$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft File: b9CIejkD49bhe7nP2O8mknC6ywc.mft (raw, json) Hash identifier: RoYN0LoTQzpv/zP895nQQu25cT6me+V4Thvd+YpabxI= Subject key identifier: E2:65:BB:B4:AB:D8:36:70:7E:EA:3D:6F:65:BE:D9:AA:48:DA:A1:96 Authority key identifier: 6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 Certificate issuer: /CN=A91E8BE3/serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft Manifest number: F6 Signing time: Wed 25 Mar 2026 05:35:43 +0000 Manifest this update: Wed 25 Mar 2026 05:35:42 +0000 Manifest next update: Wed 01 Apr 2026 05:35:42 +0000 Files and hashes: 1: b9CIejkD49bhe7nP2O8mknC6ywc.crl (hash: /XYPaGvFRcwqnLmERnIDSYjWGNrCz78WaF49Nf1sfus=) 2: 3139D35EBFA811EFA9B7DC2AC4F9AE02.roa (hash: 7y7RETYbuZ100fvQ4OZzDzZF974c+TgTdz2U9WNxBsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:35:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BE3, serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Validity Not Before: Mar 25 05:35:42 2026 GMT Not After : Apr 1 05:35:42 2026 GMT Subject: CN=69c3742f-830d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:14:79:a4:1f:7a:a0:83:01:16:0b:c5:0c:82: 38:c8:55:00:83:8c:33:03:81:c7:a2:7c:bd:bb:be: ef:be:01:86:07:b1:af:25:66:bb:25:f7:27:72:03: 96:a5:47:b6:4a:d8:d3:a4:e1:de:be:1d:f7:03:d7: da:17:01:b6:cf:72:87:c5:6b:2b:34:48:f3:ab:e0: 30:a5:ba:cb:d9:ac:99:26:6d:9e:c3:74:1b:87:7d: f0:64:7d:6b:50:92:f7:d5:db:fc:b0:94:c3:63:aa: 94:f2:03:de:f0:af:66:26:fe:08:f7:48:3d:1b:4e: d8:0b:d4:88:c7:28:b0:72:be:ca:2d:06:cd:6b:01: 0f:74:27:92:2e:e9:79:d8:c7:37:38:40:f6:51:c9: a6:d1:be:53:a0:04:2a:2a:66:26:61:4a:ee:14:5a: 20:33:a2:16:dc:01:80:ca:2d:27:49:e6:88:c6:34: eb:f8:cf:77:24:e2:34:12:74:07:c7:6b:89:7e:16: 2d:32:84:32:71:49:dc:93:04:00:3a:ac:86:7a:8d: da:7c:66:1f:36:b5:f2:3d:99:69:93:59:67:db:e9: 93:08:90:03:38:a0:28:f3:e3:8d:21:d8:07:68:cc: ec:f7:07:0c:33:67:1a:6d:d2:d1:45:11:05:74:f9: 4d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:65:BB:B4:AB:D8:36:70:7E:EA:3D:6F:65:BE:D9:AA:48:DA:A1:96 X509v3 Authority Key Identifier: keyid:6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:db:8e:b8:24:34:12:f2:e9:a2:54:c9:24:fe:74:86:59:b4: 55:c3:4c:7a:42:1b:ad:4a:fa:6e:30:6b:ef:40:4b:f1:2c:a5: 28:d1:56:02:a5:77:92:c9:16:6e:7d:22:b8:77:bd:f8:d7:c2: 18:18:ee:e8:d9:cb:22:a8:a7:f4:96:ba:fd:af:bf:ca:8b:0d: f3:13:40:4b:29:b5:65:6a:7b:ff:4b:8e:1b:48:dd:b8:77:88: 38:e3:73:a7:45:8c:de:35:10:2f:af:32:81:43:d5:d6:03:5d: e1:1c:48:8b:49:ea:cd:c5:a5:cb:41:de:aa:f4:f7:11:4e:4a: a2:db:89:99:8f:69:c8:82:fb:21:6c:48:84:d9:06:83:03:ef: 35:71:2f:be:f5:d6:91:72:55:cf:0a:20:3b:c5:50:d8:01:e9: f5:c1:21:72:83:7e:e6:3a:e8:53:65:a5:3c:fe:42:24:5f:d9: b3:13:70:84:c1:08:90:4b:ee:ea:8b:62:14:45:c1:81:5f:c0: c2:93:96:67:81:b6:0b:99:fb:9d:41:3c:0b:ae:f8:7d:86:a7: 55:bb:70:f6:40:bb:6a:cb:3a:e6:50:ff:f0:2a:5a:19:aa:4b: c3:21:7d:a8:35:aa:90:90:6f:d1:b9:54:a5:7f:03:37:41:4c: c4:50:86:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThCRTMxMTAvBgNVBAUTKDZGRDA4ODdBMzkwM0UzRDZFMTdCQjlDRkQ4RUYyNjky NzBCQUNCMDcwHhcNMjYwMzI1MDUzNTQyWhcNMjYwNDAxMDUzNTQyWjAYMRYwFAYD VQQDEw02OWMzNzQyZi04MzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBR5pB96oIMBFgvFDII4yFUAg4wzA4HHony9u77vvgGGB7GvJWa7JfcncgOW pUe2StjTpOHevh33A9faFwG2z3KHxWsrNEjzq+AwpbrL2ayZJm2ew3Qbh33wZH1r UJL31dv8sJTDY6qU8gPe8K9mJv4I90g9G07YC9SIxyiwcr7KLQbNawEPdCeSLul5 2Mc3OED2Ucmm0b5ToAQqKmYmYUruFFogM6IW3AGAyi0nSeaIxjTr+M93JOI0EnQH x2uJfhYtMoQycUnckwQAOqyGeo3afGYfNrXyPZlpk1ln2+mTCJADOKAo8+ONIdgH aMzs9wcMM2cabdLRRREFdPlNuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOJlu7Sr 2DZwfuo9b2W+2apI2qGWMB8GA1UdIwQYMBaAFG/QiHo5A+PW4Xu5z9jvJpJwussH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEJFMy9FNkU2QkU0NEJG OUMxMUVGOURBODgyODJDNEY5QUUwMi9iOUNJZWprRDQ5YmhlN25QMk84bWtuQzZ5 d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2I5Q0llamtENDliaGU3blAyTzhta25DNnl3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEJFMy9FNkU2QkU0NEJGOUMxMUVGOURBODgyODJDNEY5QUUwMi9iOUNJZWprRDQ5 YmhlN25QMk84bWtuQzZ5d2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXtuOuCQ0EvLpolTJJP50hlm0VcNMekIbrUr6bjBr70BL8SylKNFWAqV3kskW bn0iuHe9+NfCGBju6NnLIqin9Ja6/a+/yosN8xNASym1ZWp7/0uOG0jduHeIOONz p0WM3jUQL68ygUPV1gNd4RxIi0nqzcWly0HeqvT3EU5KotuJmY9pyIL7IWxIhNkG gwPvNXEvvvXWkXJVzwogO8VQ2AHp9cEhcoN+5jroU2WlPP5CJF/ZsxNwhMEIkEvu 6otiFEXBgV/AwpOWZ4G2C5n7nUE8C674fYanVbtw9kC7ass65lD/8CpaGapLwyF9 qDWqkJBv0blUpX8DN0FMxFCGyw== -----END CERTIFICATE-----Generated at Thu Mar 26 20:23:32 2026 by rpki-client