$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft File: BNhIIeE7gDAzVMS-NDMdURHyvKY.mft (raw, json) Hash identifier: GEHLV1MRvNFwXIE2+RIjaLDUHuL5rLrWPDoVwDdx+sM= Subject key identifier: 10:42:10:62:BD:1C:13:0E:EF:D7:13:44:58:07:B3:81:BC:9B:E4:10 Authority key identifier: 04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 Certificate issuer: /CN=A91F0721/serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Certificate serial: 0267 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft Manifest number: 0255 Signing time: Sun 19 Apr 2026 02:01:44 +0000 Manifest this update: Sun 19 Apr 2026 02:01:44 +0000 Manifest next update: Sun 26 Apr 2026 02:01:44 +0000 Files and hashes: 1: BNhIIeE7gDAzVMS-NDMdURHyvKY.crl (hash: luwQXTD1w3Dhh1qQO3mZQww9PqYDWG74DCWz9kp/fQg=) 2: 7659B89AADCC11ED84051211C4F9AE02.roa (hash: eJa3zEY0Ga68FBEmFuzcrfb78XN2VTH6jOriLW6rBuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 02:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 615 (0x267) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0721, serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Validity Not Before: Apr 19 02:01:44 2026 GMT Not After : Apr 26 02:01:44 2026 GMT Subject: CN=69e43788-ec0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:d8:bc:af:9d:cf:9a:7b:ae:5d:1d:42:da:4d: df:66:b2:fa:a2:35:db:92:36:56:e6:4e:d9:32:f1: 2e:78:85:8a:aa:05:38:4b:de:00:40:f6:bc:db:91: 85:e1:d4:78:e6:86:3a:8e:6b:a3:30:d3:3c:8d:81: 93:c3:79:7f:a3:77:06:fc:56:e5:54:b0:b5:89:2b: 36:4a:11:75:fc:ec:ce:15:2a:69:be:93:bf:31:35: 2d:5c:ae:d7:5d:b9:02:97:4b:e0:0c:a1:a5:2e:08: 68:2f:a7:ba:45:79:10:78:5b:a9:20:2f:8f:4f:3c: a8:3d:37:8c:fe:96:d7:3e:85:dd:e3:68:f0:a5:8f: ef:eb:fb:dc:66:85:a6:ad:3a:00:6f:c8:5e:b4:cf: ee:8a:61:0b:38:74:6f:3e:86:e4:41:c5:3a:5f:68: 73:5d:87:1d:79:35:cf:cd:d8:c6:15:1f:de:af:69: 64:5a:92:da:3c:14:aa:6b:71:67:86:9e:52:19:e8: 1d:02:ee:04:d1:a2:76:24:33:85:e1:1e:d1:3d:6d: 07:98:6d:c0:37:03:4b:9e:6d:b7:98:88:4a:a0:8d: 90:d5:47:11:4d:d0:dd:e8:3e:b6:e7:05:e8:3b:d2: f2:84:e2:0a:7f:d9:77:b2:58:3a:5a:aa:69:58:cd: be:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:42:10:62:BD:1C:13:0E:EF:D7:13:44:58:07:B3:81:BC:9B:E4:10 X509v3 Authority Key Identifier: keyid:04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:12:2a:09:8a:d6:06:f8:05:7c:ce:c6:65:df:0a:94:4b:3d: 52:cc:74:12:f9:c2:36:68:ac:f9:e8:7c:10:79:d8:dc:d4:7b: 59:d4:0d:ea:d1:44:29:4f:e8:f5:78:e8:d0:ad:31:4b:15:9f: 19:a0:26:3b:4e:9f:92:11:12:15:85:7e:28:74:4f:a8:aa:ec: 2c:b9:80:03:2b:91:a1:9c:51:f8:02:b7:93:1a:62:c0:76:88: 1b:58:48:fd:d1:6e:23:9a:00:3c:47:d1:18:fb:26:7f:e8:90: b1:21:07:71:b3:af:f5:5d:26:ff:44:cf:05:61:c0:33:5d:4b: 14:64:68:de:ec:c5:23:52:f2:03:1e:38:6c:4b:ff:0b:f0:17: 78:15:ec:75:35:1d:c5:83:84:20:b7:12:85:21:a6:4c:a8:62: b3:ae:12:f2:0a:93:11:02:bc:62:d4:8c:8b:49:65:b3:22:dc: 4e:eb:bf:e6:7b:1c:d8:41:67:2c:d7:b2:2c:0b:f7:90:c8:7d: 47:fa:aa:60:03:ff:4c:16:35:05:f3:ba:55:97:68:77:03:bb: 4e:03:a3:d0:22:3b:9d:65:57:10:37:1c:d9:9e:63:f8:4f:40: 4a:2a:1b:c3:4d:7e:3a:9f:f9:07:77:e9:2d:78:75:c0:59:63: 26:f6:09:2f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA3MjExMTAvBgNVBAUTKDA0RDg0ODIxRTEzQjgwMzAzMzU0QzRCRTM0MzMxRDUx MTFGMkJDQTYwHhcNMjYwNDE5MDIwMTQ0WhcNMjYwNDI2MDIwMTQ0WjAYMRYwFAYD VQQDEw02OWU0Mzc4OC1lYzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAgdi8r53PmnuuXR1C2k3fZrL6ojXbkjZW5k7ZMvEueIWKqgU4S94AQPa825GF 4dR45oY6jmujMNM8jYGTw3l/o3cG/FblVLC1iSs2ShF1/OzOFSppvpO/MTUtXK7X XbkCl0vgDKGlLghoL6e6RXkQeFupIC+PTzyoPTeM/pbXPoXd42jwpY/v6/vcZoWm rToAb8hetM/uimELOHRvPobkQcU6X2hzXYcdeTXPzdjGFR/er2lkWpLaPBSqa3Fn hp5SGegdAu4E0aJ2JDOF4R7RPW0HmG3ANwNLnm23mIhKoI2Q1UcRTdDd6D625wXo O9LyhOIKf9l3slg6WqppWM2+DwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBBCEGK9 HBMO79cTRFgHs4G8m+QQMB8GA1UdIwQYMBaAFATYSCHhO4AwM1TEvjQzHVER8rym MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDcyMS9DOTEyN0IzRUFE QzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dEQXpWTVMtTkRNZFVSSHl2 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JOaElJZUU3Z0RBelZNUy1ORE1kVVJIeXZLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDcyMS9DOTEyN0IzRUFEQzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dE QXpWTVMtTkRNZFVSSHl2S1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYhIqCYrWBvgFfM7GZd8KlEs9Usx0EvnCNmis+eh8EHnY3NR7WdQN6tFEKU/o 9Xjo0K0xSxWfGaAmO06fkhESFYV+KHRPqKrsLLmAAyuRoZxR+AK3kxpiwHaIG1hI /dFuI5oAPEfRGPsmf+iQsSEHcbOv9V0m/0TPBWHAM11LFGRo3uzFI1LyAx44bEv/ C/AXeBXsdTUdxYOEILcShSGmTKhis64S8gqTEQK8YtSMi0llsyLcTuu/5nsc2EFn LNeyLAv3kMh9R/qqYAP/TBY1BfO6VZdodwO7TgOj0CI7nWVXEDcc2Z5j+E9ASiob w01+Op/5B3fpLXh1wFljJvYJLw== -----END CERTIFICATE-----Generated at Sun Apr 19 09:27:14 2026 by rpki-client