$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft File: bX2AV2xLO-av9DH40yM49x_fAd0.mft (raw, json) Hash identifier: QDak0jVWPriri3AkzU07sUQv5RIbNCCkjkuhsWuKpOU= Subject key identifier: 91:0F:AB:22:A3:A9:5F:27:67:B6:FD:B6:ED:6F:E1:03:BE:81:5A:B5 Authority key identifier: 6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD Certificate issuer: /CN=A91FC1B8/serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Certificate serial: 0F39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft Manifest number: 0F2E Signing time: Tue 24 Mar 2026 17:27:06 +0000 Manifest this update: Tue 24 Mar 2026 17:27:05 +0000 Manifest next update: Tue 31 Mar 2026 17:27:05 +0000 Files and hashes: 1: bX2AV2xLO-av9DH40yM49x_fAd0.crl (hash: ssV8OSjIFigfClaikfA1xRm5BJgUc1bsCNrN5Bgdi+M=) 2: DA481A0CB61811F0ABB14C31C4F9AE02.roa (hash: RiZl8jCvbX7r5OvETTD24VIJBOcLys+YJ9YI4Mrkp2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:27:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3897 (0xf39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1B8, serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Validity Not Before: Mar 24 17:27:05 2026 GMT Not After : Mar 31 17:27:05 2026 GMT Subject: CN=69c2c969-f12c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b3:21:86:db:e3:78:26:df:a2:aa:38:07:99: 08:60:2a:f0:8c:bc:e4:a0:ab:fe:ef:1d:c4:d8:73: d0:1e:5b:b2:9f:af:75:f1:6b:52:86:fa:0c:0b:2e: 52:10:6c:7f:6b:0c:47:62:56:97:65:4b:c7:1c:f7: e8:e4:28:54:17:6d:fc:19:2f:f2:c4:65:ad:4c:31: 40:12:04:17:24:4f:1b:71:91:38:ce:e7:eb:b9:cc: 53:10:9d:81:d7:84:d3:6e:f0:ab:62:a6:0e:58:50: 11:2a:fa:de:18:15:22:c4:1e:0f:b0:ff:1f:18:35: ec:8d:5f:01:24:30:c8:55:48:b8:22:67:66:a2:cf: 43:32:50:8c:a7:4d:85:ef:b4:6e:64:ad:35:7a:94: 92:e7:70:52:22:87:3b:3e:a8:6d:62:21:c5:13:7c: ff:68:ae:2e:85:16:91:a6:48:0b:29:a8:fb:d6:75: 4e:76:e6:29:46:45:54:a1:e3:a4:7a:ed:e7:58:58: 3a:44:ff:36:d6:3d:6b:dc:ad:2c:84:f1:ac:f5:e4: 7d:17:be:a8:2e:a0:6d:9e:0f:02:bb:db:f1:67:7b: 8a:ad:35:5b:a3:8d:3b:ea:51:6e:19:26:39:a3:f2: 96:de:bf:a3:94:3c:0d:08:25:2d:2d:04:c1:d4:16: 23:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:0F:AB:22:A3:A9:5F:27:67:B6:FD:B6:ED:6F:E1:03:BE:81:5A:B5 X509v3 Authority Key Identifier: keyid:6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:cf:8e:bb:1b:d5:ed:0d:c0:87:34:0b:e0:e8:5d:f4:1a:ef: 63:0f:6d:ea:11:f3:ba:02:d7:d8:44:cf:c8:e2:54:00:4c:58: 74:16:fb:10:ef:9e:d6:ae:9a:66:64:91:5a:e8:dc:2f:2d:bf: 42:b9:4c:5c:c0:b0:4c:93:3f:96:1f:85:d7:fa:d9:6a:89:96: 4b:9c:ab:83:40:30:49:2a:52:78:e1:06:20:d3:3d:7f:30:5e: ba:35:74:3b:42:da:db:9a:63:22:bd:57:38:50:30:00:d8:a4: ae:64:02:1b:4c:db:0b:83:2b:0d:11:e6:5d:2b:51:80:dd:78: c3:d2:5a:64:11:4a:25:bc:e4:95:ea:09:36:fb:45:5e:8b:d3: 3a:81:57:74:e8:86:50:fe:6a:36:42:c1:0c:7b:bc:ad:d6:91: 93:01:53:11:80:54:ec:e2:1a:ba:fe:86:25:f6:97:1e:49:22: 2c:50:73:d8:6d:bd:e8:8b:06:01:37:a6:66:39:cf:0f:35:04: 95:c4:3b:a8:f4:33:e8:35:ee:2d:0b:c3:39:1a:2f:50:fc:29: 83:bc:79:92:cd:26:b8:92:57:cf:a5:e8:c6:77:fd:f9:79:50: f6:67:ef:2f:ea:eb:ac:2e:7f:d1:78:4a:c6:b9:f9:6d:3e:61: 99:9c:79:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxQjgxMTAvBgNVBAUTKDZEN0Q4MDU3NkM0QjNCRTZBRkY0MzFGOEQzMjMzOEY3 MUZERjAxREQwHhcNMjYwMzI0MTcyNzA1WhcNMjYwMzMxMTcyNzA1WjAYMRYwFAYD VQQDEw02OWMyYzk2OS1mMTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLMhhtvjeCbfoqo4B5kIYCrwjLzkoKv+7x3E2HPQHluyn6918WtShvoMCy5S EGx/awxHYlaXZUvHHPfo5ChUF238GS/yxGWtTDFAEgQXJE8bcZE4zufrucxTEJ2B 14TTbvCrYqYOWFARKvreGBUixB4PsP8fGDXsjV8BJDDIVUi4Imdmos9DMlCMp02F 77RuZK01epSS53BSIoc7PqhtYiHFE3z/aK4uhRaRpkgLKaj71nVOduYpRkVUoeOk eu3nWFg6RP821j1r3K0shPGs9eR9F76oLqBtng8Cu9vxZ3uKrTVbo4076lFuGSY5 o/KW3r+jlDwNCCUtLQTB1BYjowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJEPqyKj qV8nZ7b9tu1v4QO+gVq1MB8GA1UdIwQYMBaAFG19gFdsSzvmr/Qx+NMjOPcf3wHd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFCOC9GQkRFOTlGQTkw RkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8tYXY5REg0MHlNNDl4X2ZB ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYMkFWMnhMTy1hdjlESDQweU00OXhfZkFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFCOC9GQkRFOTlGQTkwRkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8t YXY5REg0MHlNNDl4X2ZBZDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAa8+OuxvV7Q3AhzQL4Ohd9BrvYw9t6hHzugLX2ETPyOJUAExYdBb7EO+e1q6a ZmSRWujcLy2/QrlMXMCwTJM/lh+F1/rZaomWS5yrg0AwSSpSeOEGINM9fzBeujV0 O0La25pjIr1XOFAwANikrmQCG0zbC4MrDRHmXStRgN14w9JaZBFKJbzkleoJNvtF XovTOoFXdOiGUP5qNkLBDHu8rdaRkwFTEYBU7OIauv6GJfaXHkkiLFBz2G296IsG ATemZjnPDzUElcQ7qPQz6DXuLQvDORovUPwpg7x5ks0muJJXz6Xoxnf9+XlQ9mfv L+rrrC5/0XhKxrn5bT5hmZx5qQ== -----END CERTIFICATE-----Generated at Thu Mar 26 06:57:58 2026 by rpki-client