$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft File: Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft (raw, json) Hash identifier: +aQF/EBZnBvhoNpem4B5gt/LgxSBBNhn1cphMmYNArM= Subject key identifier: 4B:FB:12:FA:F6:F1:2F:5D:6A:A7:D4:E3:F7:8C:A0:7D:B2:80:B7:3B Authority key identifier: 06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A Certificate issuer: /CN=A91BBA80/serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Certificate serial: 0D5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft Manifest number: 0D1F Signing time: Thu 16 Apr 2026 18:11:11 +0000 Manifest this update: Thu 16 Apr 2026 18:11:10 +0000 Manifest next update: Thu 23 Apr 2026 18:11:10 +0000 Files and hashes: 1: Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl (hash: AkmzAlEoQfkC2VAnD6FeUEmSjIRgMjFXyxQm3Od+ChU=) 2: 22E63812221211EF9624DB0CC4F9AE02.roa (hash: /Tvplkmm6qxVmlC51qbOfmRirpoi54XXMcLh/gPSqV0=) 3: 2FC3DE84B15B11EB8CCCD624C4F9AE02.roa (hash: N/PTmxsd2qWDIg6nnrJkOUd5Pv8F/h9BMSmjENT3ckM=) 4: 21A9C2D4221211EF9624DB0CC4F9AE02.roa (hash: gjazV/iVCkpQTSN3FdEKb8gzMy16E4WeeBKJNLMtc/Y=) 5: 12561046368911EEA0CB766BC4F9AE02.roa (hash: jaXolcx4AbEHbGm0tsO9DjPQ+oN9ZYfJ9/ifRsFMGYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:11:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3419 (0xd5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA80, serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Validity Not Before: Apr 16 18:11:10 2026 GMT Not After : Apr 23 18:11:10 2026 GMT Subject: CN=69e1263e-e133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:19:e4:e8:69:38:c4:71:25:c8:4f:a8:c9:cd: b2:3d:12:b4:b3:cb:76:b2:ec:47:e3:db:18:41:9a: 46:4b:c5:bc:65:f6:c1:e1:f2:66:e4:56:fb:62:b9: 71:6e:56:98:20:a0:b5:fc:39:36:a3:1c:e4:06:90: 02:73:82:80:fc:4a:b3:1f:33:0f:8d:8a:fb:84:2d: 8a:09:a8:22:9e:55:ac:68:97:25:01:bd:ce:44:03: d7:41:6e:ff:74:10:f5:44:05:ac:c4:08:b0:b2:25: b5:08:ee:ec:be:33:4e:62:98:5e:58:0a:71:c2:b4: d2:7e:d7:45:13:9e:2b:ea:5e:6e:5d:02:d8:ea:ea: c4:3d:44:bd:60:65:ce:1f:d3:93:69:2f:83:ff:ec: 92:60:e7:b6:03:4b:3b:86:5d:c9:13:dc:1a:64:fd: 0b:97:7e:7e:f7:13:dd:a0:c4:bb:b8:1c:de:70:21: 69:1a:d1:af:76:bd:54:4b:b7:11:a8:5a:34:14:28: e8:33:91:92:44:ad:3e:4e:19:95:c3:44:62:5e:aa: 9c:d3:7e:bb:1e:11:3c:84:5c:9e:c3:5f:0a:d1:5c: 39:5e:26:a7:e4:17:8b:07:57:0a:7d:23:ed:23:72: d6:ab:ff:96:0b:e3:e1:a7:71:e8:ba:cd:01:61:13: 92:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:FB:12:FA:F6:F1:2F:5D:6A:A7:D4:E3:F7:8C:A0:7D:B2:80:B7:3B X509v3 Authority Key Identifier: keyid:06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:9d:7d:30:b2:7b:c5:73:c2:6c:e3:45:4f:e5:e9:7e:a0:0d: c9:af:e3:3c:b0:48:f0:c6:dc:ca:77:d7:58:f1:9e:04:e8:26: bc:ea:70:34:b1:4a:d3:a5:b1:80:13:66:75:d2:d9:66:a9:a9: cd:ab:8c:29:fd:05:99:5e:9d:49:08:28:d3:8c:76:91:96:17: eb:29:66:fd:e7:73:88:67:75:6d:e8:5f:17:00:d4:22:35:05: 20:0f:0a:02:78:7b:8f:8d:76:70:98:02:cb:5c:6f:51:c7:2b: 85:1e:4b:ca:c5:0d:07:84:62:74:89:e9:c8:eb:dc:65:19:62: 2c:41:cc:40:cb:9a:cc:46:e4:fc:45:33:8c:09:bc:34:98:f0: 52:e9:7b:91:ce:4e:ee:14:b8:bc:f7:20:3c:2f:35:f6:94:13: 0b:b5:c9:c3:f8:f0:da:6c:40:21:df:3e:ca:da:d4:dc:ca:66: d9:68:35:8f:89:9f:94:09:67:5b:47:e7:e7:05:f7:48:ee:34: 4d:76:12:b3:92:86:75:6d:c0:95:c3:dc:41:73:ad:ff:b0:03: 32:54:88:9f:8b:e7:27:e3:78:2d:ab:b4:43:99:29:9c:8e:ab: a4:c2:42:3f:32:95:fc:c1:cf:0c:6a:25:5c:8b:b3:2d:7f:71: eb:68:ff:69 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJBODAxMTAvBgNVBAUTKDA2MEY3RTc3QzAwQUNCRTA4NjhEQzBCOEZDQTIzRDRB NUYwN0Q3N0EwHhcNMjYwNDE2MTgxMTEwWhcNMjYwNDIzMTgxMTEwWjAYMRYwFAYD VQQDEw02OWUxMjYzZS1lMTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxnk6Gk4xHElyE+oyc2yPRK0s8t2suxH49sYQZpGS8W8ZfbB4fJm5Fb7Yrlx blaYIKC1/Dk2oxzkBpACc4KA/EqzHzMPjYr7hC2KCaginlWsaJclAb3ORAPXQW7/ dBD1RAWsxAiwsiW1CO7svjNOYpheWApxwrTSftdFE54r6l5uXQLY6urEPUS9YGXO H9OTaS+D/+ySYOe2A0s7hl3JE9waZP0Ll35+9xPdoMS7uBzecCFpGtGvdr1US7cR qFo0FCjoM5GSRK0+ThmVw0RiXqqc0367HhE8hFyew18K0Vw5Xian5BeLB1cKfSPt I3LWq/+WC+Php3Hous0BYROSuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEv7Evr2 8S9daqfU4/eMoH2ygLc7MB8GA1UdIwQYMBaAFAYPfnfACsvgho3AuPyiPUpfB9d6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkE4MC9COThFODFENjA1 QjkxMUVBODIwODk5NkVDNEY5QUUwMi9CZzktZDhBS3ktQ0dqY0M0X0tJOVNsOEgx M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JnOS1kOEFLeS1DR2pjQzRfS0k5U2w4SDEzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkE4MC9COThFODFENjA1QjkxMUVBODIwODk5NkVDNEY5QUUwMi9CZzktZDhBS3kt Q0dqY0M0X0tJOVNsOEgxM28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIJ19MLJ7xXPCbONFT+XpfqANya/jPLBI8MbcynfXWPGeBOgmvOpwNLFK06Wx gBNmddLZZqmpzauMKf0FmV6dSQgo04x2kZYX6ylm/edziGd1behfFwDUIjUFIA8K Anh7j412cJgCy1xvUccrhR5LysUNB4RidInpyOvcZRliLEHMQMuazEbk/EUzjAm8 NJjwUul7kc5O7hS4vPcgPC819pQTC7XJw/jw2mxAId8+ytrU3Mpm2Wg1j4mflAln W0fn5wX3SO40TXYSs5KGdW3AlcPcQXOt/7ADMlSIn4vnJ+N4Lau0Q5kpnI6rpMJC PzKV/MHPDGolXIuzLX9x62j/aQ== -----END CERTIFICATE-----Generated at Fri Apr 17 17:25:56 2026 by rpki-client