$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft File: bKwrcgiF6COCTBln7fw2Psh0do0.mft (raw, json) Hash identifier: NrCWBN+W2GF93Qiz/LeU9oC8MbgAu0pKuwYVKNxOYwQ= Subject key identifier: E7:B7:4D:4C:B3:6A:52:17:31:AE:D2:BB:D3:0A:DD:4B:54:12:31:FE Authority key identifier: 6C:AC:2B:72:08:85:E8:23:82:4C:19:67:ED:FC:36:3E:C8:74:76:8D Certificate issuer: /CN=A91D5BA2/serialNumber=6CAC2B720885E823824C1967EDFC363EC874768D Certificate serial: 04DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft Manifest number: 04D5 Signing time: Sun 01 Mar 2026 00:27:22 +0000 Manifest this update: Sun 01 Mar 2026 00:27:22 +0000 Manifest next update: Sun 08 Mar 2026 00:27:22 +0000 Files and hashes: 1: bKwrcgiF6COCTBln7fw2Psh0do0.crl (hash: HCWpEBQJMxjDDG1EHh9UuERhXpV3LXHUziuUw2L6C1A=) 2: AA5ADA7C579511ECA9BDE14AC4F9AE02.roa (hash: /NgK3u5jqw1d//qoTXrGcCnkIoepRe7WzeoPLGdtL+k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.crl rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 00:27:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1242 (0x4da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5BA2, serialNumber=6CAC2B720885E823824C1967EDFC363EC874768D Validity Not Before: Mar 1 00:27:22 2026 GMT Not After : Mar 8 00:27:22 2026 GMT Subject: CN=69a387ea-7da4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4f:ed:5f:6f:2f:f0:82:41:89:83:0e:95:12: 87:95:68:99:a3:5c:c2:58:2e:c7:1e:7f:e5:5a:89: a2:f7:f2:07:76:e4:48:ff:1b:f0:a5:e2:84:53:ca: 4f:b8:e7:4b:f8:9c:44:8f:9f:08:34:0a:19:e5:eb: 1a:ef:99:8d:e1:53:5f:65:c3:8b:9e:10:66:df:45: 2f:ac:41:4c:2d:2f:21:5f:6d:07:07:ce:f7:cf:6e: ea:e0:c8:a9:65:2f:65:f0:d5:c3:36:4f:6e:3d:70: 1c:a3:16:4c:d3:bc:04:db:d3:27:0a:96:a2:48:dc: 56:3d:6d:fe:b8:49:dc:92:27:85:22:b9:3a:18:76: 96:3c:c5:49:af:32:ee:f9:a7:0b:89:b3:a7:72:d1: ac:78:81:55:73:09:05:c6:99:95:07:f3:16:95:6b: 03:72:15:70:3d:b2:bc:5c:ed:6a:12:dd:e8:e9:35: 58:2c:36:c8:55:9e:af:3d:eb:ca:96:01:25:aa:96: 9f:98:f0:1a:57:10:be:4c:a4:92:4a:4f:a7:29:db: 26:d1:0e:fb:ec:9c:52:eb:a0:d4:10:3d:ee:ad:d2: 90:7f:90:d5:7b:90:ec:b6:c7:9e:ed:45:38:e3:dd: b5:3b:cc:c3:05:e6:78:d9:c7:fa:81:64:19:69:a2: b6:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:B7:4D:4C:B3:6A:52:17:31:AE:D2:BB:D3:0A:DD:4B:54:12:31:FE X509v3 Authority Key Identifier: keyid:6C:AC:2B:72:08:85:E8:23:82:4C:19:67:ED:FC:36:3E:C8:74:76:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:66:64:e9:ef:f3:f0:95:a2:09:44:78:0b:22:2c:0b:a6:4d: 8c:70:74:f9:f2:64:61:86:10:2a:c4:79:15:34:d4:e5:cd:fe: 9e:7b:0f:55:e5:3d:56:21:56:8d:85:ae:6f:b9:e2:08:6f:96: c6:3c:60:6e:90:5a:ba:18:bc:0b:78:6d:a8:25:f7:91:c7:90: 3a:ab:fd:9f:3b:73:81:6c:d4:4b:a7:69:f8:a7:fc:08:7e:a2: da:61:d8:88:79:cc:db:10:fc:4c:8c:a2:4f:fc:86:86:9b:be: 89:07:f9:02:7c:8e:ae:c5:62:01:3f:80:a3:d6:e9:ca:cf:22: 76:6d:1f:b3:4e:19:3b:53:7b:fb:ae:3d:fa:06:ad:b2:7d:88: 50:56:f5:81:a2:4d:3c:31:9f:ae:e5:5a:9a:15:e3:28:27:7e: 5f:38:20:cd:f8:74:42:b9:60:92:f3:58:2b:81:75:c4:06:7c: fd:26:04:ff:9b:93:e2:6a:f1:e1:5e:ad:a3:60:13:13:47:68: 1d:01:d3:af:9a:d7:2f:d1:22:3a:ff:bf:9d:c0:27:27:c9:76: bb:57:fa:11:d7:2d:cd:5a:eb:1c:f5:a3:fc:61:90:07:1b:19: 81:6a:04:2d:08:4b:b2:5e:90:81:33:4e:c7:94:b3:6f:d8:39: 24:f3:d5:7a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVCQTIxMTAvBgNVBAUTKDZDQUMyQjcyMDg4NUU4MjM4MjRDMTk2N0VERkMzNjNF Qzg3NDc2OEQwHhcNMjYwMzAxMDAyNzIyWhcNMjYwMzA4MDAyNzIyWjAYMRYwFAYD VQQDDA02OWEzODdlYS03ZGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwk/tX28v8IJBiYMOlRKHlWiZo1zCWC7HHn/lWomi9/IHduRI/xvwpeKEU8pP uOdL+JxEj58INAoZ5esa75mN4VNfZcOLnhBm30UvrEFMLS8hX20HB873z27q4Mip ZS9l8NXDNk9uPXAcoxZM07wE29MnCpaiSNxWPW3+uEnckieFIrk6GHaWPMVJrzLu +acLibOnctGseIFVcwkFxpmVB/MWlWsDchVwPbK8XO1qEt3o6TVYLDbIVZ6vPevK lgElqpafmPAaVxC+TKSSSk+nKdsm0Q777JxS66DUED3urdKQf5DVe5Dstsee7UU4 4921O8zDBeZ42cf6gWQZaaK2IwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOe3TUyz alIXMa7Su9MK3UtUEjH+MB8GA1UdIwQYMBaAFGysK3IIhegjgkwZZ+38Nj7IdHaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUJBMi8xNEZFQzJFQzU3 OTMxMUVDQkEyRkIwNDhDNEY5QUUwMi9iS3dyY2dpRjZDT0NUQmxuN2Z3MlBzaDBk bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLd3JjZ2lGNkNPQ1RCbG43ZncyUHNoMGRvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUJBMi8xNEZFQzJFQzU3OTMxMUVDQkEyRkIwNDhDNEY5QUUwMi9iS3dyY2dpRjZD T0NUQmxuN2Z3MlBzaDBkbzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGWZk6e/z8JWiCUR4CyIsC6ZNjHB0+fJkYYYQKsR5FTTU5c3+nnsPVeU9ViFW jYWub7niCG+WxjxgbpBauhi8C3htqCX3kceQOqv9nztzgWzUS6dp+Kf8CH6i2mHY iHnM2xD8TIyiT/yGhpu+iQf5AnyOrsViAT+Ao9bpys8idm0fs04ZO1N7+649+gat sn2IUFb1gaJNPDGfruVamhXjKCd+Xzggzfh0QrlgkvNYK4F1xAZ8/SYE/5uT4mrx 4V6to2ATE0doHQHTr5rXL9EiOv+/ncAnJ8l2u1f6EdctzVrrHPWj/GGQBxsZgWoE LQhLsl6QgTNOx5Szb9g5JPPVeg== -----END CERTIFICATE-----Generated at Sun Mar 1 23:53:43 2026 by rpki-client