$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft File: bKwrcgiF6COCTBln7fw2Psh0do0.mft (raw, json) Hash identifier: z5WN+TIRIL1jabEkg5N7YaIVqzaWWAbwbY2ySKqT9DU= Subject key identifier: BA:E0:45:1C:AD:97:C2:71:E3:C5:36:2F:CA:11:4A:F5:68:D1:09:4B Authority key identifier: 6C:AC:2B:72:08:85:E8:23:82:4C:19:67:ED:FC:36:3E:C8:74:76:8D Certificate issuer: /CN=A91D5BA2/serialNumber=6CAC2B720885E823824C1967EDFC363EC874768D Certificate serial: 04F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft Manifest number: 04F1 Signing time: Thu 16 Apr 2026 23:39:07 +0000 Manifest this update: Thu 16 Apr 2026 23:39:06 +0000 Manifest next update: Thu 23 Apr 2026 23:39:06 +0000 Files and hashes: 1: bKwrcgiF6COCTBln7fw2Psh0do0.crl (hash: Nw+xWKeSPLIT0PDF3Yk2ih3Xg0rq6xTW0Dcpaz56dA4=) 2: AA5ADA7C579511ECA9BDE14AC4F9AE02.roa (hash: +cG95cMT4bOP7gonlzVBmEDm9qPAdHE8HAO4W9Qjhh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.crl rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:39:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1272 (0x4f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5BA2, serialNumber=6CAC2B720885E823824C1967EDFC363EC874768D Validity Not Before: Apr 16 23:39:06 2026 GMT Not After : Apr 23 23:39:06 2026 GMT Subject: CN=69e1731b-536a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a4:ac:a2:7f:3a:7e:f6:3c:e0:f6:70:18:07: 95:e9:19:4b:5b:ac:26:ac:68:6b:5f:c5:09:4a:2e: d7:25:ca:1e:95:55:c7:eb:9d:bd:3e:8d:fc:5b:d6: 97:ac:80:7b:10:63:13:80:32:1e:44:d1:42:58:8b: 0a:5d:db:00:69:9d:99:7f:71:ed:e6:15:dd:08:42: 5c:83:b6:58:06:3b:6e:9a:b0:50:3c:46:c1:ae:8f: 01:4d:53:1d:16:60:0d:72:e8:73:f5:85:7a:5b:b6: d5:7e:2c:cc:5d:52:d3:95:e0:39:cd:96:4c:b5:c0: 63:1d:26:04:2e:90:28:6b:fa:cf:82:cd:63:b6:a8: da:b9:8c:78:03:ad:80:de:9f:86:77:7a:2b:45:bd: c6:b0:e3:b1:bc:cf:53:76:d5:12:4e:f7:6b:6d:d7: ef:12:d6:ea:ed:05:e2:de:4a:13:bf:cc:7f:d6:11: 4a:2a:b1:5e:78:ce:b2:0b:b3:be:e9:dc:0d:bf:1e: 7c:9b:5c:90:ab:ba:af:9b:26:8e:a0:ff:97:78:39: d7:a7:19:fe:eb:01:ab:f3:75:78:61:47:b3:ed:a6: bc:f9:d3:32:97:e9:28:8d:41:3e:45:ca:00:3d:10: 0f:b0:38:2a:85:0f:38:6d:d9:05:49:2b:e5:1c:13: d5:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:E0:45:1C:AD:97:C2:71:E3:C5:36:2F:CA:11:4A:F5:68:D1:09:4B X509v3 Authority Key Identifier: keyid:6C:AC:2B:72:08:85:E8:23:82:4C:19:67:ED:FC:36:3E:C8:74:76:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:93:f3:19:5b:df:4d:9a:4f:3d:1b:d3:7e:12:ff:fa:6e:8a: c0:05:cc:c9:6d:61:3a:d9:4b:01:08:23:4e:0a:97:4b:d3:a8: b9:84:05:2a:0d:4c:a3:1d:95:3d:a8:1b:70:c2:ec:ed:05:7b: 14:25:04:5b:96:a3:e7:be:df:52:9f:60:a3:a8:c1:b3:8e:07: ca:57:21:c3:95:b4:9a:de:31:24:17:39:e9:25:be:eb:0f:b0: 1a:1c:0a:b6:5e:ce:33:ca:44:90:d1:b7:58:c8:71:c0:3a:fe: 42:3b:11:ba:50:12:05:7e:72:eb:d1:8c:29:44:2c:de:f2:47: 22:a1:da:cf:c7:6d:46:18:a9:89:c0:1a:00:c3:9a:73:42:dc: 2f:5f:ed:91:5f:0f:2a:85:01:36:3d:6c:cc:09:c0:9f:8c:73: 8f:77:13:2c:d3:5e:15:24:f6:7a:22:d9:46:95:6e:6f:ed:f7: ef:33:cc:c9:1f:e9:1b:15:ab:86:b1:68:38:0d:bc:f2:61:1f: ed:b1:75:8b:fc:a9:b2:77:6e:14:55:57:02:80:bc:41:d5:d3: 4d:60:15:72:79:24:1d:4e:4a:a0:e7:31:e8:a8:c9:60:78:38: 56:90:e7:b3:9f:07:fd:19:20:4a:51:fe:4a:e2:b5:ff:1f:d7: aa:c8:bb:37 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVCQTIxMTAvBgNVBAUTKDZDQUMyQjcyMDg4NUU4MjM4MjRDMTk2N0VERkMzNjNF Qzg3NDc2OEQwHhcNMjYwNDE2MjMzOTA2WhcNMjYwNDIzMjMzOTA2WjAYMRYwFAYD VQQDEw02OWUxNzMxYi01MzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoaSson86fvY84PZwGAeV6RlLW6wmrGhrX8UJSi7XJcoelVXH6529Po38W9aX rIB7EGMTgDIeRNFCWIsKXdsAaZ2Zf3Ht5hXdCEJcg7ZYBjtumrBQPEbBro8BTVMd FmANcuhz9YV6W7bVfizMXVLTleA5zZZMtcBjHSYELpAoa/rPgs1jtqjauYx4A62A 3p+Gd3orRb3GsOOxvM9TdtUSTvdrbdfvEtbq7QXi3koTv8x/1hFKKrFeeM6yC7O+ 6dwNvx58m1yQq7qvmyaOoP+XeDnXpxn+6wGr83V4YUez7aa8+dMyl+kojUE+RcoA PRAPsDgqhQ84bdkFSSvlHBPVQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLrgRRyt l8Jx48U2L8oRSvVo0QlLMB8GA1UdIwQYMBaAFGysK3IIhegjgkwZZ+38Nj7IdHaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUJBMi8xNEZFQzJFQzU3 OTMxMUVDQkEyRkIwNDhDNEY5QUUwMi9iS3dyY2dpRjZDT0NUQmxuN2Z3MlBzaDBk bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLd3JjZ2lGNkNPQ1RCbG43ZncyUHNoMGRvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUJBMi8xNEZFQzJFQzU3OTMxMUVDQkEyRkIwNDhDNEY5QUUwMi9iS3dyY2dpRjZD T0NUQmxuN2Z3MlBzaDBkbzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQpPzGVvfTZpPPRvTfhL/+m6KwAXMyW1hOtlLAQgjTgqXS9OouYQFKg1Mox2V PagbcMLs7QV7FCUEW5aj577fUp9go6jBs44Hylchw5W0mt4xJBc56SW+6w+wGhwK tl7OM8pEkNG3WMhxwDr+QjsRulASBX5y69GMKUQs3vJHIqHaz8dtRhipicAaAMOa c0LcL1/tkV8PKoUBNj1szAnAn4xzj3cTLNNeFST2eiLZRpVub+337zPMyR/pGxWr hrFoOA288mEf7bF1i/ypsnduFFVXAoC8QdXTTWAVcnkkHU5KoOcx6KjJYHg4VpDn s58H/RkgSlH+SuK1/x/Xqsi7Nw== -----END CERTIFICATE-----Generated at Fri Apr 17 12:14:31 2026 by rpki-client