$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft File: Bc1Un1RUvTKyKPavyN424Ej2SA0.mft (raw, json) Hash identifier: 1YfawE0WL2e6Ya7Axf8OGZ2kmBaNqungzt+NneC69u4= Subject key identifier: 59:E0:F4:33:52:29:AB:2B:B2:61:49:07:2D:A9:F1:B2:80:B2:08:6B Authority key identifier: 05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D Certificate issuer: /CN=A91E8881/serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Certificate serial: 0853 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft Manifest number: 0849 Signing time: Tue 24 Mar 2026 20:33:46 +0000 Manifest this update: Tue 24 Mar 2026 20:33:46 +0000 Manifest next update: Tue 31 Mar 2026 20:33:46 +0000 Files and hashes: 1: Bc1Un1RUvTKyKPavyN424Ej2SA0.crl (hash: WCaTm/k76C3i5AShBzBHepKV5+Af9t/kc2qORiO89wg=) 2: EAC9D46200F911EB8E61B84CC4F9AE02.roa (hash: IVZD8aLhn54TzXqlxKqb/t3AB0WmVZh5xxfA9310khA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:33:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2131 (0x853) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8881, serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Validity Not Before: Mar 24 20:33:46 2026 GMT Not After : Mar 31 20:33:46 2026 GMT Subject: CN=69c2f52a-9e61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:18:d4:59:a3:34:fd:6b:5e:36:0c:5c:33:0c: 4d:c9:01:bf:9e:11:6a:4b:8e:06:10:08:96:5a:87: 4a:1c:13:90:50:5f:aa:23:9d:2e:b4:cb:05:44:8f: 79:6b:9c:91:0f:e8:17:fb:54:00:29:f6:f4:0b:34: ff:62:7b:7d:d2:23:48:90:02:35:a9:78:77:77:66: e8:02:15:a4:83:c4:5c:9e:a6:4d:cf:c2:43:b3:35: 88:45:59:1d:91:93:c5:aa:52:9a:5b:dc:1d:bc:84: bf:77:94:ff:36:99:31:f8:b4:ca:6f:8a:01:a6:93: 66:b2:b1:58:50:b8:c7:1f:0d:29:fa:69:f9:c1:a6: f8:97:72:a4:5a:eb:4e:04:0f:2d:da:b8:c0:b2:d6: 3c:5f:c9:e3:7d:5b:fe:0a:fa:02:46:25:6d:c8:37: e7:71:82:b4:c4:e7:ec:db:f3:05:4e:1e:09:f4:f3: 60:6d:3a:62:a7:f9:66:f7:3e:f4:66:d1:e7:7e:57: 98:07:16:02:93:31:22:5b:15:60:ce:f6:81:00:86: 7f:e4:ac:5e:a2:3b:26:51:c6:1f:5b:da:54:46:8a: f0:80:2e:d8:ce:6d:87:95:64:a1:6e:51:24:25:8b: f9:d8:ac:b0:02:43:81:12:00:09:5f:be:97:13:03: 4c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:E0:F4:33:52:29:AB:2B:B2:61:49:07:2D:A9:F1:B2:80:B2:08:6B X509v3 Authority Key Identifier: keyid:05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:85:3f:9a:2b:f0:37:11:b9:92:10:a2:ea:12:2b:76:33:98: 3a:12:d0:71:6e:30:49:4a:cc:c1:eb:f3:52:36:15:86:9e:0e: e3:48:73:11:42:f1:16:74:3c:b5:db:ef:8f:57:47:84:32:dd: 9d:69:80:0e:fe:8e:e3:9a:a2:21:35:a4:40:77:d0:1e:50:6e: da:45:04:80:11:a1:91:36:92:71:a4:b7:20:9c:a2:f9:21:d7: d6:3e:f2:63:cc:a4:92:df:21:ba:41:1f:90:82:4a:c2:e0:02: 14:36:50:e9:1e:0a:c1:d8:91:fb:32:24:ac:fc:58:1d:6d:72: 82:bf:26:60:94:31:cd:e2:37:7f:23:e7:66:a7:f8:13:c2:e1: 09:04:96:71:92:04:0b:db:b8:73:9e:2b:07:47:09:e8:7b:05: 99:d8:d0:a1:ea:b9:2d:f7:ee:a7:ac:96:8a:2d:1c:e6:bd:47: b6:b8:4b:d6:9e:fb:00:53:1a:72:20:7c:1d:1d:14:9e:97:9f: 69:59:12:dc:53:af:32:74:e3:96:ee:df:16:b0:f8:bc:f6:3a: 3e:b4:6a:14:6d:3d:e9:66:36:70:30:5b:a9:98:4b:82:23:f7: a0:a7:7e:bc:6d:d8:42:44:d2:76:d1:17:2b:bb:30:a9:ef:2f: e9:43:a0:cd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg4ODExMTAvBgNVBAUTKDA1Q0Q1NDlGNTQ1NEJEMzJCMjI4RjZBRkM4REUzNkUw NDhGNjQ4MEQwHhcNMjYwMzI0MjAzMzQ2WhcNMjYwMzMxMjAzMzQ2WjAYMRYwFAYD VQQDEw02OWMyZjUyYS05ZTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAshjUWaM0/WteNgxcMwxNyQG/nhFqS44GEAiWWodKHBOQUF+qI50utMsFRI95 a5yRD+gX+1QAKfb0CzT/Ynt90iNIkAI1qXh3d2boAhWkg8RcnqZNz8JDszWIRVkd kZPFqlKaW9wdvIS/d5T/Npkx+LTKb4oBppNmsrFYULjHHw0p+mn5wab4l3KkWutO BA8t2rjAstY8X8njfVv+CvoCRiVtyDfncYK0xOfs2/MFTh4J9PNgbTpip/lm9z70 ZtHnfleYBxYCkzEiWxVgzvaBAIZ/5KxeojsmUcYfW9pURorwgC7Yzm2HlWShblEk JYv52KywAkOBEgAJX76XEwNMPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFng9DNS KasrsmFJBy2p8bKAsghrMB8GA1UdIwQYMBaAFAXNVJ9UVL0ysij2r8jeNuBI9kgN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODg4MS8wODlERTg0MDAw RjgxMUVCQjIxN0E0NDlDNEY5QUUwMi9CYzFVbjFSVXZUS3lLUGF2eU40MjRFajJT QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JjMVVuMVJVdlRLeUtQYXZ5TjQyNEVqMlNBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODg4MS8wODlERTg0MDAwRjgxMUVCQjIxN0E0NDlDNEY5QUUwMi9CYzFVbjFSVXZU S3lLUGF2eU40MjRFajJTQTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABYU/mivwNxG5khCi6hIrdjOYOhLQcW4wSUrMwevzUjYVhp4O40hzEULxFnQ8 tdvvj1dHhDLdnWmADv6O45qiITWkQHfQHlBu2kUEgBGhkTaScaS3IJyi+SHX1j7y Y8ykkt8hukEfkIJKwuACFDZQ6R4KwdiR+zIkrPxYHW1ygr8mYJQxzeI3fyPnZqf4 E8LhCQSWcZIEC9u4c54rB0cJ6HsFmdjQoeq5Lffup6yWii0c5r1HtrhL1p77AFMa ciB8HR0UnpefaVkS3FOvMnTjlu7fFrD4vPY6PrRqFG096WY2cDBbqZhLgiP3oKd+ vG3YQkTSdtEXK7swqe8v6UOgzQ== -----END CERTIFICATE-----Generated at Thu Mar 26 13:43:21 2026 by rpki-client