$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json) Hash identifier: WoBl3k3hMA8mlcUSXOePfWruy0lScJPN/4uXwTyH7/A= Subject key identifier: 8D:D8:6C:27:6F:6D:FE:86:67:25:72:AE:05:16:BA:56:1D:1E:C5:87 Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Certificate serial: 0252 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft Manifest number: 024D Signing time: Sun 01 Mar 2026 03:06:17 +0000 Manifest this update: Sun 01 Mar 2026 03:06:17 +0000 Manifest next update: Sun 08 Mar 2026 03:06:17 +0000 Files and hashes: 1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: mPgnAaPJgxpAbVxgfV/qsuRQ3bTumnLOUCfC5YQ4R7g=) 2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: GynF0Ay+F7v6ZNuRVcxpGuP9OQi3GMJtHrKy3/D7ZPM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 594 (0x252) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB8D7, serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Validity Not Before: Mar 1 03:06:17 2026 GMT Not After : Mar 8 03:06:17 2026 GMT Subject: CN=69a3ad29-ae75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:05:4b:9e:36:53:ca:5b:a4:53:2d:38:91:f6: d6:d5:39:36:c8:b8:de:33:70:73:d3:59:47:35:79: 72:3c:28:2c:be:b6:30:a1:e2:72:22:be:72:43:80: cd:5a:8f:a2:d4:58:c7:d1:26:49:16:a8:8f:7d:4b: d7:1c:dd:d4:44:19:d9:a0:07:ec:55:03:24:71:78: f8:0d:b2:b9:dd:8b:c3:9f:65:cc:ea:71:9e:d9:36: 75:74:fb:40:96:7d:5b:80:0f:4f:8d:fb:29:b5:eb: 96:bb:62:13:d7:56:c7:54:69:a9:25:bd:39:f2:18: 13:d1:14:ad:62:58:7d:a5:dd:53:bc:c2:5b:c0:cd: 6d:80:ce:c8:6d:ef:00:46:e8:c7:e7:92:0d:2b:d1: dc:ed:88:b8:b3:27:e0:bb:68:36:e6:f0:0d:41:ed: b3:f1:9d:28:3f:c7:5c:b1:71:58:c2:54:f4:24:5c: 8c:1f:ba:53:9a:c3:36:8e:6c:5a:b4:c5:77:58:a7: dd:41:70:58:73:6d:49:09:18:06:bd:a5:1c:c0:cb: 44:25:31:ae:04:84:ac:81:0d:fb:b0:26:7a:f4:59: 95:f6:47:bc:4f:4b:97:85:13:b5:c2:e8:2b:6e:bc: 4d:b0:b6:e7:46:a2:fc:db:c3:e8:c7:af:94:d1:4b: cc:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:D8:6C:27:6F:6D:FE:86:67:25:72:AE:05:16:BA:56:1D:1E:C5:87 X509v3 Authority Key Identifier: keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:bd:8c:3b:07:54:b7:e9:42:6d:8c:ae:b9:c5:47:e9:ff:07: 8f:2d:6c:e1:53:c5:63:e1:cd:8d:31:f0:6a:e9:78:50:4d:8d: 15:c4:ad:cd:96:35:a8:d8:d5:0f:01:5f:e2:01:94:7e:8a:a7: 38:cb:6e:84:cc:ef:31:af:c5:58:48:ba:20:63:93:37:43:9a: c9:d7:f5:00:c3:43:fc:b4:66:8e:c6:41:93:1a:a9:82:b5:c5: 09:24:d0:fa:be:5f:3f:40:6c:60:ad:29:3e:2c:7d:48:42:09: 18:49:98:82:82:c0:01:5f:d9:b4:ff:85:1f:90:d1:d9:f8:f3: 4d:9b:9a:2c:a2:2d:7f:ba:f2:d3:bd:93:f9:97:c0:f0:5b:0b: 9a:80:0f:36:a2:b7:e8:16:cb:63:0d:7d:6e:9a:f2:5d:71:76: 55:f3:7c:9e:55:c0:9f:88:c6:7e:54:7e:9a:4c:c7:c2:3b:6a: 67:b3:7c:14:48:13:ba:0d:75:b6:32:10:d8:0c:98:b5:4f:44: 4d:2b:ff:5d:f2:62:f8:22:b3:c3:8e:ac:35:f0:ec:eb:2e:42: 34:eb:9f:3d:6f:11:b8:c8:c0:51:ff:4c:a1:3d:10:1b:f5:e1: 97:14:f6:71:44:b2:50:4f:9a:18:c3:37:77:fe:95:89:98:02: 35:7b:0e:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4RDcxMTAvBgNVBAUTKDA1MERDMDNCNUQ1OTQ1QTMzRUFCOTUxODE3RjE2NzlC RDkxMEM2QUMwHhcNMjYwMzAxMDMwNjE3WhcNMjYwMzA4MDMwNjE3WjAYMRYwFAYD VQQDDA02OWEzYWQyOS1hZTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAVLnjZTylukUy04kfbW1Tk2yLjeM3Bz01lHNXlyPCgsvrYwoeJyIr5yQ4DN Wo+i1FjH0SZJFqiPfUvXHN3URBnZoAfsVQMkcXj4DbK53YvDn2XM6nGe2TZ1dPtA ln1bgA9PjfspteuWu2IT11bHVGmpJb058hgT0RStYlh9pd1TvMJbwM1tgM7Ibe8A RujH55INK9Hc7Yi4syfgu2g25vANQe2z8Z0oP8dcsXFYwlT0JFyMH7pTmsM2jmxa tMV3WKfdQXBYc21JCRgGvaUcwMtEJTGuBISsgQ37sCZ69FmV9ke8T0uXhRO1wugr brxNsLbnRqL828Pox6+U0UvMbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI3YbCdv bf6GZyVyrgUWulYdHsWHMB8GA1UdIwQYMBaAFAUNwDtdWUWjPquVGBfxZ5vZEMas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjhENy9CNjdGMzAxQTk4 OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJhTS1xNVVZRl9Gbm05a1F4 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRM0FPMTFaUmFNLXE1VVlGX0ZubTlrUXhxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjhENy9CNjdGMzAxQTk4OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJh TS1xNVVZRl9Gbm05a1F4cXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfL2MOwdUt+lCbYyuucVH6f8Hjy1s4VPFY+HNjTHwaul4UE2NFcStzZY1qNjV DwFf4gGUfoqnOMtuhMzvMa/FWEi6IGOTN0Oaydf1AMND/LRmjsZBkxqpgrXFCSTQ +r5fP0BsYK0pPix9SEIJGEmYgoLAAV/ZtP+FH5DR2fjzTZuaLKItf7ry072T+ZfA 8FsLmoAPNqK36BbLYw19bpryXXF2VfN8nlXAn4jGflR+mkzHwjtqZ7N8FEgTug11 tjIQ2AyYtU9ETSv/XfJi+CKzw46sNfDs6y5CNOufPW8RuMjAUf9MoT0QG/XhlxT2 cUSyUE+aGMM3d/6ViZgCNXsOLA== -----END CERTIFICATE-----Generated at Sun Mar 1 21:00:13 2026 by rpki-client