$ rpki-client -vvf rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft File: BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft (raw, json) Hash identifier: 8yaOPo/4ZSoxXgLqDFmIYojkbWJBAQJN1/+PfkXYBZA= Subject key identifier: BE:D6:4B:16:16:04:18:56:0C:A5:C2:7B:C1:4A:82:0C:EC:76:89:28 Authority key identifier: 06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 Certificate issuer: /CN=A91F63DC/serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Certificate serial: 01C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft Manifest number: 01C2 Signing time: Sun 01 Mar 2026 04:32:51 +0000 Manifest this update: Sun 01 Mar 2026 04:32:51 +0000 Manifest next update: Sun 08 Mar 2026 04:32:51 +0000 Files and hashes: 1: BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl (hash: 5MWFso6fr8jCnUjTwgNg6RUyoRqSP61zjxxmZ3+qIiA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:32:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F63DC, serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Validity Not Before: Mar 1 04:32:51 2026 GMT Not After : Mar 8 04:32:51 2026 GMT Subject: CN=69a3c173-d405 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:00:d4:b6:fc:67:af:94:5c:98:a4:48:f1:fa: 4e:14:d1:6e:3b:e3:c3:53:2c:1d:63:a4:18:b6:84: 10:b2:47:c7:56:5b:f6:86:34:d4:2d:3a:2c:4f:6c: 01:1c:02:13:5e:81:7a:81:13:47:2d:d3:cb:9f:7c: a4:b2:69:1d:aa:cc:dd:b6:04:f2:5e:74:9b:5d:7f: 9c:b4:e9:46:22:66:50:16:55:a6:a6:98:7b:35:a6: c4:4a:48:47:26:c0:61:76:95:65:22:12:bc:33:37: 0e:4d:56:4d:88:fb:94:7b:df:b4:26:a3:53:a3:06: 93:3b:31:f3:fd:f3:c1:57:7b:df:ef:d3:50:bc:ee: 87:51:d3:c0:48:a8:14:fc:88:ae:d9:19:76:fa:e3: 1e:7b:e5:70:1e:f8:ed:71:4f:4a:31:ca:1c:c1:a9: a3:bf:9f:0d:97:9d:b6:c8:62:9e:27:bf:53:e2:84: 64:f0:20:77:e4:bf:51:54:3a:a6:28:50:4d:7a:d3: d1:5c:26:77:4c:81:47:ca:bb:3b:7c:1a:74:d3:df: e4:89:43:0c:8e:0f:26:15:0d:67:aa:a8:2b:9b:a0: f1:7e:7c:96:d1:2d:53:ee:84:95:05:d6:7b:fd:61: 1c:b4:30:14:00:26:68:aa:c1:d1:f0:2c:f3:5b:45: 58:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:D6:4B:16:16:04:18:56:0C:A5:C2:7B:C1:4A:82:0C:EC:76:89:28 X509v3 Authority Key Identifier: keyid:06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:4c:4a:49:6a:ee:82:79:10:b5:b0:21:7a:d3:ea:80:74:b6: 6d:6d:cc:b4:7d:81:88:2c:75:07:6d:53:a3:94:30:eb:75:24: 40:4f:2a:95:66:d4:50:1f:3c:2a:91:c7:5d:be:c2:e0:18:20: d7:13:6f:e4:c6:60:94:dc:96:87:99:fa:8f:b6:3f:4e:da:b1: 0f:6f:47:b9:29:a0:ba:35:19:9d:d1:18:4b:a6:99:b3:9b:fa: 2d:c7:a1:7d:90:01:3a:76:9c:e5:9b:2c:63:99:88:11:d1:b3: 51:ad:89:64:5c:68:1e:4d:36:82:4e:94:81:fb:0b:8b:6a:b1: 99:5d:77:85:3a:e9:fe:03:a2:6f:2d:83:f1:cf:15:c8:2e:6b: 97:2f:24:f0:f4:9a:50:2d:f6:c1:d9:18:81:89:fc:3b:94:a4: bc:a8:b4:2b:a7:ae:f4:60:79:29:24:8b:43:f3:81:1c:c9:49: 1b:3d:55:8e:27:b2:bd:4d:74:07:d6:26:5f:ab:21:9f:14:40: 73:ad:56:bb:34:f5:1b:6c:84:15:b6:23:b2:23:0e:e4:f6:80: f0:bc:2e:f8:14:8d:5b:fe:05:77:8d:1d:4e:b2:f7:9d:c5:33: 49:3f:dd:6c:ad:5c:06:73:d0:42:f4:6b:5b:d9:84:60:a9:f9: 46:e1:6a:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYzREMxMTAvBgNVBAUTKDA2NjY2QUVDRDc4QzBBNUVEMTM3OTBBNUU5QUE0MEMz NDkwRkJDRjEwHhcNMjYwMzAxMDQzMjUxWhcNMjYwMzA4MDQzMjUxWjAYMRYwFAYD VQQDEw02OWEzYzE3My1kNDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0QDUtvxnr5RcmKRI8fpOFNFuO+PDUywdY6QYtoQQskfHVlv2hjTULTosT2wB HAITXoF6gRNHLdPLn3yksmkdqszdtgTyXnSbXX+ctOlGImZQFlWmpph7NabESkhH JsBhdpVlIhK8MzcOTVZNiPuUe9+0JqNTowaTOzHz/fPBV3vf79NQvO6HUdPASKgU /Iiu2Rl2+uMee+VwHvjtcU9KMcocwamjv58Nl522yGKeJ79T4oRk8CB35L9RVDqm KFBNetPRXCZ3TIFHyrs7fBp009/kiUMMjg8mFQ1nqqgrm6DxfnyW0S1T7oSVBdZ7 /WEctDAUACZoqsHR8CzzW0VY9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL7WSxYW BBhWDKXCe8FKggzsdokoMB8GA1UdIwQYMBaAFAZmauzXjApe0TeQpemqQMNJD7zx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjNEQy8wNDMxNTJFMjY2 NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNsN1JONUNsNmFwQXcwa1B2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JtWnE3TmVNQ2w3Uk41Q2w2YXBBdzBrUHZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjNEQy8wNDMxNTJFMjY2NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNs N1JONUNsNmFwQXcwa1B2UEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVExKSWrugnkQtbAhetPqgHS2bW3MtH2BiCx1B21To5Qw63UkQE8qlWbUUB88 KpHHXb7C4Bgg1xNv5MZglNyWh5n6j7Y/TtqxD29HuSmgujUZndEYS6aZs5v6Lceh fZABOnac5ZssY5mIEdGzUa2JZFxoHk02gk6UgfsLi2qxmV13hTrp/gOiby2D8c8V yC5rly8k8PSaUC32wdkYgYn8O5SkvKi0K6eu9GB5KSSLQ/OBHMlJGz1VjieyvU10 B9YmX6shnxRAc61WuzT1G2yEFbYjsiMO5PaA8Lwu+BSNW/4Fd40dTrL3ncUzST/d bK1cBnPQQvRrW9mEYKn5RuFqQw== -----END CERTIFICATE-----Generated at Sun Mar 1 23:50:12 2026 by rpki-client