$ rpki-client -vvf rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft File: BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft (raw, json) Hash identifier: tP8wFtkWBUB561+mmg863tLxZToAh3POVAEkbQW8Os0= Subject key identifier: 8E:80:68:14:7A:EB:10:E1:55:CE:9B:C5:3F:6B:16:1D:B6:F0:FD:FF Authority key identifier: 04:8A:A9:8F:3E:C5:4A:90:60:E5:BC:30:05:9D:5C:42:20:D7:C2:F7 Certificate issuer: /CN=A91D425A/serialNumber=048AA98F3EC54A9060E5BC30059D5C4220D7C2F7 Certificate serial: 0BA9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft Manifest number: 0B9F Signing time: Mon 02 Mar 2026 01:29:30 +0000 Manifest this update: Mon 02 Mar 2026 01:29:28 +0000 Manifest next update: Mon 09 Mar 2026 01:29:28 +0000 Files and hashes: 1: BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl (hash: QLcmdtUWx4C5fYYVXXeuVPxs8wncALtmIbC0F8OYxLw=) 2: 494B4070419C11EAAE836772C4F9AE02.roa (hash: bU5lNAcE66Bv/ZZrCjffKOq+spnXNneUB8Pi8JBkWRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:29:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2985 (0xba9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D425A, serialNumber=048AA98F3EC54A9060E5BC30059D5C4220D7C2F7 Validity Not Before: Mar 2 01:29:28 2026 GMT Not After : Mar 9 01:29:28 2026 GMT Subject: CN=69a4e7fa-c1f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6b:78:ba:0a:c8:e6:b1:34:ef:6d:5f:5b:e4: 56:ec:29:f5:0b:15:70:bc:96:f4:c3:5d:04:06:3d: 50:22:6b:9d:ba:8e:90:fd:39:7b:26:45:61:70:31: 2e:c3:42:d2:96:f8:20:4b:e4:d7:5d:af:54:53:79: c3:ad:3c:9d:74:32:0e:1a:17:22:17:4f:67:5b:10: 0d:25:3d:08:8d:67:27:c4:f8:3e:29:24:00:38:e0: 2e:d3:1c:fa:47:3a:76:53:9f:f3:df:e7:1c:9c:26: 40:aa:e9:62:2e:c9:8a:af:4a:d6:c4:b9:45:7b:7b: d7:78:ba:07:0d:ab:d2:5f:57:ca:1d:5e:28:3c:b8: c1:63:63:6e:67:1e:45:48:10:85:9e:39:02:f4:ee: 40:7d:e6:a1:df:e9:33:b3:a2:05:d4:36:4d:01:3b: 11:60:56:fe:df:72:c7:07:59:c4:9b:c7:3b:c3:d1: 15:8e:25:b6:bd:19:7c:c0:f7:c0:99:bf:fd:7c:1d: 4a:0a:cf:e9:ff:8b:32:15:c5:36:45:87:a5:8a:7a: 93:f5:fb:c6:d8:02:8c:13:f9:72:09:f6:61:24:7c: c1:1b:ef:21:15:fa:24:bf:d3:d5:92:3b:5d:51:f7: 95:07:c0:1b:68:3c:3b:d1:d6:2f:45:3a:d0:ec:1d: 00:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:80:68:14:7A:EB:10:E1:55:CE:9B:C5:3F:6B:16:1D:B6:F0:FD:FF X509v3 Authority Key Identifier: keyid:04:8A:A9:8F:3E:C5:4A:90:60:E5:BC:30:05:9D:5C:42:20:D7:C2:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:d3:3c:e9:e4:a0:91:5c:cd:07:4d:c9:14:d8:c5:fd:6d:38: f4:33:14:ca:99:e2:e6:be:a6:1c:c2:0a:f5:10:fd:d8:b8:67: 18:2a:24:78:bf:43:d4:e8:36:92:26:86:89:b4:dd:42:9d:67: 8a:07:43:e5:26:bb:33:58:de:1a:78:e3:ce:e4:8d:59:28:35: 39:fb:9d:2b:73:4c:51:0a:2b:c6:bd:89:a9:f5:55:cd:8b:47: f7:0f:1b:0e:5b:7f:a5:6f:75:34:26:ca:ce:c9:f2:69:68:ce: 3e:3c:01:a3:82:06:bb:57:32:90:7c:e8:83:ca:46:2e:a8:5f: c7:df:77:85:ae:73:19:47:fd:61:8a:21:f2:6a:87:90:8d:9c: e5:72:81:56:97:1e:af:b3:fa:28:29:8b:d7:8a:cc:c8:80:2b: 32:97:99:62:8d:bf:e0:95:93:7c:e3:c0:65:92:6f:76:bf:39: 1b:98:34:84:87:10:ee:06:48:27:82:55:35:d3:e3:68:01:f7: d1:da:0f:13:e2:7e:59:99:aa:6f:55:29:23:e3:03:f8:37:cd: c6:9e:5a:cb:31:ac:63:7c:bb:e4:71:4f:eb:5f:c2:48:87:27: 7c:a0:95:a6:37:49:ad:ed:5a:bb:a0:29:8f:5a:a2:a9:04:90: 1c:bd:fd:00 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQyNUExMTAvBgNVBAUTKDA0OEFBOThGM0VDNTRBOTA2MEU1QkMzMDA1OUQ1QzQy MjBEN0MyRjcwHhcNMjYwMzAyMDEyOTI4WhcNMjYwMzA5MDEyOTI4WjAYMRYwFAYD VQQDEw02OWE0ZTdmYS1jMWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsGt4ugrI5rE0721fW+RW7Cn1CxVwvJb0w10EBj1QImuduo6Q/Tl7JkVhcDEu w0LSlvggS+TXXa9UU3nDrTyddDIOGhciF09nWxANJT0IjWcnxPg+KSQAOOAu0xz6 Rzp2U5/z3+ccnCZAquliLsmKr0rWxLlFe3vXeLoHDavSX1fKHV4oPLjBY2NuZx5F SBCFnjkC9O5Afeah3+kzs6IF1DZNATsRYFb+33LHB1nEm8c7w9EVjiW2vRl8wPfA mb/9fB1KCs/p/4syFcU2RYelinqT9fvG2AKME/lyCfZhJHzBG+8hFfokv9PVkjtd UfeVB8AbaDw70dYvRTrQ7B0ANQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI6AaBR6 6xDhVc6bxT9rFh228P3/MB8GA1UdIwQYMBaAFASKqY8+xUqQYOW8MAWdXEIg18L3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDI1QS8wMjRDMjRGODQx NkMxMUVBODNDM0VGNUFDNEY5QUUwMi9CSXFwano3RlNwQmc1Ynd3QloxY1FpRFh3 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJcXBqejdGU3BCZzVid3dCWjFjUWlEWHd2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDI1QS8wMjRDMjRGODQxNkMxMUVBODNDM0VGNUFDNEY5QUUwMi9CSXFwano3RlNw Qmc1Ynd3QloxY1FpRFh3dmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdtM86eSgkVzNB03JFNjF/W049DMUypni5r6mHMIK9RD92LhnGCokeL9D1Og2 kiaGibTdQp1nigdD5Sa7M1jeGnjjzuSNWSg1OfudK3NMUQorxr2JqfVVzYtH9w8b Dlt/pW91NCbKzsnyaWjOPjwBo4IGu1cykHzog8pGLqhfx993ha5zGUf9YYoh8mqH kI2c5XKBVpcer7P6KCmL14rMyIArMpeZYo2/4JWTfOPAZZJvdr85G5g0hIcQ7gZI J4JVNdPjaAH30doPE+J+WZmqb1UpI+MD+DfNxp5ayzGsY3y75HFP61/CSIcnfKCV pjdJre1au6Apj1qiqQSQHL39AA== -----END CERTIFICATE-----Generated at Mon Mar 2 08:34:26 2026 by rpki-client