$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft File: BUM8OuqKSXAsmoLuyV0WtVA86mA.mft (raw, json) Hash identifier: WjPw+/ibRIBBBvjENlRcONDrNKx3zlZ75fxQ8h+afBQ= Subject key identifier: 92:07:F2:DE:2B:D8:0D:6D:2F:F5:F9:8B:D3:2E:12:C6:3C:DE:0A:CB Authority key identifier: 05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 Certificate issuer: /CN=A91CFFA0/serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Certificate serial: 0DFD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft Manifest number: 0DCF Signing time: Tue 24 Mar 2026 17:45:29 +0000 Manifest this update: Tue 24 Mar 2026 17:45:29 +0000 Manifest next update: Tue 31 Mar 2026 17:45:29 +0000 Files and hashes: 1: BUM8OuqKSXAsmoLuyV0WtVA86mA.crl (hash: LJtriSpFozumgzCKHPgdr5HtzXLIGfRAOQKcU3LCGus=) 2: 83ECD7C40CCA11ED97820077C4F9AE02.roa (hash: ky9Ng4i7BRaoHnDxU2AZbymyosvFrsEsC/8UhobSRso=) 3: E6F0F39214CE11EA9E740182C4F9AE02.roa (hash: USUvjmydXjtMJPzPbFEwUqIP+Ih5VSwPB5Ykt4WO3Ws=) 4: 1F4E1CC014D311EA81309110C4F9AE02.roa (hash: onq3kLqhAx1MRzvzSd2yOhdRNFOh2mwuifP1Le+Ju0M=) 5: 0E3F36D8C43D11EBAB31777FC4F9AE02.roa (hash: D9klEFQG/k6Phw9Yt86DVaS1LFIWfa7yVLK9O+stCIY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:45:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3581 (0xdfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Validity Not Before: Mar 24 17:45:29 2026 GMT Not After : Mar 31 17:45:29 2026 GMT Subject: CN=69c2cdb9-8630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3d:f6:cc:e5:c0:5a:80:d7:55:ba:19:28:c3: 40:51:14:f6:9b:7c:6d:85:a0:23:0b:f7:89:b1:00: 7d:96:b6:36:77:f6:9d:03:e2:75:5b:5b:28:a8:82: be:15:59:b0:80:a6:d5:f8:ce:8b:23:72:73:8d:d6: 30:ec:bf:9a:e2:dc:2c:f2:51:83:91:03:ae:03:9c: e0:82:1b:87:4c:9c:fd:90:96:4f:15:ae:a8:cd:22: 24:0d:2a:43:01:0b:ef:72:32:5b:0c:7f:bd:bb:be: eb:f2:32:6b:92:70:3f:da:bb:cb:fa:5e:5d:fe:2d: c8:cf:c1:46:65:ea:00:ab:03:68:09:68:c8:11:9a: 8c:6f:78:db:70:5d:f4:16:97:f9:07:43:d1:91:c0: 86:ed:1a:5d:43:33:3d:53:6a:6a:76:7a:6d:16:17: c7:41:e9:5a:02:13:f0:bd:61:c3:c5:36:1f:43:c2: ea:ac:52:77:3c:2a:4d:50:7b:3d:76:96:08:eb:b5: ee:20:f2:0b:1c:d9:e4:22:7a:29:64:62:8a:38:30: 45:8e:b2:96:b1:35:78:3c:8b:1d:43:d5:51:7a:0f: 1c:a1:6c:8a:3d:50:5a:50:3f:20:16:9c:0c:29:26: f7:4c:d2:f4:5e:cf:41:2e:01:7d:cb:45:d0:53:48: b6:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:07:F2:DE:2B:D8:0D:6D:2F:F5:F9:8B:D3:2E:12:C6:3C:DE:0A:CB X509v3 Authority Key Identifier: keyid:05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:13:8b:b6:a6:bb:31:f1:13:6d:86:a5:4c:5a:72:10:4c:81: 4b:f4:a5:d4:46:4a:0e:c1:3a:97:42:12:8d:94:97:ec:55:9d: d8:b1:be:1b:d8:75:ec:7e:68:0a:3d:4c:96:3c:ea:cc:8e:24: cd:6a:fe:c0:2e:69:af:8f:e8:5b:a1:92:df:43:ba:85:52:24: 9b:d2:69:26:7c:88:23:87:62:ba:ca:a3:dc:42:6e:e2:77:a8: 08:29:88:4a:f2:0f:1d:08:93:d4:5f:69:8c:1f:90:e6:b7:7f: 0f:81:2e:67:8f:8c:fd:36:f2:ee:f9:fd:0c:27:70:17:27:2c: 42:29:ef:97:f8:74:1c:76:09:d8:3c:df:54:7d:b1:e6:a8:fb: fc:dd:de:b7:ad:a8:b2:06:69:99:2b:36:1a:9a:96:26:87:16: 79:dc:02:c9:87:1a:fc:36:84:da:6f:54:90:a4:47:c9:d4:d8: 0e:d6:86:2f:b1:7e:14:06:71:09:18:e7:18:13:c7:ab:a7:7b: b0:1e:dd:18:1e:c3:f2:0e:2c:65:a0:f9:db:19:33:6c:6f:a0: 95:57:b2:d3:81:89:2c:db:b5:2a:51:1c:2a:98:4c:31:38:43: 64:9f:93:77:1e:33:54:e6:c6:af:92:86:ce:30:18:5e:eb:70: 40:74:e3:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKDA1NDMzQzNBRUE4QTQ5NzAyQzlBODJFRUM5NUQxNkI1 NTAzQ0VBNjAwHhcNMjYwMzI0MTc0NTI5WhcNMjYwMzMxMTc0NTI5WjAYMRYwFAYD VQQDEw02OWMyY2RiOS04NjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzj32zOXAWoDXVboZKMNAURT2m3xthaAjC/eJsQB9lrY2d/adA+J1W1soqIK+ FVmwgKbV+M6LI3JzjdYw7L+a4tws8lGDkQOuA5zgghuHTJz9kJZPFa6ozSIkDSpD AQvvcjJbDH+9u77r8jJrknA/2rvL+l5d/i3Iz8FGZeoAqwNoCWjIEZqMb3jbcF30 Fpf5B0PRkcCG7RpdQzM9U2pqdnptFhfHQelaAhPwvWHDxTYfQ8LqrFJ3PCpNUHs9 dpYI67XuIPILHNnkInopZGKKODBFjrKWsTV4PIsdQ9VReg8coWyKPVBaUD8gFpwM KSb3TNL0Xs9BLgF9y0XQU0i2oQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJIH8t4r 2A1tL/X5i9MuEsY83grLMB8GA1UdIwQYMBaAFAVDPDrqiklwLJqC7sldFrVQPOpg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xNTBCRjY5MEQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NYQXNtb0x1eVYwV3RWQTg2 bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JVTThPdXFLU1hBc21vTHV5VjBXdFZBODZtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZBMC8xNTBCRjY5MEQ4Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NY QXNtb0x1eVYwV3RWQTg2bUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcxOLtqa7MfETbYalTFpyEEyBS/Sl1EZKDsE6l0ISjZSX7FWd2LG+G9h17H5o Cj1MljzqzI4kzWr+wC5pr4/oW6GS30O6hVIkm9JpJnyII4diusqj3EJu4neoCCmI SvIPHQiT1F9pjB+Q5rd/D4EuZ4+M/Tby7vn9DCdwFycsQinvl/h0HHYJ2DzfVH2x 5qj7/N3et62osgZpmSs2GpqWJocWedwCyYca/DaE2m9UkKRHydTYDtaGL7F+FAZx CRjnGBPHq6d7sB7dGB7D8g4sZaD52xkzbG+glVey04GJLNu1KlEcKphMMThDZJ+T dx4zVObGr5KGzjAYXutwQHTjhA== -----END CERTIFICATE-----Generated at Thu Mar 26 14:44:53 2026 by rpki-client