$ rpki-client -vvf rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft File: bBH4O5qMvdIVMt3w6mHek4jRPGs.mft (raw, json) Hash identifier: HR8W8YKy/IovbT1bXOq1mU/CUySq8lE0VYi6TrGgN4M= Subject key identifier: 86:40:88:48:A1:72:EC:F3:7A:16:90:E2:99:6A:C7:5C:3B:5F:8E:04 Authority key identifier: 6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B Certificate issuer: /CN=A917D958/serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Certificate serial: FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft Manifest number: FA Signing time: Fri 27 Mar 2026 05:49:42 +0000 Manifest this update: Fri 27 Mar 2026 05:49:41 +0000 Manifest next update: Fri 03 Apr 2026 05:49:41 +0000 Files and hashes: 1: bBH4O5qMvdIVMt3w6mHek4jRPGs.crl (hash: X25blQSSlzeWYzsCEmIbvYBtm574b2LFLNyVN1Mzee8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 05:49:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D958, serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Validity Not Before: Mar 27 05:49:41 2026 GMT Not After : Apr 3 05:49:41 2026 GMT Subject: CN=69c61a76-9f08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:bf:22:92:88:ab:12:83:09:2d:73:02:48:76: cf:cc:06:08:6a:1c:83:dc:d7:4c:2b:75:90:59:b4: f6:6f:33:b9:d7:6e:2b:be:96:71:c6:d9:34:8a:31: 73:6c:21:48:e5:f5:d3:be:8d:8e:65:e8:98:83:1f: c0:78:bb:45:d6:9a:cc:32:a1:3f:c9:6f:a9:e4:06: 8f:18:c2:24:1c:4b:71:96:26:84:7f:d0:d5:41:dc: 83:3a:c6:bb:76:5b:c4:62:bf:fd:0a:55:a4:50:b6: 32:4b:66:06:46:66:1e:50:48:7b:f3:3c:d9:d5:ca: 52:d1:16:68:5f:26:ec:10:03:99:29:e9:90:2f:8f: 76:00:c5:54:05:db:64:ab:08:ed:18:ec:b5:0c:4f: 01:df:9e:7b:0d:c1:6d:f1:42:df:6e:44:a9:74:40: d4:53:87:7a:eb:7e:73:b7:8e:86:c3:cb:d5:c2:48: 12:3f:88:da:d0:24:c3:96:82:f4:7c:df:ff:3c:e5: 70:1f:c0:77:a7:2e:71:c8:0a:c4:0e:43:c1:59:ce: 86:00:69:19:cc:31:3b:78:9c:42:b9:f9:71:af:75: 5a:20:dc:8b:4c:aa:9f:6b:e0:a1:b0:9b:96:92:0f: 6c:9a:c5:77:76:ac:a9:e7:f4:64:1f:98:e0:83:90: 63:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:40:88:48:A1:72:EC:F3:7A:16:90:E2:99:6A:C7:5C:3B:5F:8E:04 X509v3 Authority Key Identifier: keyid:6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:d7:54:44:93:f0:fd:c9:a3:d7:ff:8a:b9:94:90:a6:62:db: ef:fa:e6:03:50:8b:47:95:3a:07:60:82:d9:3c:34:c6:57:34: 9e:9f:60:0f:27:83:e0:bf:d6:0f:f3:cc:db:a2:3d:23:43:39: fe:c4:c3:79:bb:1a:13:28:70:ee:56:0c:7c:b7:6b:9e:e8:7b: e6:0c:5f:c6:03:99:b0:41:69:87:84:4d:cb:35:61:33:50:bb: 5a:6c:7a:c1:10:d5:99:9f:62:a6:8f:6b:29:4b:4c:dc:42:37: 15:d7:0f:37:c7:dc:99:02:7a:cc:6e:23:a5:47:50:e9:80:a5: 3a:3f:5f:69:18:43:73:14:4f:b1:dd:fc:21:5f:c3:f7:82:2f: 16:ed:2e:a4:fe:e0:e0:1a:27:9c:9e:24:ed:28:fd:57:d1:e7: 0b:90:b0:0e:65:e2:1a:71:45:c9:47:fc:b0:43:d1:ff:f9:eb: e4:2a:67:69:a8:60:4b:e3:26:77:11:44:c6:d0:67:05:69:2a: 34:65:61:e8:8c:23:34:15:bd:61:b2:72:27:79:63:2f:de:18: dd:a3:51:03:fd:50:94:77:8f:f3:fe:f5:56:2f:2e:6c:01:e6: 2c:dc:bf:d0:8f:dd:c0:48:e1:f1:2b:4c:3f:d4:cb:40:d0:6d: 2c:5d:d6:ea -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5NTgxMTAvBgNVBAUTKDZDMTFGODNCOUE4Q0JERDIxNTMyRERGMEVBNjFERTkz ODhEMTNDNkIwHhcNMjYwMzI3MDU0OTQxWhcNMjYwNDAzMDU0OTQxWjAYMRYwFAYD VQQDEw02OWM2MWE3Ni05ZjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA078ikoirEoMJLXMCSHbPzAYIahyD3NdMK3WQWbT2bzO5124rvpZxxtk0ijFz bCFI5fXTvo2OZeiYgx/AeLtF1prMMqE/yW+p5AaPGMIkHEtxliaEf9DVQdyDOsa7 dlvEYr/9ClWkULYyS2YGRmYeUEh78zzZ1cpS0RZoXybsEAOZKemQL492AMVUBdtk qwjtGOy1DE8B3557DcFt8ULfbkSpdEDUU4d6635zt46Gw8vVwkgSP4ja0CTDloL0 fN//POVwH8B3py5xyArEDkPBWc6GAGkZzDE7eJxCuflxr3VaINyLTKqfa+ChsJuW kg9smsV3dqyp5/RkH5jgg5BjDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIZAiEih cuzzehaQ4plqx1w7X44EMB8GA1UdIwQYMBaAFGwR+DuajL3SFTLd8Oph3pOI0Txr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDk1OC82RjYyODM4OEIz OUIxMUVGODBGNjQzNUVDNEY5QUUwMi9iQkg0TzVxTXZkSVZNdDN3Nm1IZWs0alJQ R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCSDRPNXFNdmRJVk10M3c2bUhlazRqUlBHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDk1OC82RjYyODM4OEIzOUIxMUVGODBGNjQzNUVDNEY5QUUwMi9iQkg0TzVxTXZk SVZNdDN3Nm1IZWs0alJQR3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnddURJPw/cmj1/+KuZSQpmLb7/rmA1CLR5U6B2CC2Tw0xlc0np9gDyeD4L/W D/PM26I9I0M5/sTDebsaEyhw7lYMfLdrnuh75gxfxgOZsEFph4RNyzVhM1C7Wmx6 wRDVmZ9ipo9rKUtM3EI3FdcPN8fcmQJ6zG4jpUdQ6YClOj9faRhDcxRPsd38IV/D 94IvFu0upP7g4BonnJ4k7Sj9V9HnC5CwDmXiGnFFyUf8sEPR//nr5CpnaahgS+Mm dxFExtBnBWkqNGVh6IwjNBW9YbJyJ3ljL94Y3aNRA/1QlHeP8/71Vi8ubAHmLNy/ 0I/dwEjh8StMP9TLQNBtLF3W6g== -----END CERTIFICATE-----Generated at Sat Mar 28 12:20:04 2026 by rpki-client