$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft File: BAiuYP82i4xPzZMY6lKlnIcolJw.mft (raw, json) Hash identifier: oVqemxWh33PYvZelNx6DJDmlmp+zGKfRtIKilQIv0ko= Subject key identifier: 23:84:28:36:F4:38:0E:EC:5D:23:41:02:CC:7B:78:19:A3:78:C6:DB Authority key identifier: 04:08:AE:60:FF:36:8B:8C:4F:CD:93:18:EA:52:A5:9C:87:28:94:9C Certificate issuer: /CN=A91BA0AE/serialNumber=0408AE60FF368B8C4FCD9318EA52A59C8728949C Certificate serial: 08FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft Manifest number: 0B68 Signing time: Thu 26 Mar 2026 20:13:20 +0000 Manifest this update: Thu 26 Mar 2026 20:13:20 +0000 Manifest next update: Thu 02 Apr 2026 20:13:20 +0000 Files and hashes: 1: BAiuYP82i4xPzZMY6lKlnIcolJw.crl (hash: 63YZ5oA/my0m9Fl99PxCRLRjaMRIpxl33WHNa1MoMrw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.crl rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 20:13:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2300 (0x8fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA0AE, serialNumber=0408AE60FF368B8C4FCD9318EA52A59C8728949C Validity Not Before: Mar 26 20:13:20 2026 GMT Not After : Apr 2 20:13:20 2026 GMT Subject: CN=69c59360-eeca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d5:08:2b:ae:f0:bb:90:86:89:76:67:bb:1e: a4:66:4c:42:97:ab:a9:57:75:04:3b:9d:ef:cb:3e: ba:dc:ba:41:fd:14:81:6e:8e:6d:62:a8:ee:6e:1c: b5:a6:7c:0a:ab:8e:e2:96:74:2f:10:7c:59:70:06: bf:03:b6:f8:bc:68:d7:e6:04:64:a1:77:ee:2f:20: 1a:ff:83:ba:89:76:6c:b6:3c:6a:c8:69:6a:a6:82: 46:e0:31:39:0b:47:be:c0:bb:c3:6a:bc:34:52:76: 24:bc:12:17:bb:dd:d5:42:31:79:47:1b:c6:5a:c0: 0e:4d:fc:e8:67:03:4e:22:c1:4d:8c:c5:29:3f:7e: 60:65:e2:ff:cc:11:a7:de:b9:76:3b:6a:d1:1f:97: b9:db:1e:66:9d:86:e2:08:9f:ef:48:84:20:04:c5: 37:12:d1:3a:f0:17:05:da:a4:01:61:20:74:32:2b: 5e:ce:9c:54:d9:1e:3c:f6:20:e4:d0:35:e2:21:c5: 54:55:31:46:47:2f:9a:d7:d3:0a:ec:e7:f9:96:a2: 75:2c:9a:3a:5f:44:ea:77:ca:44:38:d8:44:2c:41: c1:4b:f4:4b:e9:05:c3:36:02:a2:2c:23:c9:eb:11: c0:58:60:c5:30:e5:7f:d7:3f:49:9d:eb:d3:6d:94: 30:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:84:28:36:F4:38:0E:EC:5D:23:41:02:CC:7B:78:19:A3:78:C6:DB X509v3 Authority Key Identifier: keyid:04:08:AE:60:FF:36:8B:8C:4F:CD:93:18:EA:52:A5:9C:87:28:94:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:2a:c3:55:27:de:bf:ee:11:3d:6b:60:28:57:50:7f:59:3c: 1b:24:84:df:a0:b0:18:43:3c:e0:b1:7c:aa:37:55:0c:19:2e: fe:04:76:ff:b3:91:25:d0:67:ea:88:b8:95:2b:0b:e0:ac:48: 9d:16:2c:e1:f7:1d:dd:be:f3:e9:a5:d8:8b:4e:d8:20:cd:46: 37:ef:ee:a9:60:8d:cd:17:ae:b8:da:64:f7:11:b6:20:a7:77: e5:44:a0:eb:38:77:18:0d:3f:57:eb:d5:82:59:ee:d9:41:60: 0b:93:35:18:a0:f8:6a:b0:81:2a:34:77:6a:08:ca:cc:24:9f: 82:92:d0:cb:37:cb:c5:ed:1c:76:09:d3:cf:29:fe:8e:f5:3d: 79:85:de:c2:4d:f9:01:f3:1b:7f:57:11:05:2e:e9:26:0e:69: bf:99:89:7e:e6:45:e0:1c:1d:7e:bb:f9:b9:cb:43:44:e6:79: 55:8a:4e:a8:f6:47:e3:bf:6f:08:77:27:fd:9f:47:ed:ca:cd: 1f:2c:11:f2:f0:90:f6:5f:a9:78:b5:3c:77:42:3a:cf:eb:f9: 21:8d:82:c1:d8:d8:24:72:54:d7:28:63:54:c7:dd:32:da:43: ee:33:86:db:82:15:37:b8:fb:01:03:39:a4:77:a4:48:d1:0d: 88:4b:27:b3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwQUUxMTAvBgNVBAUTKDA0MDhBRTYwRkYzNjhCOEM0RkNEOTMxOEVBNTJBNTlD ODcyODk0OUMwHhcNMjYwMzI2MjAxMzIwWhcNMjYwNDAyMjAxMzIwWjAYMRYwFAYD VQQDEw02OWM1OTM2MC1lZWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztUIK67wu5CGiXZnux6kZkxCl6upV3UEO53vyz663LpB/RSBbo5tYqjubhy1 pnwKq47ilnQvEHxZcAa/A7b4vGjX5gRkoXfuLyAa/4O6iXZstjxqyGlqpoJG4DE5 C0e+wLvDarw0UnYkvBIXu93VQjF5RxvGWsAOTfzoZwNOIsFNjMUpP35gZeL/zBGn 3rl2O2rRH5e52x5mnYbiCJ/vSIQgBMU3EtE68BcF2qQBYSB0MitezpxU2R489iDk 0DXiIcVUVTFGRy+a19MK7Of5lqJ1LJo6X0Tqd8pEONhELEHBS/RL6QXDNgKiLCPJ 6xHAWGDFMOV/1z9JnevTbZQwXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCOEKDb0 OA7sXSNBAsx7eBmjeMbbMB8GA1UdIwQYMBaAFAQIrmD/NouMT82TGOpSpZyHKJSc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTBBRS8zN0VCMEM2NkM5 NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi9CQWl1WVA4Mmk0eFB6Wk1ZNmxLbG5JY29s SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JBaXVZUDgyaTR4UHpaTVk2bEtsbkljb2xKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTBBRS8zN0VCMEM2NkM5NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi9CQWl1WVA4Mmk0 eFB6Wk1ZNmxLbG5JY29sSncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXyrDVSfev+4RPWtgKFdQf1k8GySE36CwGEM84LF8qjdVDBku/gR2/7ORJdBn 6oi4lSsL4KxInRYs4fcd3b7z6aXYi07YIM1GN+/uqWCNzReuuNpk9xG2IKd35USg 6zh3GA0/V+vVglnu2UFgC5M1GKD4arCBKjR3agjKzCSfgpLQyzfLxe0cdgnTzyn+ jvU9eYXewk35AfMbf1cRBS7pJg5pv5mJfuZF4Bwdfrv5uctDROZ5VYpOqPZH479v CHcn/Z9H7crNHywR8vCQ9l+peLU8d0I6z+v5IY2CwdjYJHJU1yhjVMfdMtpD7jOG 24IVN7j7AQM5pHekSNENiEsnsw== -----END CERTIFICATE-----Generated at Sat Mar 28 12:15:57 2026 by rpki-client