$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft File: BFm798uEwX7tUbaM6tlBlX14X68.mft (raw, json) Hash identifier: veuES1CJTNUMMUs2Apjo45y1dm2IHgacHNQgY9SiqKI= Subject key identifier: B7:E6:85:B5:F5:2C:44:08:08:84:39:F4:D9:10:EF:B8:7D:DE:1E:A7 Authority key identifier: 04:59:BB:F7:CB:84:C1:7E:ED:51:B6:8C:EA:D9:41:95:7D:78:5F:AF Certificate issuer: /CN=A91CFBA9/serialNumber=0459BBF7CB84C17EED51B68CEAD941957D785FAF Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft Manifest number: 4D Signing time: Sun 01 Mar 2026 09:42:20 +0000 Manifest this update: Sun 01 Mar 2026 09:42:20 +0000 Manifest next update: Sun 08 Mar 2026 09:42:20 +0000 Files and hashes: 1: BFm798uEwX7tUbaM6tlBlX14X68.crl (hash: vMYMo/yNZ9pyWZlbat2+t4A0OL5mbc7bgESFjVKt82M=) 2: 88B9736AA77811F092FD731BC4F9AE02.roa (hash: t9dZnts+IlYuSJrBx0IgU/pwjcYxg43h5hJtdZZSKtM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.crl rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFBA9, serialNumber=0459BBF7CB84C17EED51B68CEAD941957D785FAF Validity Not Before: Mar 1 09:42:20 2026 GMT Not After : Mar 8 09:42:20 2026 GMT Subject: CN=69a409fc-4154 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ea:43:4d:ca:72:cb:87:4e:84:43:54:44:7a: 6a:e4:e1:55:45:14:a1:1e:ee:3c:07:f6:77:21:69: da:95:d0:49:ca:ec:a7:19:9c:08:7b:35:ea:af:23: bf:99:2d:a7:ca:5e:8e:53:75:6c:97:d9:02:fe:17: a1:a4:37:60:9c:f6:81:c4:7c:91:23:f4:dc:88:66: f2:60:4d:b0:13:c2:b0:a6:73:b2:8c:53:47:41:3a: 62:24:92:63:39:08:ef:2b:0e:42:06:1e:b7:e5:ab: fa:97:9d:9f:97:20:9e:7e:07:25:2e:4d:71:e6:f0: 49:3a:28:cb:57:41:84:eb:45:60:b0:cf:f8:32:76: 46:18:4a:56:53:d7:e7:f0:c7:ae:1e:da:8f:75:a7: de:5d:2f:35:2b:1f:8b:59:3d:85:3a:d0:4d:1f:4a: 5b:1b:b3:23:c9:c3:ed:bf:00:32:6e:31:32:8e:4a: 33:e3:7c:2d:d0:92:bf:97:0b:77:13:bf:ab:a2:9e: e9:20:6b:d0:af:dc:fe:84:34:08:ca:ea:4b:fd:b5: 2b:74:c3:c6:c1:ba:4c:16:09:ec:13:97:15:d1:3f: 98:14:73:a4:14:7e:1a:c6:c9:fe:93:de:da:1b:4c: 69:2d:a7:79:17:d1:0f:23:84:12:a6:1d:0d:28:b1: 99:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:E6:85:B5:F5:2C:44:08:08:84:39:F4:D9:10:EF:B8:7D:DE:1E:A7 X509v3 Authority Key Identifier: keyid:04:59:BB:F7:CB:84:C1:7E:ED:51:B6:8C:EA:D9:41:95:7D:78:5F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:fc:9f:d1:6a:1a:22:33:9c:0f:d6:07:eb:29:6b:09:87:1a: 18:16:7d:15:e0:f1:9e:26:89:01:3b:d1:b9:07:86:a2:fd:2d: 09:ab:a3:5d:32:25:e6:6e:3b:f7:e8:88:3a:c0:7f:a4:f2:5e: 84:6c:d4:75:96:a5:19:9b:57:04:92:31:81:36:56:8c:a6:46: 1c:b4:05:d0:fc:98:9f:19:ee:be:0f:08:30:00:3b:c0:0f:d1: 0b:71:ad:b5:99:1a:28:a8:5f:c7:43:a0:ac:91:2b:a0:c5:89: e6:fe:2d:52:05:f2:4f:45:ce:32:de:9b:11:42:5b:38:f0:77: 5a:3b:87:ea:d5:4a:7d:d1:48:f3:7f:a7:08:6b:e1:d3:6c:a2: e7:79:3d:ff:b7:ac:86:a6:f3:e3:97:69:1a:3c:0a:6d:c1:e9: e4:12:4e:31:21:09:80:19:82:3d:35:c3:a6:ff:e0:3c:d4:c3: bb:89:eb:24:36:ec:c9:b7:9b:ce:56:00:68:68:8f:20:fa:c6: 63:5f:d0:cf:4f:5e:50:77:88:55:c5:97:01:5b:16:64:0a:18: 78:8a:c3:4a:a6:60:cd:67:41:f2:8f:c1:ba:2a:23:33:95:43: 4d:1c:73:fc:d4:0a:3c:c5:bf:51:df:6a:bd:4e:1d:f2:f3:18: a3:97:1e:04 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkJBOTExMC8GA1UEBRMoMDQ1OUJCRjdDQjg0QzE3RUVENTFCNjhDRUFEOTQxOTU3 RDc4NUZBRjAeFw0yNjAzMDEwOTQyMjBaFw0yNjAzMDgwOTQyMjBaMBgxFjAUBgNV BAMTDTY5YTQwOWZjLTQxNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/6kNNynLLh06EQ1REemrk4VVFFKEe7jwH9nchadqV0EnK7KcZnAh7NeqvI7+Z LafKXo5TdWyX2QL+F6GkN2Cc9oHEfJEj9NyIZvJgTbATwrCmc7KMU0dBOmIkkmM5 CO8rDkIGHrflq/qXnZ+XIJ5+ByUuTXHm8Ek6KMtXQYTrRWCwz/gydkYYSlZT1+fw x64e2o91p95dLzUrH4tZPYU60E0fSlsbsyPJw+2/ADJuMTKOSjPjfC3Qkr+XC3cT v6uinukga9Cv3P6ENAjK6kv9tSt0w8bBukwWCewTlxXRP5gUc6QUfhrGyf6T3tob TGktp3kX0Q8jhBKmHQ0osZl5AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUt+aFtfUs RAgIhDn02RDvuH3eHqcwHwYDVR0jBBgwFoAUBFm798uEwX7tUbaM6tlBlX14X68w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGQkE5LzU3MzAxNTlBQTc3 NTExRjA5NERFQkYyREM0RjlBRTAyL0JGbTc5OHVFd1g3dFViYU02dGxCbFgxNFg2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQkZtNzk4dUV3WDd0VWJhTTZ0bEJsWDE0WDY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG QkE5LzU3MzAxNTlBQTc3NTExRjA5NERFQkYyREM0RjlBRTAyL0JGbTc5OHVFd1g3 dFViYU02dGxCbFgxNFg2OC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBq/J/RahoiM5wP1gfrKWsJhxoYFn0V4PGeJokBO9G5B4ai/S0Jq6NdMiXmbjv3 6Ig6wH+k8l6EbNR1lqUZm1cEkjGBNlaMpkYctAXQ/JifGe6+DwgwADvAD9ELca21 mRooqF/HQ6CskSugxYnm/i1SBfJPRc4y3psRQls48HdaO4fq1Up90Ujzf6cIa+HT bKLneT3/t6yGpvPjl2kaPAptwenkEk4xIQmAGYI9NcOm/+A81MO7ieskNuzJt5vO VgBoaI8g+sZjX9DPT15Qd4hVxZcBWxZkChh4isNKpmDNZ0Hyj8G6KiMzlUNNHHP8 1Ao8xb9R32q9Th3y8xijlx4E -----END CERTIFICATE-----Generated at Mon Mar 2 10:13:44 2026 by rpki-client