$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft File: BstI9X1UOpeC2KfJbaTh3tvDwws.mft (raw, json) Hash identifier: 0iqDy9tvA4JZTWBFi8MTT0XVD3KzkgBuPsPUAAP/b7w= Subject key identifier: 8B:8A:79:31:30:9B:55:48:D4:1C:39:56:7A:DA:21:BD:91:7E:6C:01 Authority key identifier: 06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B Certificate issuer: /CN=A91E2EFF/serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft Manifest number: 93 Signing time: Wed 25 Mar 2026 06:40:45 +0000 Manifest this update: Wed 25 Mar 2026 06:40:45 +0000 Manifest next update: Wed 01 Apr 2026 06:40:45 +0000 Files and hashes: 1: BstI9X1UOpeC2KfJbaTh3tvDwws.crl (hash: d3IwjJo47qW8E2K36zukIp2Sot0VTVhqiASX+aQk+Bg=) 2: 3698C9BA484A11F0B96B9D10C4F9AE02.roa (hash: 0vz5hH8Qi0mQ8l4HL29D2PA4e6vODvqozBm3+6JiuQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:40:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EFF, serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Validity Not Before: Mar 25 06:40:45 2026 GMT Not After : Apr 1 06:40:45 2026 GMT Subject: CN=69c3836d-0631 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2a:ce:1a:db:e5:80:f3:cc:a1:e3:08:cb:ac: d0:29:9e:6a:fd:2f:b5:e5:2d:81:47:a8:0b:28:18: 29:01:2f:be:14:38:43:b1:d8:7b:89:02:ca:1a:74: 6e:7e:3a:41:f2:c3:b7:20:0b:d7:74:8d:d5:bf:63: 9c:2a:97:f7:92:93:eb:b4:62:74:dd:9a:f7:60:50: c2:3d:4f:54:eb:88:16:50:6a:5e:2d:fc:29:55:3b: d9:e2:fa:c9:6a:4f:5f:3a:60:26:6f:4c:ce:45:46: d6:47:58:ac:b4:25:a2:27:da:fd:24:5e:c6:9f:64: eb:92:fb:e3:a9:f1:d1:1b:e1:03:03:4f:24:99:db: a5:c0:de:49:95:2e:cc:b3:81:12:51:fa:1c:51:53: 82:40:df:78:45:fb:0a:a4:ab:e3:30:32:20:02:da: 33:5a:db:4c:cc:85:b3:3d:af:17:cc:14:88:33:3a: 65:ba:61:5e:42:3b:7f:10:15:1d:03:40:03:67:69: a9:99:c5:e5:1b:2e:1a:41:e4:5e:87:4e:0e:5b:01: 2c:8e:ac:b2:25:84:12:be:0f:91:e8:5b:d3:5a:8c: a8:bf:3b:46:a1:11:5c:4c:5e:c5:3a:e1:b2:fc:ec: 1a:e5:79:5e:52:29:3b:40:eb:0b:a0:11:81:f6:eb: 19:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:8A:79:31:30:9B:55:48:D4:1C:39:56:7A:DA:21:BD:91:7E:6C:01 X509v3 Authority Key Identifier: keyid:06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:5d:72:5b:29:f2:71:9e:1c:8f:e8:08:33:5a:d6:09:0e:49: 24:1e:a2:6a:47:7f:e4:be:37:80:ad:de:aa:72:36:66:4f:98: 59:db:fa:f7:0b:84:73:c4:d3:00:67:06:20:1d:de:d6:31:90: bb:9d:f1:83:95:be:a1:5f:00:5f:db:33:f0:1d:d0:4c:d2:6a: ff:61:c9:13:bc:c1:58:fa:25:91:00:19:1e:c3:4b:61:db:75: 83:d6:c0:36:db:23:08:b1:78:4f:96:38:72:35:e5:f2:67:d5: 20:a6:2d:bc:b2:9b:61:70:ff:d4:96:19:08:30:fc:90:8c:56: 8a:ac:74:23:40:0f:e2:fa:70:e3:34:e9:4f:0e:26:3f:c2:4e: 4f:07:8e:96:61:1d:0f:8d:00:5c:d1:fa:68:fa:2e:09:21:ba: 12:57:9e:a1:19:46:1c:6a:95:a7:ae:32:59:e3:c0:94:78:4a: 76:cf:3b:b0:c3:b2:27:70:4f:86:0e:5c:fc:30:a9:6b:54:6b: da:90:e6:0c:b3:74:cc:a7:b5:4a:a2:9e:7d:5c:8e:31:d2:ad: 0e:5a:41:88:21:f3:0c:56:2c:9a:98:31:07:a0:bc:29:da:a7: 7e:35:20:24:04:ab:87:10:78:90:90:74:1d:17:e9:e9:aa:9d: 54:c2:18:96 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJFRkYxMTAvBgNVBAUTKDA2Q0I0OEY1N0Q1NDNBOTc4MkQ4QTdDOTZEQTRFMURF REJDM0MzMEIwHhcNMjYwMzI1MDY0MDQ1WhcNMjYwNDAxMDY0MDQ1WjAYMRYwFAYD VQQDEw02OWMzODM2ZC0wNjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqyrOGtvlgPPMoeMIy6zQKZ5q/S+15S2BR6gLKBgpAS++FDhDsdh7iQLKGnRu fjpB8sO3IAvXdI3Vv2OcKpf3kpPrtGJ03Zr3YFDCPU9U64gWUGpeLfwpVTvZ4vrJ ak9fOmAmb0zORUbWR1istCWiJ9r9JF7Gn2TrkvvjqfHRG+EDA08kmdulwN5JlS7M s4ESUfocUVOCQN94RfsKpKvjMDIgAtozWttMzIWzPa8XzBSIMzplumFeQjt/EBUd A0ADZ2mpmcXlGy4aQeReh04OWwEsjqyyJYQSvg+R6FvTWoyovztGoRFcTF7FOuGy /Owa5XleUik7QOsLoBGB9usZlQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIuKeTEw m1VI1Bw5VnraIb2RfmwBMB8GA1UdIwQYMBaAFAbLSPV9VDqXgtinyW2k4d7bw8ML MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkVGRi9BMzE0ODQ3QzQ4 NDkxMUYwQkYwNzAzNzBDNEY5QUUwMi9Cc3RJOVgxVU9wZUMyS2ZKYmFUaDN0dkR3 d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JzdEk5WDFVT3BlQzJLZkpiYVRoM3R2RHd3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkVGRi9BMzE0ODQ3QzQ4NDkxMUYwQkYwNzAzNzBDNEY5QUUwMi9Cc3RJOVgxVU9w ZUMyS2ZKYmFUaDN0dkR3d3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANF1yWynycZ4cj+gIM1rWCQ5JJB6iakd/5L43gK3eqnI2Zk+YWdv69wuEc8TT AGcGIB3e1jGQu53xg5W+oV8AX9sz8B3QTNJq/2HJE7zBWPolkQAZHsNLYdt1g9bA NtsjCLF4T5Y4cjXl8mfVIKYtvLKbYXD/1JYZCDD8kIxWiqx0I0AP4vpw4zTpTw4m P8JOTweOlmEdD40AXNH6aPouCSG6EleeoRlGHGqVp64yWePAlHhKds87sMOyJ3BP hg5c/DCpa1Rr2pDmDLN0zKe1SqKefVyOMdKtDlpBiCHzDFYsmpgxB6C8KdqnfjUg JASrhxB4kJB0HRfp6aqdVMIYlg== -----END CERTIFICATE-----Generated at Thu Mar 26 11:57:43 2026 by rpki-client