$ rpki-client -vvf rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft File: bz4CYgDVU58n4POqUNMgokUo1X0.mft (raw, json) Hash identifier: A9S5qCpTQYfmGD9Z6vR3qtBl0WPe2Lj6dw+29vASrwE= Subject key identifier: 40:89:E8:4F:3A:6C:76:62:A6:63:9B:89:A9:F3:36:0D:06:7A:34:CE Authority key identifier: 6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D Certificate issuer: /CN=A91B732A/serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft Manifest number: EE Signing time: Sun 01 Mar 2026 23:51:38 +0000 Manifest this update: Sun 01 Mar 2026 23:51:36 +0000 Manifest next update: Sun 08 Mar 2026 23:51:36 +0000 Files and hashes: 1: bz4CYgDVU58n4POqUNMgokUo1X0.crl (hash: H8nr4Df1VT7v83ZSVpCoDqIjQb6bExh41cLxJ3ccTqs=) 2: 31EC2E5CBAAB11EFA97B2C66C4F9AE02.roa (hash: nV38DqB6S2s+obaWtL39HR2W0RXsAZejFz8xEU6bYCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:51:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B732A, serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D Validity Not Before: Mar 1 23:51:36 2026 GMT Not After : Mar 8 23:51:36 2026 GMT Subject: CN=69a4d109-62a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:69:2a:ba:ee:21:df:78:3b:99:a6:4a:cc:93: a8:2c:20:07:8c:57:3d:04:9f:ad:2c:e8:ca:8e:24: 72:d9:ca:ac:ce:0f:d3:75:d4:31:a3:2f:c6:24:a2: 9c:4d:6b:1f:97:a1:7a:a2:ee:db:3a:6b:f8:53:32: ae:2b:d6:6d:1c:f2:f3:78:10:e5:93:64:ce:c2:cc: 9c:da:48:92:aa:0f:75:cf:fd:30:be:a9:7b:dc:4c: 91:9c:05:d8:20:fb:c1:38:0c:1d:38:75:71:29:ba: b8:a2:7e:32:68:1e:92:cd:d2:5b:84:98:28:b5:54: 2d:ff:08:b6:4c:9a:8f:ef:0c:04:da:df:ac:07:1a: fc:b1:d0:f4:c3:47:b7:2c:82:bf:0d:fd:cf:70:42: 80:52:3b:4c:fd:1d:d9:b1:8a:02:ed:5d:e4:3c:aa: 3a:8f:1b:07:32:11:1b:e1:c0:14:7b:27:e0:3e:c8: c5:b0:45:86:87:fd:38:32:68:2c:86:31:01:2e:73: c4:ca:bf:e3:31:5a:6c:d7:46:f1:83:28:36:44:15: 38:82:96:9d:e5:f0:49:d5:4f:a3:74:79:46:fe:14: 6e:50:ef:b5:a9:3f:5f:19:13:fa:6b:81:a1:b0:d7: b0:71:d6:88:c7:7c:2a:58:a1:84:60:ba:88:51:08: 03:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:89:E8:4F:3A:6C:76:62:A6:63:9B:89:A9:F3:36:0D:06:7A:34:CE X509v3 Authority Key Identifier: keyid:6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption df:ad:4d:99:7d:f1:55:28:41:23:73:74:b1:ec:5d:4a:1a:68: 3e:e4:38:20:5f:82:78:f9:ec:79:be:96:ec:43:2c:a3:f0:4f: 5b:63:1d:78:d3:64:30:39:b4:f5:44:f9:f1:d3:bf:4b:c6:28: 8d:07:65:5e:7a:ac:33:b0:31:97:10:99:97:45:c3:f9:1d:9d: a6:59:05:dd:c3:84:f4:c8:b0:10:c8:98:20:7b:5d:6d:d2:8a: 4b:56:0e:f9:7a:d4:ab:86:bc:d1:ab:c8:f9:69:04:96:20:25: 00:9b:17:0d:1d:6f:b8:b7:f9:ba:be:bd:6c:a3:eb:6f:c2:a4: 7c:1d:42:11:9c:0b:d2:0e:e5:15:de:6e:48:55:ff:7e:60:ff: 37:0e:69:72:fe:26:1b:5d:24:ca:8d:71:b9:14:81:17:2a:76: 4f:e1:c7:72:ce:d2:26:97:c7:53:99:b4:1d:79:05:3e:99:28: f4:67:3b:da:81:82:75:db:a7:90:93:a1:89:3d:71:c0:d4:17: 41:2d:e7:b6:e4:6b:c9:32:f1:80:ae:80:be:dc:83:05:80:b6: eb:52:46:4a:77:95:97:5e:2b:f5:72:48:3c:f4:79:b2:e7:6c: 84:d5:82:2e:77:36:4a:e7:50:1c:bc:0a:76:ef:00:bd:49:ea: 4a:29:d6:82 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjczMkExMTAvBgNVBAUTKDZGM0UwMjYyMDBENTUzOUYyN0UwRjNBQTUwRDMyMEEy NDUyOEQ1N0QwHhcNMjYwMzAxMjM1MTM2WhcNMjYwMzA4MjM1MTM2WjAYMRYwFAYD VQQDEw02OWE0ZDEwOS02MmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWkquu4h33g7maZKzJOoLCAHjFc9BJ+tLOjKjiRy2cqszg/TddQxoy/GJKKc TWsfl6F6ou7bOmv4UzKuK9ZtHPLzeBDlk2TOwsyc2kiSqg91z/0wvql73EyRnAXY IPvBOAwdOHVxKbq4on4yaB6SzdJbhJgotVQt/wi2TJqP7wwE2t+sBxr8sdD0w0e3 LIK/Df3PcEKAUjtM/R3ZsYoC7V3kPKo6jxsHMhEb4cAUeyfgPsjFsEWGh/04Mmgs hjEBLnPEyr/jMVps10bxgyg2RBU4gpad5fBJ1U+jdHlG/hRuUO+1qT9fGRP6a4Gh sNewcdaIx3wqWKGEYLqIUQgDzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFECJ6E86 bHZipmObianzNg0GejTOMB8GA1UdIwQYMBaAFG8+AmIA1VOfJ+DzqlDTIKJFKNV9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzMyQS9GRkYyRTZBOEI2 MzAxMUVGQTJEN0ZCNjNDNEY5QUUwMi9iejRDWWdEVlU1OG40UE9xVU5NZ29rVW8x WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2J6NENZZ0RWVTU4bjRQT3FVTk1nb2tVbzFYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzMyQS9GRkYyRTZBOEI2MzAxMUVGQTJEN0ZCNjNDNEY5QUUwMi9iejRDWWdEVlU1 OG40UE9xVU5NZ29rVW8xWDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA361NmX3xVShBI3N0sexdShpoPuQ4IF+CePnseb6W7EMso/BPW2MdeNNkMDm0 9UT58dO/S8YojQdlXnqsM7AxlxCZl0XD+R2dplkF3cOE9MiwEMiYIHtdbdKKS1YO +XrUq4a80avI+WkEliAlAJsXDR1vuLf5ur69bKPrb8KkfB1CEZwL0g7lFd5uSFX/ fmD/Nw5pcv4mG10kyo1xuRSBFyp2T+HHcs7SJpfHU5m0HXkFPpko9Gc72oGCddun kJOhiT1xwNQXQS3ntuRryTLxgK6AvtyDBYC261JGSneVl14r9XJIPPR5sudshNWC Lnc2SudQHLwKdu8AvUnqSinWgg== -----END CERTIFICATE-----Generated at Mon Mar 2 15:45:02 2026 by rpki-client