$ rpki-client -vvf rpki.apnic.net/member_repository/A918B909/64CA7B08EBC911F0936EDB83676F56BC/bpbq_I_Ooaf_MezeClBm17HDxHo.mft File: bpbq_I_Ooaf_MezeClBm17HDxHo.mft (raw, json) Hash identifier: iNHJ2qw3YyiYzsWn2OYyUBOFJAq5W5eAOHiYRxK9Qrs= Subject key identifier: 2C:30:89:67:B8:9A:3B:BA:EF:D3:94:B3:5C:70:7E:F9:09:2E:B3:6B Authority key identifier: 6E:96:EA:FC:8F:CE:A1:A7:FF:31:EC:DE:0A:50:66:D7:B1:C3:C4:7A Certificate issuer: /CN=A918B909/serialNumber=6E96EAFC8FCEA1A7FF31ECDE0A5066D7B1C3C47A Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bpbq_I_Ooaf_MezeClBm17HDxHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B909/64CA7B08EBC911F0936EDB83676F56BC/bpbq_I_Ooaf_MezeClBm17HDxHo.mft Manifest number: 20 Signing time: Sun 01 Mar 2026 10:20:45 +0000 Manifest this update: Sun 01 Mar 2026 10:20:44 +0000 Manifest next update: Sun 08 Mar 2026 10:20:44 +0000 Files and hashes: 1: bpbq_I_Ooaf_MezeClBm17HDxHo.crl (hash: Z7A/VQULLdpOFwruAt+Sn6CAj59UCMcWku/TxJr3RIs=) 2: EEE9D096FB5911F0B335DD54496F56BC.roa (hash: 6OTjANbCsH7alVj8xUPBjTt3S0ForgUt8vNg7J7WznU=) 3: F78ED0BAEBC911F0BD3A2F28686F56BC.roa (hash: mYlmgGrl1cpOVwk/yfFMWaMRlu5qvK9L3PPljtxzekI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B909/64CA7B08EBC911F0936EDB83676F56BC/bpbq_I_Ooaf_MezeClBm17HDxHo.crl rsync://rpki.apnic.net/member_repository/A918B909/64CA7B08EBC911F0936EDB83676F56BC/bpbq_I_Ooaf_MezeClBm17HDxHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bpbq_I_Ooaf_MezeClBm17HDxHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:20:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B909, serialNumber=6E96EAFC8FCEA1A7FF31ECDE0A5066D7B1C3C47A Validity Not Before: Mar 1 10:20:44 2026 GMT Not After : Mar 8 10:20:44 2026 GMT Subject: CN=69a412fc-06e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:36:a3:b8:89:58:79:9e:7f:e6:d3:5f:6e:d5: a9:b7:08:99:27:86:d2:67:a0:8f:71:11:a4:48:65: 3f:79:0a:a3:ce:89:f7:5f:a2:9b:1b:39:58:ec:2c: 24:c9:3f:cf:0d:b6:15:36:b7:06:67:d6:af:e9:cc: c1:e2:3a:94:dd:02:24:b6:3f:8e:86:a1:30:fc:3a: 11:a8:ce:cb:5d:f3:1e:fd:b0:12:10:62:10:bc:36: 1a:c7:57:64:da:ac:c2:a9:50:8b:76:e8:9c:59:2f: b1:66:7d:4a:fe:1c:0c:05:a7:09:0c:c6:78:9f:e6: 98:fc:bb:b7:21:af:2a:a8:fc:cc:67:c0:92:52:f6: 23:f0:19:19:e0:a9:03:4a:25:a8:04:f7:76:b3:13: 4f:cf:6e:2d:20:68:3d:9b:36:a5:fc:08:38:c1:c9: ea:d0:35:0f:be:a7:43:47:c3:02:f5:2a:ad:30:ee: ec:b7:75:d4:97:1e:20:57:fd:67:53:92:da:ae:5e: 4c:a5:32:f3:18:08:ee:65:8f:5e:78:be:bb:1a:06: 7f:78:33:fe:a1:06:4b:3e:b0:b7:cf:8e:7d:0e:7a: f2:bf:86:74:b5:0b:69:ee:33:98:50:96:7e:3e:c4: 4a:ee:e2:2e:b3:be:a0:43:5c:43:96:be:b7:25:aa: f4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:30:89:67:B8:9A:3B:BA:EF:D3:94:B3:5C:70:7E:F9:09:2E:B3:6B X509v3 Authority Key Identifier: keyid:6E:96:EA:FC:8F:CE:A1:A7:FF:31:EC:DE:0A:50:66:D7:B1:C3:C4:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B909/64CA7B08EBC911F0936EDB83676F56BC/bpbq_I_Ooaf_MezeClBm17HDxHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bpbq_I_Ooaf_MezeClBm17HDxHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B909/64CA7B08EBC911F0936EDB83676F56BC/bpbq_I_Ooaf_MezeClBm17HDxHo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:31:17:55:1b:bd:2a:9f:69:53:6d:01:bc:85:8f:e1:48:e5: 3a:d1:07:ac:a0:8d:66:13:3f:1b:ee:1c:01:41:ce:af:6f:64: d9:6c:99:a4:ed:c5:ea:9f:ac:14:dc:94:5b:c6:ed:ab:6e:d2: b5:4b:c5:a6:40:56:b6:9c:98:9b:1c:2f:14:a7:cf:f3:69:2c: b8:b0:56:be:c3:18:40:59:11:3a:b2:9f:bd:2b:a3:b9:19:a1: fb:3f:48:50:6e:44:5e:13:9b:00:b7:af:0e:19:f3:eb:87:8f: 52:24:8e:a6:ab:81:57:2a:fb:6d:b8:50:f4:5e:d9:c3:88:c4: 9b:dc:50:87:18:dc:e5:eb:26:e0:45:b0:3b:b2:a9:16:70:7d: 09:6d:42:a8:e9:d2:fb:2c:bc:b7:9f:37:fe:74:11:13:5e:10: 1d:4f:a7:a5:29:71:55:fc:be:35:5f:bd:42:ad:f8:7e:a8:c1: 9c:77:ab:2e:7a:5c:b7:6d:14:e6:8e:f7:ef:04:62:b0:e9:8a: aa:b8:f1:34:58:d2:25:5d:c1:ee:17:de:b9:2f:7d:14:0b:47: 16:bc:45:b7:43:8a:a6:08:9b:a3:06:04:cf:ef:fb:7e:c5:d6: a8:35:e2:ae:60:25:51:fc:c7:4b:d7:0a:c2:33:50:34:67:69: 1f:f1:9c:24 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QjkwOTExMC8GA1UEBRMoNkU5NkVBRkM4RkNFQTFBN0ZGMzFFQ0RFMEE1MDY2RDdC MUMzQzQ3QTAeFw0yNjAzMDExMDIwNDRaFw0yNjAzMDgxMDIwNDRaMBgxFjAUBgNV BAMTDTY5YTQxMmZjLTA2ZTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFNqO4iVh5nn/m019u1am3CJknhtJnoI9xEaRIZT95CqPOifdfopsbOVjsLCTJ P88NthU2twZn1q/pzMHiOpTdAiS2P46GoTD8OhGozstd8x79sBIQYhC8NhrHV2Ta rMKpUIt26JxZL7FmfUr+HAwFpwkMxnif5pj8u7chryqo/MxnwJJS9iPwGRngqQNK JagE93azE0/Pbi0gaD2bNqX8CDjByerQNQ++p0NHwwL1Kq0w7uy3ddSXHiBX/WdT ktquXkylMvMYCO5lj154vrsaBn94M/6hBks+sLfPjn0OevK/hnS1C2nuM5hQln4+ xEru4i6zvqBDXEOWvrclqvSjAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQULDCJZ7ia O7rv05SzXHB++Qkus2swHwYDVR0jBBgwFoAUbpbq/I/Ooaf/MezeClBm17HDxHow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThCOTA5LzY0Q0E3QjA4RUJD OTExRjA5MzZFREI4MzY3NkY1NkJDL2JwYnFfSV9Pb2FmX01lemVDbEJtMTdIRHhI by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYnBicV9JX09vYWZfTWV6ZUNsQm0xN0hEeEhvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThC OTA5LzY0Q0E3QjA4RUJDOTExRjA5MzZFREI4MzY3NkY1NkJDL2JwYnFfSV9Pb2Fm X01lemVDbEJtMTdIRHhIby5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAJMRdVG70qn2lTbQG8hY/hSOU60QesoI1mEz8b7hwBQc6vb2TZbJmk7cXqn6wU 3JRbxu2rbtK1S8WmQFa2nJibHC8Up8/zaSy4sFa+wxhAWRE6sp+9K6O5GaH7P0hQ bkReE5sAt68OGfPrh49SJI6mq4FXKvttuFD0XtnDiMSb3FCHGNzl6ybgRbA7sqkW cH0JbUKo6dL7LLy3nzf+dBETXhAdT6elKXFV/L41X71Crfh+qMGcd6suely3bRTm jvfvBGKw6YqquPE0WNIlXcHuF965L30UC0cWvEW3Q4qmCJujBgTP7/t+xdaoNeKu YCVR/MdL1wrCM1A0Z2kf8Zwk -----END CERTIFICATE-----Generated at Mon Mar 2 12:05:11 2026 by rpki-client