$ rpki-client -vvf rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft File: bjpCzSsjnaPmWO-5fq0VsObt2qE.mft (raw, json) Hash identifier: Q7Lpb0ytJ7EuN4MasSzCd4fvyvZCnAgi2HfCVHvncm0= Subject key identifier: FC:79:3C:A9:3E:0C:D4:55:9F:EE:C8:B6:50:51:82:DD:9F:97:47:CD Authority key identifier: 6E:3A:42:CD:2B:23:9D:A3:E6:58:EF:B9:7E:AD:15:B0:E6:ED:DA:A1 Certificate issuer: /CN=A914AA58/serialNumber=6E3A42CD2B239DA3E658EFB97EAD15B0E6EDDAA1 Certificate serial: 0415 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjpCzSsjnaPmWO-5fq0VsObt2qE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft Manifest number: 040E Signing time: Wed 25 Mar 2026 00:04:40 +0000 Manifest this update: Wed 25 Mar 2026 00:04:40 +0000 Manifest next update: Wed 01 Apr 2026 00:04:40 +0000 Files and hashes: 1: bjpCzSsjnaPmWO-5fq0VsObt2qE.crl (hash: y8OtpOVnOY5UQ6pjTxTCD2ygN4esgEy7ROhlpfHIoPs=) 2: CC2E531EAA7811ECB6791A3EC4F9AE02.roa (hash: 37VlMe44HsI4mwZGoHfVZRuXEIx4vFk+koi7ahjqKfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.crl rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjpCzSsjnaPmWO-5fq0VsObt2qE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:04:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1045 (0x415) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AA58, serialNumber=6E3A42CD2B239DA3E658EFB97EAD15B0E6EDDAA1 Validity Not Before: Mar 25 00:04:40 2026 GMT Not After : Apr 1 00:04:40 2026 GMT Subject: CN=69c32698-fdd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:97:d8:31:38:c3:77:8a:fa:5d:0d:74:42:fd: de:43:09:19:dd:f8:14:7e:d9:25:f4:37:b1:60:50: b9:97:fe:52:a6:43:ce:30:61:8f:1a:30:c0:6c:5f: 2b:56:f4:78:79:90:a3:57:7e:2c:f7:ea:5e:4f:59: c5:5d:c0:1c:1d:29:dd:6f:ce:ef:8b:49:09:e8:76: d1:fa:46:b5:3c:51:99:98:dc:cf:84:36:b4:71:9c: 28:c3:af:b0:a9:d4:5a:fd:0b:1e:5e:fc:9c:c7:82: 49:5d:24:13:3e:3f:42:33:33:4d:cb:d3:c8:64:4a: 59:d0:37:d7:5d:a6:71:84:d4:a7:ef:56:03:3b:94: 0c:01:85:23:c2:dd:2d:16:9a:1e:58:e6:23:b6:20: 8d:ae:04:49:b4:d2:1a:41:8d:ed:b7:22:95:12:6e: 0f:b8:86:b6:42:b5:01:04:64:e1:03:9d:f3:a8:be: cc:da:d3:1c:9c:25:61:29:ce:93:8c:bd:82:52:69: e1:49:c6:dd:72:33:31:13:f1:c3:31:61:f8:8d:30: df:63:89:46:4d:f8:25:ca:9c:b8:db:0f:a5:17:d5: ce:6a:72:96:de:2a:24:14:c7:32:e7:ca:51:ed:ff: e1:0a:52:ab:2b:be:05:a3:86:24:e9:d4:3c:14:72: 0f:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:79:3C:A9:3E:0C:D4:55:9F:EE:C8:B6:50:51:82:DD:9F:97:47:CD X509v3 Authority Key Identifier: keyid:6E:3A:42:CD:2B:23:9D:A3:E6:58:EF:B9:7E:AD:15:B0:E6:ED:DA:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjpCzSsjnaPmWO-5fq0VsObt2qE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:f5:57:19:de:0c:cd:66:f0:36:8a:2d:a0:86:ff:3f:02:ad: 51:22:6f:d3:53:c9:88:4a:db:72:18:6e:36:53:2d:0f:a5:9a: 1e:d0:d8:53:74:c1:ee:23:ba:1d:2b:59:97:ad:bb:83:0a:d3: 69:b3:3d:b1:75:81:43:40:38:72:d5:fb:6c:d4:07:25:34:21: 5f:54:42:18:84:ae:85:ab:3b:30:23:78:e8:aa:d0:af:41:0b: fb:7a:24:a5:3a:e7:cc:a7:bd:6a:22:b4:f8:26:a6:8d:c8:75: 9e:7a:60:8d:55:06:fd:6a:d9:0b:9e:cc:8e:9b:6a:48:54:c7: 2f:8b:44:e1:98:19:79:03:87:6b:20:17:a0:c4:37:a7:dc:95: 07:ff:de:dc:58:85:c4:64:ed:d4:ae:1e:82:e4:38:ee:37:e5: 97:35:1e:e8:83:2f:3a:3a:50:d4:fc:56:24:da:96:ec:65:44: a0:f0:93:ab:c4:a7:a1:95:b3:a4:b2:95:17:e9:9c:4a:08:af: a7:2d:94:53:08:51:b5:8a:83:98:40:ab:9f:47:2f:02:84:f3: 0f:d7:aa:29:f2:5a:3e:14:f7:36:9f:0f:ad:56:4c:c5:26:d6: 1c:ee:13:ff:87:ef:6e:ec:04:7a:a3:27:bb:3a:f9:a9:17:f8: 0c:e5:5c:8b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBBUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFBNTgxMTAvBgNVBAUTKDZFM0E0MkNEMkIyMzlEQTNFNjU4RUZCOTdFQUQxNUIw RTZFRERBQTEwHhcNMjYwMzI1MDAwNDQwWhcNMjYwNDAxMDAwNDQwWjAYMRYwFAYD VQQDEw02OWMzMjY5OC1mZGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZfYMTjDd4r6XQ10Qv3eQwkZ3fgUftkl9DexYFC5l/5SpkPOMGGPGjDAbF8r VvR4eZCjV34s9+peT1nFXcAcHSndb87vi0kJ6HbR+ka1PFGZmNzPhDa0cZwow6+w qdRa/QseXvycx4JJXSQTPj9CMzNNy9PIZEpZ0DfXXaZxhNSn71YDO5QMAYUjwt0t FpoeWOYjtiCNrgRJtNIaQY3ttyKVEm4PuIa2QrUBBGThA53zqL7M2tMcnCVhKc6T jL2CUmnhScbdcjMxE/HDMWH4jTDfY4lGTfglypy42w+lF9XOanKW3iokFMcy58pR 7f/hClKrK74Fo4Yk6dQ8FHIPEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPx5PKk+ DNRVn+7ItlBRgt2fl0fNMB8GA1UdIwQYMBaAFG46Qs0rI52j5ljvuX6tFbDm7dqh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUE1OC8wRkRDQTZGRUFB NzYxMUVDOEY3RDU2MzlDNEY5QUUwMi9ianBDelNzam5hUG1XTy01ZnEwVnNPYnQy cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JqcEN6U3NqbmFQbVdPLTVmcTBWc09idDJxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUE1OC8wRkRDQTZGRUFBNzYxMUVDOEY3RDU2MzlDNEY5QUUwMi9ianBDelNzam5h UG1XTy01ZnEwVnNPYnQycUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZvVXGd4MzWbwNootoIb/PwKtUSJv01PJiErbchhuNlMtD6WaHtDYU3TB7iO6 HStZl627gwrTabM9sXWBQ0A4ctX7bNQHJTQhX1RCGISuhas7MCN46KrQr0EL+3ok pTrnzKe9aiK0+Camjch1nnpgjVUG/WrZC57MjptqSFTHL4tE4ZgZeQOHayAXoMQ3 p9yVB//e3FiFxGTt1K4eguQ47jfllzUe6IMvOjpQ1PxWJNqW7GVEoPCTq8SnoZWz pLKVF+mcSgivpy2UUwhRtYqDmECrn0cvAoTzD9eqKfJaPhT3Np8PrVZMxSbWHO4T /4fvbuwEeqMnuzr5qRf4DOVciw== -----END CERTIFICATE-----Generated at Thu Mar 26 07:48:44 2026 by rpki-client