$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: e43dm6M8/L9ebtEFEzRMB2nycd8Uq/OqQ9APqp4dmHE= Subject key identifier: 47:F0:2F:DD:D3:CF:05:00:FE:85:F0:90:3F:1D:BD:6C:86:6A:A0:D0 Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 01DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 01D8 Signing time: Sun 01 Mar 2026 23:53:09 +0000 Manifest this update: Sun 01 Mar 2026 23:53:08 +0000 Manifest next update: Sun 08 Mar 2026 23:53:08 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: 7yf3LIcDwMuQxRCB8ybXAX2D7an36OUcY4eizcGyAw0=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: MzBqBNOieBSY9GInzC0v3uqqkT/gsysN6ytNDyiS4fg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:53:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F, serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Mar 1 23:53:08 2026 GMT Not After : Mar 8 23:53:08 2026 GMT Subject: CN=69a4d165-8ed6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:78:03:ab:6c:92:dd:a7:f4:c5:27:3a:0a:52: 96:d3:ae:37:81:15:14:f5:45:49:55:59:eb:99:2c: ec:0c:0e:a8:b2:40:55:98:e3:f3:a6:dd:16:a4:8a: 75:2e:bb:1b:fa:df:3b:1c:24:fb:9d:ba:77:ec:cb: f3:3c:42:db:56:77:17:fb:66:63:13:d4:6e:96:e4: 0e:85:01:5b:84:a1:2b:9e:03:4d:b9:5f:2e:ef:e3: 58:56:d0:19:bf:93:ee:35:05:ed:3d:11:99:87:d2: f6:15:e0:be:b7:c6:df:77:d6:2e:61:c0:3c:6c:2a: d6:1e:00:09:c7:b0:aa:3c:fa:90:b2:2f:d1:8d:8a: 59:4e:77:6b:6f:6b:d8:25:17:88:27:6e:45:83:5a: 7d:a2:5f:82:ea:5c:44:3f:16:ef:d8:db:15:8f:b8: 28:9d:95:5c:4f:85:fc:b0:a5:24:09:47:a4:d9:48: ab:ec:f7:cc:7b:9e:84:be:24:57:58:ae:99:0b:d4: b6:c9:ab:18:d2:db:0a:c4:20:d1:a5:24:01:09:33: 03:a3:fb:06:5d:fe:fb:28:16:f2:55:c9:5d:6b:cf: d7:f5:41:90:c2:12:15:76:7e:9e:e7:22:98:7c:f0: e8:dd:a4:0a:6d:57:1c:26:8f:44:7a:d7:6a:eb:d6: 07:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:F0:2F:DD:D3:CF:05:00:FE:85:F0:90:3F:1D:BD:6C:86:6A:A0:D0 X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:ad:a5:41:68:36:2c:8c:29:30:31:c6:62:2d:8e:59:26:ff: d5:2d:27:6c:e6:b6:a3:ea:e0:60:44:c5:2d:29:c7:77:3e:bf: 2f:14:3f:79:47:04:2b:6d:ab:9b:78:f4:d9:ae:ac:dd:00:f0: 30:36:c8:04:94:f6:8c:db:ca:cb:2b:06:00:17:98:75:3b:00: 92:2b:1a:4e:f2:f2:a8:d5:75:05:d3:88:35:15:45:da:a3:2f: 6e:c9:ee:23:b6:54:b1:b5:89:2e:1c:16:5e:26:5b:8f:e6:23: f1:09:5f:ba:5b:6b:38:46:18:fa:6d:d8:0a:31:10:9d:ab:9b: 11:dd:d3:94:90:d4:65:2a:fa:f4:b4:e9:46:39:92:2a:04:6c: b1:9c:c4:4f:fd:05:cc:77:f6:20:fd:90:9a:b9:fc:f9:f6:f1: d6:3a:b5:5f:e4:01:b2:64:cb:9f:89:c6:3d:9f:74:d6:0e:c8: 29:f1:7e:f1:6f:42:67:5e:ab:2e:df:db:91:70:1d:af:65:0e: 09:39:a5:7b:fc:6f:bf:65:09:34:58:9a:bd:e4:66:8d:36:73: d7:08:59:97:51:fe:b4:8f:a7:4f:5a:2f:17:b7:30:ba:47:e4: 6e:1d:b8:44:b6:37:8a:09:09:6d:25:e2:61:83:de:ac:e6:dd: 57:80:3a:27 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjYwMzAxMjM1MzA4WhcNMjYwMzA4MjM1MzA4WjAYMRYwFAYD VQQDEw02OWE0ZDE2NS04ZWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3gDq2yS3af0xSc6ClKW0643gRUU9UVJVVnrmSzsDA6oskBVmOPzpt0WpIp1 Lrsb+t87HCT7nbp37MvzPELbVncX+2ZjE9RuluQOhQFbhKErngNNuV8u7+NYVtAZ v5PuNQXtPRGZh9L2FeC+t8bfd9YuYcA8bCrWHgAJx7CqPPqQsi/RjYpZTndrb2vY JReIJ25Fg1p9ol+C6lxEPxbv2NsVj7gonZVcT4X8sKUkCUek2Uir7PfMe56EviRX WK6ZC9S2yasY0tsKxCDRpSQBCTMDo/sGXf77KBbyVclda8/X9UGQwhIVdn6e5yKY fPDo3aQKbVccJo9Eetdq69YH0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEfwL93T zwUA/oXwkD8dvWyGaqDQMB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqa2lQWg2LIwpMDHGYi2OWSb/1S0nbOa2o+rgYETFLSnHdz6/LxQ/eUcEK22r m3j02a6s3QDwMDbIBJT2jNvKyysGABeYdTsAkisaTvLyqNV1BdOINRVF2qMvbsnu I7ZUsbWJLhwWXiZbj+Yj8QlfultrOEYY+m3YCjEQnaubEd3TlJDUZSr69LTpRjmS KgRssZzET/0FzHf2IP2Qmrn8+fbx1jq1X+QBsmTLn4nGPZ901g7IKfF+8W9CZ16r Lt/bkXAdr2UOCTmle/xvv2UJNFiaveRmjTZz1whZl1H+tI+nT1ovF7cwukfkbh24 RLY3igkJbSXiYYPerObdV4A6Jw== -----END CERTIFICATE-----Generated at Mon Mar 2 13:23:14 2026 by rpki-client