$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft File: bX2AV2xLO-av9DH40yM49x_fAd0.mft (raw, json) Hash identifier: dtPLbnUTobB+iod0KIiminuncRq2PEAm50nFQY7W3rY= Subject key identifier: 0E:37:FF:4A:9D:02:67:8F:2E:9A:58:79:04:CB:ED:25:58:0A:C3:F1 Authority key identifier: 6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD Certificate issuer: /CN=A91FC1B8/serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Certificate serial: 0F2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft Manifest number: 0F22 Signing time: Mon 02 Mar 2026 00:02:18 +0000 Manifest this update: Mon 02 Mar 2026 00:02:16 +0000 Manifest next update: Mon 09 Mar 2026 00:02:16 +0000 Files and hashes: 1: bX2AV2xLO-av9DH40yM49x_fAd0.crl (hash: +fUZvS+tN7Y+OvctmmhVydXM2dUgtTxf7/+qoJd6luk=) 2: DA481A0CB61811F0ABB14C31C4F9AE02.roa (hash: RiZl8jCvbX7r5OvETTD24VIJBOcLys+YJ9YI4Mrkp2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3885 (0xf2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1B8, serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Validity Not Before: Mar 2 00:02:16 2026 GMT Not After : Mar 9 00:02:16 2026 GMT Subject: CN=69a4d38a-b745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a2:43:20:d1:80:b6:f6:e9:bd:41:54:d7:31: 2c:a8:56:5a:6d:a5:92:cf:59:01:58:5c:f5:19:c5: 43:7b:bf:4c:b5:92:a8:c3:31:e7:72:3e:b6:cb:8e: ef:a7:19:86:d1:f9:60:1f:34:f4:71:d6:d2:65:29: 5b:4f:d5:d7:38:49:06:26:3e:14:cd:1a:a4:ac:cc: 1b:a3:10:28:bb:94:33:48:3f:56:a9:74:1d:29:27: 00:2f:09:62:50:1c:5a:39:1e:f6:d3:2d:3c:d0:d0: 30:28:f5:50:97:d5:f7:3b:ed:06:72:81:7a:44:5e: 06:49:15:2b:96:c2:72:35:ca:fc:74:a7:61:fb:4b: b0:65:bb:8d:40:6f:f9:38:a9:a8:18:01:5f:c1:05: f8:d3:da:89:e1:c1:6b:f1:fa:70:e1:a9:b0:8f:0e: 18:e1:c5:22:7b:ef:8d:ea:10:8f:c2:17:f2:6d:01: 24:66:84:4c:26:fa:8e:9f:68:ea:7c:15:86:f2:57: 23:5d:21:a4:73:df:59:b0:ef:3d:bf:f4:44:12:76: 33:39:2f:05:9d:2e:2c:9b:a7:fd:e7:60:4f:da:3f: cc:e7:7d:c1:07:e3:35:63:f3:6a:bd:91:9a:d0:a1: 70:ae:26:f3:63:ca:83:64:4e:4e:30:f6:a4:b4:ef: 28:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:37:FF:4A:9D:02:67:8F:2E:9A:58:79:04:CB:ED:25:58:0A:C3:F1 X509v3 Authority Key Identifier: keyid:6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:20:a7:cb:fe:d1:93:47:d4:43:b4:c4:3f:de:da:43:28:ee: 43:e8:04:48:24:fb:51:bd:20:61:0b:45:c8:e8:cb:23:81:a6: ce:d3:62:ce:7a:5d:bd:1f:d0:28:73:8b:8a:40:cf:31:6f:b7: 5d:8f:39:b2:25:99:81:c0:2b:b9:3c:df:78:04:76:ee:30:d2: 72:0c:66:ec:ea:cb:32:22:69:60:d7:e8:d5:a6:a0:ac:32:4e: 81:16:77:5b:39:6c:3c:ad:70:e2:a3:38:d0:dd:1c:49:36:16: a3:79:48:1f:e9:fa:ab:e6:5e:e8:85:72:9f:5f:83:7f:b0:4e: c1:b6:24:d5:e8:b5:77:c2:3d:26:0d:ca:60:4e:44:ff:ab:f4: 18:d8:e7:bc:74:81:ec:3f:2d:cc:3b:f2:96:3d:1c:a2:06:22: 8d:d3:5d:05:72:a1:25:f8:76:53:aa:69:db:2a:13:33:6d:2a: 42:e2:30:d2:7b:9f:97:0e:f8:3b:3a:4d:fa:aa:cd:7a:4c:88: 51:96:88:aa:7a:78:05:3f:a1:5f:47:fe:1b:1c:a7:cf:6d:6a: ff:c5:19:05:29:5a:1b:7d:f1:9a:92:db:3d:a2:03:d6:1a:5b: 2f:b8:f4:c9:60:50:bf:50:ed:72:04:2e:62:1b:7b:dc:6f:02: a5:5b:0c:8c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxQjgxMTAvBgNVBAUTKDZEN0Q4MDU3NkM0QjNCRTZBRkY0MzFGOEQzMjMzOEY3 MUZERjAxREQwHhcNMjYwMzAyMDAwMjE2WhcNMjYwMzA5MDAwMjE2WjAYMRYwFAYD VQQDEw02OWE0ZDM4YS1iNzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1qJDINGAtvbpvUFU1zEsqFZabaWSz1kBWFz1GcVDe79MtZKowzHncj62y47v pxmG0flgHzT0cdbSZSlbT9XXOEkGJj4UzRqkrMwboxAou5QzSD9WqXQdKScALwli UBxaOR720y080NAwKPVQl9X3O+0GcoF6RF4GSRUrlsJyNcr8dKdh+0uwZbuNQG/5 OKmoGAFfwQX409qJ4cFr8fpw4amwjw4Y4cUie++N6hCPwhfybQEkZoRMJvqOn2jq fBWG8lcjXSGkc99ZsO89v/REEnYzOS8FnS4sm6f952BP2j/M533BB+M1Y/NqvZGa 0KFwribzY8qDZE5OMPaktO8owQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA43/0qd AmePLppYeQTL7SVYCsPxMB8GA1UdIwQYMBaAFG19gFdsSzvmr/Qx+NMjOPcf3wHd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFCOC9GQkRFOTlGQTkw RkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8tYXY5REg0MHlNNDl4X2ZB ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYMkFWMnhMTy1hdjlESDQweU00OXhfZkFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFCOC9GQkRFOTlGQTkwRkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8t YXY5REg0MHlNNDl4X2ZBZDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWiCny/7Rk0fUQ7TEP97aQyjuQ+gESCT7Ub0gYQtFyOjLI4GmztNiznpdvR/Q KHOLikDPMW+3XY85siWZgcAruTzfeAR27jDScgxm7OrLMiJpYNfo1aagrDJOgRZ3 WzlsPK1w4qM40N0cSTYWo3lIH+n6q+Ze6IVyn1+Df7BOwbYk1ei1d8I9Jg3KYE5E /6v0GNjnvHSB7D8tzDvylj0cogYijdNdBXKhJfh2U6pp2yoTM20qQuIw0nuflw74 OzpN+qrNekyIUZaIqnp4BT+hX0f+Gxynz21q/8UZBSlaG33xmpLbPaID1hpbL7j0 yWBQv1DtcgQuYht73G8CpVsMjA== -----END CERTIFICATE-----Generated at Mon Mar 2 02:07:23 2026 by rpki-client