$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: EzFNVIpjs4XqsouXuIqF3mbKa/X4Fb+ccAsDza4TP5M= Subject key identifier: FA:0B:95:D9:70:24:55:67:FD:95:C8:86:33:F6:74:58:98:02:44:BE Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 01E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 01DE Signing time: Fri 13 Mar 2026 02:36:05 +0000 Manifest this update: Fri 13 Mar 2026 02:36:05 +0000 Manifest next update: Fri 20 Mar 2026 02:36:05 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: JY3U8AGaktyFcZjCoVzL7qXPU0lPU0TVvB3fdFoUkA0=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: MzBqBNOieBSY9GInzC0v3uqqkT/gsysN6ytNDyiS4fg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 02:36:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F, serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Mar 13 02:36:05 2026 GMT Not After : Mar 20 02:36:05 2026 GMT Subject: CN=69b37815-466c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d3:91:e3:d5:8b:e7:d0:dd:a7:3a:cb:07:c8: 08:91:5d:ac:2a:c7:2d:f3:08:d5:06:62:b7:0e:f5: c4:5f:56:ec:4b:c2:39:fe:b3:70:f7:0a:0b:b2:df: d6:f7:15:90:b9:35:10:22:4b:d1:05:c0:35:77:bf: dd:b5:20:12:18:27:0f:18:e4:44:60:10:79:da:32: f3:4b:29:39:67:b1:7b:f2:71:f1:70:7f:8d:d2:ab: bf:64:81:1d:3c:66:53:5b:96:d7:b6:04:08:69:66: 04:7f:78:fd:cf:d4:49:04:9d:e4:06:e3:60:50:3c: dd:38:24:9f:b6:bb:21:48:1e:d0:31:c2:5a:40:af: b4:c8:30:06:09:3f:15:05:16:0d:23:80:1a:1f:9d: 21:d8:82:8a:26:7d:f5:5e:1b:7e:68:59:ab:6c:a9: 54:7c:6a:76:5f:66:b2:67:a7:8f:9c:27:a2:b6:23: 7c:a9:51:5c:1a:b0:6f:27:12:fe:fa:c0:6b:2c:bb: 32:7b:4e:cf:ce:7b:41:4d:40:7e:0f:d5:be:ee:21: 2c:09:78:f2:ef:f4:f1:65:11:95:c5:41:4f:31:a3: 55:de:3e:af:fc:fc:9b:54:0a:9a:54:e9:cb:1f:48: 9a:c1:17:f3:20:41:a2:c5:36:a3:e0:a4:fb:1d:81: e4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:0B:95:D9:70:24:55:67:FD:95:C8:86:33:F6:74:58:98:02:44:BE X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:1f:fc:68:ef:a5:86:bf:05:0b:e2:9a:56:a4:0f:cc:d5:28: 6d:09:32:58:4b:14:3a:71:ca:39:13:1e:f2:7e:1b:e6:1c:57: 90:0a:db:d0:d1:0f:26:5f:bb:a8:52:d4:b4:a0:0a:40:03:4a: 0c:9b:70:6b:fb:67:c5:42:49:fc:ef:a4:53:c6:e3:5f:a3:6b: fe:ba:e7:4d:f2:4a:e4:37:a9:9f:7a:12:84:85:97:ba:75:3d: 24:75:03:cd:60:3f:67:19:b1:19:91:c9:8e:cc:b9:cd:29:1e: 0a:3a:4e:71:89:bd:4b:ad:83:73:a9:fa:07:06:64:65:ee:da: 33:aa:40:b7:d0:6d:5a:11:ef:f6:2e:e9:54:64:c2:5a:bd:16: d0:ee:81:6f:58:30:05:7c:42:1a:2e:6d:13:48:57:a1:4a:ce: e5:5c:ff:7b:bd:ca:2e:07:a1:2d:0b:81:08:a7:a8:09:86:29: fb:a9:72:78:a6:f0:92:90:8b:72:17:7f:2f:9a:c6:b4:37:b0: da:0f:b4:79:7c:9c:df:62:d8:aa:c7:e3:07:48:c9:c4:1c:2b: f0:24:84:7d:3e:5e:57:0d:e4:79:da:9e:2d:d6:8f:8b:4c:15: fb:74:59:e7:03:72:18:ff:7e:bb:b5:d9:5b:98:88:a0:3e:24: ae:34:b6:8c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjYwMzEzMDIzNjA1WhcNMjYwMzIwMDIzNjA1WjAYMRYwFAYD VQQDEw02OWIzNzgxNS00NjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAptOR49WL59DdpzrLB8gIkV2sKsct8wjVBmK3DvXEX1bsS8I5/rNw9woLst/W 9xWQuTUQIkvRBcA1d7/dtSASGCcPGOREYBB52jLzSyk5Z7F78nHxcH+N0qu/ZIEd PGZTW5bXtgQIaWYEf3j9z9RJBJ3kBuNgUDzdOCSftrshSB7QMcJaQK+0yDAGCT8V BRYNI4AaH50h2IKKJn31Xht+aFmrbKlUfGp2X2ayZ6ePnCeitiN8qVFcGrBvJxL+ +sBrLLsye07PzntBTUB+D9W+7iEsCXjy7/TxZRGVxUFPMaNV3j6v/PybVAqaVOnL H0iawRfzIEGixTaj4KT7HYHkkQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPoLldlw JFVn/ZXIhjP2dFiYAkS+MB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhB/8aO+lhr8FC+KaVqQPzNUobQkyWEsUOnHKORMe8n4b5hxXkArb0NEPJl+7 qFLUtKAKQANKDJtwa/tnxUJJ/O+kU8bjX6Nr/rrnTfJK5Depn3oShIWXunU9JHUD zWA/ZxmxGZHJjsy5zSkeCjpOcYm9S62Dc6n6BwZkZe7aM6pAt9BtWhHv9i7pVGTC Wr0W0O6Bb1gwBXxCGi5tE0hXoUrO5Vz/e73KLgehLQuBCKeoCYYp+6lyeKbwkpCL chd/L5rGtDew2g+0eXyc32LYqsfjB0jJxBwr8CSEfT5eVw3kedqeLdaPi0wV+3RZ 5wNyGP9+u7XZW5iIoD4krjS2jA== -----END CERTIFICATE-----Generated at Fri Mar 13 11:16:25 2026 by rpki-client