$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft File: BstI9X1UOpeC2KfJbaTh3tvDwws.mft (raw, json) Hash identifier: HZ5+aDIM1Asyg5Rgq8LG9Ucw+nX10+RqBmp03HCpfNw= Subject key identifier: DD:83:57:D6:E9:2E:BC:8A:43:CF:0C:D5:D0:F8:4A:73:F3:4E:73:1D Authority key identifier: 06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B Certificate issuer: /CN=A91E2EFF/serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft Manifest number: 87 Signing time: Sun 01 Mar 2026 08:55:02 +0000 Manifest this update: Sun 01 Mar 2026 08:55:02 +0000 Manifest next update: Sun 08 Mar 2026 08:55:02 +0000 Files and hashes: 1: BstI9X1UOpeC2KfJbaTh3tvDwws.crl (hash: rFH5BljzhOw5dxGlv9e8ynI00epsa/jwUxM4ZFACRMU=) 2: 3698C9BA484A11F0B96B9D10C4F9AE02.roa (hash: 0vz5hH8Qi0mQ8l4HL29D2PA4e6vODvqozBm3+6JiuQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:55:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EFF, serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Validity Not Before: Mar 1 08:55:02 2026 GMT Not After : Mar 8 08:55:02 2026 GMT Subject: CN=69a3fee6-badc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:b6:d8:c8:ac:14:f7:17:03:2e:21:40:dd:62: 93:20:e1:57:ef:12:01:bd:a2:95:fb:2a:1e:dc:8b: d6:43:29:b7:b8:aa:b9:ac:d7:d1:72:62:b5:f3:64: a3:fe:91:be:7e:c2:e5:2d:a1:d5:4e:9d:a4:08:f8: 38:5a:db:85:57:13:96:b1:e3:15:3e:e7:a6:d4:55: d9:82:8a:b2:b0:fc:b0:6e:46:c4:64:f6:86:63:1b: e8:d9:47:a6:5f:e1:ae:9c:ad:7f:2b:86:cd:b2:86: cf:45:dc:ca:57:ed:5f:37:99:26:1c:07:d8:01:49: 46:a7:06:5b:02:c9:2a:e0:00:93:90:23:23:39:45: e2:d3:0c:fb:ae:c6:f4:b3:9a:77:02:b8:e0:ab:58: 17:c6:dd:e5:9e:3c:76:d4:55:38:5d:36:c2:19:3f: ab:bc:12:46:fd:c2:96:cf:66:a4:3e:34:ed:3d:9e: 74:9b:fa:dd:ce:73:12:82:64:aa:e9:18:20:46:9f: ab:96:be:d8:ce:42:8d:63:ab:f6:6a:95:80:b2:ff: c8:1d:1d:3d:0b:df:56:01:8a:2d:56:4a:5b:9d:54: ab:01:63:3a:da:b0:82:f0:0e:aa:f7:f8:64:07:10: cc:c0:fa:16:bb:c3:3a:cd:f0:41:c3:e8:22:83:9f: 2f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:83:57:D6:E9:2E:BC:8A:43:CF:0C:D5:D0:F8:4A:73:F3:4E:73:1D X509v3 Authority Key Identifier: keyid:06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:10:1d:68:bb:85:18:2a:26:1b:ba:2e:ed:ee:cb:49:5b:cc: 23:1c:a0:90:a6:55:0d:df:6e:5f:93:63:f5:9e:99:29:e0:54: c6:be:ee:53:f6:ba:e5:1e:fa:0b:4f:5c:55:4b:b9:d8:87:85: e3:b7:ee:3a:a4:a1:e2:81:80:51:31:c2:9d:a5:31:4d:59:5a: e7:80:07:e9:56:56:c7:a7:af:05:60:11:4f:59:3c:40:80:b6: d8:66:24:5a:e2:33:43:98:89:90:4e:b2:3c:fc:46:b1:80:91: ed:3a:3f:d0:d1:5a:bb:69:ae:4a:3e:5c:05:f3:01:6b:62:64: a1:13:c6:33:ae:d1:84:e9:f4:1f:14:e1:9e:5a:20:37:6e:12: ab:3a:e2:2b:c8:fa:c1:92:51:5f:25:45:da:6a:97:ac:f8:c9: bb:f5:e7:d6:06:36:d5:7e:27:6f:93:a0:25:7a:71:94:29:6d: ec:c4:07:fe:15:4d:e1:b5:85:dc:9f:3f:7d:8a:a7:9e:18:a3: ea:7e:53:a3:04:af:50:c9:0f:dd:7a:64:b8:3c:2f:be:e5:9d: 90:21:20:80:16:29:9c:ab:40:08:ce:24:96:79:d7:db:77:1e: 06:7d:b3:8d:cf:5a:b9:06:b0:51:0f:5e:01:b9:bb:b4:73:ec: eb:0c:ba:67 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJFRkYxMTAvBgNVBAUTKDA2Q0I0OEY1N0Q1NDNBOTc4MkQ4QTdDOTZEQTRFMURF REJDM0MzMEIwHhcNMjYwMzAxMDg1NTAyWhcNMjYwMzA4MDg1NTAyWjAYMRYwFAYD VQQDEw02OWEzZmVlNi1iYWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk7bYyKwU9xcDLiFA3WKTIOFX7xIBvaKV+yoe3IvWQym3uKq5rNfRcmK182Sj /pG+fsLlLaHVTp2kCPg4WtuFVxOWseMVPuem1FXZgoqysPywbkbEZPaGYxvo2Uem X+GunK1/K4bNsobPRdzKV+1fN5kmHAfYAUlGpwZbAskq4ACTkCMjOUXi0wz7rsb0 s5p3Arjgq1gXxt3lnjx21FU4XTbCGT+rvBJG/cKWz2akPjTtPZ50m/rdznMSgmSq 6RggRp+rlr7YzkKNY6v2apWAsv/IHR09C99WAYotVkpbnVSrAWM62rCC8A6q9/hk BxDMwPoWu8M6zfBBw+gig58vsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN2DV9bp LryKQ88M1dD4SnPzTnMdMB8GA1UdIwQYMBaAFAbLSPV9VDqXgtinyW2k4d7bw8ML MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkVGRi9BMzE0ODQ3QzQ4 NDkxMUYwQkYwNzAzNzBDNEY5QUUwMi9Cc3RJOVgxVU9wZUMyS2ZKYmFUaDN0dkR3 d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JzdEk5WDFVT3BlQzJLZkpiYVRoM3R2RHd3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkVGRi9BMzE0ODQ3QzQ4NDkxMUYwQkYwNzAzNzBDNEY5QUUwMi9Cc3RJOVgxVU9w ZUMyS2ZKYmFUaDN0dkR3d3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnhAdaLuFGComG7ou7e7LSVvMIxygkKZVDd9uX5Nj9Z6ZKeBUxr7uU/a65R76 C09cVUu52IeF47fuOqSh4oGAUTHCnaUxTVla54AH6VZWx6evBWART1k8QIC22GYk WuIzQ5iJkE6yPPxGsYCR7To/0NFau2muSj5cBfMBa2JkoRPGM67RhOn0HxThnlog N24SqzriK8j6wZJRXyVF2mqXrPjJu/Xn1gY21X4nb5OgJXpxlClt7MQH/hVN4bWF 3J8/fYqnnhij6n5TowSvUMkP3XpkuDwvvuWdkCEggBYpnKtACM4klnnX23ceBn2z jc9auQawUQ9eAbm7tHPs6wy6Zw== -----END CERTIFICATE-----Generated at Mon Mar 2 04:36:54 2026 by rpki-client