$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft File: b70F9jC-RBCpUSzbaahco3zoxzk.mft (raw, json) Hash identifier: qtG1IqCiE/V1YGarU84YgicKAfQrobcV9zLHtx/RfbA= Subject key identifier: CB:FD:B1:2F:2C:41:C1:38:E7:63:91:1F:C8:01:D3:31:2C:E2:58:B8 Authority key identifier: 6F:BD:05:F6:30:BE:44:10:A9:51:2C:DB:69:A8:5C:A3:7C:E8:C7:39 Certificate issuer: /CN=A91DC897/serialNumber=6FBD05F630BE4410A9512CDB69A85CA37CE8C739 Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/b70F9jC-RBCpUSzbaahco3zoxzk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft Manifest number: 1F Signing time: Wed 25 Mar 2026 08:06:41 +0000 Manifest this update: Wed 25 Mar 2026 08:06:41 +0000 Manifest next update: Wed 01 Apr 2026 08:06:41 +0000 Files and hashes: 1: b70F9jC-RBCpUSzbaahco3zoxzk.crl (hash: pTUIzIF1A4n2/vrGxzToCkGWrsDnl07NV8TQsC7qBJQ=) 2: 2764AC08003111F18836FC08486F56BC.roa (hash: yELvoRc3S+vHFcCwKMNPwYPmKbFYr2Z48ucu1l1HAEs=) 3: B8EA8ABC033311F1AAD74374203D8C67.roa (hash: VGTwiIqmaXq4MsscshpbxlIvpQ6VN4x9kiDNRx4VLZE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.crl rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/b70F9jC-RBCpUSzbaahco3zoxzk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC897, serialNumber=6FBD05F630BE4410A9512CDB69A85CA37CE8C739 Validity Not Before: Mar 25 08:06:41 2026 GMT Not After : Apr 1 08:06:41 2026 GMT Subject: CN=69c39791-6f7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:1f:d6:69:30:b8:ff:42:d4:f7:1d:f3:41:a1: 12:35:23:fe:da:ab:7a:8a:fa:52:e1:52:81:3e:1d: 6b:85:b0:bc:28:cc:39:56:6f:5d:3f:03:79:06:7e: 3c:6a:79:2a:ff:b3:09:03:d8:f1:ae:1c:a1:fe:00: 15:e7:cb:c7:ac:29:e1:3a:7d:7f:76:a3:87:7f:b3: 22:0f:c7:6f:e9:fd:59:5a:ea:4e:31:91:a8:3b:36: c0:29:38:ba:c3:fa:2c:66:f0:a5:79:f2:38:11:51: 2a:f1:3a:52:6f:47:3f:36:c8:d2:eb:8d:84:36:18: 97:62:88:bd:2e:3c:39:f6:b9:3c:92:3e:91:77:48: 1d:d5:5c:e5:9a:d8:a7:d7:8b:a5:f6:c7:aa:2c:00: f7:2b:8e:55:07:a4:ac:41:e4:2d:bf:71:19:5b:e4: 3e:f5:f3:c6:fa:82:92:f2:c1:47:90:8b:cb:4f:ef: 58:9e:2d:6f:ef:3b:28:9c:1f:6a:b9:bd:be:76:a8: ef:0e:cf:15:9b:6a:a0:ac:9a:3e:3f:4e:51:4f:61: 34:b8:a2:cd:b6:8d:89:d6:d5:76:ef:56:dd:67:a7: db:d8:a7:69:46:e5:bc:99:f2:cb:47:94:75:2b:9e: 4a:a9:5d:f0:2e:e3:8c:7e:d7:fd:ae:1e:ef:6b:50: cf:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:FD:B1:2F:2C:41:C1:38:E7:63:91:1F:C8:01:D3:31:2C:E2:58:B8 X509v3 Authority Key Identifier: keyid:6F:BD:05:F6:30:BE:44:10:A9:51:2C:DB:69:A8:5C:A3:7C:E8:C7:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/b70F9jC-RBCpUSzbaahco3zoxzk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:a6:e0:a6:d1:f2:c7:ef:b1:84:b0:dd:a3:7f:a2:32:dd:88: f5:3c:d4:40:fc:f2:75:41:a2:7f:be:05:82:60:34:de:47:d6: a7:a2:75:d4:d5:3f:ed:7b:df:02:b6:a8:ee:d5:75:ee:df:a4: db:51:fd:e8:af:90:61:d2:d0:74:91:5a:07:d4:60:fd:cb:4c: fb:a8:27:9f:26:ef:d2:22:4f:f5:34:de:d1:c8:e3:01:37:11: 16:0b:90:62:9d:b9:39:86:9c:65:53:c4:00:7c:46:b2:ce:39: d2:f1:47:bf:84:dd:63:de:0e:08:bd:ef:93:73:d5:23:2b:90: 3b:65:f9:2a:24:3b:85:ec:a0:8e:ed:54:e2:cd:70:d0:c0:29: e4:9b:f5:67:28:f4:4c:b1:3f:67:1e:46:b4:50:2d:b4:fb:da: d1:8c:73:a7:01:32:a9:e8:7c:07:5d:aa:03:4d:11:91:51:f3: d3:9d:86:2c:1e:ad:79:5c:cb:e9:cf:2d:68:1c:7c:9f:bd:86: 40:8d:3a:54:51:39:5f:31:79:84:4f:ed:66:b9:30:29:c8:dd: db:4f:64:fe:f5:89:e9:bf:f1:01:b9:e8:36:41:83:b7:29:03: f5:f6:72:59:8d:6d:8d:79:65:5a:73:5f:3f:95:24:59:bc:6b: 79:40:cd:1a -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Qzg5NzExMC8GA1UEBRMoNkZCRDA1RjYzMEJFNDQxMEE5NTEyQ0RCNjlBODVDQTM3 Q0U4QzczOTAeFw0yNjAzMjUwODA2NDFaFw0yNjA0MDEwODA2NDFaMBgxFjAUBgNV BAMTDTY5YzM5NzkxLTZmN2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCSH9ZpMLj/QtT3HfNBoRI1I/7aq3qK+lLhUoE+HWuFsLwozDlWb10/A3kGfjxq eSr/swkD2PGuHKH+ABXny8esKeE6fX92o4d/syIPx2/p/Vla6k4xkag7NsApOLrD +ixm8KV58jgRUSrxOlJvRz82yNLrjYQ2GJdiiL0uPDn2uTySPpF3SB3VXOWa2KfX i6X2x6osAPcrjlUHpKxB5C2/cRlb5D7188b6gpLywUeQi8tP71ieLW/vOyicH2q5 vb52qO8OzxWbaqCsmj4/TlFPYTS4os22jYnW1XbvVt1np9vYp2lG5byZ8stHlHUr nkqpXfAu44x+1/2uHu9rUM8lAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUy/2xLyxB wTjnY5EfyAHTMSziWLgwHwYDVR0jBBgwFoAUb70F9jC+RBCpUSzbaahco3zoxzkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDODk3LzdGNEU2M0VDMDAz MDExRjE5NEEyNTdBQjQ3NkY1NkJDL2I3MEY5akMtUkJDcFVTemJhYWhjbzN6b3h6 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvYjcwRjlqQy1SQkNwVVN6YmFhaGNvM3pveHprLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURD ODk3LzdGNEU2M0VDMDAzMDExRjE5NEEyNTdBQjQ3NkY1NkJDL2I3MEY5akMtUkJD cFVTemJhYWhjbzN6b3h6ay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQB/puCm0fLH77GEsN2jf6Iy3Yj1PNRA/PJ1QaJ/vgWCYDTeR9anonXU1T/te98C tqju1XXu36TbUf3or5Bh0tB0kVoH1GD9y0z7qCefJu/SIk/1NN7RyOMBNxEWC5Bi nbk5hpxlU8QAfEayzjnS8Ue/hN1j3g4Ive+Tc9UjK5A7ZfkqJDuF7KCO7VTizXDQ wCnkm/VnKPRMsT9nHka0UC20+9rRjHOnATKp6HwHXaoDTRGRUfPTnYYsHq15XMvp zy1oHHyfvYZAjTpUUTlfMXmET+1muTApyN3bT2T+9Ynpv/EBueg2QYO3KQP19nJZ jW2NeWVac18/lSRZvGt5QM0a -----END CERTIFICATE-----Generated at Thu Mar 26 17:45:12 2026 by rpki-client