$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft File: BFm798uEwX7tUbaM6tlBlX14X68.mft (raw, json) Hash identifier: xQnsJ5OxuKSh3gC1LhCMXWjorA0dtua3yrwRlSOm48s= Subject key identifier: 07:A2:D1:C7:61:F2:21:BD:04:CD:2B:E6:F2:99:7F:34:D4:E6:7E:51 Authority key identifier: 04:59:BB:F7:CB:84:C1:7E:ED:51:B6:8C:EA:D9:41:95:7D:78:5F:AF Certificate issuer: /CN=A91CFBA9/serialNumber=0459BBF7CB84C17EED51B68CEAD941957D785FAF Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft Manifest number: 59 Signing time: Wed 25 Mar 2026 07:20:01 +0000 Manifest this update: Wed 25 Mar 2026 07:20:01 +0000 Manifest next update: Wed 01 Apr 2026 07:20:01 +0000 Files and hashes: 1: BFm798uEwX7tUbaM6tlBlX14X68.crl (hash: +ZSLyWBzyXAuyH8GRpi/pdK47c3WhA8VtgEGQ5k4ePQ=) 2: 88B9736AA77811F092FD731BC4F9AE02.roa (hash: t9dZnts+IlYuSJrBx0IgU/pwjcYxg43h5hJtdZZSKtM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.crl rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:20:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFBA9, serialNumber=0459BBF7CB84C17EED51B68CEAD941957D785FAF Validity Not Before: Mar 25 07:20:01 2026 GMT Not After : Apr 1 07:20:01 2026 GMT Subject: CN=69c38ca1-0590 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:45:ba:f4:16:da:05:d3:eb:01:4c:35:b4:d0: 86:08:27:55:ad:1b:bc:ef:97:6d:57:32:96:19:be: ce:48:8a:f0:c2:23:54:18:32:bb:12:8a:12:00:96: 06:44:7c:a4:79:6b:5b:b9:4b:69:ff:99:4d:d5:47: 5a:ca:9e:8a:2e:5c:43:ae:26:51:23:20:01:0e:07: 6e:33:c0:b5:32:d8:c7:93:7d:94:7f:0d:65:3f:2c: 04:02:2f:29:6e:e2:80:6a:12:59:d4:59:36:93:97: c9:8e:6f:c5:ef:ad:46:dc:dd:6a:79:21:5f:ac:65: f1:31:a5:34:19:8c:3b:39:6a:ae:57:10:67:a2:f2: ca:72:27:41:8f:ec:51:25:9f:d7:4c:21:a3:24:dc: 05:1c:ca:44:d7:9c:41:6b:9f:ae:89:80:18:72:30: e5:8c:ff:4b:af:5a:69:80:82:90:71:4d:b3:2e:df: 02:b0:d4:3f:85:0f:fe:88:86:78:e3:19:97:e7:5b: 77:b8:98:57:70:7e:29:38:0f:8a:4c:81:3f:d9:34: 8d:b3:90:b3:a8:f9:d3:70:33:b9:eb:35:c4:da:68: 11:22:45:4f:a1:a9:30:9b:c7:99:80:0c:98:92:58: ad:cd:92:9a:ca:13:9b:03:0e:61:ba:58:92:83:4f: 58:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:A2:D1:C7:61:F2:21:BD:04:CD:2B:E6:F2:99:7F:34:D4:E6:7E:51 X509v3 Authority Key Identifier: keyid:04:59:BB:F7:CB:84:C1:7E:ED:51:B6:8C:EA:D9:41:95:7D:78:5F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:08:b2:68:e5:24:34:86:2f:e9:bc:0b:c5:3c:dc:6f:9f:8c: 3f:a4:9d:b2:aa:44:50:46:70:69:12:70:cf:3f:5d:61:bf:75: f3:b0:43:cc:84:8c:c7:44:44:0e:ae:98:34:4e:bb:52:7c:3d: de:19:6b:c0:b1:4b:45:7f:b6:20:ca:6f:1e:ce:4b:a6:95:fe: ea:e2:61:44:aa:16:ce:d8:15:e1:d4:e5:7f:5d:5a:2f:b2:51: 2a:45:5e:69:76:f2:4e:33:c0:84:f6:69:99:da:d0:0f:66:44: d9:40:2e:76:be:36:31:4d:6f:00:74:92:18:b1:2b:5a:33:33: d5:ce:05:5c:8e:09:83:38:41:82:c7:c7:c1:ac:96:d8:f1:9e: 05:9c:40:61:b9:3a:b5:e4:7d:84:99:62:b2:f1:6e:c1:fe:36: 04:c9:25:30:ae:bc:ce:66:d3:1c:e9:85:7b:f5:76:f7:67:6a: 2a:12:04:8f:e1:dd:df:38:04:84:39:da:98:79:fd:8d:a7:2a: cb:31:5a:35:9e:ac:e7:6e:21:3e:d8:f4:15:13:fe:73:a6:0f: 88:81:73:c2:11:7c:23:f6:97:c0:64:39:59:36:b9:7f:85:c4: d8:20:0e:dd:09:76:55:4b:2f:9a:78:4c:1f:f3:b5:c7:a9:20: e4:a9:81:d5 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkJBOTExMC8GA1UEBRMoMDQ1OUJCRjdDQjg0QzE3RUVENTFCNjhDRUFEOTQxOTU3 RDc4NUZBRjAeFw0yNjAzMjUwNzIwMDFaFw0yNjA0MDEwNzIwMDFaMBgxFjAUBgNV BAMTDTY5YzM4Y2ExLTA1OTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBRbr0FtoF0+sBTDW00IYIJ1WtG7zvl21XMpYZvs5IivDCI1QYMrsSihIAlgZE fKR5a1u5S2n/mU3VR1rKnoouXEOuJlEjIAEOB24zwLUy2MeTfZR/DWU/LAQCLylu 4oBqElnUWTaTl8mOb8XvrUbc3Wp5IV+sZfExpTQZjDs5aq5XEGei8spyJ0GP7FEl n9dMIaMk3AUcykTXnEFrn66JgBhyMOWM/0uvWmmAgpBxTbMu3wKw1D+FD/6Ihnjj GZfnW3e4mFdwfik4D4pMgT/ZNI2zkLOo+dNwM7nrNcTaaBEiRU+hqTCbx5mADJiS WK3NkprKE5sDDmG6WJKDT1hzAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUB6LRx2Hy Ib0EzSvm8pl/NNTmflEwHwYDVR0jBBgwFoAUBFm798uEwX7tUbaM6tlBlX14X68w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGQkE5LzU3MzAxNTlBQTc3 NTExRjA5NERFQkYyREM0RjlBRTAyL0JGbTc5OHVFd1g3dFViYU02dGxCbFgxNFg2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQkZtNzk4dUV3WDd0VWJhTTZ0bEJsWDE0WDY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG QkE5LzU3MzAxNTlBQTc3NTExRjA5NERFQkYyREM0RjlBRTAyL0JGbTc5OHVFd1g3 dFViYU02dGxCbFgxNFg2OC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCYCLJo5SQ0hi/pvAvFPNxvn4w/pJ2yqkRQRnBpEnDPP11hv3XzsEPMhIzHREQO rpg0TrtSfD3eGWvAsUtFf7Ygym8ezkumlf7q4mFEqhbO2BXh1OV/XVovslEqRV5p dvJOM8CE9mmZ2tAPZkTZQC52vjYxTW8AdJIYsStaMzPVzgVcjgmDOEGCx8fBrJbY 8Z4FnEBhuTq15H2EmWKy8W7B/jYEySUwrrzOZtMc6YV79Xb3Z2oqEgSP4d3fOASE OdqYef2NpyrLMVo1nqznbiE+2PQVE/5zpg+IgXPCEXwj9pfAZDlZNrl/hcTYIA7d CXZVSy+aeEwf87XHqSDkqYHV -----END CERTIFICATE-----Generated at Thu Mar 26 12:01:58 2026 by rpki-client