$ rpki-client -vvf rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft File: bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft (raw, json) Hash identifier: oAt1N7mh4KDpDJIZcGLxChah4lafrylP9IBfl+CIaA8= Subject key identifier: 84:77:16:56:9F:27:2A:F9:9A:E4:D8:0D:0A:AB:79:98:DF:ED:99:AD Authority key identifier: 6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 Certificate issuer: /CN=A917983D/serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Certificate serial: 0358 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft Manifest number: 0351 Signing time: Sun 05 Apr 2026 00:41:44 +0000 Manifest this update: Sun 05 Apr 2026 00:41:43 +0000 Manifest next update: Sun 12 Apr 2026 00:41:43 +0000 Files and hashes: 1: bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl (hash: Oo6yIIsZX4TGGrMC0yaluNDjRYoZVJ5T+xTkUFHbToQ=) 2: 1F59A248F69E11EC947BBC5EC4F9AE02.roa (hash: KC4FexlexjRXq5lyOPd7yXPhSCmSDo/9sSF69OZy7iE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:41:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 856 (0x358) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917983D, serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Validity Not Before: Apr 5 00:41:43 2026 GMT Not After : Apr 12 00:41:43 2026 GMT Subject: CN=69d1afc7-d79a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fc:0d:97:42:50:a7:41:e5:63:28:79:01:21: e3:a2:a4:71:66:d4:82:26:86:c0:7b:8c:fc:18:c6: 0b:da:ab:a8:47:c0:66:ab:ff:73:d7:79:1e:85:70: 25:da:fe:f7:a5:bb:1c:bf:6c:dd:3d:96:4c:db:f9: 6c:aa:7d:c7:42:57:d1:c0:c7:84:f4:09:f7:a3:91: 5e:d8:40:20:a3:06:2f:b9:4d:3e:f4:cf:9f:1d:0e: 0d:d7:79:22:67:8f:7d:35:02:af:37:7d:01:e2:5b: 84:48:41:1a:2a:e0:8d:23:36:3f:74:3e:b7:af:f9: bd:d2:bf:35:82:7c:a4:da:2a:90:0e:98:87:30:b8: 37:27:df:13:69:c3:b3:48:53:54:5a:29:ae:d2:8b: 1a:1d:5f:2b:98:6e:50:ec:76:ce:78:db:f9:63:77: fe:46:75:a0:70:b3:6a:e7:2c:07:a4:f7:0a:45:99: 4a:75:39:59:41:2a:95:d2:aa:c1:d5:a5:50:d7:b0: 08:ba:02:7f:ab:4c:36:0d:68:08:8e:36:7f:72:75: 6a:68:e5:2c:1e:d0:3b:71:c4:9a:44:9a:54:63:5c: 21:5d:8c:1a:38:5f:99:f8:cb:97:80:07:3b:26:f4: 79:32:b6:91:04:d5:13:f6:ce:91:33:ba:c5:75:d9: 61:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:77:16:56:9F:27:2A:F9:9A:E4:D8:0D:0A:AB:79:98:DF:ED:99:AD X509v3 Authority Key Identifier: keyid:6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:bf:cc:53:d8:94:3e:8a:95:7f:2b:a0:11:6c:06:1d:95:e2: cb:20:f0:aa:e8:83:02:de:69:71:c1:ae:ab:b4:55:92:0c:51: 0c:6c:4e:a8:fd:ab:a3:2f:17:07:90:39:59:57:23:6a:9d:b3: 59:20:14:c5:01:b8:8b:09:76:e2:a6:54:ea:08:2b:fe:6b:7b: be:06:01:ee:fa:ff:55:92:30:88:e7:b3:81:6e:b6:e0:2a:00: 6b:b5:32:2d:92:8f:8d:cd:7c:b1:18:8b:5d:eb:f7:6a:09:b1: 3e:2a:5e:be:8d:fb:1d:ac:12:06:c9:f3:24:54:be:51:f9:53: bd:54:fe:e7:07:be:3e:b7:5a:66:79:84:66:f9:41:48:ba:3c: cb:3d:51:50:c1:7b:b2:d5:5c:00:ca:5c:54:00:29:31:60:f3: a8:ac:ce:b8:ec:63:f8:be:5a:ee:0d:60:d8:80:ba:89:94:ba: 68:49:c4:5e:8b:88:3f:91:6c:38:f3:0b:5d:b6:eb:ac:b8:14: 6e:2b:1d:a9:37:66:df:a4:3e:c9:d4:75:f3:d6:2a:ed:d5:43: 4d:2d:05:05:bb:cf:74:b6:fe:f0:08:99:78:4d:de:57:4b:03: ec:2a:3c:58:32:69:dc:f7:46:e2:5e:a9:cc:a5:77:20:66:fc: a7:0b:09:af -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk4M0QxMTAvBgNVBAUTKDZGMDAyNDZBODU4ODg0OEMzQTE3Mjc1MkYzMkFFNEVB MzBDNjgwQTQwHhcNMjYwNDA1MDA0MTQzWhcNMjYwNDEyMDA0MTQzWjAYMRYwFAYD VQQDEw02OWQxYWZjNy1kNzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPwNl0JQp0HlYyh5ASHjoqRxZtSCJobAe4z8GMYL2quoR8Bmq/9z13kehXAl 2v73pbscv2zdPZZM2/lsqn3HQlfRwMeE9An3o5Fe2EAgowYvuU0+9M+fHQ4N13ki Z499NQKvN30B4luESEEaKuCNIzY/dD63r/m90r81gnyk2iqQDpiHMLg3J98TacOz SFNUWimu0osaHV8rmG5Q7HbOeNv5Y3f+RnWgcLNq5ywHpPcKRZlKdTlZQSqV0qrB 1aVQ17AIugJ/q0w2DWgIjjZ/cnVqaOUsHtA7ccSaRJpUY1whXYwaOF+Z+MuXgAc7 JvR5MraRBNUT9s6RM7rFddlhdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIR3Flaf Jyr5muTYDQqreZjf7ZmtMB8GA1UdIwQYMBaAFG8AJGqFiISMOhcnUvMq5OowxoCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTgzRC80MTYyRjQ0Q0Y2 OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJdzZGeWRTOHlyazZqREdn S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3QWthb1dJaEl3NkZ5ZFM4eXJrNmpER2dLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTgzRC80MTYyRjQ0Q0Y2OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJ dzZGeWRTOHlyazZqREdnS1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKr/MU9iUPoqVfyugEWwGHZXiyyDwquiDAt5pccGuq7RVkgxRDGxOqP2roy8X B5A5WVcjap2zWSAUxQG4iwl24qZU6ggr/mt7vgYB7vr/VZIwiOezgW624CoAa7Uy LZKPjc18sRiLXev3agmxPipevo37HawSBsnzJFS+UflTvVT+5we+PrdaZnmEZvlB SLo8yz1RUMF7stVcAMpcVAApMWDzqKzOuOxj+L5a7g1g2IC6iZS6aEnEXouIP5Fs OPMLXbbrrLgUbisdqTdm36Q+ydR189Yq7dVDTS0FBbvPdLb+8AiZeE3eV0sD7Co8 WDJp3PdG4l6pzKV3IGb8pwsJrw== -----END CERTIFICATE-----Generated at Mon Apr 6 13:37:03 2026 by rpki-client