$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft File: BNhIIeE7gDAzVMS-NDMdURHyvKY.mft (raw, json) Hash identifier: AI2+J7mZ80cDaWU6XpcyzvlWlntWWBHDpQHHZuK+QQs= Subject key identifier: D9:D0:69:64:6E:BA:4B:55:B8:43:B8:47:AE:3C:F4:F1:C3:E5:47:E7 Authority key identifier: 04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 Certificate issuer: /CN=A91F0721/serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft Manifest number: 023B Signing time: Mon 02 Mar 2026 00:09:12 +0000 Manifest this update: Mon 02 Mar 2026 00:09:11 +0000 Manifest next update: Mon 09 Mar 2026 00:09:11 +0000 Files and hashes: 1: BNhIIeE7gDAzVMS-NDMdURHyvKY.crl (hash: ys6OMfHvGX5+cVZ3Mn2OGnEInbZbqPJC/UbQjwv3cVA=) 2: 7659B89AADCC11ED84051211C4F9AE02.roa (hash: qv9Z40hYwLZKKEyXq6MIoSNxXquRk+rDYKZ6OQHdWYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:09:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0721, serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Validity Not Before: Mar 2 00:09:11 2026 GMT Not After : Mar 9 00:09:11 2026 GMT Subject: CN=69a4d528-1245 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a6:b5:41:92:5f:51:94:37:77:f4:5e:71:0b: d2:07:9c:44:4b:03:5f:f0:cf:ab:5f:25:e5:1e:4b: c5:95:91:9e:d6:cf:97:57:1f:ee:66:6c:24:b6:da: aa:49:68:3d:26:19:1e:28:aa:ee:d6:17:b9:f1:46: f8:ca:10:a2:10:95:f6:33:89:b8:30:dc:6f:f0:8d: 01:c9:42:8c:05:c0:42:e0:4b:bb:2a:90:c5:3b:7a: ab:bd:cb:b3:64:c4:87:d9:01:4e:b3:a8:47:45:ba: 9e:6e:a5:88:85:19:08:a8:7e:9b:fb:fc:9f:1a:8f: 0f:f6:f3:2c:5f:5a:a6:f1:3c:fb:a4:f3:24:6d:95: 84:e9:f2:67:2b:de:f5:ef:fd:a2:5b:f8:fb:1e:18: f6:1b:fe:b5:fb:9e:10:d3:ad:91:2b:3b:da:36:24: 07:94:1e:83:d0:91:c2:20:54:ab:38:04:8d:86:99: 60:15:93:c5:f6:0e:fd:6c:28:27:90:98:c5:81:16: 48:75:0d:35:88:5b:4c:77:f8:1f:09:f7:6c:6a:b0: cb:98:b6:0b:1c:31:a1:ce:fd:bf:42:38:b5:9e:8e: 54:a8:3f:95:8e:eb:c8:aa:54:a5:be:78:c9:b0:8c: 7c:cb:c0:4d:04:66:1b:11:55:1d:79:c1:b3:06:7a: 3a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:D0:69:64:6E:BA:4B:55:B8:43:B8:47:AE:3C:F4:F1:C3:E5:47:E7 X509v3 Authority Key Identifier: keyid:04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:87:a5:ce:a3:0a:5b:a2:56:81:a6:76:0a:68:2b:73:1e:8e: d3:84:2c:10:01:97:a7:c5:21:e7:6f:b7:48:62:6c:12:bd:72: 0d:e0:79:60:b9:01:8e:8f:d6:a4:2d:15:8e:48:02:75:35:ca: 1c:cb:5c:8a:91:67:22:6d:40:92:af:a3:a8:e1:da:dd:fd:92: 19:c1:88:ba:ce:bb:e2:3c:6b:f3:d2:c4:64:2a:95:ec:f6:84: 5f:44:a4:87:65:0c:1c:81:e8:7d:36:55:c0:f7:98:77:40:99: e3:13:ea:63:0e:70:d9:41:8d:67:4a:61:10:89:05:22:78:b5: 74:f6:09:4a:d0:73:7c:b9:4a:aa:d6:ac:c3:23:01:31:52:d3: f2:39:d2:b7:84:8a:8d:aa:76:f2:7b:de:bc:27:b5:f2:d2:a7: 5e:77:32:3b:cc:e7:35:e1:b3:15:a3:a1:65:99:06:93:e9:eb: f5:90:3c:1d:b5:c9:dc:e9:6c:0b:ff:ed:7a:21:ff:11:8f:e6: 2e:9b:66:b8:96:84:cc:2d:79:8a:49:52:7e:b3:f6:18:1e:7c: 09:29:62:75:71:f3:6e:dd:df:5f:f6:1a:e7:8e:61:4b:bf:d3: 1a:99:f9:89:a1:20:41:69:e3:de:84:7a:39:63:52:2e:23:40: 10:00:99:08 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA3MjExMTAvBgNVBAUTKDA0RDg0ODIxRTEzQjgwMzAzMzU0QzRCRTM0MzMxRDUx MTFGMkJDQTYwHhcNMjYwMzAyMDAwOTExWhcNMjYwMzA5MDAwOTExWjAYMRYwFAYD VQQDEw02OWE0ZDUyOC0xMjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6a1QZJfUZQ3d/RecQvSB5xESwNf8M+rXyXlHkvFlZGe1s+XVx/uZmwkttqq SWg9JhkeKKru1he58Ub4yhCiEJX2M4m4MNxv8I0ByUKMBcBC4Eu7KpDFO3qrvcuz ZMSH2QFOs6hHRbqebqWIhRkIqH6b+/yfGo8P9vMsX1qm8Tz7pPMkbZWE6fJnK971 7/2iW/j7Hhj2G/61+54Q062RKzvaNiQHlB6D0JHCIFSrOASNhplgFZPF9g79bCgn kJjFgRZIdQ01iFtMd/gfCfdsarDLmLYLHDGhzv2/Qji1no5UqD+VjuvIqlSlvnjJ sIx8y8BNBGYbEVUdecGzBno61wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNnQaWRu uktVuEO4R6489PHD5UfnMB8GA1UdIwQYMBaAFATYSCHhO4AwM1TEvjQzHVER8rym MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDcyMS9DOTEyN0IzRUFE QzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dEQXpWTVMtTkRNZFVSSHl2 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JOaElJZUU3Z0RBelZNUy1ORE1kVVJIeXZLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDcyMS9DOTEyN0IzRUFEQzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dE QXpWTVMtTkRNZFVSSHl2S1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAF4elzqMKW6JWgaZ2Cmgrcx6O04QsEAGXp8Uh52+3SGJsEr1yDeB5YLkBjo/W pC0VjkgCdTXKHMtcipFnIm1Akq+jqOHa3f2SGcGIus674jxr89LEZCqV7PaEX0Sk h2UMHIHofTZVwPeYd0CZ4xPqYw5w2UGNZ0phEIkFIni1dPYJStBzfLlKqtaswyMB MVLT8jnSt4SKjap28nvevCe18tKnXncyO8znNeGzFaOhZZkGk+nr9ZA8HbXJ3Ols C//teiH/EY/mLptmuJaEzC15iklSfrP2GB58CSlidXHzbt3fX/Ya545hS7/TGpn5 iaEgQWnj3oR6OWNSLiNAEACZCA== -----END CERTIFICATE-----Generated at Mon Mar 2 07:21:47 2026 by rpki-client