$ rpki-client -vvf rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft File: bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft (raw, json) Hash identifier: IzC/WzDpQrcs0I1qafs9faEl8PljY2OW/rcaQe6Wun4= Subject key identifier: E2:C6:49:69:8B:14:94:B6:44:E3:1B:C8:6C:67:B8:A0:69:C1:13:D6 Authority key identifier: 6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 Certificate issuer: /CN=A91240E6/serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Certificate serial: 26BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft Manifest number: 269F Signing time: Tue 24 Mar 2026 15:37:33 +0000 Manifest this update: Tue 24 Mar 2026 15:37:33 +0000 Manifest next update: Tue 31 Mar 2026 15:37:33 +0000 Files and hashes: 1: bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl (hash: 7NPLXrJEMLto115Cbyi0Jd8vqsDrVt25K7E49rk79RE=) 2: 8A721F4EB10C11E5BB6B2A16C4F9AE02.roa (hash: stk74SV6j9y9+8KC9a1Q22LQGIi2kHQ11+JPCtMpbPU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:37:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9915 (0x26bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91240E6, serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Validity Not Before: Mar 24 15:37:33 2026 GMT Not After : Mar 31 15:37:33 2026 GMT Subject: CN=69c2afbd-6e19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:70:ca:30:18:9f:de:2f:39:b9:b7:53:c7:3c: a4:b9:26:e8:84:c5:23:7e:8a:d7:3a:59:2d:6e:b5: db:53:b0:5d:14:1a:ba:cd:10:bd:53:87:19:57:55: bf:74:39:95:e1:59:54:02:6f:f4:c6:6c:58:17:4d: 0a:b8:07:2c:8e:3b:fa:fd:b6:b8:54:fa:2e:ba:2f: 3d:e5:91:0c:d6:a8:d6:5b:e6:17:46:87:fe:64:18: e0:be:2a:1d:64:32:e0:4f:d8:74:fb:2d:67:17:17: 65:e4:5e:e4:d5:bf:ae:0d:df:c2:8c:4a:fa:c9:52: e0:80:a0:74:08:94:22:18:92:d9:70:78:60:ca:fe: c5:38:0b:41:d1:cb:86:08:84:70:2d:4a:90:b5:d1: d7:db:04:59:0b:8d:4e:4c:86:e4:48:ad:d5:f2:6d: e5:95:2e:57:43:18:ed:65:62:b9:61:f7:2f:00:64: 14:62:ae:63:15:2d:a2:cc:a1:cd:b7:cb:f7:b8:c9: 8f:aa:26:33:c1:35:5e:3e:81:5c:04:c8:db:16:9a: ce:3f:c9:62:5e:a4:ca:46:32:54:1d:39:60:3b:12: b1:dc:95:a7:e1:21:4c:95:fb:46:50:c6:4d:93:be: 1e:25:c3:8d:16:fd:6b:fc:dc:70:a5:1b:44:88:5c: 2a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C6:49:69:8B:14:94:B6:44:E3:1B:C8:6C:67:B8:A0:69:C1:13:D6 X509v3 Authority Key Identifier: keyid:6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:05:19:78:2f:03:6a:a7:ec:04:32:f1:7f:63:1d:1d:2b:57: 41:f9:27:4e:e1:d8:a1:4d:96:4b:9f:df:af:3b:f6:b7:60:b9: 10:cf:ad:e4:96:38:44:25:f2:da:09:89:51:af:a1:dc:de:42: b2:ef:82:59:da:e1:6b:99:b7:1e:89:d5:68:d7:14:31:34:49: 2d:eb:8f:f5:04:5d:af:88:c4:94:2b:89:96:1a:f0:28:45:c6: 68:55:8f:5a:d2:9b:c6:99:37:d9:a8:ab:46:50:e4:b6:17:71: 18:b1:a5:62:d1:f3:7d:8c:fe:ff:5c:54:b2:07:1f:9f:1f:39: c0:5d:c0:c6:14:b4:67:c7:9d:b1:c8:e9:79:7a:6a:cb:b4:33: c0:ab:3c:23:2f:ea:2a:4e:b0:12:bd:fe:1a:d4:30:55:4b:e9: 8b:ff:4e:08:83:73:2a:a8:0a:fd:2f:92:dd:a7:42:aa:96:2d: 58:8d:d3:3e:d4:1d:2e:53:8b:8b:25:e6:61:e1:73:07:51:41: d3:ac:e2:bf:86:d2:15:53:d4:df:46:d1:b7:1e:38:99:ac:15: a0:7f:d6:cf:e7:05:51:43:d3:8a:d9:3a:33:ec:ea:88:41:03: 75:80:6b:8e:cc:6c:f0:9d:a6:5c:09:d2:f5:c4:c6:f6:ef:09: 58:e9:7c:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQwRTYxMTAvBgNVBAUTKDZEQ0U1MkY5QTIyOENCRjZGMzBDRDU1RDQzMzg0RDEy Njg0ODdCNjUwHhcNMjYwMzI0MTUzNzMzWhcNMjYwMzMxMTUzNzMzWjAYMRYwFAYD VQQDEw02OWMyYWZiZC02ZTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynDKMBif3i85ubdTxzykuSbohMUjforXOlktbrXbU7BdFBq6zRC9U4cZV1W/ dDmV4VlUAm/0xmxYF00KuAcsjjv6/ba4VPouui895ZEM1qjWW+YXRof+ZBjgviod ZDLgT9h0+y1nFxdl5F7k1b+uDd/CjEr6yVLggKB0CJQiGJLZcHhgyv7FOAtB0cuG CIRwLUqQtdHX2wRZC41OTIbkSK3V8m3llS5XQxjtZWK5YfcvAGQUYq5jFS2izKHN t8v3uMmPqiYzwTVePoFcBMjbFprOP8liXqTKRjJUHTlgOxKx3JWn4SFMlftGUMZN k74eJcONFv1r/NxwpRtEiFwq8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOLGSWmL FJS2ROMbyGxnuKBpwRPWMB8GA1UdIwQYMBaAFG3OUvmiKMv28wzVXUM4TRJoSHtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDBFNi82NjA3NDJDOEZE MjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lfYnpETlZkUXpoTkVtaEll MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjNVMtYUlveV9iekROVmRRemhORW1oSWUyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDBFNi82NjA3NDJDOEZEMjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lf YnpETlZkUXpoTkVtaEllMlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAigUZeC8DaqfsBDLxf2MdHStXQfknTuHYoU2WS5/frzv2t2C5EM+t5JY4RCXy 2gmJUa+h3N5Csu+CWdrha5m3HonVaNcUMTRJLeuP9QRdr4jElCuJlhrwKEXGaFWP WtKbxpk32airRlDkthdxGLGlYtHzfYz+/1xUsgcfnx85wF3AxhS0Z8edscjpeXpq y7QzwKs8Iy/qKk6wEr3+GtQwVUvpi/9OCINzKqgK/S+S3adCqpYtWI3TPtQdLlOL iyXmYeFzB1FB06ziv4bSFVPU30bRtx44mawVoH/Wz+cFUUPTitk6M+zqiEEDdYBr jsxs8J2mXAnS9cTG9u8JWOl8hA== -----END CERTIFICATE-----Generated at Thu Mar 26 11:26:42 2026 by rpki-client