$ rpki-client -vvf rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft File: BQFHuU3J1svowLDxrQwBg6YHfDQ.mft (raw, json) Hash identifier: g6Na2ujGpU668K42gYDsMLo2JoHzsSMfNVZf997NZ2s= Subject key identifier: 29:65:BB:0C:E0:EE:EC:87:E3:27:F0:DD:8B:98:2F:1C:76:19:55:A7 Authority key identifier: 05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 Certificate issuer: /CN=A91629AA/serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft Manifest number: 017B Signing time: Wed 25 Mar 2026 03:55:22 +0000 Manifest this update: Wed 25 Mar 2026 03:55:22 +0000 Manifest next update: Wed 01 Apr 2026 03:55:22 +0000 Files and hashes: 1: BQFHuU3J1svowLDxrQwBg6YHfDQ.crl (hash: y9CGbZTlvP0wUKZjN3AlwHzYIZWfSPs0wioIxO3OJgI=) 2: 1E347CDCE74A11EE8602742BC4F9AE02.roa (hash: X9BXQVXdacHKtE65WWjF1sZIjnf6Hwqrn91/87XDVa4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:55:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91629AA, serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Validity Not Before: Mar 25 03:55:22 2026 GMT Not After : Apr 1 03:55:22 2026 GMT Subject: CN=69c35caa-1952 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b6:d2:21:8d:32:8a:a0:90:90:a3:8d:c2:df: 5a:ee:ad:15:e4:c4:c2:9e:3d:e8:ef:aa:73:7b:bd: 96:ea:76:91:67:de:6f:b9:75:3c:2e:ea:b4:8b:bf: e1:cd:46:3c:99:5d:f4:89:02:c7:db:73:64:c3:f0: d4:43:09:8b:54:1f:4d:55:6a:26:ce:83:27:49:80: 69:f9:99:ac:f0:d6:0e:9d:5f:e4:5c:d9:53:4b:2b: e5:a1:4c:6f:06:bd:99:27:42:94:77:6e:c7:a0:d8: 7d:16:5c:6e:91:2c:86:29:7f:0a:59:8a:2b:1a:ba: 8c:10:72:6e:40:af:7e:9b:db:f7:55:79:3d:e8:0b: b8:21:7e:f6:bf:0b:41:49:66:ed:37:66:de:72:e7: ae:e9:c4:f2:d1:1f:29:ac:1c:41:ad:dc:49:72:a0: a5:6b:ec:1c:10:46:f8:88:82:2a:ff:28:35:1a:d4: f6:2f:75:b4:01:f5:62:5c:24:17:9e:a7:76:e1:ad: 01:67:bd:e3:3f:2c:0f:6e:1d:5a:ef:e4:d0:55:3e: 0f:ad:e5:d7:f1:62:ca:6b:29:0e:7a:25:65:65:70: 60:3a:16:6e:06:66:eb:e9:7b:26:ca:05:3b:8e:54: 5c:7d:df:2a:5e:db:8d:3a:62:1f:ff:c6:f7:c7:ba: 0a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:65:BB:0C:E0:EE:EC:87:E3:27:F0:DD:8B:98:2F:1C:76:19:55:A7 X509v3 Authority Key Identifier: keyid:05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:3d:e4:7d:69:f9:1c:14:78:f9:ea:40:f2:be:67:ba:41:37: 7a:2e:2e:1a:ea:3a:58:53:09:75:78:e0:49:69:5f:00:d8:24: fc:73:10:5b:c8:d9:fd:46:01:c2:74:94:4b:9e:6c:42:ec:bc: 5d:32:a9:fa:4e:ff:28:32:1c:16:c9:20:32:84:ee:f9:4d:0b: 87:06:6b:8c:0f:c9:51:ab:cc:12:df:c2:3d:95:40:f1:48:df: 77:87:1a:de:46:e9:61:39:ca:a4:73:c3:e8:72:b0:fa:57:b2: 6f:a9:ca:88:ad:77:56:e2:16:02:21:2a:ee:d9:5d:a3:75:8d: d0:50:8a:c4:9f:b6:12:c2:fe:7f:26:ee:44:6e:a9:d7:b1:21: 64:87:82:56:04:64:db:77:db:4a:e9:56:a6:68:e0:56:1c:49: 56:ed:a9:68:f9:e0:11:cb:0c:13:ae:fc:d1:8a:3b:43:a3:50: ed:ab:89:00:09:55:04:e9:52:37:06:6a:d5:c1:78:c1:4c:f5: 97:06:7d:7c:ae:72:9d:d3:ec:e9:7c:3a:5d:22:2a:a4:a1:30: e6:91:8b:1c:4d:2a:74:c4:47:0c:f9:7c:f5:6a:dd:71:79:86: 67:40:a6:44:5d:61:86:56:f2:5f:3e:37:38:9b:54:a6:e4:9d: 53:9b:31:2a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI5QUExMTAvBgNVBAUTKDA1MDE0N0I5NERDOUQ2Q0JFOEMwQjBGMUFEMEMwMTgz QTYwNzdDMzQwHhcNMjYwMzI1MDM1NTIyWhcNMjYwNDAxMDM1NTIyWjAYMRYwFAYD VQQDEw02OWMzNWNhYS0xOTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7bSIY0yiqCQkKONwt9a7q0V5MTCnj3o76pze72W6naRZ95vuXU8Luq0i7/h zUY8mV30iQLH23Nkw/DUQwmLVB9NVWomzoMnSYBp+Zms8NYOnV/kXNlTSyvloUxv Br2ZJ0KUd27HoNh9FlxukSyGKX8KWYorGrqMEHJuQK9+m9v3VXk96Au4IX72vwtB SWbtN2becueu6cTy0R8prBxBrdxJcqCla+wcEEb4iIIq/yg1GtT2L3W0AfViXCQX nqd24a0BZ73jPywPbh1a7+TQVT4PreXX8WLKaykOeiVlZXBgOhZuBmbr6XsmygU7 jlRcfd8qXtuNOmIf/8b3x7oKWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFClluwzg 7uyH4yfw3YuYLxx2GVWnMB8GA1UdIwQYMBaAFAUBR7lNydbL6MCw8a0MAYOmB3w0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjlBQS81RjA2OTNGNEU3 NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFzdm93TER4clF3Qmc2WUhm RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRRkh1VTNKMXN2b3dMRHhyUXdCZzZZSGZEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjlBQS81RjA2OTNGNEU3NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFz dm93TER4clF3Qmc2WUhmRFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATT3kfWn5HBR4+epA8r5nukE3ei4uGuo6WFMJdXjgSWlfANgk/HMQW8jZ/UYB wnSUS55sQuy8XTKp+k7/KDIcFskgMoTu+U0LhwZrjA/JUavMEt/CPZVA8Ujfd4ca 3kbpYTnKpHPD6HKw+leyb6nKiK13VuIWAiEq7tldo3WN0FCKxJ+2EsL+fybuRG6p 17EhZIeCVgRk23fbSulWpmjgVhxJVu2paPngEcsME6780Yo7Q6NQ7auJAAlVBOlS NwZq1cF4wUz1lwZ9fK5yndPs6Xw6XSIqpKEw5pGLHE0qdMRHDPl89WrdcXmGZ0Cm RF1hhlbyXz43OJtUpuSdU5sxKg== -----END CERTIFICATE-----Generated at Thu Mar 26 19:34:03 2026 by rpki-client