$ rpki-client -vvf rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft File: bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft (raw, json) Hash identifier: imhSaHYEeMwQL8wdmhgJAPOy5nuX9IPM6elVsvycDoA= Subject key identifier: BB:9B:B1:F7:EA:AD:86:BF:E9:3E:DB:31:1D:64:B5:7C:64:33:D6:80 Authority key identifier: 6D:F0:93:56:60:B5:24:D2:A8:08:06:43:68:B0:AF:C5:65:38:A6:9A Certificate issuer: /CN=A912978E/serialNumber=6DF0935660B524D2A808064368B0AFC56538A69A Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft Manifest number: 01D1 Signing time: Sun 01 Mar 2026 04:25:07 +0000 Manifest this update: Sun 01 Mar 2026 04:25:07 +0000 Manifest next update: Sun 08 Mar 2026 04:25:07 +0000 Files and hashes: 1: bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl (hash: qSVwbvggZEbRZIGlfDH15Y17znkwfJAUO3HY88g8Dro=) 2: 59923F2CA72011EEA63ABF4AC4F9AE02.roa (hash: eNZ801LzfUJJfFcQXfd+LEPeNYyxq0IQnV6OW/T3oK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912978E, serialNumber=6DF0935660B524D2A808064368B0AFC56538A69A Validity Not Before: Mar 1 04:25:07 2026 GMT Not After : Mar 8 04:25:07 2026 GMT Subject: CN=69a3bfa3-8b75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3f:6c:7e:70:43:eb:38:e6:18:49:d6:2b:b3: c2:e9:f1:0a:5a:50:28:df:c0:20:56:63:11:f6:75: f1:1e:99:00:23:1e:d7:42:3e:7a:bc:db:66:c8:84: 6a:70:99:6a:06:64:77:d9:07:05:8a:c5:57:6e:1a: fd:7c:f5:25:0e:4f:6c:15:91:0d:bb:88:f0:5e:a7: 3a:82:e6:79:6a:4a:b4:d7:6b:9f:a6:2c:17:54:07: 91:e6:17:89:b3:40:93:05:e4:3d:8c:02:96:c1:ca: df:2a:d8:22:4f:6c:25:4f:63:28:c7:86:e7:93:2c: ba:2d:5c:fd:ac:7c:aa:da:a8:b4:ed:04:27:d1:0b: 1f:83:82:9c:f0:fc:1b:0b:ff:3d:82:8f:72:89:89: 38:c8:ab:d5:8f:35:45:6b:96:99:6b:c8:d0:77:4f: 59:25:2b:80:00:11:33:6c:f0:b0:69:96:29:9d:e5: d8:e7:5b:f4:7c:b3:fa:4a:27:88:3b:8c:39:1a:9f: 12:18:3e:ba:fd:de:a5:7e:98:86:4e:21:bc:86:58: 5a:74:4e:c7:24:e3:c0:85:cb:d7:7c:aa:f3:90:80: 99:d0:1a:d6:87:c1:10:21:2b:1d:cf:71:fd:92:32: 26:4f:4c:9e:7c:81:90:8a:f7:2c:9c:42:e7:ef:37: 04:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:9B:B1:F7:EA:AD:86:BF:E9:3E:DB:31:1D:64:B5:7C:64:33:D6:80 X509v3 Authority Key Identifier: keyid:6D:F0:93:56:60:B5:24:D2:A8:08:06:43:68:B0:AF:C5:65:38:A6:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:a6:71:58:82:fc:5e:29:e7:39:ee:07:c4:c3:75:ac:88:1b: 95:18:d3:a8:72:e0:d0:42:ec:30:d4:27:98:f9:d6:76:f6:f0: 1b:74:ae:28:5b:63:ca:32:8f:2b:29:e6:dd:fb:07:c9:bb:4b: 91:42:58:e5:66:21:36:c2:49:97:ba:93:bf:28:d8:f3:e6:bf: 96:8f:cf:c3:ff:6d:d9:b4:30:7d:e3:a8:83:44:89:c2:f0:c9: 74:df:86:c2:b0:79:95:ed:60:9a:a5:d7:1a:8e:e1:85:df:8b: 1d:d1:de:77:f7:3a:c4:a5:bf:4e:60:9d:9c:3f:25:a9:4e:4c: bb:95:40:12:dc:00:45:b1:cc:9b:d6:2f:d4:3c:2a:9f:67:f4: d4:82:27:9b:fc:bb:59:f9:1a:9d:ed:d1:fe:b4:66:65:c3:ec: 84:9c:50:80:7e:be:c2:1d:05:07:eb:09:ac:a8:72:bb:ae:f8: 65:b8:c7:dc:93:29:9e:75:d1:1d:ac:88:49:27:e0:1a:5a:03: 51:8b:07:21:9b:14:b8:47:63:db:21:33:76:a7:f4:b2:2d:cc: ef:1d:1d:07:84:60:43:98:97:e9:a6:62:57:93:2f:3c:6d:34: 34:f7:ae:52:22:25:82:2a:6b:62:74:fa:9c:db:de:19:f8:11: 7a:3d:4c:61 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3OEUxMTAvBgNVBAUTKDZERjA5MzU2NjBCNTI0RDJBODA4MDY0MzY4QjBBRkM1 NjUzOEE2OUEwHhcNMjYwMzAxMDQyNTA3WhcNMjYwMzA4MDQyNTA3WjAYMRYwFAYD VQQDDA02OWEzYmZhMy04Yjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyT9sfnBD6zjmGEnWK7PC6fEKWlAo38AgVmMR9nXxHpkAIx7XQj56vNtmyIRq cJlqBmR32QcFisVXbhr9fPUlDk9sFZENu4jwXqc6guZ5akq012ufpiwXVAeR5heJ s0CTBeQ9jAKWwcrfKtgiT2wlT2Mox4bnkyy6LVz9rHyq2qi07QQn0Qsfg4Kc8Pwb C/89go9yiYk4yKvVjzVFa5aZa8jQd09ZJSuAABEzbPCwaZYpneXY51v0fLP6SieI O4w5Gp8SGD66/d6lfpiGTiG8hlhadE7HJOPAhcvXfKrzkICZ0BrWh8EQISsdz3H9 kjImT0yefIGQivcsnELn7zcEcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLubsffq rYa/6T7bMR1ktXxkM9aAMB8GA1UdIwQYMBaAFG3wk1ZgtSTSqAgGQ2iwr8VlOKaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTc4RS9ENUFFN0ZBQzUz Q0ExMUVFODA0OTkzNUVDNEY5QUUwMi9iZkNUVm1DMUpOS29DQVpEYUxDdnhXVTRw cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JmQ1RWbUMxSk5Lb0NBWkRhTEN2eFdVNHBwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTc4RS9ENUFFN0ZBQzUzQ0ExMUVFODA0OTkzNUVDNEY5QUUwMi9iZkNUVm1DMUpO S29DQVpEYUxDdnhXVTRwcG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAh6ZxWIL8XinnOe4HxMN1rIgblRjTqHLg0ELsMNQnmPnWdvbwG3SuKFtjyjKP Kynm3fsHybtLkUJY5WYhNsJJl7qTvyjY8+a/lo/Pw/9t2bQwfeOog0SJwvDJdN+G wrB5le1gmqXXGo7hhd+LHdHed/c6xKW/TmCdnD8lqU5Mu5VAEtwARbHMm9Yv1Dwq n2f01IInm/y7Wfkane3R/rRmZcPshJxQgH6+wh0FB+sJrKhyu674ZbjH3JMpnnXR HayISSfgGloDUYsHIZsUuEdj2yEzdqf0si3M7x0dB4RgQ5iX6aZiV5MvPG00NPeu UiIlgiprYnT6nNveGfgRej1MYQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:18:42 2026 by rpki-client