$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft File: BstI9X1UOpeC2KfJbaTh3tvDwws.mft (raw, json) Hash identifier: WwhcA0DWu5VWUQll1SRDPY5HLC+ylDiCncsTUBPmAq8= Subject key identifier: EA:64:3C:38:6C:F4:FB:F1:1A:FE:DE:35:6E:0E:E4:9E:A7:33:0A:2E Authority key identifier: 06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B Certificate issuer: /CN=A91E2EFF/serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Certificate serial: A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft Manifest number: 9F Signing time: Fri 17 Apr 2026 07:01:58 +0000 Manifest this update: Fri 17 Apr 2026 07:01:58 +0000 Manifest next update: Fri 24 Apr 2026 07:01:58 +0000 Files and hashes: 1: BstI9X1UOpeC2KfJbaTh3tvDwws.crl (hash: 7N4rJxEhTyMTx7hDM9uQxxzFRfNskEvGiIwdNGcJZi0=) 2: 3698C9BA484A11F0B96B9D10C4F9AE02.roa (hash: 0vz5hH8Qi0mQ8l4HL29D2PA4e6vODvqozBm3+6JiuQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EFF, serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Validity Not Before: Apr 17 07:01:58 2026 GMT Not After : Apr 24 07:01:58 2026 GMT Subject: CN=69e1dae6-3d37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ae:31:ef:be:c0:f1:61:d4:19:2f:3a:2c:f7: 20:13:bf:f4:b4:e3:d4:93:bb:79:d5:cc:8a:29:5d: 69:2f:a1:ca:49:71:6d:1d:28:d6:82:83:5a:ad:16: 94:72:06:10:4e:cb:d2:3d:11:9c:ea:e2:0b:60:13: c0:ee:b2:6b:1f:9a:d7:ff:fc:76:5f:ce:9f:ee:a7: 24:b3:26:8d:c4:d1:7e:ea:11:9f:b5:b5:ed:d5:26: b6:ba:82:56:ed:7b:cb:b7:71:d7:99:cd:eb:de:30: c1:6c:49:9e:62:8e:1e:af:48:3c:fc:98:7c:68:43: d8:e3:38:63:33:c8:39:c6:8f:ad:62:3d:38:d8:79: 2f:78:a4:dd:62:19:a7:7c:71:ef:d4:3d:71:10:b5: 3e:75:ed:39:46:47:fc:50:5b:05:fc:fd:2d:5b:a0: 44:57:2b:63:27:49:5d:24:26:f4:3a:3e:19:92:45: 7d:fc:98:79:14:ac:4f:68:f9:d0:6e:7d:c3:ed:6b: a9:aa:e5:6a:0f:ff:b9:19:5b:83:3c:7c:8b:9a:1b: 61:05:a0:f5:76:7d:5a:ab:4e:48:39:a9:a4:33:1a: 9e:14:9b:84:fd:c1:c1:35:8e:ee:a7:17:4d:12:13: 8a:b4:72:41:4f:86:0f:6d:48:43:97:ca:b2:82:3a: 89:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:64:3C:38:6C:F4:FB:F1:1A:FE:DE:35:6E:0E:E4:9E:A7:33:0A:2E X509v3 Authority Key Identifier: keyid:06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:73:bf:df:f2:21:b2:b0:91:5f:0d:fa:3e:a0:1d:d8:3f:7d: 61:dd:7a:ad:c4:2e:a4:33:27:7e:8b:e3:fd:bd:63:ea:f2:26: 8c:71:1c:fc:b9:6d:bd:60:83:0d:dc:76:37:55:c3:71:65:2a: 2a:38:f3:4b:48:fe:ef:e4:5f:09:fe:d9:9a:3e:9a:7b:7b:74: 62:52:4d:85:fc:99:15:a4:1c:32:10:d4:ec:57:14:7e:0c:ad: 21:44:4d:fd:57:d0:17:42:c5:31:e7:13:f4:68:0b:06:cc:ee: e6:1b:0f:80:bd:a7:66:e8:26:a7:f5:ee:d0:a8:8c:c3:c2:69: 76:65:d4:d1:63:4e:9c:72:b3:44:47:fe:a0:06:25:6c:32:5b: 76:fd:d3:b6:43:84:9c:b3:db:77:ab:3a:e4:67:2c:23:3b:4a: 95:7e:a7:a2:f3:1e:0f:de:04:ac:d8:23:f0:03:cb:20:bf:c1: 53:6d:30:f1:5a:26:cf:0c:fa:71:a3:df:77:97:8e:72:fa:d3: 14:15:7d:4f:66:54:6a:3f:ff:24:bf:68:ab:27:85:df:67:b7: af:aa:4e:c4:07:92:04:cb:b9:48:7d:6b:51:9f:4f:d3:25:7a: 1d:82:b9:5b:85:98:b1:2d:42:08:4b:7f:82:0b:99:43:d6:f4: cf:77:2e:c7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJFRkYxMTAvBgNVBAUTKDA2Q0I0OEY1N0Q1NDNBOTc4MkQ4QTdDOTZEQTRFMURF REJDM0MzMEIwHhcNMjYwNDE3MDcwMTU4WhcNMjYwNDI0MDcwMTU4WjAYMRYwFAYD VQQDEw02OWUxZGFlNi0zZDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqa4x777A8WHUGS86LPcgE7/0tOPUk7t51cyKKV1pL6HKSXFtHSjWgoNarRaU cgYQTsvSPRGc6uILYBPA7rJrH5rX//x2X86f7qcksyaNxNF+6hGftbXt1Sa2uoJW 7XvLt3HXmc3r3jDBbEmeYo4er0g8/Jh8aEPY4zhjM8g5xo+tYj042HkveKTdYhmn fHHv1D1xELU+de05Rkf8UFsF/P0tW6BEVytjJ0ldJCb0Oj4ZkkV9/Jh5FKxPaPnQ bn3D7WupquVqD/+5GVuDPHyLmhthBaD1dn1aq05IOamkMxqeFJuE/cHBNY7upxdN EhOKtHJBT4YPbUhDl8qygjqJSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOpkPDhs 9PvxGv7eNW4O5J6nMwouMB8GA1UdIwQYMBaAFAbLSPV9VDqXgtinyW2k4d7bw8ML MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkVGRi9BMzE0ODQ3QzQ4 NDkxMUYwQkYwNzAzNzBDNEY5QUUwMi9Cc3RJOVgxVU9wZUMyS2ZKYmFUaDN0dkR3 d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JzdEk5WDFVT3BlQzJLZkpiYVRoM3R2RHd3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkVGRi9BMzE0ODQ3QzQ4NDkxMUYwQkYwNzAzNzBDNEY5QUUwMi9Cc3RJOVgxVU9w ZUMyS2ZKYmFUaDN0dkR3d3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhnO/3/IhsrCRXw36PqAd2D99Yd16rcQupDMnfovj/b1j6vImjHEc/LltvWCD Ddx2N1XDcWUqKjjzS0j+7+RfCf7Zmj6ae3t0YlJNhfyZFaQcMhDU7FcUfgytIURN /VfQF0LFMecT9GgLBszu5hsPgL2nZugmp/Xu0KiMw8JpdmXU0WNOnHKzREf+oAYl bDJbdv3TtkOEnLPbd6s65GcsIztKlX6novMeD94ErNgj8APLIL/BU20w8Vomzwz6 caPfd5eOcvrTFBV9T2ZUaj//JL9oqyeF32e3r6pOxAeSBMu5SH1rUZ9P0yV6HYK5 W4WYsS1CCEt/gguZQ9b0z3cuxw== -----END CERTIFICATE-----Generated at Fri Apr 17 14:14:30 2026 by rpki-client