$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft File: bifP0YnuRkQx1LkBO8wHWKgCZOY.mft (raw, json) Hash identifier: VuHLuOzOZ5T/7x/DgVufVkl/Qf6WEM5NjthkDKQADXk= Subject key identifier: 81:53:0E:72:38:A5:62:74:44:58:FF:A5:08:F1:FF:12:87:54:5F:8B Authority key identifier: 6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 Certificate issuer: /CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Certificate serial: 1958 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft Manifest number: 193F Signing time: Tue 24 Mar 2026 16:20:58 +0000 Manifest this update: Tue 24 Mar 2026 16:20:58 +0000 Manifest next update: Tue 31 Mar 2026 16:20:58 +0000 Files and hashes: 1: bifP0YnuRkQx1LkBO8wHWKgCZOY.crl (hash: Z646/dH19kn4WQcSog02P0T8C427aRbMLRBxoRWwXZ8=) 2: 33E73FAAE50B11EF838B6642C4F9AE02.roa (hash: d+TSvpxly3k8El4+pV6d2wdav1wdXrK2Z6zZMFeDKxk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:20:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6488 (0x1958) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D13, serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Validity Not Before: Mar 24 16:20:58 2026 GMT Not After : Mar 31 16:20:58 2026 GMT Subject: CN=69c2b9ea-45e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:a8:8c:e8:1d:ac:a7:7c:1e:86:cd:50:31:3d: 3b:9d:b0:fa:23:7f:23:15:c8:36:31:67:d8:c9:eb: fd:ac:82:9e:7e:7e:14:84:ec:95:b4:87:3f:0d:a3: 57:c3:b8:18:40:38:ea:0b:96:2c:8d:6d:f8:f5:73: 27:22:ba:95:54:5d:17:1c:de:28:92:df:74:8c:8c: 86:8d:59:a6:85:93:b2:96:2a:e1:de:2f:1b:7d:83: ef:bf:7d:03:6b:38:a4:fa:50:8d:eb:a8:04:cc:c2: a0:78:5b:54:62:9b:55:a3:7d:79:c5:54:23:1b:64: 2d:2b:ef:78:3d:e2:b2:95:5c:9a:ec:9a:65:6e:c8: 7c:1f:cc:e6:1e:46:1d:35:4e:28:4b:e8:1a:9e:d5: 67:1f:af:95:58:83:7f:58:d3:98:00:60:7b:71:6a: e7:77:35:69:99:e8:16:0d:72:b3:c0:9e:bf:8e:8f: 28:3e:2b:94:b0:de:2d:26:bf:10:0e:5d:4c:d0:55: ed:b8:1e:3b:2d:22:4d:b6:b1:52:10:51:47:db:bb: 1d:b0:ae:37:ee:74:8e:2a:0d:28:e0:b1:ea:53:be: 7c:8f:ac:10:bd:be:00:ad:46:2c:c6:c9:61:c3:03: cf:31:f3:e6:cc:c1:38:74:90:b8:28:88:67:57:c7: 75:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:53:0E:72:38:A5:62:74:44:58:FF:A5:08:F1:FF:12:87:54:5F:8B X509v3 Authority Key Identifier: keyid:6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:e0:b2:69:cb:f2:a6:ac:1e:97:bc:57:ff:d8:5b:1d:d3:da: 58:29:96:f6:95:ae:e4:2e:3c:ce:72:57:ff:9a:1c:6b:1c:e0: 54:ec:fb:bf:f5:fe:04:97:7b:69:85:ee:73:fa:03:f0:58:e6: b2:01:b9:92:9a:43:1d:55:74:aa:e5:62:cf:18:29:54:18:b9: 75:36:87:71:70:31:04:59:c4:af:e3:3a:96:fd:8f:2a:94:0e: 07:45:a1:35:3a:ea:45:af:45:d8:a7:8c:b6:18:df:71:5d:ae: 48:55:88:25:5d:59:6d:8a:9f:a0:9a:cd:3e:5c:44:0a:1b:53: 7f:db:a0:40:13:9b:15:59:eb:41:ea:26:d4:62:57:24:0d:a2: f6:96:fb:1d:6a:17:ad:df:19:e7:8b:71:bb:94:b6:59:4c:7c: d2:db:07:a0:2a:41:9f:35:3b:c6:c8:0c:89:d9:65:0c:f8:51: b0:7c:75:72:46:71:42:fc:64:e2:68:8c:cf:43:3a:c6:c3:58: c8:bf:c0:a3:28:42:31:e3:4d:35:67:27:bc:74:73:ac:0a:ac: 7b:8f:ee:ab:7c:73:a3:69:31:86:b1:c5:f5:0d:fa:a6:0b:ec: ae:0d:7f:ca:48:a4:fb:79:8d:3b:5a:c9:ba:a1:63:b6:e2:27: ee:d0:7b:33 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEMTMxMTAvBgNVBAUTKDZFMjdDRkQxODlFRTQ2NDQzMUQ0QjkwMTNCQ0MwNzU4 QTgwMjY0RTYwHhcNMjYwMzI0MTYyMDU4WhcNMjYwMzMxMTYyMDU4WjAYMRYwFAYD VQQDEw02OWMyYjllYS00NWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj6iM6B2sp3wehs1QMT07nbD6I38jFcg2MWfYyev9rIKefn4UhOyVtIc/DaNX w7gYQDjqC5YsjW349XMnIrqVVF0XHN4okt90jIyGjVmmhZOylirh3i8bfYPvv30D azik+lCN66gEzMKgeFtUYptVo315xVQjG2QtK+94PeKylVya7Jplbsh8H8zmHkYd NU4oS+gantVnH6+VWIN/WNOYAGB7cWrndzVpmegWDXKzwJ6/jo8oPiuUsN4tJr8Q Dl1M0FXtuB47LSJNtrFSEFFH27sdsK437nSOKg0o4LHqU758j6wQvb4ArUYsxslh wwPPMfPmzME4dJC4KIhnV8d1vwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIFTDnI4 pWJ0RFj/pQjx/xKHVF+LMB8GA1UdIwQYMBaAFG4nz9GJ7kZEMdS5ATvMB1ioAmTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0QxMy9BQTI1REYxQzk4 RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJrUXgxTGtCTzh3SFdLZ0Na T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JpZlAwWW51UmtReDFMa0JPOHdIV0tnQ1pPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0QxMy9BQTI1REYxQzk4RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJr UXgxTGtCTzh3SFdLZ0NaT1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAA+Cyacvypqwel7xX/9hbHdPaWCmW9pWu5C48znJX/5ocaxzgVOz7v/X+BJd7 aYXuc/oD8FjmsgG5kppDHVV0quVizxgpVBi5dTaHcXAxBFnEr+M6lv2PKpQOB0Wh NTrqRa9F2KeMthjfcV2uSFWIJV1ZbYqfoJrNPlxEChtTf9ugQBObFVnrQeom1GJX JA2i9pb7HWoXrd8Z54txu5S2WUx80tsHoCpBnzU7xsgMidllDPhRsHx1ckZxQvxk 4miMz0M6xsNYyL/AoyhCMeNNNWcnvHRzrAqse4/uq3xzo2kxhrHF9Q36pgvsrg1/ ykik+3mNO1rJuqFjtuIn7tB7Mw== -----END CERTIFICATE-----Generated at Thu Mar 26 12:55:08 2026 by rpki-client