$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft File: BUM8OuqKSXAsmoLuyV0WtVA86mA.mft (raw, json) Hash identifier: 7ICgrb6bUKD/r0n8QI7de8BWuQ+5YvINQiQFJFSyGjE= Subject key identifier: E5:FC:99:16:37:9C:0D:6F:2F:A8:8D:7B:D8:0D:A0:3E:E1:0C:CE:63 Authority key identifier: 05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 Certificate issuer: /CN=A91CFFA0/serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Certificate serial: 0DF1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft Manifest number: 0DC3 Signing time: Sun 01 Mar 2026 22:56:42 +0000 Manifest this update: Sun 01 Mar 2026 22:56:41 +0000 Manifest next update: Sun 08 Mar 2026 22:56:41 +0000 Files and hashes: 1: BUM8OuqKSXAsmoLuyV0WtVA86mA.crl (hash: C5yp9C1IAzc8rWtJVVQISX8wYAV+8q0eFHH1sZMIGxE=) 2: 0E3F36D8C43D11EBAB31777FC4F9AE02.roa (hash: D9klEFQG/k6Phw9Yt86DVaS1LFIWfa7yVLK9O+stCIY=) 3: E6F0F39214CE11EA9E740182C4F9AE02.roa (hash: USUvjmydXjtMJPzPbFEwUqIP+Ih5VSwPB5Ykt4WO3Ws=) 4: 83ECD7C40CCA11ED97820077C4F9AE02.roa (hash: ky9Ng4i7BRaoHnDxU2AZbymyosvFrsEsC/8UhobSRso=) 5: 1F4E1CC014D311EA81309110C4F9AE02.roa (hash: onq3kLqhAx1MRzvzSd2yOhdRNFOh2mwuifP1Le+Ju0M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:56:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3569 (0xdf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Validity Not Before: Mar 1 22:56:41 2026 GMT Not After : Mar 8 22:56:41 2026 GMT Subject: CN=69a4c429-174e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:af:05:02:46:50:5d:f3:5d:d2:61:c7:d9:d5: 8e:ab:a2:c3:1d:ce:6b:a8:dc:5b:64:25:d5:1d:35: 71:9f:27:57:4c:94:fa:0e:51:e4:16:1a:44:90:cd: 9f:ab:40:3b:e5:c7:f3:52:7a:b9:a8:ec:29:4f:7c: 8c:e5:f1:b0:5f:9d:8c:19:07:32:11:62:09:bf:40: 05:fa:92:53:28:e8:0d:24:42:51:f6:37:e7:63:76: df:d4:cb:b2:48:e4:a0:43:1d:42:86:fe:ab:39:ea: cb:d7:f4:62:41:fe:18:d5:9b:84:06:04:ad:c1:e2: e8:66:79:24:df:75:fa:10:9b:b5:1c:dd:2e:49:d4: a4:37:1c:cb:f4:30:69:73:1a:04:89:fb:36:28:dc: 6d:59:04:9e:97:fb:58:d9:7e:18:97:1e:f1:47:ee: 0b:fb:87:e3:3d:5b:9c:d6:db:f0:34:56:f5:ac:8f: ec:ad:83:16:f5:6f:01:c3:d5:a2:ed:9d:07:81:36: 7d:fa:e7:45:0a:3c:90:e2:6a:a2:58:11:75:be:d1: 24:c5:6c:40:a2:84:02:e1:97:1d:20:c6:5a:19:fd: d8:09:2e:7e:f4:63:37:b6:79:2e:16:e0:71:2e:a4: 1f:ef:95:2a:8a:68:f3:8b:ee:06:8c:5b:7e:a6:76: 46:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:FC:99:16:37:9C:0D:6F:2F:A8:8D:7B:D8:0D:A0:3E:E1:0C:CE:63 X509v3 Authority Key Identifier: keyid:05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:62:a6:b2:83:a5:bf:17:0e:21:1e:59:8b:b6:16:b1:9f:9f: a2:7e:41:11:c2:75:fe:67:cc:ad:4a:3c:e6:de:8c:90:a0:5e: 68:12:9e:fd:c6:71:6b:2b:78:a8:3a:14:4d:51:87:23:57:c8: 9d:ce:63:4b:a6:2b:60:63:0b:21:0b:7f:4e:61:a0:6f:c5:b8: 71:94:4c:c2:9c:97:1e:46:a8:98:35:14:b8:08:bc:47:da:d4: 44:00:64:ec:2b:c2:ef:04:96:75:e9:30:b8:6d:dd:77:08:42: 55:ac:d5:65:e6:78:09:51:9a:1c:5a:94:97:15:65:c0:e8:7b: 2a:b5:7e:aa:25:cb:64:fd:98:e5:04:50:f3:0d:d5:6d:69:1f: fd:3e:0c:90:c0:97:6f:ef:54:22:36:44:29:41:c3:c2:83:b1: 80:00:d2:d0:78:b6:d3:f9:f9:9d:44:79:b4:5d:04:f8:38:72: 7f:01:29:6c:9e:5d:36:98:a5:28:ac:ce:ed:b5:44:2f:57:99: e8:29:45:a4:ff:65:33:85:4e:81:88:91:4f:be:73:be:c4:ca: 77:1a:16:9c:23:30:50:22:a6:46:8d:c2:53:04:10:d2:ff:f9: b8:1c:b8:1e:81:c0:d6:ef:ce:a7:5d:8e:f9:dd:92:ff:8f:3b: 28:c2:6e:5d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKDA1NDMzQzNBRUE4QTQ5NzAyQzlBODJFRUM5NUQxNkI1 NTAzQ0VBNjAwHhcNMjYwMzAxMjI1NjQxWhcNMjYwMzA4MjI1NjQxWjAYMRYwFAYD VQQDEw02OWE0YzQyOS0xNzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0a8FAkZQXfNd0mHH2dWOq6LDHc5rqNxbZCXVHTVxnydXTJT6DlHkFhpEkM2f q0A75cfzUnq5qOwpT3yM5fGwX52MGQcyEWIJv0AF+pJTKOgNJEJR9jfnY3bf1Muy SOSgQx1Chv6rOerL1/RiQf4Y1ZuEBgStweLoZnkk33X6EJu1HN0uSdSkNxzL9DBp cxoEifs2KNxtWQSel/tY2X4Ylx7xR+4L+4fjPVuc1tvwNFb1rI/srYMW9W8Bw9Wi 7Z0HgTZ9+udFCjyQ4mqiWBF1vtEkxWxAooQC4ZcdIMZaGf3YCS5+9GM3tnkuFuBx LqQf75Uqimjzi+4GjFt+pnZGCQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOX8mRY3 nA1vL6iNe9gNoD7hDM5jMB8GA1UdIwQYMBaAFAVDPDrqiklwLJqC7sldFrVQPOpg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xNTBCRjY5MEQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NYQXNtb0x1eVYwV3RWQTg2 bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JVTThPdXFLU1hBc21vTHV5VjBXdFZBODZtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZBMC8xNTBCRjY5MEQ4Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NY QXNtb0x1eVYwV3RWQTg2bUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQWKmsoOlvxcOIR5Zi7YWsZ+fon5BEcJ1/mfMrUo85t6MkKBeaBKe/cZxayt4 qDoUTVGHI1fInc5jS6YrYGMLIQt/TmGgb8W4cZRMwpyXHkaomDUUuAi8R9rURABk 7CvC7wSWdekwuG3ddwhCVazVZeZ4CVGaHFqUlxVlwOh7KrV+qiXLZP2Y5QRQ8w3V bWkf/T4MkMCXb+9UIjZEKUHDwoOxgADS0Hi20/n5nUR5tF0E+DhyfwEpbJ5dNpil KKzO7bVEL1eZ6ClFpP9lM4VOgYiRT75zvsTKdxoWnCMwUCKmRo3CUwQQ0v/5uBy4 HoHA1u/Op12O+d2S/487KMJuXQ== -----END CERTIFICATE-----Generated at Mon Mar 2 13:23:24 2026 by rpki-client