$ rpki-client -vvf rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft File: MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft (raw, json) Hash identifier: IJhD5kQKd10+B/bT4PfiG8iCViWy6l8aeuwlIXffdlk= Subject key identifier: C2:2D:78:B0:70:7C:77:A4:D5:0A:8F:23:97:7C:0F:CA:74:66:6F:A1 Authority key identifier: 31:B3:D9:04:57:D1:FD:F8:3C:35:74:CB:D1:7F:C2:8B:2C:DD:56:EF Certificate issuer: /CN=A91222CD/serialNumber=31B3D90457D1FDF83C3574CBD17FC28B2CDD56EF Certificate serial: 1BCD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MbPZBFfR_fg8NXTL0X_CiyzdVu8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft Manifest number: 1BCC Signing time: Sat 04 Apr 2026 16:09:19 +0000 Manifest this update: Sat 04 Apr 2026 16:09:19 +0000 Manifest next update: Sat 11 Apr 2026 16:09:19 +0000 Files and hashes: 1: MbPZBFfR_fg8NXTL0X_CiyzdVu8.crl (hash: qhpLXqRb1w40typjgOiry89B8W9fLs1GuJ736HeV1Js=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.crl rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MbPZBFfR_fg8NXTL0X_CiyzdVu8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 16:09:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7117 (0x1bcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91222CD, serialNumber=31B3D90457D1FDF83C3574CBD17FC28B2CDD56EF Validity Not Before: Apr 4 16:09:19 2026 GMT Not After : Apr 11 16:09:19 2026 GMT Subject: CN=69d137af-9b58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:87:77:41:af:f1:be:1a:2f:e7:19:56:7d:08: ba:9a:76:29:9b:5c:47:e0:65:9f:b1:07:3f:e0:3f: 68:67:51:d3:be:a9:68:5c:e5:8c:47:2b:2b:9e:0f: ce:7b:38:84:62:a0:26:60:eb:c8:94:37:1b:a4:64: 4f:83:af:82:eb:6d:17:6b:a6:80:92:b8:d6:92:a6: ef:95:42:73:72:2e:5c:69:e8:b8:fb:19:ce:37:b8: 7a:ef:ac:4a:42:5c:99:8f:31:78:5d:14:1b:3a:b0: 18:32:62:ea:c3:06:ee:bf:e0:fd:7a:53:5d:98:b6: 9a:4f:6c:31:9d:4d:94:8d:04:b1:ce:7d:34:dd:4f: 78:80:a6:68:d4:8e:0b:10:2a:56:03:a3:2f:3d:58: c7:01:30:a8:fa:5a:49:e4:69:58:1c:5c:b2:11:14: bb:92:6b:41:42:65:4f:c6:d4:37:7c:d6:74:45:fd: 20:28:bb:8b:be:3f:4e:7c:fd:3a:87:aa:a9:54:f7: bd:bf:b5:16:a1:bb:5e:16:74:c5:03:ae:3d:5d:4a: 20:e8:37:8b:4a:ca:83:6d:34:cd:ff:92:c5:da:90: 4c:9f:f1:c1:71:79:4d:4e:ae:15:a9:70:11:90:7a: f9:a6:28:40:a2:88:74:95:d4:d8:e5:e9:2f:ad:d1: b6:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:2D:78:B0:70:7C:77:A4:D5:0A:8F:23:97:7C:0F:CA:74:66:6F:A1 X509v3 Authority Key Identifier: keyid:31:B3:D9:04:57:D1:FD:F8:3C:35:74:CB:D1:7F:C2:8B:2C:DD:56:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MbPZBFfR_fg8NXTL0X_CiyzdVu8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:08:8c:80:1b:28:ae:c0:07:10:47:4c:b0:91:21:b2:38:e2: 99:c8:37:23:a1:07:c2:8e:be:9d:f1:71:7b:b5:41:09:93:79: 88:cf:e3:4d:c4:d8:f1:2e:54:a0:da:f5:c6:2a:02:29:4b:bd: 94:df:db:77:2f:b3:3a:94:fb:b6:e3:ca:ed:eb:76:d1:07:31: 3b:95:c2:fd:eb:54:a1:92:90:d6:2a:3f:42:31:c4:03:9e:a8: c1:64:5b:aa:12:bc:c5:01:bc:53:f1:8b:83:e5:46:2e:c6:35: eb:0a:e4:e2:2c:d5:44:a3:80:98:7f:8b:8c:16:d3:f7:39:fb: 8a:96:f3:36:3f:70:eb:54:e0:b8:d6:6e:f9:81:fe:03:50:8e: d5:51:34:f4:69:34:51:28:2c:63:dc:12:04:f0:9b:29:85:b1: 04:66:08:70:fa:8b:76:41:d0:16:49:49:3c:c1:ed:85:84:ed: 52:4b:2f:d6:6a:d0:fb:78:d5:ca:73:8a:35:27:88:5a:a7:e3: 63:0c:94:b8:68:4a:e2:c4:aa:95:09:59:51:ec:11:1c:e1:91: 05:fe:07:54:6d:a2:74:b7:d2:f8:7d:88:ee:d1:92:61:6f:f8: d2:45:47:cb:c7:b6:d5:28:84:b7:80:de:4c:39:b2:af:94:bc: b4:cd:89:ac -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICG80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIyQ0QxMTAvBgNVBAUTKDMxQjNEOTA0NTdEMUZERjgzQzM1NzRDQkQxN0ZDMjhC MkNERDU2RUYwHhcNMjYwNDA0MTYwOTE5WhcNMjYwNDExMTYwOTE5WjAYMRYwFAYD VQQDEw02OWQxMzdhZi05YjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoYd3Qa/xvhov5xlWfQi6mnYpm1xH4GWfsQc/4D9oZ1HTvqloXOWMRysrng/O eziEYqAmYOvIlDcbpGRPg6+C620Xa6aAkrjWkqbvlUJzci5caei4+xnON7h676xK QlyZjzF4XRQbOrAYMmLqwwbuv+D9elNdmLaaT2wxnU2UjQSxzn003U94gKZo1I4L ECpWA6MvPVjHATCo+lpJ5GlYHFyyERS7kmtBQmVPxtQ3fNZ0Rf0gKLuLvj9OfP06 h6qpVPe9v7UWobteFnTFA649XUog6DeLSsqDbTTN/5LF2pBMn/HBcXlNTq4VqXAR kHr5pihAooh0ldTY5ekvrdG2uQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMIteLBw fHek1QqPI5d8D8p0Zm+hMB8GA1UdIwQYMBaAFDGz2QRX0f34PDV0y9F/woss3Vbv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjJDRC83RTMxMTVDODE2 NUExMUU3QjI3RjlCNDZDNEY5QUUwMi9NYlBaQkZmUl9mZzhOWFRMMFhfQ2l5emRW dTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01iUFpCRmZSX2ZnOE5YVEwwWF9DaXl6ZFZ1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjJDRC83RTMxMTVDODE2NUExMUU3QjI3RjlCNDZDNEY5QUUwMi9NYlBaQkZmUl9m ZzhOWFRMMFhfQ2l5emRWdTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvwiMgBsorsAHEEdMsJEhsjjimcg3I6EHwo6+nfFxe7VBCZN5iM/jTcTY8S5U oNr1xioCKUu9lN/bdy+zOpT7tuPK7et20QcxO5XC/etUoZKQ1io/QjHEA56owWRb qhK8xQG8U/GLg+VGLsY16wrk4izVRKOAmH+LjBbT9zn7ipbzNj9w61TguNZu+YH+ A1CO1VE09Gk0USgsY9wSBPCbKYWxBGYIcPqLdkHQFklJPMHthYTtUksv1mrQ+3jV ynOKNSeIWqfjYwyUuGhK4sSqlQlZUewRHOGRBf4HVG2idLfS+H2I7tGSYW/40kVH y8e21SiEt4DeTDmyr5S8tM2JrA== -----END CERTIFICATE-----Generated at Sun Apr 5 22:24:50 2026 by rpki-client