$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json) Hash identifier: 4FlqVR9SjtuM8bGDufsI+Bd5/2SaQ3t1oie6Aq2qcN4= Subject key identifier: 7C:CF:50:F2:46:D5:A7:97:A2:24:A6:B0:58:26:16:5F:28:66:DB:8B Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Certificate serial: 0256 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft Manifest number: 024F Signing time: Mon 02 Mar 2026 00:05:37 +0000 Manifest this update: Mon 02 Mar 2026 00:05:35 +0000 Manifest next update: Mon 09 Mar 2026 00:05:35 +0000 Files and hashes: 1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: EpOfdXy5SwJ+EFhzFZouydqvQXrRZgtO5L9XVUQi584=) 2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: 94M44dsN95Cfdn+68CbMlhuF5n5qBQCEV7YwA9S7Ln8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 598 (0x256) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB8D7, serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Validity Not Before: Mar 2 00:05:35 2026 GMT Not After : Mar 9 00:05:35 2026 GMT Subject: CN=69a4d451-b26a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:af:3c:42:c0:98:68:17:ed:45:55:c1:a9:90: 21:c9:84:0b:c5:8c:7b:81:ea:ca:f7:c8:9c:49:45: e6:40:3f:13:e0:bf:2d:d0:dc:cf:33:d7:ad:52:8b: 00:16:29:b3:72:d5:b6:b0:0f:93:d9:34:4b:db:06: b8:12:99:31:6b:43:14:5e:39:f7:26:78:3c:33:60: a0:fa:c5:4d:a6:12:7f:ef:58:d8:cf:30:3d:6b:c1: 3b:1d:5a:b4:2e:c6:4a:ea:7d:e8:04:00:0a:d4:3c: 7e:d8:db:2f:30:2f:d3:c5:b5:d2:07:79:e7:06:ac: bd:73:25:f3:e8:1a:ad:f5:61:26:a3:55:78:c2:91: 4b:f3:d0:85:9c:c2:52:83:35:ba:d8:74:2f:b6:69: ca:11:1f:7b:5e:02:ba:dd:39:49:2d:dc:9a:d2:38: ef:ba:0a:80:d7:05:d0:e9:8d:ed:58:5d:be:9c:55: fa:00:c1:3f:e5:22:00:83:5e:11:41:8c:19:9a:96: 37:da:d9:55:4d:bd:2b:d4:ee:12:6e:76:a3:64:1e: f1:5f:3f:ea:86:43:72:00:48:4e:d7:77:1c:ac:d9: d8:ce:37:d2:8c:f1:86:e9:70:60:1b:86:52:d7:33: b0:a0:cc:dd:c1:1e:d7:c1:32:38:c9:72:73:d2:e7: 3d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:CF:50:F2:46:D5:A7:97:A2:24:A6:B0:58:26:16:5F:28:66:DB:8B X509v3 Authority Key Identifier: keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:6f:36:c9:d9:22:e0:3d:9c:69:18:1e:f7:eb:2b:4c:ce:86: 44:90:0d:ad:d3:5e:34:06:38:67:97:75:b1:b2:97:f5:01:8d: 1a:e9:2f:a3:0c:4b:62:c5:b4:85:90:5a:55:5d:cf:f5:62:05: e2:4a:dd:63:31:d3:2d:d0:d8:ce:bc:ba:20:67:f9:f9:f2:3b: ca:67:c8:43:53:d2:c0:9c:0d:be:43:d5:ac:5c:e9:e7:6e:57: 11:35:b8:5e:53:a7:05:b2:be:29:6e:fb:e3:39:52:79:f4:7a: 62:09:4b:c3:4c:22:69:3b:99:43:e5:33:d5:5d:ca:f0:18:4c: a8:db:74:31:c0:d4:dc:a4:6e:a1:e4:a6:24:d2:7a:31:0f:11: ff:bb:05:7b:97:1e:7b:86:42:34:76:6f:89:fd:ff:43:3a:0e: 99:ce:86:a7:1b:57:48:c9:3f:95:d9:a9:ca:6f:8c:6d:5d:f1: fe:e7:de:47:06:22:91:7d:84:2a:7d:07:0c:ff:4b:91:8f:51: ea:1b:85:13:d3:97:53:6d:74:d3:34:2e:d7:bd:0d:6e:8c:bc: e3:1e:31:83:3f:ac:3a:0f:97:11:eb:ff:ec:29:8c:32:84:51: 0d:23:39:06:0b:8d:9c:e8:27:8c:6d:06:a1:f4:6e:4b:b7:0e: 81:71:c5:e3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4RDcxMTAvBgNVBAUTKDA1MERDMDNCNUQ1OTQ1QTMzRUFCOTUxODE3RjE2NzlC RDkxMEM2QUMwHhcNMjYwMzAyMDAwNTM1WhcNMjYwMzA5MDAwNTM1WjAYMRYwFAYD VQQDEw02OWE0ZDQ1MS1iMjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAva88QsCYaBftRVXBqZAhyYQLxYx7gerK98icSUXmQD8T4L8t0NzPM9etUosA FimzctW2sA+T2TRL2wa4Epkxa0MUXjn3Jng8M2Cg+sVNphJ/71jYzzA9a8E7HVq0 LsZK6n3oBAAK1Dx+2NsvMC/TxbXSB3nnBqy9cyXz6Bqt9WEmo1V4wpFL89CFnMJS gzW62HQvtmnKER97XgK63TlJLdya0jjvugqA1wXQ6Y3tWF2+nFX6AME/5SIAg14R QYwZmpY32tlVTb0r1O4SbnajZB7xXz/qhkNyAEhO13ccrNnYzjfSjPGG6XBgG4ZS 1zOwoMzdwR7XwTI4yXJz0uc9xwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHzPUPJG 1aeXoiSmsFgmFl8oZtuLMB8GA1UdIwQYMBaAFAUNwDtdWUWjPquVGBfxZ5vZEMas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjhENy9CNjdGMzAxQTk4 OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJhTS1xNVVZRl9Gbm05a1F4 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRM0FPMTFaUmFNLXE1VVlGX0ZubTlrUXhxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjhENy9CNjdGMzAxQTk4OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJh TS1xNVVZRl9Gbm05a1F4cXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAb282ydki4D2caRge9+srTM6GRJANrdNeNAY4Z5d1sbKX9QGNGukvowxLYsW0 hZBaVV3P9WIF4krdYzHTLdDYzry6IGf5+fI7ymfIQ1PSwJwNvkPVrFzp525XETW4 XlOnBbK+KW774zlSefR6YglLw0wiaTuZQ+Uz1V3K8BhMqNt0McDU3KRuoeSmJNJ6 MQ8R/7sFe5cee4ZCNHZvif3/QzoOmc6GpxtXSMk/ldmpym+MbV3x/ufeRwYikX2E Kn0HDP9LkY9R6huFE9OXU2100zQu170Nboy84x4xgz+sOg+XEev/7CmMMoRRDSM5 BguNnOgnjG0GofRuS7cOgXHF4w== -----END CERTIFICATE-----Generated at Mon Mar 2 11:40:16 2026 by rpki-client