$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft File: BQ5HmwmNZLazhlsr5GiFdeotTVE.mft (raw, json) Hash identifier: LLd2qeBKFD+Z+aGa68hE2QMegqOvAzVcEM5bz3bzGNg= Subject key identifier: 1D:3E:2B:4A:C5:35:82:83:BF:82:4D:19:89:6D:47:65:46:24:C9:F7 Authority key identifier: 05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 Certificate issuer: /CN=A91AB457/serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Certificate serial: 0C68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft Manifest number: 0C68 Signing time: Sat 04 Apr 2026 18:28:53 +0000 Manifest this update: Sat 04 Apr 2026 18:28:53 +0000 Manifest next update: Sat 11 Apr 2026 18:28:53 +0000 Files and hashes: 1: BQ5HmwmNZLazhlsr5GiFdeotTVE.crl (hash: gjbiZPH+QoujkSSmQvQhZr7wwhpA6JmNe8ne5WIpjdI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:28:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3176 (0xc68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB457, serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Validity Not Before: Apr 4 18:28:53 2026 GMT Not After : Apr 11 18:28:53 2026 GMT Subject: CN=69d15865-892b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:93:db:4d:a7:d1:f3:87:66:82:f0:d1:08:78: 05:3f:22:d8:8d:31:da:0a:2a:fb:e5:69:ff:b5:55: 4f:bf:2e:22:b9:c9:47:9a:7f:ca:4d:3b:3a:93:b0: 8d:2d:7c:cd:2e:0e:d3:37:70:1a:4f:cf:6c:99:9d: 67:e8:cf:7c:0c:fc:69:d7:a2:55:81:18:d8:5b:b6: 91:a1:5c:93:33:0f:ef:cc:3b:8a:8e:15:75:f4:09: e6:3f:bc:f8:4f:bd:f4:99:3c:02:b9:83:71:95:e4: 0f:0a:5b:61:6e:5a:c7:13:cd:b7:96:06:e7:a1:37: c1:a1:4c:29:88:7c:8d:0c:e4:04:1b:cf:41:8b:7d: 0d:de:a3:f8:1f:10:77:09:8f:ce:57:54:ea:c0:31: b3:52:5e:85:2d:88:f7:f8:92:93:7e:34:27:1c:d7: 17:e9:55:d4:a6:2f:63:9c:b2:a9:8a:e6:73:c9:f4: 3c:9d:be:ec:00:71:0a:36:1b:85:01:ea:ef:a8:a6: f3:93:6b:b8:e6:c5:31:10:fb:1e:ca:d1:59:3f:14: c5:25:7b:9b:48:df:16:20:a1:03:f2:98:97:bb:4e: 63:65:f2:aa:4e:ef:ea:70:d0:a9:5e:1f:e3:ff:5b: ee:a3:65:4e:7c:e6:7d:66:a9:4f:15:e8:23:26:ac: 49:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:3E:2B:4A:C5:35:82:83:BF:82:4D:19:89:6D:47:65:46:24:C9:F7 X509v3 Authority Key Identifier: keyid:05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:00:91:a8:b6:6d:36:8a:c8:53:51:dd:84:ea:d8:52:a8:2f: 88:9d:ad:76:2b:fd:9f:3c:37:4f:2d:ac:c2:3c:aa:75:9a:d1: 68:0c:e0:5f:1c:2c:79:03:c0:cf:bb:cc:2c:7b:ea:69:2e:17: cd:98:a1:bb:6a:a3:01:04:00:f7:0e:fd:c6:db:7b:97:12:94: a4:1d:e2:3a:bd:8f:7b:19:71:76:d7:a5:2d:6f:13:ae:9d:88: 95:62:95:cf:2d:88:a6:78:0c:29:1b:37:6b:81:87:5d:72:2a: 70:e6:a4:2f:79:f1:f1:98:44:81:7e:13:63:42:56:83:fa:f3: 60:32:12:a1:f1:7d:04:a9:a1:81:6c:ef:ce:18:f3:cb:30:8e: 24:2e:c8:3a:1e:6b:88:9b:f9:a4:2a:b7:99:22:27:77:f2:2f: 00:70:50:b5:d1:a8:4e:45:ca:13:2a:15:20:89:46:86:71:3c: e4:ad:a6:75:04:df:cc:6e:53:df:a5:72:a9:bd:6e:15:27:bb: 1a:ed:82:1f:fd:4e:4b:56:7b:68:7c:b1:48:78:59:b2:e6:af: 28:35:c6:56:c6:42:18:36:43:cb:bb:25:42:00:b6:a6:2f:e0: 3d:e0:df:1c:79:8c:da:b8:e7:a6:c3:83:6e:3a:70:53:87:a2: a9:c2:b3:d4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0NTcxMTAvBgNVBAUTKDA1MEU0NzlCMDk4RDY0QjZCMzg2NUIyQkU0Njg4NTc1 RUEyRDRENTEwHhcNMjYwNDA0MTgyODUzWhcNMjYwNDExMTgyODUzWjAYMRYwFAYD VQQDEw02OWQxNTg2NS04OTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZPbTafR84dmgvDRCHgFPyLYjTHaCir75Wn/tVVPvy4iuclHmn/KTTs6k7CN LXzNLg7TN3AaT89smZ1n6M98DPxp16JVgRjYW7aRoVyTMw/vzDuKjhV19AnmP7z4 T730mTwCuYNxleQPClthblrHE823lgbnoTfBoUwpiHyNDOQEG89Bi30N3qP4HxB3 CY/OV1TqwDGzUl6FLYj3+JKTfjQnHNcX6VXUpi9jnLKpiuZzyfQ8nb7sAHEKNhuF AervqKbzk2u45sUxEPseytFZPxTFJXubSN8WIKED8piXu05jZfKqTu/qcNCpXh/j /1vuo2VOfOZ9ZqlPFegjJqxJMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB0+K0rF NYKDv4JNGYltR2VGJMn3MB8GA1UdIwQYMBaAFAUOR5sJjWS2s4ZbK+RohXXqLU1R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjQ1Ny81QUY2NjEwMjFD OTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpMYXpobHNyNUdpRmRlb3RU VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRNUhtd21OWkxhemhsc3I1R2lGZGVvdFRWRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjQ1Ny81QUY2NjEwMjFDOTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpM YXpobHNyNUdpRmRlb3RUVkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmgCRqLZtNorIU1HdhOrYUqgviJ2tdiv9nzw3Ty2swjyqdZrRaAzgXxwseQPA z7vMLHvqaS4XzZihu2qjAQQA9w79xtt7lxKUpB3iOr2PexlxdtelLW8Trp2IlWKV zy2IpngMKRs3a4GHXXIqcOakL3nx8ZhEgX4TY0JWg/rzYDISofF9BKmhgWzvzhjz yzCOJC7IOh5riJv5pCq3mSInd/IvAHBQtdGoTkXKEyoVIIlGhnE85K2mdQTfzG5T 36Vyqb1uFSe7Gu2CH/1OS1Z7aHyxSHhZsuavKDXGVsZCGDZDy7slQgC2pi/gPeDf HHmM2rjnpsODbjpwU4eiqcKz1A== -----END CERTIFICATE-----Generated at Mon Apr 6 08:30:38 2026 by rpki-client