$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.mft File: BZOGVctKEp6P3fsJQsICA-N-G8E.mft (raw, json) Hash identifier: vnZdPZPgt1NV3juNSyhGy3iWztsBCRweisS5tD5DAjg= Subject key identifier: 76:04:8C:E8:C0:A7:7E:3B:4C:C3:6D:C3:52:EF:56:0B:75:E6:CF:36 Authority key identifier: 05:93:86:55:CB:4A:12:9E:8F:DD:FB:09:42:C2:02:03:E3:7E:1B:C1 Certificate issuer: /CN=A91EF5AE/serialNumber=05938655CB4A129E8FDDFB0942C20203E37E1BC1 Certificate serial: 043D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BZOGVctKEp6P3fsJQsICA-N-G8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.mft Manifest number: 0437 Signing time: Tue 24 Mar 2026 23:56:40 +0000 Manifest this update: Tue 24 Mar 2026 23:56:40 +0000 Manifest next update: Tue 31 Mar 2026 23:56:40 +0000 Files and hashes: 1: BZOGVctKEp6P3fsJQsICA-N-G8E.crl (hash: GVmyHyeNh5vbEwRGKdgPUbTUDsfrLQSg9cVTwjFhNGU=) 2: 1D45733C9AAB11ECBDD79E1EC4F9AE02.roa (hash: CKEaSROH6grDVXoCaHAJQ7MAj2IpVAWwIKkSttifBVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.crl rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BZOGVctKEp6P3fsJQsICA-N-G8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:56:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1085 (0x43d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF5AE, serialNumber=05938655CB4A129E8FDDFB0942C20203E37E1BC1 Validity Not Before: Mar 24 23:56:40 2026 GMT Not After : Mar 31 23:56:40 2026 GMT Subject: CN=69c324b8-6fff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:5a:02:45:aa:2a:43:09:b8:a2:ae:27:c1:c4: 38:f1:87:c3:27:36:65:cb:2e:5f:62:b2:8e:c2:6b: 1b:f7:a7:c3:25:42:1c:db:a9:17:6c:0e:6c:75:02: 17:06:b2:10:0a:23:88:32:f2:96:ee:77:cf:59:68: a9:ce:68:6a:75:dd:3f:dc:d6:e7:3c:55:a4:dc:5f: 17:82:1c:e7:1e:42:9f:1e:6c:8a:3c:8f:d3:e5:c7: fa:78:0a:4e:ee:52:3f:dc:08:ac:79:7f:59:7c:7e: 08:21:0d:3a:0c:3c:69:00:1b:92:a3:d1:1d:b3:70: f0:9a:7b:5c:8d:85:9a:3b:c0:af:dd:08:b0:57:a4: 88:88:15:73:5f:ee:a2:42:2f:ce:55:ec:c5:b5:bc: f2:65:40:cf:f9:ab:9c:4a:66:9e:94:01:6b:1b:49: 66:b3:23:20:a7:ec:4f:63:42:5c:2c:13:96:f5:e4: bc:1e:9b:73:19:75:bd:59:b0:80:4e:b9:1b:cd:0b: 7c:6b:ff:de:b2:95:92:f0:59:b5:88:3e:08:af:4d: 6e:77:e6:df:23:cd:af:54:2c:7a:7b:82:66:f9:61: 07:5e:9e:ee:d9:95:07:97:b4:26:65:5d:f2:9b:0f: 79:92:63:95:94:5d:21:e2:27:ba:84:c4:3f:8f:93: 1c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:04:8C:E8:C0:A7:7E:3B:4C:C3:6D:C3:52:EF:56:0B:75:E6:CF:36 X509v3 Authority Key Identifier: keyid:05:93:86:55:CB:4A:12:9E:8F:DD:FB:09:42:C2:02:03:E3:7E:1B:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BZOGVctKEp6P3fsJQsICA-N-G8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:15:c9:15:34:8a:0c:ae:15:0b:c9:cc:5f:e8:8e:94:5e:29: a3:77:0e:83:74:ad:24:d9:ac:e5:3c:95:76:0b:3a:c4:f9:59: b8:5c:91:c3:cb:b1:5c:e9:d4:c0:9f:04:f1:c5:0d:09:47:c3: 3a:ef:27:ce:72:3e:f2:a7:bf:75:10:d8:95:fa:48:6c:8e:bc: cf:d2:ec:fc:54:43:a7:df:3c:6c:b8:97:a4:c5:7a:04:fd:c5: bb:ca:51:12:1a:3c:00:10:dc:90:a9:5d:c7:62:85:bd:2c:98: 3c:7c:19:8c:d1:5d:f9:bc:29:68:ff:b3:d8:bb:74:06:00:27: db:ea:4f:ad:b9:d1:db:dc:50:d4:85:7b:0c:82:ee:c6:c4:b8: d1:df:54:70:a9:ef:84:fa:f5:f7:11:82:8a:2e:03:e1:4f:11: 0a:10:1a:7e:0d:d1:d4:f3:ed:a0:f3:03:07:1e:0e:40:9e:c0: 47:1d:2f:a0:e9:d9:b8:87:6d:94:b4:ea:af:7c:2f:04:61:da: 4e:0f:01:76:7d:f5:05:54:2a:11:fd:22:95:e9:c9:3b:1d:de: 0e:cd:4d:cb:26:eb:fb:62:dd:08:12:22:42:fe:06:33:69:be: 72:79:2d:56:d6:47:b4:21:29:f5:82:1c:98:65:32:05:db:75: 42:ee:bc:f1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY1QUUxMTAvBgNVBAUTKDA1OTM4NjU1Q0I0QTEyOUU4RkRERkIwOTQyQzIwMjAz RTM3RTFCQzEwHhcNMjYwMzI0MjM1NjQwWhcNMjYwMzMxMjM1NjQwWjAYMRYwFAYD VQQDEw02OWMzMjRiOC02ZmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2loCRaoqQwm4oq4nwcQ48YfDJzZlyy5fYrKOwmsb96fDJUIc26kXbA5sdQIX BrIQCiOIMvKW7nfPWWipzmhqdd0/3NbnPFWk3F8XghznHkKfHmyKPI/T5cf6eApO 7lI/3AiseX9ZfH4IIQ06DDxpABuSo9Eds3DwmntcjYWaO8Cv3QiwV6SIiBVzX+6i Qi/OVezFtbzyZUDP+aucSmaelAFrG0lmsyMgp+xPY0JcLBOW9eS8HptzGXW9WbCA TrkbzQt8a//espWS8Fm1iD4Ir01ud+bfI82vVCx6e4Jm+WEHXp7u2ZUHl7QmZV3y mw95kmOVlF0h4ie6hMQ/j5McfwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHYEjOjA p347TMNtw1LvVgt15s82MB8GA1UdIwQYMBaAFAWThlXLShKej937CULCAgPjfhvB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjVBRS81RTZFMjA3ODlB QTgxMUVDODlENDI0NzRDNEY5QUUwMi9CWk9HVmN0S0VwNlAzZnNKUXNJQ0EtTi1H OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JaT0dWY3RLRXA2UDNmc0pRc0lDQS1OLUc4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjVBRS81RTZFMjA3ODlBQTgxMUVDODlENDI0NzRDNEY5QUUwMi9CWk9HVmN0S0Vw NlAzZnNKUXNJQ0EtTi1HOEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqBXJFTSKDK4VC8nMX+iOlF4po3cOg3StJNms5TyVdgs6xPlZuFyRw8uxXOnU wJ8E8cUNCUfDOu8nznI+8qe/dRDYlfpIbI68z9Ls/FRDp988bLiXpMV6BP3Fu8pR Eho8ABDckKldx2KFvSyYPHwZjNFd+bwpaP+z2Lt0BgAn2+pPrbnR29xQ1IV7DILu xsS40d9UcKnvhPr19xGCii4D4U8RChAafg3R1PPtoPMDBx4OQJ7ARx0voOnZuIdt lLTqr3wvBGHaTg8Bdn31BVQqEf0ilenJOx3eDs1Nyybr+2LdCBIiQv4GM2m+cnkt VtZHtCEp9YIcmGUyBdt1Qu688Q== -----END CERTIFICATE-----Generated at Thu Mar 26 11:16:58 2026 by rpki-client