$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft File: 1bm7ozBeiMAA9WKTnROLpQYieyo.mft (raw, json) Hash identifier: igfMFJlbx6qG/a7tShP3PBx0+XzspBJx5VXLBsajCYw= Subject key identifier: BD:78:79:E4:4C:90:A4:1F:4F:D3:22:ED:94:FC:87:CA:41:DA:69:72 Authority key identifier: D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A Certificate issuer: /CN=A91EAF4B/serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Certificate serial: 0BA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft Manifest number: 0D1D Signing time: Tue 24 Mar 2026 18:55:01 +0000 Manifest this update: Tue 24 Mar 2026 18:55:01 +0000 Manifest next update: Tue 31 Mar 2026 18:55:01 +0000 Files and hashes: 1: 1bm7ozBeiMAA9WKTnROLpQYieyo.crl (hash: QYXc9CNjWabQFIB+LJU6eSMkS3khC4lD1CSp/jniI4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2979 (0xba3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Validity Not Before: Mar 24 18:55:01 2026 GMT Not After : Mar 31 18:55:01 2026 GMT Subject: CN=69c2de05-787d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:7d:33:a9:ef:b0:8e:bb:85:e2:07:41:ac:15: e0:5f:fe:28:5a:cc:ee:0f:3c:6b:c1:0d:c4:ff:00: 60:4e:d3:af:96:a3:15:af:62:7d:1b:00:bb:e4:3a: a9:7f:3a:a8:ae:71:38:20:ae:ed:61:5a:fc:07:be: d1:d0:4e:8a:a2:37:3a:99:b5:8a:2a:4f:c8:4b:db: da:53:33:ae:54:04:e4:90:50:98:13:4f:c4:e0:16: 23:dc:e7:84:99:ff:53:29:83:65:ef:dc:09:d2:34: 20:43:b9:4d:70:37:bd:92:1b:31:67:c0:68:79:13: 16:8d:36:c8:5c:69:ac:1c:08:35:c0:69:57:1b:10: 6b:47:d2:6b:e2:9f:9c:85:b0:e1:6f:32:15:fd:08: a6:2b:fe:ff:1d:37:ff:9d:ac:7c:83:ae:72:b7:5b: 43:4d:00:3e:8e:7a:b5:1d:a1:a9:77:e5:5e:fd:24: 77:8f:24:f3:45:f0:ee:df:2a:6f:68:b3:a8:53:42: 81:9a:95:17:4b:d4:88:a5:97:04:ec:3a:c5:57:98: e3:95:dc:d1:95:e7:91:7d:4c:c6:93:c0:ab:90:f0: e1:66:44:21:4b:58:ca:e9:9d:0e:24:01:b9:4c:66: 0f:46:e3:8d:38:f0:c1:73:7b:81:46:5a:f2:c1:01: 12:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:78:79:E4:4C:90:A4:1F:4F:D3:22:ED:94:FC:87:CA:41:DA:69:72 X509v3 Authority Key Identifier: keyid:D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:3d:88:34:40:ba:da:bd:bc:8d:05:ca:8a:b0:14:40:09:ec: c6:bc:59:8c:1c:4b:aa:75:1f:23:0f:7b:ee:59:89:ed:05:89: b3:74:d4:a2:54:38:64:92:05:01:40:72:dd:2e:4b:f8:1f:13: fb:f7:a1:28:cd:ac:c5:fd:d8:d5:cb:6d:53:73:cc:28:64:04: f9:56:fc:50:56:93:4b:43:5e:5f:95:f6:5f:d8:55:c2:b7:9b: 01:0d:f0:82:37:d9:fa:5b:1f:7a:03:5f:c6:90:77:4e:b8:39: 97:89:c3:40:f1:eb:08:d2:5c:36:66:3e:81:13:32:b9:46:f6: 9a:bd:2c:5c:99:76:7d:1f:56:bf:58:0c:03:06:dd:86:ad:73: aa:9f:4b:de:21:40:87:c8:6f:26:1a:74:81:17:a8:95:0e:44: 8f:1e:99:9b:80:a4:a4:56:6d:28:fa:95:3a:75:f5:01:ea:a7: 23:76:cf:cd:b8:bf:a4:c5:f9:96:d8:16:7e:6c:37:56:e5:65: 21:6f:c0:79:7b:c0:62:7b:88:f7:f1:1e:1b:6d:d7:63:23:aa: b8:73:3c:a5:1f:88:66:bb:09:78:85:47:4d:6b:12:f3:b0:64: 6f:4d:12:4d:1c:78:aa:05:69:22:0d:ff:3c:6b:56:14:cb:ad: 97:c9:bb:f1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEQ1QjlCQkEzMzA1RTg4QzAwMEY1NjI5MzlEMTM4QkE1 MDYyMjdCMkEwHhcNMjYwMzI0MTg1NTAxWhcNMjYwMzMxMTg1NTAxWjAYMRYwFAYD VQQDEw02OWMyZGUwNS03ODdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAon0zqe+wjruF4gdBrBXgX/4oWszuDzxrwQ3E/wBgTtOvlqMVr2J9GwC75Dqp fzqornE4IK7tYVr8B77R0E6Kojc6mbWKKk/IS9vaUzOuVATkkFCYE0/E4BYj3OeE mf9TKYNl79wJ0jQgQ7lNcDe9khsxZ8BoeRMWjTbIXGmsHAg1wGlXGxBrR9Jr4p+c hbDhbzIV/QimK/7/HTf/nax8g65yt1tDTQA+jnq1HaGpd+Ve/SR3jyTzRfDu3ypv aLOoU0KBmpUXS9SIpZcE7DrFV5jjldzRleeRfUzGk8CrkPDhZkQhS1jK6Z0OJAG5 TGYPRuONOPDBc3uBRlrywQES2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL14eeRM kKQfT9Mi7ZT8h8pB2mlyMB8GA1UdIwQYMBaAFNW5u6MwXojAAPVik50Ti6UGInsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlNQUE5V0tUblJPTHBRWWll eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFibTdvekJlaU1BQTlXS1RuUk9McFFZaWV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlN QUE5V0tUblJPTHBRWWlleW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVD2INEC62r28jQXKirAUQAnsxrxZjBxLqnUfIw977lmJ7QWJs3TUolQ4ZJIF AUBy3S5L+B8T+/ehKM2sxf3Y1cttU3PMKGQE+Vb8UFaTS0NeX5X2X9hVwrebAQ3w gjfZ+lsfegNfxpB3Trg5l4nDQPHrCNJcNmY+gRMyuUb2mr0sXJl2fR9Wv1gMAwbd hq1zqp9L3iFAh8hvJhp0gReolQ5Ejx6Zm4CkpFZtKPqVOnX1AeqnI3bPzbi/pMX5 ltgWfmw3VuVlIW/AeXvAYnuI9/EeG23XYyOquHM8pR+IZrsJeIVHTWsS87Bkb00S TRx4qgVpIg3/PGtWFMutl8m78Q== -----END CERTIFICATE-----Generated at Thu Mar 26 21:10:34 2026 by rpki-client