$ rpki-client -vvf rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft File: Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft (raw, json) Hash identifier: ZS0BEIRp2UuWJHqVVpgDZIex1+csCT4qZFFa2hhIOKI= Subject key identifier: 5D:40:83:38:13:58:25:93:61:EB:C4:9A:E3:F0:83:A6:80:1B:A0:7C Authority key identifier: 05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC Certificate issuer: /CN=A91941E9/serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Certificate serial: 087F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft Manifest number: 0856 Signing time: Tue 24 Mar 2026 20:39:41 +0000 Manifest this update: Tue 24 Mar 2026 20:39:40 +0000 Manifest next update: Tue 31 Mar 2026 20:39:40 +0000 Files and hashes: 1: Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl (hash: HiLvBbHQpjGG41PdDaE/QMlTYXzyDZt0kl8Z4m6pOKg=) 2: 1DB0529C7CA711F0A52C5966C4F9AE02.roa (hash: Jad+xXpbo9F1Si83r3/4thdMZxhxo4YYl8MwD9607wo=) 3: 1069D50EB54B11F092E79246C4F9AE02.roa (hash: sMAmYlXlaGfYX483zQnKNNyggh6fdl5j3X0veZpEvVk=) 4: 1F5EE982235011F1ABBAE38DAE833773.roa (hash: 4vii0PEyxfAMDDStR+CEGDgcVMprRDhlhb9Z9n20u5A=) 5: 4314DB4C8EAF11F091C0B421C4F9AE02.roa (hash: v7v6WaMiJJgHGJFslronZNjFXcWnrbiRDd5BXO1kv5Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:39:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2175 (0x87f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91941E9, serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Validity Not Before: Mar 24 20:39:40 2026 GMT Not After : Mar 31 20:39:40 2026 GMT Subject: CN=69c2f68d-a0ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f0:38:da:15:bd:55:f9:06:8b:a9:ef:78:5a: 8c:25:c3:f0:60:db:1a:fe:7d:51:18:e5:b8:e5:29: 51:1b:d0:ca:7c:bb:06:63:91:2f:d5:a5:07:f5:0f: e5:87:32:9f:47:e9:8c:29:8f:2c:0b:9f:c3:bd:25: 20:0b:b9:40:d6:79:89:86:41:96:b5:46:0e:b8:a4: 79:5d:68:32:9c:eb:9a:cb:29:98:82:44:04:3e:64: ab:e8:39:71:ed:02:e4:bd:c8:5f:2f:3b:7a:8d:c0: 03:aa:0c:62:3a:d7:33:6c:2c:74:b2:f1:ff:bb:3b: 9d:f4:47:a6:4b:7d:10:ce:6e:d4:c4:62:2b:69:b3: cf:e4:da:d7:89:7d:7b:72:85:03:a4:d7:02:79:92: b1:05:d1:50:4a:2a:a6:c9:59:27:8f:48:67:8e:53: cf:b6:41:98:26:d7:b5:25:9f:17:c4:3e:8e:5e:5e: 45:9c:7d:b0:05:19:2e:ea:ad:1e:ee:9a:eb:e2:f4: f7:0c:e2:e6:d6:87:b2:3e:12:ca:45:e5:78:c7:36: 4b:ee:13:7b:8c:dd:86:8a:7e:5d:75:0c:96:dc:96: bc:89:8b:53:ec:61:5f:a5:bf:d3:c2:21:d8:3a:1a: ea:55:d8:04:c2:99:85:90:91:66:a9:e6:28:6a:05: 00:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:40:83:38:13:58:25:93:61:EB:C4:9A:E3:F0:83:A6:80:1B:A0:7C X509v3 Authority Key Identifier: keyid:05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:ca:6f:a6:f0:75:02:95:55:da:6d:5d:7d:f7:44:2c:37:c2: ef:9d:c4:e3:33:1b:02:58:7c:f6:61:e1:a2:e0:5e:d9:c0:e8: e4:b0:c7:88:83:a0:cb:57:f4:f8:d0:7b:48:3a:e8:26:29:09: 82:97:8a:ef:25:91:57:f1:f8:1a:07:c5:b9:cb:d4:dc:45:a0: 9c:b6:3e:99:62:92:eb:66:b3:f9:7c:d5:60:a6:43:63:75:e9: f2:21:a4:f5:f3:f5:1f:62:74:d9:26:fb:6a:2b:70:30:96:dc: 26:c3:71:dc:b6:7c:58:1c:19:84:ae:5d:c3:4c:19:70:e3:4a: a7:e8:62:2c:29:f2:89:08:a1:3b:1a:74:3e:9c:fe:ec:9b:6f: 50:11:f7:03:08:cc:65:ab:30:8f:18:f6:2b:61:5a:d3:58:b3: a4:cf:d5:e6:ff:bc:39:5f:cf:5d:b1:13:73:df:f3:e5:5b:3d: a4:f7:26:24:e2:d9:a6:94:b9:b7:9a:18:33:d9:fb:29:95:3e: 5f:2a:99:cd:6b:e2:29:82:4e:e1:31:07:60:7c:4f:90:51:ab: c3:bd:5c:f4:e0:8e:d6:63:3e:03:3e:4b:e3:1a:d5:74:54:a9: 69:7b:ce:f9:c2:0d:d4:52:75:07:08:69:84:29:37:37:01:6f: a4:7a:62:53 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQxRTkxMTAvBgNVBAUTKDA1QUQzRTRBQTE5NjFCQTdFQ0JFMDI5MzU3MjVDMjVD RDI2QkQ2QkMwHhcNMjYwMzI0MjAzOTQwWhcNMjYwMzMxMjAzOTQwWjAYMRYwFAYD VQQDEw02OWMyZjY4ZC1hMGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo/A42hW9VfkGi6nveFqMJcPwYNsa/n1RGOW45SlRG9DKfLsGY5Ev1aUH9Q/l hzKfR+mMKY8sC5/DvSUgC7lA1nmJhkGWtUYOuKR5XWgynOuayymYgkQEPmSr6Dlx 7QLkvchfLzt6jcADqgxiOtczbCx0svH/uzud9EemS30Qzm7UxGIrabPP5NrXiX17 coUDpNcCeZKxBdFQSiqmyVknj0hnjlPPtkGYJte1JZ8XxD6OXl5FnH2wBRku6q0e 7prr4vT3DOLm1oeyPhLKReV4xzZL7hN7jN2Gin5ddQyW3Ja8iYtT7GFfpb/TwiHY OhrqVdgEwpmFkJFmqeYoagUAnQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF1AgzgT WCWTYevEmuPwg6aAG6B8MB8GA1UdIwQYMBaAFAWtPkqhlhun7L4Ck1clwlzSa9a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDFFOS9EQUQ4RkI4MDA3 OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2ZnN2Z0tUVnlYQ1hOSnIx cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JhMC1TcUdXRzZmc3ZnS1RWeVhDWE5KcjFydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDFFOS9EQUQ4RkI4MDA3OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2 ZnN2Z0tUVnlYQ1hOSnIxcncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVMpvpvB1ApVV2m1dffdELDfC753E4zMbAlh89mHhouBe2cDo5LDHiIOgy1f0 +NB7SDroJikJgpeK7yWRV/H4GgfFucvU3EWgnLY+mWKS62az+XzVYKZDY3Xp8iGk 9fP1H2J02Sb7aitwMJbcJsNx3LZ8WBwZhK5dw0wZcONKp+hiLCnyiQihOxp0Ppz+ 7JtvUBH3AwjMZaswjxj2K2Fa01izpM/V5v+8OV/PXbETc9/z5Vs9pPcmJOLZppS5 t5oYM9n7KZU+XyqZzWviKYJO4TEHYHxPkFGrw71c9OCO1mM+Az5L4xrVdFSpaXvO +cIN1FJ1BwhphCk3NwFvpHpiUw== -----END CERTIFICATE-----Generated at Thu Mar 26 19:51:17 2026 by rpki-client