$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft File: bb1cTQEh_LMY54xFG29WcyCYYAI.mft (raw, json) Hash identifier: N8cgII/OAR+3u2/Axt4OctqeC2/EN9Tw9qNyWaFLRKM= Subject key identifier: 5A:60:46:63:8E:C8:27:19:10:10:E1:47:2F:CA:34:4D:FA:98:16:20 Authority key identifier: 6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 Certificate issuer: /CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Certificate serial: 044F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft Manifest number: 0417 Signing time: Sun 01 Mar 2026 01:23:08 +0000 Manifest this update: Sun 01 Mar 2026 01:23:08 +0000 Manifest next update: Sun 08 Mar 2026 01:23:08 +0000 Files and hashes: 1: bb1cTQEh_LMY54xFG29WcyCYYAI.crl (hash: ZM77gbGB4sO/ZpNu0AZk/6vBSYZ2jkoRj+TSxUhem7A=) 2: 9B0C244C73B611EEB18A0385C4F9AE02.roa (hash: 2Y9sjJKHecukVuvVbaq82FcEcKk1PVtU2APTvtdHmf4=) 3: 943D15902D1011EFBBEBA67BC4F9AE02.roa (hash: bpDflyeDea4iA77MAsR1yqXpb72az5BwoapOKhJMn4E=) 4: AD17704445F611EE97DF317CC4F9AE02.roa (hash: Clfd7tFcfwoObvQimW3finauT91uWKGe0cqtaB1OpHA=) 5: AEE9F9E6326011ED9031BC4FC4F9AE02.roa (hash: o0bGkeKtz3bzG/bWSV5R/zZyXNKnvRhJi3bUD0NjFsE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:23:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1103 (0x44f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1216, serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Validity Not Before: Mar 1 01:23:08 2026 GMT Not After : Mar 8 01:23:08 2026 GMT Subject: CN=69a394fc-c2fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e6:a2:bc:7b:17:05:0f:16:55:6e:c4:a6:f6: ce:3f:7a:93:2d:9e:7f:5d:0c:cf:bf:d2:9c:46:bd: 86:3b:c2:0c:8a:bb:43:27:e5:fc:43:f8:95:b9:07: 1e:a4:e4:64:db:d3:3f:fd:bb:df:8c:8a:3f:7a:94: 91:36:96:64:19:aa:4b:58:5c:68:08:26:c4:26:bc: 7f:eb:6a:fb:d3:7a:f4:1c:1e:c2:02:b5:7e:95:d4: 44:12:3e:46:11:eb:2f:bc:94:ae:48:86:ea:c0:da: b1:74:e7:59:c2:ee:47:22:70:42:bc:24:71:21:b9: d9:2e:fc:c3:1e:71:49:2a:ff:bf:83:b6:5f:e8:14: 0c:d6:e8:42:22:52:37:c9:17:36:13:f9:01:f7:72: 59:18:59:1b:11:7b:16:4d:b2:c9:9e:5d:4d:dd:8e: 7b:7c:ef:93:75:25:0e:e2:51:2e:38:3e:1f:d1:d9: 7c:bc:fb:97:d0:32:5c:be:84:6c:6c:47:6c:10:c8: 00:28:9f:07:76:b3:72:87:3b:bd:e6:47:f2:bf:60: dd:f1:a2:ca:22:7c:1f:22:95:bc:94:45:5a:f1:12: 9a:bf:4c:0c:4a:79:d8:db:e1:b1:fc:64:70:42:d8: 68:26:d3:6f:33:25:d7:93:6c:38:29:6d:47:d9:62: 1e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:60:46:63:8E:C8:27:19:10:10:E1:47:2F:CA:34:4D:FA:98:16:20 X509v3 Authority Key Identifier: keyid:6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:5c:43:cd:7a:ad:57:1f:1d:2a:5c:66:06:2e:0f:61:6e:bb: db:55:9b:7e:e3:dd:ae:75:a9:94:09:a6:9c:f2:13:20:a0:9d: 7c:cd:a6:87:9e:a2:50:3d:7b:d7:7d:6c:57:42:f2:26:b5:fb: 96:30:14:07:f8:06:43:03:a1:f1:62:2a:82:f8:72:04:92:80: 68:70:9b:ff:58:05:90:a1:e2:da:e3:46:81:39:e7:16:d1:09: be:63:f9:43:2c:74:05:49:a0:6d:ca:14:72:eb:a3:9e:68:44: 51:b5:16:40:5b:73:67:f8:6f:83:b2:4c:4c:1a:5f:2e:84:3e: cf:45:a3:76:d2:41:3b:4a:5a:5f:2b:bb:a6:48:2e:5f:2d:b1: 04:4f:4a:5c:ca:2d:ca:13:85:09:e2:98:ed:23:71:d8:89:c0: 7c:4c:38:3f:43:0d:b3:fc:31:cf:5a:b7:89:f6:3c:9c:8c:95: 12:ca:b4:e9:ca:0d:c6:ab:83:d5:9b:b5:20:0c:8d:5d:f9:8f: 47:a1:be:ec:88:45:ec:20:f1:87:6f:d7:0e:19:36:14:84:8d: 0b:0a:7a:42:a4:ca:97:32:2a:84:c2:30:0c:32:e0:c9:4f:1b: bd:1d:9b:61:02:54:22:06:9c:a7:bf:12:94:f1:d3:db:d3:a7: b4:0f:18:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBE8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMTYxMTAvBgNVBAUTKDZEQkQ1QzREMDEyMUZDQjMxOEU3OEM0NTFCNkY1Njcz MjA5ODYwMDIwHhcNMjYwMzAxMDEyMzA4WhcNMjYwMzA4MDEyMzA4WjAYMRYwFAYD VQQDDA02OWEzOTRmYy1jMmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1uaivHsXBQ8WVW7EpvbOP3qTLZ5/XQzPv9KcRr2GO8IMirtDJ+X8Q/iVuQce pORk29M//bvfjIo/epSRNpZkGapLWFxoCCbEJrx/62r703r0HB7CArV+ldREEj5G EesvvJSuSIbqwNqxdOdZwu5HInBCvCRxIbnZLvzDHnFJKv+/g7Zf6BQM1uhCIlI3 yRc2E/kB93JZGFkbEXsWTbLJnl1N3Y57fO+TdSUO4lEuOD4f0dl8vPuX0DJcvoRs bEdsEMgAKJ8HdrNyhzu95kfyv2Dd8aLKInwfIpW8lEVa8RKav0wMSnnY2+Gx/GRw QthoJtNvMyXXk2w4KW1H2WIeswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFpgRmOO yCcZEBDhRy/KNE36mBYgMB8GA1UdIwQYMBaAFG29XE0BIfyzGOeMRRtvVnMgmGAC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIxNi9EQzc4MjY4Q0I5 NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9MTVk1NHhGRzI5V2N5Q1lZ QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JiMWNUUUVoX0xNWTU0eEZHMjlXY3lDWVlBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTIxNi9EQzc4MjY4Q0I5NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9M TVk1NHhGRzI5V2N5Q1lZQUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhFxDzXqtVx8dKlxmBi4PYW6721WbfuPdrnWplAmmnPITIKCdfM2mh56iUD17 131sV0LyJrX7ljAUB/gGQwOh8WIqgvhyBJKAaHCb/1gFkKHi2uNGgTnnFtEJvmP5 Qyx0BUmgbcoUcuujnmhEUbUWQFtzZ/hvg7JMTBpfLoQ+z0WjdtJBO0paXyu7pkgu Xy2xBE9KXMotyhOFCeKY7SNx2InAfEw4P0MNs/wxz1q3ifY8nIyVEsq06coNxquD 1Zu1IAyNXfmPR6G+7IhF7CDxh2/XDhk2FISNCwp6QqTKlzIqhMIwDDLgyU8bvR2b YQJUIgacp78SlPHT29OntA8YHA== -----END CERTIFICATE-----Generated at Sun Mar 1 20:15:11 2026 by rpki-client