$ rpki-client -vvf rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft File: b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft (raw, json) Hash identifier: xQnkyGCJ4PhzYfQkfAd8kgQUYLjp0NBffHg564nrec4= Subject key identifier: CF:D2:32:58:8E:5D:5D:A3:95:93:72:6D:F9:F8:05:EB:D3:D2:74:57 Authority key identifier: 6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 Certificate issuer: /CN=A91112BC/serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Certificate serial: 1253 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft Manifest number: 1218 Signing time: Thu 16 Apr 2026 17:05:19 +0000 Manifest this update: Thu 16 Apr 2026 17:05:19 +0000 Manifest next update: Thu 23 Apr 2026 17:05:19 +0000 Files and hashes: 1: b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl (hash: isB+fq7MaKLVe4hN3atb78Dxm897dmfHnkoMc3PDMtI=) 2: 603AD1D0AB1211EAB4E7101BC4F9AE02.roa (hash: M3CRfzSqlNZRhVkkEGGHOD14V7utL58bvWye54E532E=) 3: F85A5EB6C33911E9A9463781C4F9AE02.roa (hash: tNQn0WKojlyhAAQEIQhVJrKL+oc/0+G9M4t9TtIfX+U=) 4: 95D40AE2497311EAB4873B63C4F9AE02.roa (hash: wz+94DPGZY+ZVglM8IK7IgXcRuSuHNYaIile9ykwYR8=) 5: 531C6440CF9A11E9ABB7C168C4F9AE02.roa (hash: K98cIqiuSa8IfjyPXf2A+GJbU6KyRboIixIlZoFKYCw=) 6: F8D520505D0E11EA89C55D65C4F9AE02.roa (hash: Fe2jtCiFFPEU4Eih7VWkH9T2KOD4JxYUQyg14It7yuc=) 7: 8497885E04F911E9AF13ED31C4F9AE02.roa (hash: 2qtY5lfg53Rk8hRdrCMMLg539ABuDCFqGZzS8SsVJYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:05:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4691 (0x1253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91112BC, serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Validity Not Before: Apr 16 17:05:19 2026 GMT Not After : Apr 23 17:05:19 2026 GMT Subject: CN=69e116cf-c95a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:fe:66:62:2e:4b:7a:8c:7b:80:af:5d:cd:bd: 0b:09:0b:c1:f6:ba:c7:f6:1c:5c:33:d2:f6:8a:11: 57:c1:d6:99:8b:05:85:4a:89:d6:7b:1e:6b:b6:44: c7:00:11:98:1a:b6:eb:ad:ca:b4:16:54:68:92:80: 48:eb:a3:ee:b5:96:78:73:8a:98:80:0a:2f:33:29: 07:76:19:8b:34:b0:16:ba:63:0d:7b:7c:10:86:ea: db:a0:41:3d:57:94:5c:12:be:82:3f:5c:58:43:2f: f3:7b:ab:f0:f5:08:fe:83:43:0b:09:1e:f2:1c:14: 62:30:6b:6e:80:7c:bb:fe:fc:90:bd:43:89:f7:4b: 2a:81:0b:fd:6e:4c:58:fa:6e:7b:a2:b4:ab:46:d7: 61:07:3d:08:ae:14:3b:d9:fd:a1:71:a5:8d:99:b4: 85:10:24:2c:ff:05:ce:d7:28:24:7e:6e:50:2a:a1: 4b:74:b8:63:5d:a9:19:17:6f:bc:8f:6f:03:9c:7c: 2a:59:db:df:97:f5:1f:7d:04:31:d1:88:19:49:b7: 22:c8:8d:b2:49:10:b8:66:85:26:44:cb:fa:ad:f9: d1:81:81:ab:ac:e3:5b:f9:ba:09:c3:fb:af:33:94: e8:12:a4:c9:d1:c0:2e:18:00:b0:1e:53:f1:36:a2: 8a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:D2:32:58:8E:5D:5D:A3:95:93:72:6D:F9:F8:05:EB:D3:D2:74:57 X509v3 Authority Key Identifier: keyid:6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:aa:78:21:be:ae:2e:92:17:44:40:c6:b6:b3:1b:44:f4:5c: f4:68:d8:37:d5:06:32:16:ff:55:a7:10:71:25:3c:cc:ab:79: 4f:ad:8d:df:a5:3f:14:1f:cc:31:e7:1b:98:35:ea:0a:91:82: 07:2a:44:39:7f:bd:a3:78:44:d3:70:13:41:7b:69:c7:da:54: 31:7d:e0:f8:c7:b9:1a:90:6e:d0:08:a5:10:08:57:2e:ec:35: ed:4e:84:00:a3:31:98:2b:0e:2d:86:8b:1b:a7:8d:a8:aa:8a: 1a:a9:4f:7b:79:02:7e:6e:79:c1:ba:fd:ce:17:93:e4:16:48: 83:81:9d:9d:a2:da:49:9d:87:e2:58:61:1b:3e:54:c6:72:ef: 91:70:a7:1e:83:7c:8d:0e:c3:42:4d:38:a7:f0:bf:90:cc:a5: 8b:cc:fd:b9:bd:56:11:73:92:7d:aa:a2:cc:93:e7:cc:c9:2f: 4b:46:87:7e:df:1b:ab:41:07:39:1e:ea:f8:c7:1b:e4:fd:2b: 5e:bc:de:dc:38:2f:81:ec:d2:fa:94:30:cc:f7:37:31:4d:16: 4f:2a:c2:86:fa:34:03:5e:78:62:5b:bc:31:6b:34:83:e5:05: 83:f6:3c:d0:5f:ad:56:df:38:8d:17:55:be:87:13:90:e5:63: 83:51:55:c1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICElMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEyQkMxMTAvBgNVBAUTKDZGRjMxQjA2NTlBNkFFMTZDN0EwQTRFRTBFRTZBMjI5 MTBFQzJFMDAwHhcNMjYwNDE2MTcwNTE5WhcNMjYwNDIzMTcwNTE5WjAYMRYwFAYD VQQDEw02OWUxMTZjZi1jOTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/5mYi5Leox7gK9dzb0LCQvB9rrH9hxcM9L2ihFXwdaZiwWFSonWex5rtkTH ABGYGrbrrcq0FlRokoBI66PutZZ4c4qYgAovMykHdhmLNLAWumMNe3wQhurboEE9 V5RcEr6CP1xYQy/ze6vw9Qj+g0MLCR7yHBRiMGtugHy7/vyQvUOJ90sqgQv9bkxY +m57orSrRtdhBz0IrhQ72f2hcaWNmbSFECQs/wXO1ygkfm5QKqFLdLhjXakZF2+8 j28DnHwqWdvfl/UffQQx0YgZSbciyI2ySRC4ZoUmRMv6rfnRgYGrrONb+boJw/uv M5ToEqTJ0cAuGACwHlPxNqKKawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM/SMliO XV2jlZNybfn4BevT0nRXMB8GA1UdIwQYMBaAFG/zGwZZpq4Wx6Ck7g7moikQ7C4A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTJCQy9FQkNGMTY4MjA0 RjgxMUU5QkE1MDI0MzFDNEY5QUUwMi9iX01iQmxtbXJoYkhvS1R1RHVhaUtSRHNM Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JfTWJCbG1tcmhiSG9LVHVEdWFpS1JEc0xnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTJCQy9FQkNGMTY4MjA0RjgxMUU5QkE1MDI0MzFDNEY5QUUwMi9iX01iQmxtbXJo YkhvS1R1RHVhaUtSRHNMZ0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAF6p4Ib6uLpIXREDGtrMbRPRc9GjYN9UGMhb/VacQcSU8zKt5T62N36U/FB/M MecbmDXqCpGCBypEOX+9o3hE03ATQXtpx9pUMX3g+Me5GpBu0AilEAhXLuw17U6E AKMxmCsOLYaLG6eNqKqKGqlPe3kCfm55wbr9zheT5BZIg4GdnaLaSZ2H4lhhGz5U xnLvkXCnHoN8jQ7DQk04p/C/kMyli8z9ub1WEXOSfaqizJPnzMkvS0aHft8bq0EH OR7q+Mcb5P0rXrze3DgvgezS+pQwzPc3MU0WTyrChvo0A154Ylu8MWs0g+UFg/Y8 0F+tVt84jRdVvocTkOVjg1FVwQ== -----END CERTIFICATE-----Generated at Fri Apr 17 10:47:29 2026 by rpki-client