$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft File: B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft (raw, json) Hash identifier: w9SO7w1Jxc0WepJoi2ZcvgHWox1XlzDczNpSL20OR9o= Subject key identifier: A8:70:2D:B0:DE:AC:77:A7:38:C7:E0:4C:77:08:8F:84:D1:18:F5:14 Authority key identifier: 07:60:CA:EF:5B:72:DF:E5:B0:4B:76:DA:DF:FA:B8:67:C3:0A:98:C7 Certificate issuer: /CN=A91DA5FD/serialNumber=0760CAEF5B72DFE5B04B76DADFFAB867C30A98C7 Certificate serial: 01E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft Manifest number: 01E2 Signing time: Fri 27 Mar 2026 02:59:09 +0000 Manifest this update: Fri 27 Mar 2026 02:59:09 +0000 Manifest next update: Fri 03 Apr 2026 02:59:09 +0000 Files and hashes: 1: B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl (hash: MEpo6NIVNBdRfiVBWUJJECq7NR+a1CaZpvTe2chKGhQ=) 2: 76817340537011EEB43BD523C4F9AE02.roa (hash: 0ifLafqWOWwWoL7f0ErDOICXUX7B6R1i8dJpCuKmRDs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 02:59:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 489 (0x1e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA5FD, serialNumber=0760CAEF5B72DFE5B04B76DADFFAB867C30A98C7 Validity Not Before: Mar 27 02:59:09 2026 GMT Not After : Apr 3 02:59:09 2026 GMT Subject: CN=69c5f27d-b1ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c7:80:3e:ed:1f:e7:43:93:da:c0:d2:7d:f8: 6f:4a:b8:18:6b:88:e0:df:a2:59:14:23:2b:dd:85: 7b:a9:21:bb:f3:07:81:08:c1:d9:35:0e:2f:28:5f: e9:fb:1e:fe:c3:4e:47:43:94:ee:b7:cd:b7:29:fb: 4f:1a:ec:26:2e:f6:de:e5:94:8b:d4:ee:19:54:d0: d3:c5:d9:d3:34:1d:b1:57:3c:61:cc:86:2f:1b:4c: f6:8f:54:a5:28:52:95:d4:35:2f:e4:9c:ec:0e:c7: c4:e7:91:00:b6:13:aa:ae:0f:52:27:85:bb:17:52: 04:c3:62:94:fa:c6:06:78:bf:5b:14:99:b7:99:c5: ba:33:b8:eb:de:97:e5:b0:a1:01:e2:3c:42:05:8a: 85:bb:1c:8d:ae:3c:45:9e:4a:1d:60:e8:f9:ff:83: 59:bf:c8:44:04:46:24:c7:53:22:ad:69:4d:fa:d2: 89:12:2e:f5:1a:e3:62:c6:6a:5c:ca:ff:db:f6:8b: e0:37:4b:c6:55:9c:7f:1d:a2:29:20:8f:82:bd:5a: c4:26:82:8f:40:5b:65:41:34:de:54:49:f7:a1:e6: 9b:6f:45:3d:65:43:4c:7a:7e:de:ca:0e:90:de:a7: ad:b8:1c:4f:28:43:9c:cb:e2:c9:fb:7f:32:ff:1c: 4b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:70:2D:B0:DE:AC:77:A7:38:C7:E0:4C:77:08:8F:84:D1:18:F5:14 X509v3 Authority Key Identifier: keyid:07:60:CA:EF:5B:72:DF:E5:B0:4B:76:DA:DF:FA:B8:67:C3:0A:98:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:b5:2e:03:3f:53:c8:e5:69:e2:63:f3:1a:fe:fa:6c:93:89: 06:ca:3c:93:b8:a4:5b:73:2f:5a:89:96:e6:d5:e4:4f:ad:fe: db:29:ea:cc:8c:54:68:ba:ca:66:89:f5:47:2f:07:be:d4:36: be:63:f5:72:4c:b0:6c:b9:14:d1:22:f9:fc:f4:12:09:67:07: 03:1d:49:49:29:a9:f7:52:34:a3:bb:84:ac:d3:59:ca:e1:d4: 3b:2c:ae:ec:41:c1:21:b0:ce:82:8d:54:43:85:4e:70:ba:c8: 64:77:ae:13:da:3b:b3:3e:a0:b0:dc:fd:fb:1a:c8:94:c2:e5: c2:ae:d3:64:ee:10:bc:90:aa:b1:09:a7:59:43:d7:e7:53:4d: 85:fd:65:c6:a0:3f:b1:04:98:34:58:22:ea:11:8d:87:80:cb: 9e:ea:0f:ef:cf:8d:eb:cf:b2:c8:6c:57:99:f3:db:41:5f:8a: d0:83:c9:36:b7:ea:95:32:a9:bd:ac:97:b5:cc:56:d4:94:09: 27:5f:14:b1:18:99:38:21:d2:74:71:9d:89:ec:13:17:75:d7: 58:3a:31:0b:26:8f:9c:ef:0a:4a:6a:60:a5:c6:2c:03:8a:fc: f9:88:48:4e:de:ec:ef:7e:35:b2:ca:e6:c7:a2:bb:ff:4c:02: ce:a6:f7:c9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE1RkQxMTAvBgNVBAUTKDA3NjBDQUVGNUI3MkRGRTVCMDRCNzZEQURGRkFCODY3 QzMwQTk4QzcwHhcNMjYwMzI3MDI1OTA5WhcNMjYwNDAzMDI1OTA5WjAYMRYwFAYD VQQDEw02OWM1ZjI3ZC1iMWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyseAPu0f50OT2sDSffhvSrgYa4jg36JZFCMr3YV7qSG78weBCMHZNQ4vKF/p +x7+w05HQ5Tut823KftPGuwmLvbe5ZSL1O4ZVNDTxdnTNB2xVzxhzIYvG0z2j1Sl KFKV1DUv5JzsDsfE55EAthOqrg9SJ4W7F1IEw2KU+sYGeL9bFJm3mcW6M7jr3pfl sKEB4jxCBYqFuxyNrjxFnkodYOj5/4NZv8hEBEYkx1MirWlN+tKJEi71GuNixmpc yv/b9ovgN0vGVZx/HaIpII+CvVrEJoKPQFtlQTTeVEn3oeabb0U9ZUNMen7eyg6Q 3qetuBxPKEOcy+LJ+38y/xxLZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKhwLbDe rHenOMfgTHcIj4TRGPUUMB8GA1UdIwQYMBaAFAdgyu9bct/lsEt22t/6uGfDCpjH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTVGRC84QkRBRkVGNDUy ODYxMUVFODlCMDBEODdDNEY5QUUwMi9CMkRLNzF0eTMtV3dTM2JhM19xNFo4TUtt TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0IyREs3MXR5My1Xd1MzYmEzX3E0WjhNS21NYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTVGRC84QkRBRkVGNDUyODYxMUVFODlCMDBEODdDNEY5QUUwMi9CMkRLNzF0eTMt V3dTM2JhM19xNFo4TUttTWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAd7UuAz9TyOVp4mPzGv76bJOJBso8k7ikW3MvWomW5tXkT63+2ynqzIxUaLrK Zon1Ry8HvtQ2vmP1ckywbLkU0SL5/PQSCWcHAx1JSSmp91I0o7uErNNZyuHUOyyu 7EHBIbDOgo1UQ4VOcLrIZHeuE9o7sz6gsNz9+xrIlMLlwq7TZO4QvJCqsQmnWUPX 51NNhf1lxqA/sQSYNFgi6hGNh4DLnuoP78+N68+yyGxXmfPbQV+K0IPJNrfqlTKp vayXtcxW1JQJJ18UsRiZOCHSdHGdiewTF3XXWDoxCyaPnO8KSmpgpcYsA4r8+YhI Tt7s7341ssrmx6K7/0wCzqb3yQ== -----END CERTIFICATE-----Generated at Sat Mar 28 10:28:42 2026 by rpki-client