$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft File: BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft (raw, json) Hash identifier: C9hE3tFNTiFbX8r02McsnTByaqF5rbMzCEwAiIzQ8PE= Subject key identifier: 5B:9E:02:08:AA:31:6C:E8:9D:D5:87:59:CE:90:3C:53:35:1E:20:2A Authority key identifier: 04:CF:57:F2:A7:FF:CA:72:C0:74:68:A8:C6:D5:F2:45:17:FF:46:B9 Certificate issuer: /CN=A91B4AA0/serialNumber=04CF57F2A7FFCA72C07468A8C6D5F24517FF46B9 Certificate serial: 089D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft Manifest number: 0891 Signing time: Sat 28 Feb 2026 20:54:15 +0000 Manifest this update: Sat 28 Feb 2026 20:54:15 +0000 Manifest next update: Sat 07 Mar 2026 20:54:15 +0000 Files and hashes: 1: BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl (hash: /ZVWlJwqIe+sLjDeYL93CaihoqBoTwWmuqpiylGbwd0=) 2: 02F863F6C09211EC8950E57AC4F9AE02.roa (hash: CW8cYbzHOyc7H5WlbPNiikLuHtC0kPX2gHGH/bCo7qc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 20:54:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2205 (0x89d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4AA0, serialNumber=04CF57F2A7FFCA72C07468A8C6D5F24517FF46B9 Validity Not Before: Feb 28 20:54:15 2026 GMT Not After : Mar 7 20:54:15 2026 GMT Subject: CN=69a355f7-18fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c1:45:96:ce:09:5d:99:6d:0a:31:22:28:1b: 92:89:47:15:1c:42:dd:18:17:34:7f:0e:e1:3d:4f: cb:ef:f6:91:d3:ec:96:34:fa:9c:1b:d6:e7:8a:0e: 19:ed:40:82:50:3d:22:0a:d0:47:0b:49:dd:d2:41: b1:0e:6d:58:9d:c0:9e:1a:57:75:c2:81:3d:04:47: 8f:bd:b2:cc:ce:e1:e8:be:10:df:c1:8d:28:87:f4: 35:b9:e4:d4:a7:b6:76:2a:1f:0b:c1:17:f0:10:7c: 34:9e:44:19:9a:a8:06:46:50:f7:ef:91:b7:13:c5: 3e:48:24:df:cd:c2:a3:b3:8c:21:05:4e:93:0f:71: 2f:b9:ab:23:ab:53:46:78:ca:b7:2d:57:2d:d3:40: 3f:27:8e:7f:84:4a:d6:6e:98:61:28:08:07:cb:c0: 73:d1:0f:85:88:2a:69:b6:4f:0d:e8:e4:9d:11:fb: 76:02:c1:ee:c0:f5:5b:77:ed:40:cc:bc:4a:29:96: 31:7e:8b:34:b9:b4:8f:c7:e3:a7:73:e1:07:06:76: e6:76:2b:a2:69:70:f1:c8:00:22:86:a6:7e:1e:d2: ef:8f:6e:c1:8f:ec:dd:e1:10:e5:70:f5:51:4b:9b: 7b:c9:51:be:b7:63:2c:9e:49:be:1d:31:48:3b:5c: 5a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:9E:02:08:AA:31:6C:E8:9D:D5:87:59:CE:90:3C:53:35:1E:20:2A X509v3 Authority Key Identifier: keyid:04:CF:57:F2:A7:FF:CA:72:C0:74:68:A8:C6:D5:F2:45:17:FF:46:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:78:0c:36:49:2d:19:c0:9e:f7:2b:91:cf:42:a9:94:0c:bf: a3:ac:72:27:17:5d:8e:cc:24:a4:1e:dc:a8:b8:91:4d:6d:d0: aa:c1:3b:51:d0:bf:94:2f:d4:31:af:3f:f1:36:bd:89:e3:b9: 0b:a8:de:a7:e4:32:9f:e7:a0:0a:70:46:91:52:41:90:77:f9: 2b:7c:82:7d:ce:7d:54:4f:16:a9:77:d3:4c:36:63:ea:52:01: ba:57:5c:73:f5:61:3d:e5:9b:f6:ae:77:cf:2b:72:a2:79:84: 36:30:a8:1d:b6:12:48:50:67:ad:d4:03:7f:2a:5b:00:cc:9d: 5d:1c:bc:5a:97:af:99:31:d2:ab:e5:20:6d:42:f1:47:64:0d: 4c:7b:4b:6a:56:13:b0:a7:b2:6d:6b:b0:9f:33:ec:92:f6:62: ad:2d:8d:1c:17:ef:73:94:6e:62:7c:1b:b5:b1:2c:eb:8c:bb: a1:12:a6:c6:b7:e7:94:bc:f7:12:2a:7f:91:f6:3e:69:a2:a2: 59:0e:69:b2:0c:a8:67:50:16:e7:fa:4a:c1:34:a0:95:ae:49: db:63:12:26:b3:0e:2e:f6:9a:03:56:60:40:e0:8a:52:8b:36: cb:24:94:9a:62:63:7e:d3:8e:cd:16:45:93:a1:52:92:f3:0d: 98:ea:48:fc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRBQTAxMTAvBgNVBAUTKDA0Q0Y1N0YyQTdGRkNBNzJDMDc0NjhBOEM2RDVGMjQ1 MTdGRjQ2QjkwHhcNMjYwMjI4MjA1NDE1WhcNMjYwMzA3MjA1NDE1WjAYMRYwFAYD VQQDDA02OWEzNTVmNy0xOGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8FFls4JXZltCjEiKBuSiUcVHELdGBc0fw7hPU/L7/aR0+yWNPqcG9bnig4Z 7UCCUD0iCtBHC0nd0kGxDm1YncCeGld1woE9BEePvbLMzuHovhDfwY0oh/Q1ueTU p7Z2Kh8LwRfwEHw0nkQZmqgGRlD375G3E8U+SCTfzcKjs4whBU6TD3Evuasjq1NG eMq3LVct00A/J45/hErWbphhKAgHy8Bz0Q+FiCpptk8N6OSdEft2AsHuwPVbd+1A zLxKKZYxfos0ubSPx+Onc+EHBnbmdiuiaXDxyAAihqZ+HtLvj27Bj+zd4RDlcPVR S5t7yVG+t2Msnkm+HTFIO1xa/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFueAgiq MWzondWHWc6QPFM1HiAqMB8GA1UdIwQYMBaAFATPV/Kn/8pywHRoqMbV8kUX/0a5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEFBMC8xMDQxRTVFQUUy QzMxMUVBQjgxOEQxN0ZDNEY5QUUwMi9CTTlYOHFmX3luTEFkR2lveHRYeVJSZl9S cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JNOVg4cWZfeW5MQWRHaW94dFh5UlJmX1Jyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEFBMC8xMDQxRTVFQUUyQzMxMUVBQjgxOEQxN0ZDNEY5QUUwMi9CTTlYOHFmX3lu TEFkR2lveHRYeVJSZl9ScmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmngMNkktGcCe9yuRz0KplAy/o6xyJxddjswkpB7cqLiRTW3QqsE7UdC/lC/U Ma8/8Ta9ieO5C6jep+Qyn+egCnBGkVJBkHf5K3yCfc59VE8WqXfTTDZj6lIBuldc c/VhPeWb9q53zytyonmENjCoHbYSSFBnrdQDfypbAMydXRy8WpevmTHSq+UgbULx R2QNTHtLalYTsKeybWuwnzPskvZirS2NHBfvc5RuYnwbtbEs64y7oRKmxrfnlLz3 Eip/kfY+aaKiWQ5psgyoZ1AW5/pKwTSgla5J22MSJrMOLvaaA1ZgQOCKUos2yySU mmJjftOOzRZFk6FSkvMNmOpI/A== -----END CERTIFICATE-----Generated at Sun Mar 1 23:15:35 2026 by rpki-client