$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft File: BN7ay9uvpcHBT5KBe5b39QMQCig.mft (raw, json) Hash identifier: lioErxzztkFkzgZA6tsBdnH/l/5dN1Ow3tFC7A+cpZ4= Subject key identifier: 86:90:9B:A9:17:E1:7A:72:1D:ED:BE:D0:00:E5:A6:23:5E:B5:5B:32 Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft Manifest number: 0146 Signing time: Sun 01 Mar 2026 06:15:32 +0000 Manifest this update: Sun 01 Mar 2026 06:15:31 +0000 Manifest next update: Sun 08 Mar 2026 06:15:31 +0000 Files and hashes: 1: BN7ay9uvpcHBT5KBe5b39QMQCig.crl (hash: UfJ99DZuRgQfhJxy9a8n352Gu44YGEEnEqemmqURk7Y=) 2: 09EC8E16662211EFB6FA446CC4F9AE02.roa (hash: KgWGTanyX6yUWjTf/f+n7HM6qpw4Ft2mJJiD1oMoEsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:15:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36, serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: Mar 1 06:15:31 2026 GMT Not After : Mar 8 06:15:31 2026 GMT Subject: CN=69a3d984-434a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a1:15:a4:30:5d:94:a9:d2:74:1c:74:e9:ae: 75:81:aa:58:ad:0d:3c:3d:dd:f4:d0:c9:18:94:2e: ce:b0:df:24:91:7f:a8:85:fd:a8:ad:5c:fe:01:60: c5:81:4a:ce:f0:dc:60:14:eb:73:ab:dd:29:23:89: e9:35:86:a1:33:6b:ef:c4:de:fb:2c:f5:1a:ec:45: 68:bf:f8:30:f2:1c:fc:ad:8e:7f:fd:36:96:79:07: 27:2d:6a:f0:1c:de:4a:13:55:e0:25:eb:49:17:d5: 73:7b:e5:c6:cf:b0:70:e6:eb:6a:28:9f:76:d6:ab: 6a:7b:e7:40:08:d6:6c:9e:74:f6:1a:5d:0d:86:b8: 21:a7:c8:d2:35:9e:b1:1d:88:db:19:50:35:10:52: bf:78:43:23:9e:fa:bd:29:49:d6:69:e9:98:c5:0a: 9d:b7:86:f6:10:25:20:ba:29:00:fb:89:33:ce:41: 54:d7:df:37:c5:4a:6d:42:6b:f1:e1:19:f2:83:76: 86:38:e4:d7:da:3a:50:c6:21:18:17:a0:0a:e0:cd: 64:4d:b2:e9:b0:3b:d5:33:df:16:6f:2b:52:c5:c8: 16:a6:2b:5a:ae:26:8c:c2:7e:ea:2a:b2:75:ec:31: 25:68:fd:55:ee:d9:f2:7f:96:22:7d:26:a6:7e:af: 22:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:90:9B:A9:17:E1:7A:72:1D:ED:BE:D0:00:E5:A6:23:5E:B5:5B:32 X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:7f:9e:80:12:9b:5e:df:e8:41:7e:35:8f:71:f6:e2:c1:68: ad:4e:a8:31:a9:74:b7:80:89:81:57:00:1b:82:4b:2c:d4:b8: 7e:82:c3:b1:e2:78:59:eb:fd:83:cd:30:8b:4f:35:b8:e3:26: a9:3d:08:fe:9d:49:dc:5d:2b:c5:e6:dc:df:34:f7:56:d5:90: 27:9c:97:90:d3:7a:44:f2:80:1a:e0:dc:65:ad:9b:bc:06:d1: 12:85:04:d8:27:58:e5:33:d2:1a:08:a1:d8:3a:60:d3:46:8b: e2:a5:d6:7a:fa:e5:d0:a4:a9:25:f8:08:75:92:e7:9c:cc:cc: 52:9a:7f:eb:f4:4a:f5:80:03:d5:1c:3a:c9:1b:66:95:2d:53: 91:b9:58:1f:87:a5:ea:db:f5:b9:ff:66:29:22:86:b7:da:c9: 1e:cf:cc:61:9a:25:f5:31:88:0e:ef:6a:f5:a7:43:ae:e0:9c: d6:2a:be:f0:ca:54:25:2b:d4:b7:5f:cb:c4:2f:46:66:d0:a2: 57:b2:f9:ce:b4:9c:a5:e3:61:b6:1d:e0:2c:8f:d3:d6:53:ae: 59:77:b0:ba:f2:6b:43:93:0e:96:a8:a3:ae:a4:01:d5:38:b0: 84:de:fb:eb:ab:de:be:43:70:7f:d4:2f:5e:54:c8:c0:b1:24: bb:97:5c:ad -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMzYxMTAvBgNVBAUTKDA0REVEQUNCREJBRkE1QzFDMTRGOTI4MTdCOTZGN0Y1 MDMxMDBBMjgwHhcNMjYwMzAxMDYxNTMxWhcNMjYwMzA4MDYxNTMxWjAYMRYwFAYD VQQDEw02OWEzZDk4NC00MzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmqEVpDBdlKnSdBx06a51gapYrQ08Pd300MkYlC7OsN8kkX+ohf2orVz+AWDF gUrO8NxgFOtzq90pI4npNYahM2vvxN77LPUa7EVov/gw8hz8rY5//TaWeQcnLWrw HN5KE1XgJetJF9Vze+XGz7Bw5utqKJ921qtqe+dACNZsnnT2Gl0Nhrghp8jSNZ6x HYjbGVA1EFK/eEMjnvq9KUnWaemYxQqdt4b2ECUguikA+4kzzkFU1983xUptQmvx 4Rnyg3aGOOTX2jpQxiEYF6AK4M1kTbLpsDvVM98WbytSxcgWpitariaMwn7qKrJ1 7DElaP1V7tnyf5YifSamfq8iBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIaQm6kX 4XpyHe2+0ADlpiNetVsyMB8GA1UdIwQYMBaAFATe2svbr6XBwU+SgXuW9/UDEAoo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQzNi83RjQwMjNGMjI1 MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBjSEJUNUtCZTViMzlRTVFD aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQzNi83RjQwMjNGMjI1MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBj SEJUNUtCZTViMzlRTVFDaWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjH+egBKbXt/oQX41j3H24sForU6oMal0t4CJgVcAG4JLLNS4foLDseJ4Wev9 g80wi081uOMmqT0I/p1J3F0rxebc3zT3VtWQJ5yXkNN6RPKAGuDcZa2bvAbREoUE 2CdY5TPSGgih2Dpg00aL4qXWevrl0KSpJfgIdZLnnMzMUpp/6/RK9YAD1Rw6yRtm lS1TkblYH4el6tv1uf9mKSKGt9rJHs/MYZol9TGIDu9q9adDruCc1iq+8MpUJSvU t1/LxC9GZtCiV7L5zrScpeNhth3gLI/T1lOuWXewuvJrQ5MOlqijrqQB1TiwhN77 66vevkNwf9QvXlTIwLEku5dcrQ== -----END CERTIFICATE-----Generated at Sun Mar 1 20:27:44 2026 by rpki-client