$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.mft File: bhQyTH_rm8iZLUocPkWehqPxjuE.mft (raw, json) Hash identifier: 6bRPc7C/vubLXxrzQm6GDdwN6eAliTewa8oNeFoni2U= Subject key identifier: 7A:AB:C6:F0:CE:A2:13:65:39:28:C1:FB:63:17:11:4C:31:D2:5B:81 Authority key identifier: 6E:14:32:4C:7F:EB:9B:C8:99:2D:4A:1C:3E:45:9E:86:A3:F1:8E:E1 Certificate issuer: /CN=A91CDC08/serialNumber=6E14324C7FEB9BC8992D4A1C3E459E86A3F18EE1 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhQyTH_rm8iZLUocPkWehqPxjuE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.mft Manifest number: 1E Signing time: Wed 25 Mar 2026 08:06:12 +0000 Manifest this update: Wed 25 Mar 2026 08:06:12 +0000 Manifest next update: Wed 01 Apr 2026 08:06:12 +0000 Files and hashes: 1: bhQyTH_rm8iZLUocPkWehqPxjuE.crl (hash: qwYVOXE3kehrIOC6AP49PueqCs/2N+XKRkql08sF8t0=) 2: 2508F7B8001611F18F2C9137416F56BC.roa (hash: kk4e8+otr3vEuo88eNfz1XFH7SDaG9Z2aCSEpZsnIgI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.crl rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhQyTH_rm8iZLUocPkWehqPxjuE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:06:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDC08, serialNumber=6E14324C7FEB9BC8992D4A1C3E459E86A3F18EE1 Validity Not Before: Mar 25 08:06:12 2026 GMT Not After : Apr 1 08:06:12 2026 GMT Subject: CN=69c39774-1157 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:3d:30:91:e8:96:82:45:36:e7:82:7b:7a:61: 20:09:74:1d:c1:a1:22:15:0f:28:e9:a3:db:51:58: 64:25:a6:31:1c:68:d8:6d:1c:70:59:ec:45:ca:2c: b0:ce:77:9d:c8:15:a6:1e:d2:95:15:80:67:22:6f: 75:d0:46:88:41:6f:a9:8c:cd:72:2f:f6:e4:4d:a8: 93:fa:2b:cd:17:42:8b:90:24:86:32:ae:ab:16:2a: 5f:bf:83:d5:2c:3a:dd:31:38:65:82:af:69:a7:89: 0c:a2:92:8f:85:aa:3a:a2:05:ec:7b:25:e4:39:02: 7c:6e:4b:79:a0:81:0c:9a:f1:cd:a6:b8:11:e8:fc: 4c:c1:12:48:b3:59:62:ac:9c:45:1f:aa:bb:38:93: 1e:ce:87:9b:53:20:71:99:00:c6:24:7b:00:1c:ca: b6:68:be:39:4d:2f:32:d1:45:3c:fd:b2:ab:35:85: ee:ad:6e:9f:a9:39:3a:37:25:4d:3c:ce:9d:96:0b: f6:f6:5f:b1:5b:10:6d:7d:9c:96:9d:2c:76:cb:ae: 78:3e:75:f3:7e:55:c5:41:4d:ad:ec:72:d3:78:77: 82:1a:dd:f7:c8:94:7b:a8:58:64:42:a7:d4:a8:ef: 27:19:7b:e3:9a:bb:4f:0d:76:6a:1b:b1:c2:36:d9: 3c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:AB:C6:F0:CE:A2:13:65:39:28:C1:FB:63:17:11:4C:31:D2:5B:81 X509v3 Authority Key Identifier: keyid:6E:14:32:4C:7F:EB:9B:C8:99:2D:4A:1C:3E:45:9E:86:A3:F1:8E:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhQyTH_rm8iZLUocPkWehqPxjuE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:26:02:fc:07:24:f2:c8:03:0c:37:7c:b3:de:f0:35:4f:34: b6:79:f7:4e:9b:94:08:2e:98:7f:ef:bd:3a:c7:44:39:fc:72: 57:85:2b:61:ef:26:e1:61:54:f0:ea:53:86:80:50:2f:9f:b4: 1d:c6:1a:23:c7:18:7c:46:2a:7f:d9:9d:bb:58:11:ad:74:a5: 45:63:89:6c:aa:3d:82:61:ba:48:66:31:be:3f:52:07:f2:ab: 37:c2:27:6b:9b:e3:ef:09:d1:f1:bd:3a:85:df:5e:4f:d4:64: 3b:b6:5a:27:1f:e8:90:b9:c6:0d:e5:e9:4a:43:0c:df:c9:f9: c5:9d:25:69:9c:4b:1d:9f:2d:46:3c:7e:05:04:87:a8:c9:e4: 3c:bf:fd:e8:ae:10:c9:bd:0f:b6:bf:1e:de:23:9f:c6:42:e2: e6:b0:20:5c:94:4d:3b:88:ae:26:71:13:a5:40:63:30:a1:f0: c7:31:62:b6:a0:f7:98:5b:b6:1b:6c:42:f3:71:bc:73:0e:42: 9b:31:c7:aa:e0:d3:0e:f9:f8:c6:e3:df:37:f6:b6:85:bf:3b: f4:5f:d8:07:2c:03:13:40:98:ae:9e:19:89:0a:74:92:68:2e: c9:6e:7b:74:c4:e9:31:55:1f:48:82:1b:ef:18:d6:e8:30:22: 72:52:a4:92 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD REMwODExMC8GA1UEBRMoNkUxNDMyNEM3RkVCOUJDODk5MkQ0QTFDM0U0NTlFODZB M0YxOEVFMTAeFw0yNjAzMjUwODA2MTJaFw0yNjA0MDEwODA2MTJaMBgxFjAUBgNV BAMTDTY5YzM5Nzc0LTExNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDyPTCR6JaCRTbngnt6YSAJdB3BoSIVDyjpo9tRWGQlpjEcaNhtHHBZ7EXKLLDO d53IFaYe0pUVgGcib3XQRohBb6mMzXIv9uRNqJP6K80XQouQJIYyrqsWKl+/g9Us Ot0xOGWCr2mniQyiko+FqjqiBex7JeQ5AnxuS3mggQya8c2muBHo/EzBEkizWWKs nEUfqrs4kx7Oh5tTIHGZAMYkewAcyrZovjlNLzLRRTz9sqs1he6tbp+pOTo3JU08 zp2WC/b2X7FbEG19nJadLHbLrng+dfN+VcVBTa3sctN4d4Ia3ffIlHuoWGRCp9So 7ycZe+Oau08NdmobscI22Ty/AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUeqvG8M6i E2U5KMH7YxcRTDHSW4EwHwYDVR0jBBgwFoAUbhQyTH/rm8iZLUocPkWehqPxjuEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEQzA4L0YzRTY1N0ZDMDAx NTExRjE5NUQ1OEFENDQwNkY1NkJDL2JoUXlUSF9ybThpWkxVb2NQa1dlaHFQeGp1 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYmhReVRIX3JtOGlaTFVvY1BrV2VocVB4anVFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE QzA4L0YzRTY1N0ZDMDAxNTExRjE5NUQ1OEFENDQwNkY1NkJDL2JoUXlUSF9ybThp WkxVb2NQa1dlaHFQeGp1RS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBAJgL8ByTyyAMMN3yz3vA1TzS2efdOm5QILph/7706x0Q5/HJXhSth7ybhYVTw 6lOGgFAvn7Qdxhojxxh8Rip/2Z27WBGtdKVFY4lsqj2CYbpIZjG+P1IH8qs3widr m+PvCdHxvTqF315P1GQ7tlonH+iQucYN5elKQwzfyfnFnSVpnEsdny1GPH4FBIeo yeQ8v/3orhDJvQ+2vx7eI5/GQuLmsCBclE07iK4mcROlQGMwofDHMWK2oPeYW7Yb bELzcbxzDkKbMceq4NMO+fjG49839raFvzv0X9gHLAMTQJiunhmJCnSSaC7Jbnt0 xOkxVR9IghvvGNboMCJyUqSS -----END CERTIFICATE-----Generated at Fri Mar 27 02:09:31 2026 by rpki-client