$ rpki-client -vvf rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft File: BKfrBJqTf9nyuG4Vnd310sma1B4.mft (raw, json) Hash identifier: TMUxtX2QiEkVPLHi3SDS2uYCJve2FUzNFjJ5je5D2LI= Subject key identifier: 0A:ED:9C:00:87:D1:1E:8C:C4:74:50:CF:D3:D7:3E:12:C0:7E:62:29 Authority key identifier: 04:A7:EB:04:9A:93:7F:D9:F2:B8:6E:15:9D:DD:F5:D2:C9:9A:D4:1E Certificate issuer: /CN=A91E87AB/serialNumber=04A7EB049A937FD9F2B86E159DDDF5D2C99AD41E Certificate serial: 0599 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft Manifest number: 0590 Signing time: Tue 24 Mar 2026 22:56:03 +0000 Manifest this update: Tue 24 Mar 2026 22:56:02 +0000 Manifest next update: Tue 31 Mar 2026 22:56:02 +0000 Files and hashes: 1: BKfrBJqTf9nyuG4Vnd310sma1B4.crl (hash: YiAcU9KeEY2McuUF8yGguhu+7k3f9W4/+vaRJhnNdLs=) 2: 709F3B2E145C11EC9A902165C4F9AE02.roa (hash: SmXQ1SFMrsEIIaY56t+M+nddsnk+Z8U9mmLAhEWuQV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.crl rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:56:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1433 (0x599) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E87AB, serialNumber=04A7EB049A937FD9F2B86E159DDDF5D2C99AD41E Validity Not Before: Mar 24 22:56:02 2026 GMT Not After : Mar 31 22:56:02 2026 GMT Subject: CN=69c31682-d186 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:91:7a:ff:4a:36:d9:87:b5:a8:5f:c1:3f:22: dc:ff:e8:17:90:68:22:8e:2a:32:95:73:52:41:52: 9b:4a:d0:56:7b:de:d6:20:dd:a6:1d:f0:45:b2:1e: e5:fb:43:d9:95:5a:9d:5b:b5:19:f0:31:00:3b:0b: 96:30:7d:8d:89:97:30:3a:83:bf:90:d6:21:70:3c: 3a:d3:72:b7:b9:92:62:db:95:78:9e:48:01:d2:bc: e3:2a:5e:7d:a3:b6:19:83:76:91:a4:9c:0b:68:db: 82:8d:f5:55:6e:16:7f:1f:57:9c:ba:cd:07:54:58: 50:4f:7e:b7:64:35:17:c5:99:8b:5e:83:f4:2d:c2: 87:f1:85:72:23:30:86:9d:1f:b0:23:bb:b7:f9:16: 4e:76:c9:31:2b:d7:ad:b0:b6:28:c4:3c:33:0a:b6: 34:f7:1a:5a:a9:e5:ab:cd:cc:4e:db:52:4c:fd:ea: 74:25:e1:23:08:4a:fc:4b:ba:f5:b6:de:a6:cd:f7: 1d:e3:61:b5:78:39:b4:ca:dc:ce:c7:de:1d:ca:45: ee:21:2c:8e:62:56:5f:51:9f:0f:cf:a4:6c:4e:83: 6f:48:3a:72:54:b4:14:15:29:6e:b3:54:54:86:58: 62:e4:4a:71:93:af:87:2d:4e:2e:f1:6d:96:39:bc: 74:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:ED:9C:00:87:D1:1E:8C:C4:74:50:CF:D3:D7:3E:12:C0:7E:62:29 X509v3 Authority Key Identifier: keyid:04:A7:EB:04:9A:93:7F:D9:F2:B8:6E:15:9D:DD:F5:D2:C9:9A:D4:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:9f:86:ad:ad:67:f8:d9:13:d4:c4:6b:d1:0c:49:e1:68:e8: 81:a7:a1:15:7b:b1:06:2b:95:f1:5e:14:99:b0:f0:fd:65:95: 03:fe:0b:2c:ca:47:11:2a:32:cc:98:cd:69:b1:b8:25:88:47: c2:70:4f:6c:56:a7:4b:52:9f:39:6d:75:63:35:b3:91:48:51: 90:77:c7:e7:6f:4f:b1:c1:1e:1c:a0:e6:f5:d2:dc:f7:cd:93: e2:90:2f:e2:d5:42:98:06:1e:24:e1:0f:21:36:8d:5d:0a:33: b1:aa:f2:66:ff:1d:c0:e1:38:1a:28:26:ce:c4:2e:b6:87:fb: 08:50:2c:5e:17:95:60:11:2a:2e:59:89:c4:2e:b3:8c:fe:15: 20:69:68:80:9f:ca:b0:5c:1e:af:df:27:7d:47:01:5c:78:d8: ea:99:37:eb:c5:5f:d0:ae:fb:d7:14:c5:47:af:59:04:30:32: 48:b7:35:66:d3:35:cf:0c:17:70:3c:55:52:90:df:36:a1:b9: 7c:56:41:6b:27:03:93:76:99:44:6e:ad:b3:cc:c4:67:e5:16: 49:52:d5:e5:29:01:d2:e4:4d:3d:16:d6:68:8d:8a:4b:bb:31: 48:ad:b1:91:e8:f3:d2:de:56:8f:73:48:fa:67:aa:f3:b6:5d: ef:b5:da:0b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg3QUIxMTAvBgNVBAUTKDA0QTdFQjA0OUE5MzdGRDlGMkI4NkUxNTlERERGNUQy Qzk5QUQ0MUUwHhcNMjYwMzI0MjI1NjAyWhcNMjYwMzMxMjI1NjAyWjAYMRYwFAYD VQQDEw02OWMzMTY4Mi1kMTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJF6/0o22Ye1qF/BPyLc/+gXkGgijioylXNSQVKbStBWe97WIN2mHfBFsh7l +0PZlVqdW7UZ8DEAOwuWMH2NiZcwOoO/kNYhcDw603K3uZJi25V4nkgB0rzjKl59 o7YZg3aRpJwLaNuCjfVVbhZ/H1ecus0HVFhQT363ZDUXxZmLXoP0LcKH8YVyIzCG nR+wI7u3+RZOdskxK9etsLYoxDwzCrY09xpaqeWrzcxO21JM/ep0JeEjCEr8S7r1 tt6mzfcd42G1eDm0ytzOx94dykXuISyOYlZfUZ8Pz6RsToNvSDpyVLQUFSlus1RU hlhi5Epxk6+HLU4u8W2WObx0awIDAQABo4ICczCCAm8wHQYDVR0OBBYEFArtnACH 0R6MxHRQz9PXPhLAfmIpMB8GA1UdIwQYMBaAFASn6wSak3/Z8rhuFZ3d9dLJmtQe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODdBQi85MTZCMDY2NjE0 NTgxMUVDOUVENkM3M0JDNEY5QUUwMi9CS2ZyQkpxVGY5bnl1RzRWbmQzMTBzbWEx QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLZnJCSnFUZjlueXVHNFZuZDMxMHNtYTFCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODdBQi85MTZCMDY2NjE0NTgxMUVDOUVENkM3M0JDNEY5QUUwMi9CS2ZyQkpxVGY5 bnl1RzRWbmQzMTBzbWExQjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXJ+Gra1n+NkT1MRr0QxJ4WjogaehFXuxBiuV8V4UmbDw/WWVA/4LLMpHESoy zJjNabG4JYhHwnBPbFanS1KfOW11YzWzkUhRkHfH529PscEeHKDm9dLc982T4pAv 4tVCmAYeJOEPITaNXQozsaryZv8dwOE4GigmzsQutof7CFAsXheVYBEqLlmJxC6z jP4VIGlogJ/KsFwer98nfUcBXHjY6pk368Vf0K771xTFR69ZBDAySLc1ZtM1zwwX cDxVUpDfNqG5fFZBaycDk3aZRG6ts8zEZ+UWSVLV5SkB0uRNPRbWaI2KS7sxSK2x kejz0t5Wj3NI+meq87Zd77XaCw== -----END CERTIFICATE-----Generated at Thu Mar 26 18:08:14 2026 by rpki-client