:40:bd:10:e6: ba:c6:5c:7f:56:e3:2f:92:9e:b5:fa:82:62:6a:22: 1a:4f:49:98:21:f4:c8:31:da:ae:94:ec:81:6f:06: 97:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:D9:B8:B5:8D:AD:8F:B6:F3:F6:D6:A1:C8:9D:31:F0:96:07:E4:42 X509v3 Authority Key Identifier: keyid:05:89:7E:73:5E:34:E8:F6:58:75:54:A9:AF:37:34:08:2C:E2:89:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BYl-c1406PZYdVSprzc0CCziidk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:4c:33:ac:e5:ea:a0:8a:3c:8a:3c:95:d7:e7:58:49:b9:6b: 0b:1d:1b:f7:3d:c6:4d:df:5f:cd:9f:68:7a:73:eb:53:89:6f: 0d:10:69:d2:52:44:47:9c:b9:54:96:f3:08:62:d6:5c:1a:35: b3:a2:64:b8:77:e0:3f:7c:5d:a9:5c:69:90:92:1d:73:6d:76: 70:0f:77:69:31:05:04:24:61:b3:c9:e1:2a:14:95:45:e8:8a: 43:3a:35:86:55:aa:f1:f5:2e:04:9a:b3:06:fd:86:95:19:26: 2d:0d:d3:c1:14:28:bd:a3:d4:ee:82:cc:1b:5d:4a:0b:31:65: cb:99:2e:f3:d1:7d:68:df:db:7f:48:7c:ef:b1:65:2b:51:b5: 83:19:b5:5e:1f:72:c0:41:ea:b8:6d:34:38:a1:a2:a2:3e:63: ad:0b:f1:ef:7f:5d:7c:ff:9b:0b:9d:ef:16:f3:af:6a:76:8d: 54:05:c5:76:00:a5:a1:f7:95:2d:93:c0:14:fd:2c:fe:83:09: a1:4b:93:14:69:41:cf:83:9f:a4:01:5d:2f:23:b3:d1:a9:d1: 95:fa:ea:c5:0f:f4:00:1a:6c:62:85:8d:86:b3:22:dd:89:d6: 82:0c:e5:16:6e:f6:2b:1b:74:7d:18:ef:11:6c:43:6c:f0:d7: b1:b1:73:bb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg5RTcxMTAvBgNVBAUTKDA1ODk3RTczNUUzNEU4RjY1ODc1NTRBOUFGMzczNDA4 MkNFMjg5RDkwHhcNMjYwMzI1MDY0MjM4WhcNMjYwNDAxMDY0MjM4WjAYMRYwFAYD VQQDEw02OWMzODNkZS1hNGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjuRwKTKKvBx3LkWdCHIL5Nhk/ksoGTBn6FGMZ1rtU6pXf/XbzzFU1hNv+Gb1 Ht0mubzasqF/GK4iwfJpx+9YYSNlEkHQ7GGagqRq5l8he5611coVvVksbjP74A+G RCfco4JBGhEQgqitGHLt4eZhBsYG36gFj9bzXS/A5oh2EpfuqXyC6UtrVe/nxG09 1nQmPztCBla+IFZHYsstp3T9D8UcqSrHJeo1EbZ7cbHKSVorQv940su+GcakG7t6 vWivHOD2wD+cmG4eKaUrhsquDvy7SvvlQlIfU2SzzUC9EOa6xlx/VuMvkp61+oJi aiIaT0mYIfTIMdqulOyBbwaX2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMrZuLWN rY+28/bWocidMfCWB+RCMB8GA1UdIwQYMBaAFAWJfnNeNOj2WHVUqa83NAgs4onZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODlFNy85OUQyOEM5QzRD MDkxMUYwOUYzOEI2MjhDNEY5QUUwMi9CWWwtYzE0MDZQWllkVlNwcnpjMENDemlp ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JZbC1jMTQwNlBaWWRWU3ByemMwQ0N6aWlkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODlFNy85OUQyOEM5QzRDMDkxMUYwOUYzOEI2MjhDNEY5QUUwMi9CWWwtYzE0MDZQ WllkVlNwcnpjMENDemlpZGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAL0wzrOXqoIo8ijyV1+dYSblrCx0b9z3GTd9fzZ9oenPrU4lvDRBp0lJER5y5 VJbzCGLWXBo1s6JkuHfgP3xdqVxpkJIdc212cA93aTEFBCRhs8nhKhSVReiKQzo1 hlWq8fUuBJqzBv2GlRkmLQ3TwRQovaPU7oLMG11KCzFly5ku89F9aN/bf0h877Fl K1G1gxm1Xh9ywEHquG00OKGioj5jrQvx739dfP+bC53vFvOvanaNVAXFdgClofeV LZPAFP0s/oMJoUuTFGlBz4OfpAFdLyOz0anRlfrqxQ/0ABpsYoWNhrMi3YnWggzl Fm72Kxt0fRjvEWxDbPDXsbFzuw== -----END CERTIFICATE-----Generated at Thu Mar 26 11:18:01 2026 by rpki-client