$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft File: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft (raw, json) Hash identifier: XIhGntLMg4wLdXxz3aLpmYnPCIYD3RS6ehekXZJ6z4A= Subject key identifier: 3D:61:B1:38:46:22:9F:5D:5C:F2:7C:F5:EE:5A:BE:B6:BF:79:D5:5B Authority key identifier: 6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 Certificate issuer: /CN=A91CCAF1/serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft Manifest number: 011E Signing time: Wed 15 Apr 2026 05:23:02 +0000 Manifest this update: Wed 15 Apr 2026 05:23:02 +0000 Manifest next update: Wed 22 Apr 2026 05:23:02 +0000 Files and hashes: 1: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl (hash: o3xM+DO9fQqWcNYNMcMDqgtPKdRs4Vj1zv6sJ5VW578=) 2: BF71D9D0F26811EFBC446868C4F9AE02.roa (hash: N8OST72L0V0eTFnYcjzgV/oZzJ5hZOrN4k5ZtWUp5Q8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 05:23:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCAF1, serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Validity Not Before: Apr 15 05:23:02 2026 GMT Not After : Apr 22 05:23:02 2026 GMT Subject: CN=69df20b6-3295 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6d:cd:e6:c9:d6:4d:89:d0:c4:25:62:f4:79: ac:d5:ad:cd:2f:44:56:0b:7b:35:5b:ca:4b:57:46: 7e:38:98:6f:45:5b:d3:d8:ea:e1:f2:ef:42:32:c6: 21:dd:51:bb:2b:2f:96:f7:1d:02:42:2c:fe:9d:aa: b3:59:43:3b:87:a8:a8:cf:f4:ce:b8:0b:e5:9d:18: 32:04:1a:92:17:d6:29:7d:87:b1:7e:2d:40:ec:f5: 3f:86:20:0e:62:a0:80:0a:cc:f8:b6:ef:1e:93:d0: c3:61:38:58:22:b1:8b:24:9b:7a:ee:05:6e:f1:2a: 03:00:a7:75:33:9c:f6:77:95:75:1b:6a:06:ce:11: 5a:1a:3c:53:f3:17:41:d3:5d:c3:28:ac:e4:86:2d: e7:cf:59:78:ce:40:23:8a:85:f6:3b:b8:d5:73:09: f6:14:a0:bd:ec:1b:2f:8d:f9:f5:e3:b5:da:4b:fc: 53:3a:09:6d:6d:ef:09:16:2c:e8:76:cd:62:22:0f: 63:b4:a9:d0:3d:2a:24:15:42:ce:ff:3f:7f:03:23: b9:79:48:6c:23:77:4a:8e:bb:c0:0e:53:01:0a:da: fd:8c:66:38:41:a7:54:d1:7f:91:af:c5:de:d0:78: f0:88:da:6c:4c:d4:75:96:bc:dd:74:17:a3:a1:07: 36:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:61:B1:38:46:22:9F:5D:5C:F2:7C:F5:EE:5A:BE:B6:BF:79:D5:5B X509v3 Authority Key Identifier: keyid:6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:f0:ec:46:43:f7:80:29:8a:4e:1e:e7:77:9b:4c:cf:9b:88: 46:64:e4:08:11:76:e2:3d:c8:98:7b:4f:01:98:75:ee:aa:37: ab:27:f4:2a:96:af:0b:e8:1f:cb:41:98:46:5b:d0:46:00:a7: 5f:93:57:bb:1c:be:54:02:52:14:6b:a3:d3:c9:7f:b7:03:79: ba:c4:68:b6:0b:a2:28:30:95:23:2c:28:7b:90:6d:b2:d6:41: 80:3a:b1:0b:ab:c4:f6:ec:d0:94:2f:94:01:a2:4c:9f:b8:12: 47:a8:c8:4e:6b:73:0a:b7:dc:39:f6:c9:8a:3d:34:20:13:ef: 7a:c8:75:8e:ca:2f:c4:8e:18:52:01:9a:26:35:41:90:7b:c6: 6e:b5:b8:78:4e:f7:71:94:00:50:c3:2c:bb:5c:14:cf:29:5d: 9d:23:e0:18:e2:22:1b:23:04:ed:88:5b:59:57:83:cf:22:49: 35:64:d4:32:a8:fe:25:2b:66:bb:7c:0d:58:b1:54:cf:51:0b: 25:2e:12:f5:a6:36:6e:fb:a4:64:2f:8d:6d:29:df:8e:ea:85: ba:e2:a4:fd:d4:3f:b1:57:6b:19:ec:3f:c5:92:c2:86:a6:ee: 03:a6:05:42:89:66:ff:8c:62:f7:b9:34:6d:d4:d3:19:d2:e1: 88:34:ab:61 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBRjExMTAvBgNVBAUTKDZDMTk0Njk3ODE2RjlCMTMwQkE1M0NGNEJFRTY3NjAx NTk0RThDQjEwHhcNMjYwNDE1MDUyMzAyWhcNMjYwNDIyMDUyMzAyWjAYMRYwFAYD VQQDEw02OWRmMjBiNi0zMjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs23N5snWTYnQxCVi9Hms1a3NL0RWC3s1W8pLV0Z+OJhvRVvT2Orh8u9CMsYh 3VG7Ky+W9x0CQiz+naqzWUM7h6ioz/TOuAvlnRgyBBqSF9YpfYexfi1A7PU/hiAO YqCACsz4tu8ek9DDYThYIrGLJJt67gVu8SoDAKd1M5z2d5V1G2oGzhFaGjxT8xdB 013DKKzkhi3nz1l4zkAjioX2O7jVcwn2FKC97Bsvjfn147XaS/xTOgltbe8JFizo ds1iIg9jtKnQPSokFULO/z9/AyO5eUhsI3dKjrvADlMBCtr9jGY4QadU0X+Rr8Xe 0HjwiNpsTNR1lrzddBejoQc2JwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD1hsThG Ip9dXPJ89e5avra/edVbMB8GA1UdIwQYMBaAFGwZRpeBb5sTC6U89L7mdgFZToyx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0FGMS8wOUMwRDM2NjhB QUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14TUxwVHowdnVaMkFWbE9q TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbEdsNEZ2bXhNTHBUejB2dVoyQVZsT2pMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0FGMS8wOUMwRDM2NjhBQUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14 TUxwVHowdnVaMkFWbE9qTEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXfDsRkP3gCmKTh7nd5tMz5uIRmTkCBF24j3ImHtPAZh17qo3qyf0KpavC+gf y0GYRlvQRgCnX5NXuxy+VAJSFGuj08l/twN5usRotguiKDCVIywoe5BtstZBgDqx C6vE9uzQlC+UAaJMn7gSR6jITmtzCrfcOfbJij00IBPvesh1jsovxI4YUgGaJjVB kHvGbrW4eE73cZQAUMMsu1wUzyldnSPgGOIiGyME7YhbWVeDzyJJNWTUMqj+JStm u3wNWLFUz1ELJS4S9aY2bvukZC+NbSnfjuqFuuKk/dQ/sVdrGew/xZLChqbuA6YF Qolm/4xi97k0bdTTGdLhiDSrYQ== -----END CERTIFICATE-----Generated at Fri Apr 17 06:12:48 2026 by rpki-client