$ rpki-client -vvf rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft File: bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft (raw, json) Hash identifier: CpewxwzeSL8gHI2nmxENZRkKlQq2jQzU4kqPgXS9Y1Q= Subject key identifier: F7:6A:95:35:71:2C:9B:29:12:F6:03:1A:82:36:22:20:14:28:0E:5E Authority key identifier: 6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 Certificate issuer: /CN=A91A546E/serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Certificate serial: 09DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft Manifest number: 0991 Signing time: Thu 16 Apr 2026 20:01:56 +0000 Manifest this update: Thu 16 Apr 2026 20:01:55 +0000 Manifest next update: Thu 23 Apr 2026 20:01:55 +0000 Files and hashes: 1: bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl (hash: tkocMaYmq92WuC1bx2561wazA79svCQipjlpEqUrYFI=) 2: 50805C5C6CF911F0A63D4C65C4F9AE02.roa (hash: 7GoPVvNzOxqz0b0bUBa7Sq4uOYDaYVX7ArTVXs9QZv4=) 3: 88252000B55C11ECA9565039C4F9AE02.roa (hash: vpFh2/2Ww8n4gYMHhWBePvd1Fheir2EOHQAoooMfRBo=) 4: CC3B5938B55911EC9256FE19C4F9AE02.roa (hash: lyIUpVCXgqLP2olWGXoY8duGQEhruwus1GboROWSH00=) 5: CCBF0CF6B55911EC9256FE19C4F9AE02.roa (hash: xihXskffyMmX6uPdr43LH17SKnUp1mNtBqH6MhLI3sk=) 6: F2A462E66B6C11F0B453B656C4F9AE02.roa (hash: HMcEW/S22FGTvhiPakps8LsqQxXUXp8fWhqX+TVm2Vw=) 7: 1A8C65506B6E11F0AEECA858C4F9AE02.roa (hash: NpbVQQRWWoFXTrGdsKM32fOCA5zAVZsblj+8rYIeUc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:01:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2525 (0x9dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A546E, serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Validity Not Before: Apr 16 20:01:55 2026 GMT Not After : Apr 23 20:01:55 2026 GMT Subject: CN=69e14034-2808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8a:51:07:93:fc:95:e7:01:d9:c5:2c:a4:4b: 39:d0:17:65:59:59:97:34:d1:8a:1a:6c:99:7a:2c: e5:fa:4d:b9:8e:26:dc:46:15:4e:84:6b:0f:f3:1d: e7:68:0d:8a:2e:e4:ef:4b:95:31:95:2f:42:49:4d: 6b:51:be:47:12:93:4f:31:2a:37:67:72:e3:44:82: 30:42:b1:83:06:5c:70:1e:30:79:ec:35:22:6c:8f: 20:db:f5:43:a9:51:ba:18:26:84:07:2c:5d:ba:97: 04:56:74:b6:34:6a:8d:86:bc:9c:f2:e3:6d:ca:14: e4:8d:85:7f:e4:b4:7a:4e:5d:2a:bb:9b:3b:6f:be: a0:a6:eb:a7:9e:ee:56:70:93:1b:99:d2:ee:bc:1d: e8:72:aa:23:04:46:f4:b9:eb:c8:57:b7:69:59:3f: 06:21:ba:10:49:6e:13:48:62:27:65:40:ee:0f:e6: 97:cc:bc:2d:48:fb:6c:dd:3b:9e:b3:d3:2e:45:af: 8e:15:bf:86:ef:19:b3:ea:ca:57:3c:7d:8e:de:ac: 2f:56:99:b2:cc:91:1a:db:9e:97:9d:92:39:c4:03: 43:d9:a0:32:a3:6a:cc:f5:e7:0e:a8:b4:38:4f:0b: 61:59:10:15:fb:89:1b:01:57:42:59:8e:1e:d1:a5: 54:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:6A:95:35:71:2C:9B:29:12:F6:03:1A:82:36:22:20:14:28:0E:5E X509v3 Authority Key Identifier: keyid:6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption db:8d:fe:99:d1:1c:e4:9b:32:8f:9d:dd:c1:01:4c:5b:f5:ac: 45:16:9b:bd:0e:e5:d5:4e:65:39:7d:e6:4c:6a:de:3d:a4:8f: 2c:27:c3:62:b8:65:e6:62:93:88:f9:f3:7f:0a:b2:09:04:97: b5:9d:f9:04:05:a2:23:51:5e:b7:0f:8d:91:f5:0f:09:db:a8: 60:76:6c:d0:fc:a9:83:34:59:1b:b4:44:25:bd:48:34:78:fd: 2b:ca:5a:d6:c2:40:95:02:93:5d:6c:4d:62:a2:7f:a2:19:b1: bb:e3:08:b2:ce:9c:d6:e2:18:e1:58:cf:7a:e0:69:b8:23:ea: ed:29:dd:eb:13:6f:5a:d6:2e:58:65:b3:45:db:96:a8:75:bd: 3a:19:11:cf:50:84:38:d3:28:8b:de:19:67:18:c2:ed:13:84: 10:18:1a:9e:30:9a:da:11:74:91:e5:3a:73:23:7e:b9:9b:e7: 38:f2:47:0a:bf:e2:a7:63:e0:bb:ec:4b:63:ee:03:aa:83:93: f6:73:3f:e7:2c:3e:13:5f:1f:70:cd:16:76:aa:23:3c:30:29: 56:ba:4e:63:80:dd:b8:bb:ad:97:5d:83:df:dd:0e:89:d1:5a: 15:0d:92:cb:5d:ea:27:ea:9b:97:11:ff:d4:9d:2c:5b:a5:b7: 5a:e9:58:d4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU0NkUxMTAvBgNVBAUTKDZDNUE1ODlGOTI0Q0U5QkVEMUZEODlGNUFGRjYzMEM5 Mjc1NzQ0MjAwHhcNMjYwNDE2MjAwMTU1WhcNMjYwNDIzMjAwMTU1WjAYMRYwFAYD VQQDEw02OWUxNDAzNC0yODA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqopRB5P8lecB2cUspEs50BdlWVmXNNGKGmyZeizl+k25jibcRhVOhGsP8x3n aA2KLuTvS5UxlS9CSU1rUb5HEpNPMSo3Z3LjRIIwQrGDBlxwHjB57DUibI8g2/VD qVG6GCaEByxdupcEVnS2NGqNhryc8uNtyhTkjYV/5LR6Tl0qu5s7b76gpuunnu5W cJMbmdLuvB3ocqojBEb0uevIV7dpWT8GIboQSW4TSGInZUDuD+aXzLwtSPts3Tue s9MuRa+OFb+G7xmz6spXPH2O3qwvVpmyzJEa256XnZI5xAND2aAyo2rM9ecOqLQ4 TwthWRAV+4kbAVdCWY4e0aVUqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPdqlTVx LJspEvYDGoI2IiAUKA5eMB8GA1UdIwQYMBaAFGxaWJ+STOm+0f2J9a/2MMknV0Qg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTQ2RS8wQ0Q0MURBOEI3 NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZiN1JfWW4xcl9Zd3lTZFhS Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JGcFluNUpNNmI3Ul9ZbjFyX1l3eVNkWFJDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTQ2RS8wQ0Q0MURBOEI3NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZi N1JfWW4xcl9Zd3lTZFhSQ0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA243+mdEc5Jsyj53dwQFMW/WsRRabvQ7l1U5lOX3mTGrePaSPLCfDYrhl5mKT iPnzfwqyCQSXtZ35BAWiI1Fetw+NkfUPCduoYHZs0PypgzRZG7REJb1INHj9K8pa 1sJAlQKTXWxNYqJ/ohmxu+MIss6c1uIY4VjPeuBpuCPq7Snd6xNvWtYuWGWzRduW qHW9OhkRz1CEONMoi94ZZxjC7ROEEBganjCa2hF0keU6cyN+uZvnOPJHCr/ip2Pg u+xLY+4DqoOT9nM/5yw+E18fcM0WdqojPDApVrpOY4DduLutl12D390OidFaFQ2S y13qJ+qblxH/1J0sW6W3WulY1A== -----END CERTIFICATE-----Generated at Fri Apr 17 10:50:15 2026 by rpki-client