$ rpki-client -vvf rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft File: bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft (raw, json) Hash identifier: 8Ov7JMYb7YXHqm8g4Kk5b9TNstC9W7r1krCyWGNRKIk= Subject key identifier: DE:34:5B:5E:B0:E5:3F:24:E0:07:26:61:42:CA:43:DB:BB:5B:D6:21 Authority key identifier: 6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 Certificate issuer: /CN=A91A546E/serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Certificate serial: 09B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft Manifest number: 0977 Signing time: Sat 28 Feb 2026 20:28:14 +0000 Manifest this update: Sat 28 Feb 2026 20:28:13 +0000 Manifest next update: Sat 07 Mar 2026 20:28:13 +0000 Files and hashes: 1: bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl (hash: TUVoQ1wYxgHH9K+vYV/gzmll+YHeT6OA1DNYA9+F0L4=) 2: 50805C5C6CF911F0A63D4C65C4F9AE02.roa (hash: olPSDCWvaweZpAfUli8fgZJJaQht5UUB+cNnsdtHWSg=) 3: F2A462E66B6C11F0B453B656C4F9AE02.roa (hash: u/IJXHcIn7lbo6iqFsAljOO6/E+7Rk3qnGcidVuOSfM=) 4: CCBF0CF6B55911EC9256FE19C4F9AE02.roa (hash: wcThOncXEAjT8ZpszyLo6l4OnTDnQ4syZMD7UYn7ez4=) 5: 1A8C65506B6E11F0AEECA858C4F9AE02.roa (hash: GHsxefrnlU5VupyXbGIMFIi7tGhmBUS8mhWsd7Ko2TE=) 6: CC3B5938B55911EC9256FE19C4F9AE02.roa (hash: YfESzO95JKDO7r7mGpLR5hQYholf9V/lBlUpUDalD40=) 7: 88252000B55C11ECA9565039C4F9AE02.roa (hash: TR+d6Rjq96WxruqKgy2u4oNd2lnUKRlYiqBdb4EEjrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 20:28:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2487 (0x9b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A546E, serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Validity Not Before: Feb 28 20:28:13 2026 GMT Not After : Mar 7 20:28:13 2026 GMT Subject: CN=69a34fde-40b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7f:d3:8e:1c:18:e5:41:0b:90:70:9d:47:d3: ed:2b:a1:73:f6:1e:ab:e0:a9:36:88:09:5b:ba:ed: 9b:a4:33:38:45:56:ff:e7:d0:bf:a6:fb:d2:7e:08: 32:b7:a0:2d:98:b0:3a:2b:3e:b7:b5:9d:8c:88:8a: 08:35:12:b1:9d:31:e5:e4:59:ce:4d:3e:38:04:e7: 8a:96:1f:7a:74:c4:d2:e5:7d:ad:78:d1:9e:e7:37: bd:43:83:b9:54:31:79:75:42:90:25:ee:3d:8c:f2: a1:dc:64:d0:3f:3b:d2:bd:da:f6:ac:33:03:b2:63: fb:5b:9e:fb:44:3f:20:93:a5:20:7d:6b:e4:ad:59: 6c:26:e2:5e:51:4d:ef:41:06:97:7f:09:9a:29:66: 55:38:8f:e8:46:55:b0:94:76:69:2e:21:c0:fb:ba: 18:31:69:4d:b4:c4:18:01:7f:e1:75:be:ea:86:96: e5:16:5a:c8:be:9d:46:88:09:49:47:6a:73:e2:ea: 9e:b0:e8:70:64:6e:0c:44:9d:86:e7:ce:97:e3:5a: e8:2f:22:4e:57:e6:1e:53:70:ee:be:04:8f:c0:57: 12:17:b9:12:72:a3:8c:bd:93:de:fc:0d:21:8d:c1: 9f:24:d3:80:2c:26:86:ca:4e:e1:41:1b:4e:62:26: fd:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:34:5B:5E:B0:E5:3F:24:E0:07:26:61:42:CA:43:DB:BB:5B:D6:21 X509v3 Authority Key Identifier: keyid:6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:4d:bd:2c:99:b6:50:1d:02:48:3a:65:1a:ca:a7:c7:08:6d: 92:9a:86:88:8f:cb:d4:b5:ba:04:34:10:c5:58:28:7f:7f:d0: 59:61:d8:8c:42:51:2d:9f:0f:2d:fa:3e:56:3e:d0:37:78:28: c3:c4:6d:97:85:21:ff:74:14:4a:44:2a:1b:2c:18:13:a2:ed: af:8f:58:a2:93:79:8d:99:5d:2b:e9:d1:a6:de:8a:91:54:04: f3:68:1d:e1:25:98:24:13:6b:f9:0b:6f:e0:0e:18:9d:22:d5: 6a:03:f2:22:2d:aa:45:98:8a:dd:46:5c:14:dd:1e:a9:7e:f9: c4:5a:0f:36:19:7e:ab:1e:a9:75:31:ed:7d:16:13:56:db:61: 61:ee:e5:7b:ed:dc:e0:b2:68:7b:2e:5c:87:25:cf:d9:a0:59: 55:d4:09:3e:1f:31:d6:ff:20:41:c7:dd:b9:a1:79:6c:8b:42: 0c:f1:77:fb:bf:a1:46:a3:83:b6:1e:18:c2:f4:23:e7:11:a5: 52:1c:ca:32:8e:8c:e3:e9:cc:41:23:40:33:e2:e9:97:4d:df: 6b:a6:bc:dd:9a:3c:4a:cb:ff:dd:f5:bc:ac:f4:d4:6f:96:a5: 71:8c:72:34:6b:cd:ff:da:1a:ca:ef:ee:d9:9c:a3:49:e0:06: cc:91:9d:26 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU0NkUxMTAvBgNVBAUTKDZDNUE1ODlGOTI0Q0U5QkVEMUZEODlGNUFGRjYzMEM5 Mjc1NzQ0MjAwHhcNMjYwMjI4MjAyODEzWhcNMjYwMzA3MjAyODEzWjAYMRYwFAYD VQQDDA02OWEzNGZkZS00MGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApX/TjhwY5UELkHCdR9PtK6Fz9h6r4Kk2iAlbuu2bpDM4RVb/59C/pvvSfggy t6AtmLA6Kz63tZ2MiIoINRKxnTHl5FnOTT44BOeKlh96dMTS5X2teNGe5ze9Q4O5 VDF5dUKQJe49jPKh3GTQPzvSvdr2rDMDsmP7W577RD8gk6UgfWvkrVlsJuJeUU3v QQaXfwmaKWZVOI/oRlWwlHZpLiHA+7oYMWlNtMQYAX/hdb7qhpblFlrIvp1GiAlJ R2pz4uqesOhwZG4MRJ2G586X41roLyJOV+YeU3DuvgSPwFcSF7kScqOMvZPe/A0h jcGfJNOALCaGyk7hQRtOYib9hwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN40W16w 5T8k4AcmYULKQ9u7W9YhMB8GA1UdIwQYMBaAFGxaWJ+STOm+0f2J9a/2MMknV0Qg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTQ2RS8wQ0Q0MURBOEI3 NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZiN1JfWW4xcl9Zd3lTZFhS Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JGcFluNUpNNmI3Ul9ZbjFyX1l3eVNkWFJDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTQ2RS8wQ0Q0MURBOEI3NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZi N1JfWW4xcl9Zd3lTZFhSQ0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAr029LJm2UB0CSDplGsqnxwhtkpqGiI/L1LW6BDQQxVgof3/QWWHYjEJRLZ8P Lfo+Vj7QN3gow8Rtl4Uh/3QUSkQqGywYE6Ltr49YopN5jZldK+nRpt6KkVQE82gd 4SWYJBNr+Qtv4A4YnSLVagPyIi2qRZiK3UZcFN0eqX75xFoPNhl+qx6pdTHtfRYT VtthYe7le+3c4LJoey5chyXP2aBZVdQJPh8x1v8gQcfduaF5bItCDPF3+7+hRqOD th4YwvQj5xGlUhzKMo6M4+nMQSNAM+Lpl03fa6a83Zo8Ssv/3fW8rPTUb5alcYxy NGvN/9oayu/u2ZyjSeAGzJGdJg== -----END CERTIFICATE-----Generated at Mon Mar 2 04:35:47 2026 by rpki-client