$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft File: BQ5HmwmNZLazhlsr5GiFdeotTVE.mft (raw, json) Hash identifier: GWGDIKhZJQS8rWhHt2+dWiz1T/oxSwADwpnIomCb8r4= Subject key identifier: 18:07:37:E8:5B:E7:3B:D9:7D:EC:B0:DA:FF:8E:F6:99:BF:01:9C:55 Authority key identifier: 05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 Certificate issuer: /CN=A91AB457/serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Certificate serial: 0C62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft Manifest number: 0C62 Signing time: Tue 24 Mar 2026 18:28:57 +0000 Manifest this update: Tue 24 Mar 2026 18:28:57 +0000 Manifest next update: Tue 31 Mar 2026 18:28:57 +0000 Files and hashes: 1: BQ5HmwmNZLazhlsr5GiFdeotTVE.crl (hash: olB4cRy/s0lWPPCHIWQxovPdGLL/Hxxv3fv0EPadOzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:28:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3170 (0xc62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB457, serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Validity Not Before: Mar 24 18:28:57 2026 GMT Not After : Mar 31 18:28:57 2026 GMT Subject: CN=69c2d7e9-6fb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:91:4a:10:7e:fa:54:01:36:17:ca:7d:ce:f9: 81:61:61:65:51:25:ae:84:92:ce:b8:32:7b:7b:83: 48:82:9f:b0:da:da:20:a7:b4:53:bb:ca:4e:af:f7: c1:fc:57:e3:e1:4c:f6:1a:e4:14:1b:20:8b:d1:cc: 2f:79:b9:86:63:20:36:5e:0a:f0:39:e0:3f:88:42: 33:34:5b:75:40:97:66:57:e1:c5:13:44:07:0d:3c: d5:b9:90:55:ac:b0:5d:3f:e5:10:0b:4f:44:b3:bd: bc:14:55:67:b8:ca:fc:11:b9:7d:21:6f:11:28:9f: 56:c2:0a:68:2d:ba:6f:e8:7e:4f:ad:70:3a:cb:d8: e1:9f:57:95:2a:64:5d:f7:24:82:27:2a:ec:70:64: 27:4b:bb:b1:bc:df:20:3c:f2:cc:b6:ba:eb:9c:19: 1c:fa:48:08:dd:40:15:8a:2a:12:5f:a3:a4:91:56: a9:14:33:b5:bd:11:f1:96:0c:6b:ec:8e:0e:ac:e7: af:9c:0a:b0:8c:0c:a9:af:cb:bf:7e:27:60:2d:d6: 83:6c:97:0d:8c:89:be:de:9b:75:13:3f:f0:18:9b: 16:b2:11:d5:e5:a8:c9:e4:e9:4f:84:d5:63:62:03: a5:ac:8a:be:08:59:ce:ac:b3:5b:bd:10:d1:65:1a: 4d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:07:37:E8:5B:E7:3B:D9:7D:EC:B0:DA:FF:8E:F6:99:BF:01:9C:55 X509v3 Authority Key Identifier: keyid:05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:99:6e:56:5b:e6:59:ea:5d:3c:14:a6:09:6a:8f:65:5e:86: e4:67:f0:e1:98:30:44:70:58:88:64:fc:b1:fb:b9:9d:3c:ee: c3:30:90:75:7f:18:09:7f:e8:ef:59:ac:50:1b:64:7d:04:c1: 87:e3:12:b0:c2:61:3c:37:e3:ae:d1:54:17:e9:f7:2f:26:ce: f0:ef:d3:9a:bb:55:cf:c2:9e:c7:7f:b0:a3:98:88:68:fc:28: 6e:97:31:31:f2:67:21:a5:61:59:ff:d5:b1:48:04:b3:1b:05: a1:85:d8:03:d8:90:4c:a4:b7:81:8e:5a:4f:26:5f:8a:73:30: 49:c3:91:71:eb:ba:11:c8:d4:35:16:c6:e8:95:31:4b:c4:7d: 39:f9:9d:1a:07:68:ac:16:e9:cf:a6:bd:e6:10:8d:52:b6:65: 6a:cf:f6:19:7b:5e:75:5a:e7:c1:f1:b6:8b:2f:73:6c:82:6a: 86:8c:85:59:cc:c0:cc:ba:3f:b6:87:50:61:87:45:92:df:2d: 2a:a3:86:66:b7:7b:16:4c:35:f6:2e:7d:53:96:87:a9:76:91: 7b:18:b4:5e:71:ee:aa:29:be:0e:ac:ae:b7:53:34:49:a1:d9: d3:7f:f7:9e:e0:d8:98:90:c0:6a:63:cd:d8:21:5b:cf:20:a4: ce:d2:bd:b9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0NTcxMTAvBgNVBAUTKDA1MEU0NzlCMDk4RDY0QjZCMzg2NUIyQkU0Njg4NTc1 RUEyRDRENTEwHhcNMjYwMzI0MTgyODU3WhcNMjYwMzMxMTgyODU3WjAYMRYwFAYD VQQDEw02OWMyZDdlOS02ZmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq5FKEH76VAE2F8p9zvmBYWFlUSWuhJLOuDJ7e4NIgp+w2togp7RTu8pOr/fB /Ffj4Uz2GuQUGyCL0cwvebmGYyA2XgrwOeA/iEIzNFt1QJdmV+HFE0QHDTzVuZBV rLBdP+UQC09Es728FFVnuMr8Ebl9IW8RKJ9WwgpoLbpv6H5PrXA6y9jhn1eVKmRd 9ySCJyrscGQnS7uxvN8gPPLMtrrrnBkc+kgI3UAViioSX6OkkVapFDO1vRHxlgxr 7I4OrOevnAqwjAypr8u/fidgLdaDbJcNjIm+3pt1Ez/wGJsWshHV5ajJ5OlPhNVj YgOlrIq+CFnOrLNbvRDRZRpN3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBgHN+hb 5zvZfeyw2v+O9pm/AZxVMB8GA1UdIwQYMBaAFAUOR5sJjWS2s4ZbK+RohXXqLU1R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjQ1Ny81QUY2NjEwMjFD OTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpMYXpobHNyNUdpRmRlb3RU VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRNUhtd21OWkxhemhsc3I1R2lGZGVvdFRWRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjQ1Ny81QUY2NjEwMjFDOTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpM YXpobHNyNUdpRmRlb3RUVkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIZluVlvmWepdPBSmCWqPZV6G5Gfw4ZgwRHBYiGT8sfu5nTzuwzCQdX8YCX/o 71msUBtkfQTBh+MSsMJhPDfjrtFUF+n3LybO8O/TmrtVz8Kex3+wo5iIaPwobpcx MfJnIaVhWf/VsUgEsxsFoYXYA9iQTKS3gY5aTyZfinMwScORceu6EcjUNRbG6JUx S8R9OfmdGgdorBbpz6a95hCNUrZlas/2GXtedVrnwfG2iy9zbIJqhoyFWczAzLo/ todQYYdFkt8tKqOGZrd7Fkw19i59U5aHqXaRexi0XnHuqim+Dqyut1M0SaHZ03/3 nuDYmJDAamPN2CFbzyCkztK9uQ== -----END CERTIFICATE-----Generated at Thu Mar 26 04:09:20 2026 by rpki-client