$ rpki-client -vvf rpki.apnic.net/member_repository/A91E855B/70D7F38AEF6611F0833D7B26586F56BC/bzlXnZcRM1EDpt5yAX7QdbPWlu8.mft File: bzlXnZcRM1EDpt5yAX7QdbPWlu8.mft (raw, json) Hash identifier: 0op5SIPX6UeegVpP5DXbxVQ1K/q81babFLrIWQJRiTQ= Subject key identifier: 89:D9:5B:C3:5F:30:F1:B9:4D:F7:0D:CA:83:30:45:51:F8:35:87:54 Authority key identifier: 6F:39:57:9D:97:11:33:51:03:A6:DE:72:01:7E:D0:75:B3:D6:96:EF Certificate issuer: /CN=A91E855B/serialNumber=6F39579D9711335103A6DE72017ED075B3D696EF Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzlXnZcRM1EDpt5yAX7QdbPWlu8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E855B/70D7F38AEF6611F0833D7B26586F56BC/bzlXnZcRM1EDpt5yAX7QdbPWlu8.mft Manifest number: 1F Signing time: Sun 01 Mar 2026 10:23:07 +0000 Manifest this update: Sun 01 Mar 2026 10:23:07 +0000 Manifest next update: Sun 08 Mar 2026 10:23:07 +0000 Files and hashes: 1: bzlXnZcRM1EDpt5yAX7QdbPWlu8.crl (hash: lGOq9yCgXrCNDGJM41HlvAOkJoESHgDuas3U21fpTHo=) 2: C1B7F140EF6811F09BA576A7586F56BC.roa (hash: FZsMYhs+HhbrIDEvkDPfRQGiXabysevZPy7KXtW9MPU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E855B/70D7F38AEF6611F0833D7B26586F56BC/bzlXnZcRM1EDpt5yAX7QdbPWlu8.crl rsync://rpki.apnic.net/member_repository/A91E855B/70D7F38AEF6611F0833D7B26586F56BC/bzlXnZcRM1EDpt5yAX7QdbPWlu8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzlXnZcRM1EDpt5yAX7QdbPWlu8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:23:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E855B, serialNumber=6F39579D9711335103A6DE72017ED075B3D696EF Validity Not Before: Mar 1 10:23:07 2026 GMT Not After : Mar 8 10:23:07 2026 GMT Subject: CN=69a4138b-a607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:c7:91:ba:ee:bb:67:f6:38:08:c4:9a:37:76: a7:a2:8d:6a:56:f3:58:60:cb:51:38:38:82:66:63: fc:8c:1a:f6:fb:7a:d8:04:ed:b1:8c:54:ec:33:64: b1:35:44:1e:de:24:e3:90:33:04:80:bf:1b:36:28: 54:58:ff:2f:9f:92:91:76:db:ee:44:05:29:78:c0: 61:f3:b8:74:12:ac:05:95:cf:c1:2d:d6:12:63:d9: b7:f9:a9:bf:ac:c7:8d:75:18:21:8e:41:e9:78:66: 26:57:24:30:a0:6d:64:4b:b8:1a:57:89:7b:eb:c8: b6:b0:75:11:08:a3:d6:e7:ba:7a:e7:4b:63:17:cf: 7d:71:e9:96:a5:45:ea:90:7a:7c:a5:e2:b0:e6:bf: 75:33:c2:8d:ab:3a:dd:31:0d:c8:a6:df:7c:78:e7: 91:60:ba:e0:b7:df:81:ce:32:44:de:c9:00:0d:8f: 8d:ea:b1:56:88:f9:94:d9:85:84:d0:8b:e5:10:51: 51:42:2a:4e:4d:ab:34:d5:2e:2d:66:91:6a:33:63: b9:00:89:3f:04:f1:d0:72:95:4b:73:37:37:d1:d5: 21:1a:7b:ff:0f:ce:7f:fc:d9:7c:d5:60:89:09:1e: 8c:7e:fa:5e:a7:0a:30:cb:9e:f8:d3:bf:51:06:80: 98:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:D9:5B:C3:5F:30:F1:B9:4D:F7:0D:CA:83:30:45:51:F8:35:87:54 X509v3 Authority Key Identifier: keyid:6F:39:57:9D:97:11:33:51:03:A6:DE:72:01:7E:D0:75:B3:D6:96:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E855B/70D7F38AEF6611F0833D7B26586F56BC/bzlXnZcRM1EDpt5yAX7QdbPWlu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzlXnZcRM1EDpt5yAX7QdbPWlu8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E855B/70D7F38AEF6611F0833D7B26586F56BC/bzlXnZcRM1EDpt5yAX7QdbPWlu8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:d5:51:a2:a5:3c:dd:91:7d:40:a7:de:b8:a3:fc:3e:99:1a: e8:3f:43:b4:00:ea:b8:6d:60:e5:60:28:dd:65:5a:1e:5b:9a: 67:da:19:69:30:f1:84:6d:4e:35:a3:6a:c3:f8:47:5f:dd:18: aa:1f:4c:f9:cc:6b:2a:21:3b:07:91:f4:91:dd:84:87:81:a2: 84:d0:17:0c:f6:d6:8c:92:5c:66:20:65:ab:d9:b1:64:ba:1f: a8:7f:82:a1:87:22:bd:65:72:a7:3e:60:b6:24:8a:de:50:2a: 58:95:1e:60:d3:bc:12:d7:7b:15:de:8f:00:01:96:b9:01:b7: 72:ab:c5:06:66:53:db:f1:c8:7f:94:1f:ae:db:69:6e:28:a9: fe:87:23:dc:5d:89:55:46:f5:b3:dd:14:66:53:55:09:04:73: 99:30:2f:1b:70:b8:42:e2:da:f3:6b:1a:ce:8d:05:0c:b2:c8: 98:e6:4e:9c:a6:98:24:ce:35:b7:c7:ce:92:c0:d2:d9:c7:51: ed:08:11:ee:c7:30:86:a7:29:73:d2:22:3f:ab:be:fb:01:83: 5e:41:55:de:05:7b:06:eb:39:88:18:77:7f:cd:fe:1c:3e:3b: bc:08:21:c7:b3:dd:f9:b0:9c:67:74:08:d7:d6:84:dd:e5:6c: 53:47:6e:fb -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODU1QjExMC8GA1UEBRMoNkYzOTU3OUQ5NzExMzM1MTAzQTZERTcyMDE3RUQwNzVC M0Q2OTZFRjAeFw0yNjAzMDExMDIzMDdaFw0yNjAzMDgxMDIzMDdaMBgxFjAUBgNV BAMTDTY5YTQxMzhiLWE2MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCdx5G67rtn9jgIxJo3dqeijWpW81hgy1E4OIJmY/yMGvb7etgE7bGMVOwzZLE1 RB7eJOOQMwSAvxs2KFRY/y+fkpF22+5EBSl4wGHzuHQSrAWVz8Et1hJj2bf5qb+s x411GCGOQel4ZiZXJDCgbWRLuBpXiXvryLawdREIo9bnunrnS2MXz31x6ZalReqQ enyl4rDmv3Uzwo2rOt0xDcim33x455FguuC334HOMkTeyQANj43qsVaI+ZTZhYTQ i+UQUVFCKk5NqzTVLi1mkWozY7kAiT8E8dBylUtzNzfR1SEae/8Pzn/82XzVYIkJ Hox++l6nCjDLnvjTv1EGgJinAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUidlbw18w 8blN9w3KgzBFUfg1h1QwHwYDVR0jBBgwFoAUbzlXnZcRM1EDpt5yAX7QdbPWlu8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4NTVCLzcwRDdGMzhBRUY2 NjExRjA4MzNEN0IyNjU4NkY1NkJDL2J6bFhuWmNSTTFFRHB0NXlBWDdRZGJQV2x1 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYnpsWG5aY1JNMUVEcHQ1eUFYN1FkYlBXbHU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 NTVCLzcwRDdGMzhBRUY2NjExRjA4MzNEN0IyNjU4NkY1NkJDL2J6bFhuWmNSTTFF RHB0NXlBWDdRZGJQV2x1OC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCJ1VGipTzdkX1Ap964o/w+mRroP0O0AOq4bWDlYCjdZVoeW5pn2hlpMPGEbU41 o2rD+Edf3RiqH0z5zGsqITsHkfSR3YSHgaKE0BcM9taMklxmIGWr2bFkuh+of4Kh hyK9ZXKnPmC2JIreUCpYlR5g07wS13sV3o8AAZa5Abdyq8UGZlPb8ch/lB+u22lu KKn+hyPcXYlVRvWz3RRmU1UJBHOZMC8bcLhC4trzaxrOjQUMssiY5k6cppgkzjW3 x86SwNLZx1HtCBHuxzCGpylz0iI/q777AYNeQVXeBXsG6zmIGHd/zf4cPju8CCHH s935sJxndAjX1oTd5WxTR277 -----END CERTIFICATE-----Generated at Mon Mar 2 11:29:55 2026 by rpki-client