$ rpki-client -vvf rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft File: BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft (raw, json) Hash identifier: dGTx3b3J4jn3U+Mvl7gUYNlQ76oV+3guEkxdcF1yVAM= Subject key identifier: 35:E9:C3:9F:69:ED:31:DF:62:3E:44:E2:2E:65:1E:E7:DD:34:28:98 Authority key identifier: 06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 Certificate issuer: /CN=A9122905/serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Certificate serial: 02AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft Manifest number: 02A6 Signing time: Mon 02 Mar 2026 03:07:45 +0000 Manifest this update: Mon 02 Mar 2026 03:07:43 +0000 Manifest next update: Mon 09 Mar 2026 03:07:43 +0000 Files and hashes: 1: BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl (hash: 8mYLTDGW1hhWvACxlF7F77n7TiNh2uBmkOoI86mDT8w=) 2: 8BFE9EA6335911EDBC60AC44C4F9AE02.roa (hash: gaiP1us9ZVKBdlJoHfbtQhGqWeKxEzvnmSCb9KMbw0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:07:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 684 (0x2ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122905, serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Validity Not Before: Mar 2 03:07:43 2026 GMT Not After : Mar 9 03:07:43 2026 GMT Subject: CN=69a4ff01-8c62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3c:9b:f7:c5:ce:a2:87:8e:26:35:b3:3b:0a: 72:1b:38:a0:96:55:fd:ab:f8:67:9a:db:de:fc:d0: 65:01:03:1e:01:7d:f3:03:5d:ac:32:eb:e1:45:89: 3b:49:54:24:26:03:92:72:6e:ca:6b:3e:36:5e:ac: 7d:84:58:1b:b1:43:5b:5c:c9:45:46:6e:99:a9:dc: e3:90:f0:11:63:b6:f0:49:bf:c5:c8:99:e7:58:58: de:f5:94:d5:4b:56:c5:bc:53:47:ff:ac:7b:57:8d: 19:b0:ef:12:79:2b:62:91:e6:5b:8a:93:f5:fd:ca: 93:58:03:14:68:2a:24:07:f7:ff:9b:36:7b:b1:35: fd:b2:41:76:84:3f:42:49:a5:7a:16:36:db:38:98: 87:9c:06:7c:94:67:05:e8:c3:12:be:de:77:7b:5d: a0:49:98:ca:f8:49:70:24:3e:ed:c5:60:09:46:46: 9f:8a:ee:de:b7:3a:9f:23:fa:13:54:01:60:8b:7e: 69:da:38:6b:1d:17:99:f6:bd:6c:b9:5e:b1:87:0c: 17:3f:85:2a:f2:05:dd:c0:c1:d7:35:55:b4:96:52: 65:4f:9b:97:58:f2:36:7d:37:4b:5c:d8:b8:88:9c: 26:33:bb:26:2c:6e:65:50:ee:3d:d1:f4:81:42:24: a3:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:E9:C3:9F:69:ED:31:DF:62:3E:44:E2:2E:65:1E:E7:DD:34:28:98 X509v3 Authority Key Identifier: keyid:06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:5d:77:b5:03:a3:3f:e6:47:87:2b:e1:2c:6f:c7:78:cd:e1: 0b:4b:44:51:aa:27:56:f7:86:62:c8:79:5c:bd:86:c3:36:30: 05:92:9e:31:79:30:82:b4:09:da:01:af:0e:53:ec:ae:2b:4f: fc:65:35:64:3b:e4:22:45:41:5d:ae:a8:d1:90:3d:bb:2b:a5: ec:a9:11:36:09:0c:df:79:42:81:ca:d1:8f:a0:9f:0e:a4:3e: 83:e1:dd:df:77:bf:1b:e4:6f:f3:9d:86:48:39:03:ec:e2:61: 06:6f:1a:34:d7:4f:92:ee:39:69:35:03:ce:2f:55:d0:ab:b8: 94:26:01:7a:3a:0a:a1:5e:b3:1d:27:b2:89:e6:d4:87:aa:37: cb:cb:5c:14:d6:ce:8e:07:20:71:70:53:73:5b:da:84:3f:ae: db:ad:17:2d:01:71:bd:30:c1:21:3e:c1:da:73:45:9c:7a:f7: 4e:63:7f:d2:25:14:30:71:99:a8:ef:a0:49:89:7f:a3:30:7d: cc:87:9c:27:ec:4b:22:5d:34:d8:0a:1b:66:3f:8b:fa:e6:2b: 86:4b:40:1f:e4:c8:a2:d7:51:92:8d:36:31:9a:ff:00:fe:2e: d0:04:2c:97:63:bc:d6:6e:0c:25:fe:3f:5e:a6:b9:04:65:a8: 89:bc:09:cf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI5MDUxMTAvBgNVBAUTKDA2NDZDNTIyOTFENUNENERGNEEwRkY3ODY3ODRGQ0Y1 MjgzNDYzMjQwHhcNMjYwMzAyMDMwNzQzWhcNMjYwMzA5MDMwNzQzWjAYMRYwFAYD VQQDEw02OWE0ZmYwMS04YzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvzyb98XOooeOJjWzOwpyGzigllX9q/hnmtve/NBlAQMeAX3zA12sMuvhRYk7 SVQkJgOScm7Kaz42Xqx9hFgbsUNbXMlFRm6ZqdzjkPARY7bwSb/FyJnnWFje9ZTV S1bFvFNH/6x7V40ZsO8SeStikeZbipP1/cqTWAMUaCokB/f/mzZ7sTX9skF2hD9C SaV6FjbbOJiHnAZ8lGcF6MMSvt53e12gSZjK+ElwJD7txWAJRkafiu7etzqfI/oT VAFgi35p2jhrHReZ9r1suV6xhwwXP4Uq8gXdwMHXNVW0llJlT5uXWPI2fTdLXNi4 iJwmM7smLG5lUO490fSBQiSj6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDXpw59p 7THfYj5E4i5lHufdNCiYMB8GA1UdIwQYMBaAFAZGxSKR1c1N9KD/eGeE/PUoNGMk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjkwNS8xMUVCMDg2QTMz NTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpVMzBvUDk0WjRUODlTZzBZ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JrYkZJcEhWelUzMG9QOTRaNFQ4OVNnMFl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjkwNS8xMUVCMDg2QTMzNTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpV MzBvUDk0WjRUODlTZzBZeVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAv113tQOjP+ZHhyvhLG/HeM3hC0tEUaonVveGYsh5XL2GwzYwBZKeMXkwgrQJ 2gGvDlPsritP/GU1ZDvkIkVBXa6o0ZA9uyul7KkRNgkM33lCgcrRj6CfDqQ+g+Hd 33e/G+Rv852GSDkD7OJhBm8aNNdPku45aTUDzi9V0Ku4lCYBejoKoV6zHSeyiebU h6o3y8tcFNbOjgcgcXBTc1vahD+u260XLQFxvTDBIT7B2nNFnHr3TmN/0iUUMHGZ qO+gSYl/ozB9zIecJ+xLIl002AobZj+L+uYrhktAH+TIotdRko02MZr/AP4u0AQs l2O81m4MJf4/Xqa5BGWoibwJzw== -----END CERTIFICATE-----Generated at Mon Mar 2 14:44:01 2026 by rpki-client