$ rpki-client -vvf rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft File: Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft (raw, json) Hash identifier: kCje0Qb7Nqk/jXq57WF4zGzGCXqoYA910aB6QtOnE88= Subject key identifier: 05:3B:58:9A:CF:FA:9A:7D:97:80:1D:37:AD:A3:8A:74:3A:B8:EE:AE Authority key identifier: 05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC Certificate issuer: /CN=A91941E9/serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Certificate serial: 0882 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft Manifest number: 0859 Signing time: Mon 30 Mar 2026 20:52:00 +0000 Manifest this update: Mon 30 Mar 2026 20:52:00 +0000 Manifest next update: Mon 06 Apr 2026 20:52:00 +0000 Files and hashes: 1: Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl (hash: 3lslpJ7SC0rKi2fq0wwDom8YDVyMg1ItFr5s0WhvgMo=) 2: 4314DB4C8EAF11F091C0B421C4F9AE02.roa (hash: v7v6WaMiJJgHGJFslronZNjFXcWnrbiRDd5BXO1kv5Q=) 3: 1F5EE982235011F1ABBAE38DAE833773.roa (hash: 4vii0PEyxfAMDDStR+CEGDgcVMprRDhlhb9Z9n20u5A=) 4: 1069D50EB54B11F092E79246C4F9AE02.roa (hash: sMAmYlXlaGfYX483zQnKNNyggh6fdl5j3X0veZpEvVk=) 5: 1DB0529C7CA711F0A52C5966C4F9AE02.roa (hash: Jad+xXpbo9F1Si83r3/4thdMZxhxo4YYl8MwD9607wo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2178 (0x882) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91941E9, serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Validity Not Before: Mar 30 20:52:00 2026 GMT Not After : Apr 6 20:52:00 2026 GMT Subject: CN=69cae270-b7a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ab:e1:46:ad:28:b5:e9:e2:71:a3:82:a3:72: 26:03:f6:fe:92:cc:e1:29:e8:5a:02:ac:a0:1d:03: 67:d2:dd:d9:2c:5b:fa:56:f3:c9:1e:d9:6c:44:3c: 9c:0e:11:ca:67:f4:82:06:91:67:0c:45:96:ed:cc: 33:fd:0f:a2:86:fd:8e:1d:4e:7d:29:b3:f3:3f:85: 7b:30:58:b1:54:34:39:ff:04:ef:48:c0:c4:ec:56: b2:fc:f0:f7:60:de:32:ac:b1:03:67:be:3a:c1:df: a8:37:89:31:9d:95:65:4d:d5:b5:c3:71:72:6e:6f: 8b:a3:f8:4e:15:2e:bf:84:aa:d8:27:ab:c9:83:db: b7:15:ec:81:0f:29:1a:87:f6:ca:ed:e4:cd:6c:22: 5e:c4:d8:34:b7:b3:cc:87:e2:ad:36:e8:c7:0b:8a: c2:09:01:ce:38:3b:18:01:e1:30:01:18:60:3b:8a: c1:b4:0a:12:e3:b5:24:23:38:21:3d:61:72:86:ee: a2:10:e1:d9:65:fc:45:6e:d2:f3:74:a6:58:15:ff: 8a:e4:22:a2:32:93:59:a7:60:47:d2:ce:82:98:0d: f9:d3:9e:83:cb:b5:42:ad:aa:49:a5:e5:59:df:b0: c2:1d:25:ed:ae:b7:d3:b9:59:7b:32:9d:3c:7f:cd: d6:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:3B:58:9A:CF:FA:9A:7D:97:80:1D:37:AD:A3:8A:74:3A:B8:EE:AE X509v3 Authority Key Identifier: keyid:05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:9e:48:21:7a:9f:95:71:16:c4:49:1c:e4:62:89:2c:83:dc: 2d:3d:8c:f5:94:65:71:b7:0b:80:2d:94:fd:5a:49:59:0e:91: e1:e8:d0:d1:c1:6f:08:98:ca:82:c6:97:50:a6:d9:db:1c:54: 0d:05:83:f7:9f:91:c5:55:b8:a5:46:a3:a6:b2:87:d1:ac:b7: ab:02:0c:f3:83:0f:d1:21:80:a3:af:36:0f:c0:b2:c1:ba:9a: 27:28:94:7c:59:f6:02:a6:b9:50:05:b5:cb:24:89:66:66:01: 54:94:c3:fd:2d:68:d8:cf:b0:ee:75:51:03:67:d9:95:d3:26: 5c:ae:da:4d:f3:5e:09:05:c6:e4:1a:5a:74:29:67:8a:a3:b8: 4e:f9:e3:29:d7:6e:f0:b7:79:91:fc:3a:49:7d:d0:c5:30:09: 53:aa:df:1b:67:5f:36:af:b5:8c:07:33:91:85:91:21:98:3d: 38:a0:48:af:f9:a7:d0:a7:ef:ff:33:44:f9:6d:36:a2:39:96: f8:00:8e:27:e0:02:df:6f:21:8d:95:1d:9d:bf:fc:2d:16:2a: 8d:96:85:d8:82:11:fc:ae:78:32:55:28:db:29:d7:8d:01:db: 42:84:b9:5f:ab:34:04:89:8b:11:fa:8f:bf:41:74:ce:78:04: 3d:03:7a:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQxRTkxMTAvBgNVBAUTKDA1QUQzRTRBQTE5NjFCQTdFQ0JFMDI5MzU3MjVDMjVD RDI2QkQ2QkMwHhcNMjYwMzMwMjA1MjAwWhcNMjYwNDA2MjA1MjAwWjAYMRYwFAYD VQQDEw02OWNhZTI3MC1iN2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuavhRq0otenicaOCo3ImA/b+kszhKehaAqygHQNn0t3ZLFv6VvPJHtlsRDyc DhHKZ/SCBpFnDEWW7cwz/Q+ihv2OHU59KbPzP4V7MFixVDQ5/wTvSMDE7Fay/PD3 YN4yrLEDZ746wd+oN4kxnZVlTdW1w3Fybm+Lo/hOFS6/hKrYJ6vJg9u3FeyBDyka h/bK7eTNbCJexNg0t7PMh+KtNujHC4rCCQHOODsYAeEwARhgO4rBtAoS47UkIzgh PWFyhu6iEOHZZfxFbtLzdKZYFf+K5CKiMpNZp2BH0s6CmA35056Dy7VCrapJpeVZ 37DCHSXtrrfTuVl7Mp08f83WFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAU7WJrP +pp9l4AdN62jinQ6uO6uMB8GA1UdIwQYMBaAFAWtPkqhlhun7L4Ck1clwlzSa9a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDFFOS9EQUQ4RkI4MDA3 OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2ZnN2Z0tUVnlYQ1hOSnIx cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JhMC1TcUdXRzZmc3ZnS1RWeVhDWE5KcjFydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDFFOS9EQUQ4RkI4MDA3OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2 ZnN2Z0tUVnlYQ1hOSnIxcncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACp5IIXqflXEWxEkc5GKJLIPcLT2M9ZRlcbcLgC2U/VpJWQ6R4ejQ0cFvCJjK gsaXUKbZ2xxUDQWD95+RxVW4pUajprKH0ay3qwIM84MP0SGAo682D8CywbqaJyiU fFn2Aqa5UAW1yySJZmYBVJTD/S1o2M+w7nVRA2fZldMmXK7aTfNeCQXG5BpadCln iqO4TvnjKddu8Ld5kfw6SX3QxTAJU6rfG2dfNq+1jAczkYWRIZg9OKBIr/mn0Kfv /zNE+W02ojmW+ACOJ+AC328hjZUdnb/8LRYqjZaF2IIR/K54MlUo2ynXjQHbQoS5 X6s0BImLEfqPv0F0zngEPQN6yw== -----END CERTIFICATE-----Generated at Tue Mar 31 08:21:45 2026 by rpki-client