$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft File: BNhIIeE7gDAzVMS-NDMdURHyvKY.mft (raw, json) Hash identifier: rBOY0Ogux3znUTYzvADEgl7m65GRiiGqfUdbp82rmPI= Subject key identifier: EC:DA:55:E1:A8:D9:67:6E:09:3F:BF:57:97:D2:FE:AC:9E:9B:6E:82 Authority key identifier: 04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 Certificate issuer: /CN=A91F0721/serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Certificate serial: 025A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft Manifest number: 0248 Signing time: Wed 25 Mar 2026 01:47:43 +0000 Manifest this update: Wed 25 Mar 2026 01:47:42 +0000 Manifest next update: Wed 01 Apr 2026 01:47:42 +0000 Files and hashes: 1: BNhIIeE7gDAzVMS-NDMdURHyvKY.crl (hash: eV+u3ERm6EG9qmF4ezes7WBJlJXGpQt+IBxQZ9ecHL8=) 2: 7659B89AADCC11ED84051211C4F9AE02.roa (hash: eJa3zEY0Ga68FBEmFuzcrfb78XN2VTH6jOriLW6rBuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 602 (0x25a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0721, serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Validity Not Before: Mar 25 01:47:42 2026 GMT Not After : Apr 1 01:47:42 2026 GMT Subject: CN=69c33ebf-0d58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:76:99:fd:a2:7b:2f:00:a2:a0:f7:04:5a:5b: 33:ff:d1:8d:21:b9:f9:17:ec:0d:58:8f:ed:50:e9: a5:e6:e8:75:d5:40:7d:1b:8b:4f:f8:6c:f2:95:ba: e8:a9:d7:03:fe:73:15:1b:cc:1c:19:ec:6c:78:70: 75:dd:60:07:cb:7f:68:50:57:11:30:b9:9f:f1:44: 4b:7f:d1:df:19:55:61:c6:05:78:3f:e6:3d:85:be: 69:70:0a:8e:74:1d:e4:9d:8f:fc:41:07:56:b8:6d: 6d:d0:33:aa:f2:e9:d6:a6:b1:f9:b6:88:ec:19:bb: cf:5f:ab:90:b3:76:c9:af:82:03:c6:82:d1:1d:8d: a9:76:f4:e6:24:c0:8a:d4:9a:4c:72:8e:8c:1d:ba: 87:c6:1c:48:73:55:bb:e8:27:c7:9e:31:da:20:64: 7b:23:b1:33:b0:45:c0:56:ce:9d:46:df:7e:28:48: 3b:65:85:27:63:78:52:c0:02:4c:89:9a:9a:aa:e5: 50:0e:ff:a4:d9:60:5a:9f:15:fb:aa:cd:3c:97:b4: 9a:22:90:26:eb:c4:d2:0f:6b:16:ea:4d:dd:82:94: 19:ec:70:5c:5a:ec:31:d2:a3:a8:6e:f5:e2:c1:11: 5a:c3:6b:73:a6:84:9e:b5:46:b5:30:df:44:b2:b8: dc:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:DA:55:E1:A8:D9:67:6E:09:3F:BF:57:97:D2:FE:AC:9E:9B:6E:82 X509v3 Authority Key Identifier: keyid:04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:c1:dd:4d:dc:fc:3d:43:ba:1b:85:a2:22:da:9c:76:74:dd: 70:7b:d2:71:60:b0:3f:cd:e2:63:34:e5:d8:f9:c7:e5:00:cf: 4c:9e:75:d1:e4:1a:91:df:ce:d0:be:a3:ae:cd:89:ac:30:7c: 2e:5a:8f:63:20:7b:85:bb:68:9d:cf:fd:d8:4b:5d:02:70:80: a2:6d:f1:4c:10:2a:c3:a1:f9:8c:ce:cb:34:dd:ef:7a:1c:5a: b0:fc:7c:8d:72:08:c3:c8:4a:c6:50:62:fe:cb:15:4c:ab:23: 2b:34:63:0e:68:15:f5:fe:0e:29:f9:69:f3:bb:7a:5f:51:7d: 62:30:00:64:67:00:25:67:f9:80:d4:f5:ea:cc:23:49:08:c4: a5:78:e3:3d:22:44:17:82:c2:29:e2:72:61:b7:b9:ff:96:a5: f3:10:ba:5e:4a:d8:74:eb:33:86:be:6b:69:58:ad:93:63:e7: de:98:77:f3:e5:3a:d2:28:ea:9e:cd:80:8a:12:04:d5:43:54: 85:07:07:bd:d1:63:58:5a:1f:f7:3f:f4:4d:69:d2:4e:14:c3: b1:f9:6a:3a:f0:05:4e:74:5b:38:5e:aa:c8:0f:bb:9b:57:39: 62:20:99:58:96:b5:31:3b:67:10:ba:11:11:15:b2:f4:33:13: f4:59:c2:93 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA3MjExMTAvBgNVBAUTKDA0RDg0ODIxRTEzQjgwMzAzMzU0QzRCRTM0MzMxRDUx MTFGMkJDQTYwHhcNMjYwMzI1MDE0NzQyWhcNMjYwNDAxMDE0NzQyWjAYMRYwFAYD VQQDEw02OWMzM2ViZi0wZDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsnaZ/aJ7LwCioPcEWlsz/9GNIbn5F+wNWI/tUOml5uh11UB9G4tP+Gzylbro qdcD/nMVG8wcGexseHB13WAHy39oUFcRMLmf8URLf9HfGVVhxgV4P+Y9hb5pcAqO dB3knY/8QQdWuG1t0DOq8unWprH5tojsGbvPX6uQs3bJr4IDxoLRHY2pdvTmJMCK 1JpMco6MHbqHxhxIc1W76CfHnjHaIGR7I7EzsEXAVs6dRt9+KEg7ZYUnY3hSwAJM iZqaquVQDv+k2WBanxX7qs08l7SaIpAm68TSD2sW6k3dgpQZ7HBcWuwx0qOobvXi wRFaw2tzpoSetUa1MN9Esrjc3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOzaVeGo 2WduCT+/V5fS/qyem26CMB8GA1UdIwQYMBaAFATYSCHhO4AwM1TEvjQzHVER8rym MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDcyMS9DOTEyN0IzRUFE QzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dEQXpWTVMtTkRNZFVSSHl2 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JOaElJZUU3Z0RBelZNUy1ORE1kVVJIeXZLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDcyMS9DOTEyN0IzRUFEQzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dE QXpWTVMtTkRNZFVSSHl2S1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMsHdTdz8PUO6G4WiItqcdnTdcHvScWCwP83iYzTl2PnH5QDPTJ510eQakd/O 0L6jrs2JrDB8LlqPYyB7hbtonc/92EtdAnCAom3xTBAqw6H5jM7LNN3vehxasPx8 jXIIw8hKxlBi/ssVTKsjKzRjDmgV9f4OKflp87t6X1F9YjAAZGcAJWf5gNT16swj SQjEpXjjPSJEF4LCKeJyYbe5/5al8xC6XkrYdOszhr5raVitk2Pn3ph38+U60ijq ns2AihIE1UNUhQcHvdFjWFof9z/0TWnSThTDsflqOvAFTnRbOF6qyA+7m1c5YiCZ WJa1MTtnELoRERWy9DMT9FnCkw== -----END CERTIFICATE-----Generated at Thu Mar 26 08:58:16 2026 by rpki-client