$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.mft File: bhQyTH_rm8iZLUocPkWehqPxjuE.mft (raw, json) Hash identifier: 8LKUgDzotGMkx8D3sgOx09JRKo+k+V/f9hmge/4s2Z4= Subject key identifier: F2:6A:B4:A9:4C:44:91:24:18:81:2A:0E:EB:28:66:D9:B0:A6:40:17 Authority key identifier: 6E:14:32:4C:7F:EB:9B:C8:99:2D:4A:1C:3E:45:9E:86:A3:F1:8E:E1 Certificate issuer: /CN=A91CDC08/serialNumber=6E14324C7FEB9BC8992D4A1C3E459E86A3F18EE1 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhQyTH_rm8iZLUocPkWehqPxjuE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.mft Manifest number: 20 Signing time: Sun 29 Mar 2026 08:32:48 +0000 Manifest this update: Sun 29 Mar 2026 08:32:47 +0000 Manifest next update: Sun 05 Apr 2026 08:32:47 +0000 Files and hashes: 1: bhQyTH_rm8iZLUocPkWehqPxjuE.crl (hash: GA/Uf1a7Czie0Ggmg6I+uc9VdDzHvBv1bXwOJCwUJA4=) 2: 2508F7B8001611F18F2C9137416F56BC.roa (hash: kk4e8+otr3vEuo88eNfz1XFH7SDaG9Z2aCSEpZsnIgI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.crl rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhQyTH_rm8iZLUocPkWehqPxjuE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 08:32:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDC08, serialNumber=6E14324C7FEB9BC8992D4A1C3E459E86A3F18EE1 Validity Not Before: Mar 29 08:32:47 2026 GMT Not After : Apr 5 08:32:47 2026 GMT Subject: CN=69c8e3b0-5d9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:c5:d7:5a:2f:4b:fd:cb:d6:4c:2b:fe:e4:d2: 59:83:ce:7f:07:78:d8:13:91:e1:02:af:28:a3:39: 9f:5a:fe:52:4e:b5:ed:ba:20:1e:a5:d4:95:5a:23: d8:40:c2:29:ae:7c:4e:88:1d:3e:52:8e:3a:9d:7d: 09:a7:55:b7:02:5d:0f:1b:61:a6:e4:2c:9e:d9:1e: e2:6e:d5:03:7f:1f:c3:30:37:be:98:39:e0:7c:77: e9:1e:23:a6:bc:71:a0:49:5c:16:96:4b:f6:8d:cc: b9:76:65:29:d5:be:a5:d5:3e:b4:e0:8f:b6:77:ec: 81:42:22:de:4d:94:0f:e1:c8:fd:4e:c1:c7:d4:0a: 61:95:77:e9:e4:1b:a4:46:f5:10:ce:23:72:cf:0f: 9b:6d:17:98:e9:fa:9a:5c:c7:8c:be:4e:50:11:4a: 0c:7a:66:99:b5:54:b4:7a:bd:2e:14:b0:f6:11:60: a4:ed:d3:70:d9:f4:2e:04:e1:de:4c:d5:65:94:07: 97:a1:02:a0:28:ee:26:3c:a2:16:6f:61:91:72:83: 9a:be:59:b7:21:3e:41:8c:dd:a2:d2:b1:4f:93:a6: 72:b4:be:d1:ba:ed:b1:a0:8d:8e:e7:19:33:d5:ff: 7c:6d:3c:5f:fa:ab:5f:22:47:86:e2:f4:78:51:a4: d4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:6A:B4:A9:4C:44:91:24:18:81:2A:0E:EB:28:66:D9:B0:A6:40:17 X509v3 Authority Key Identifier: keyid:6E:14:32:4C:7F:EB:9B:C8:99:2D:4A:1C:3E:45:9E:86:A3:F1:8E:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhQyTH_rm8iZLUocPkWehqPxjuE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:ae:1a:85:c3:28:db:b5:f3:a1:98:9a:af:3c:ee:2d:56:e2: c1:ef:14:32:a5:2e:46:d2:8a:85:0c:31:6e:06:f9:ce:c0:8a: e4:8a:42:ee:7f:24:c5:1a:63:bd:e2:c9:75:8a:69:c3:2d:ef: 46:8c:38:35:39:5a:bb:84:58:71:96:52:80:98:a2:de:73:63: 30:cf:ff:41:e3:33:7a:48:23:fc:15:b1:0d:10:2c:ea:da:0e: 66:bc:e5:7b:92:a0:4e:51:61:34:86:8f:33:fe:a3:2d:8b:f3: a1:b0:41:14:9c:0e:a2:c8:34:16:bb:60:43:79:3c:c6:be:b5: 4a:a8:d7:f0:d7:9e:c0:48:14:87:b6:1b:28:ef:56:08:e3:ac: 8a:be:07:b8:c8:de:cd:34:93:61:56:0f:d1:58:79:04:b4:aa: 53:d2:01:14:f9:b9:91:00:cb:6a:2e:60:3e:0f:71:ed:93:08: 52:65:b5:7f:e3:07:64:81:1a:3c:11:1e:2f:7a:6b:48:99:49: e2:91:59:06:41:92:c9:c7:31:21:d0:bb:58:58:e2:b1:ff:1f: 01:fd:eb:82:1a:61:c8:4d:86:fc:6c:7c:80:16:a7:5f:c6:6c: 6d:ff:b9:35:c3:6c:a3:58:fe:72:91:7e:90:05:36:4a:90:a9: e1:1c:a8:bb -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD REMwODExMC8GA1UEBRMoNkUxNDMyNEM3RkVCOUJDODk5MkQ0QTFDM0U0NTlFODZB M0YxOEVFMTAeFw0yNjAzMjkwODMyNDdaFw0yNjA0MDUwODMyNDdaMBgxFjAUBgNV BAMTDTY5YzhlM2IwLTVkOWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCQxddaL0v9y9ZMK/7k0lmDzn8HeNgTkeECryijOZ9a/lJOte26IB6l1JVaI9hA wimufE6IHT5SjjqdfQmnVbcCXQ8bYabkLJ7ZHuJu1QN/H8MwN76YOeB8d+keI6a8 caBJXBaWS/aNzLl2ZSnVvqXVPrTgj7Z37IFCIt5NlA/hyP1OwcfUCmGVd+nkG6RG 9RDOI3LPD5ttF5jp+ppcx4y+TlARSgx6Zpm1VLR6vS4UsPYRYKTt03DZ9C4E4d5M 1WWUB5ehAqAo7iY8ohZvYZFyg5q+WbchPkGM3aLSsU+TpnK0vtG67bGgjY7nGTPV /3xtPF/6q18iR4bi9HhRpNRpAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU8mq0qUxE kSQYgSoO6yhm2bCmQBcwHwYDVR0jBBgwFoAUbhQyTH/rm8iZLUocPkWehqPxjuEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEQzA4L0YzRTY1N0ZDMDAx NTExRjE5NUQ1OEFENDQwNkY1NkJDL2JoUXlUSF9ybThpWkxVb2NQa1dlaHFQeGp1 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYmhReVRIX3JtOGlaTFVvY1BrV2VocVB4anVFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE QzA4L0YzRTY1N0ZDMDAxNTExRjE5NUQ1OEFENDQwNkY1NkJDL2JoUXlUSF9ybThp WkxVb2NQa1dlaHFQeGp1RS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCSrhqFwyjbtfOhmJqvPO4tVuLB7xQypS5G0oqFDDFuBvnOwIrkikLufyTFGmO9 4sl1imnDLe9GjDg1OVq7hFhxllKAmKLec2Mwz/9B4zN6SCP8FbENECzq2g5mvOV7 kqBOUWE0ho8z/qMti/OhsEEUnA6iyDQWu2BDeTzGvrVKqNfw157ASBSHthso71YI 46yKvge4yN7NNJNhVg/RWHkEtKpT0gEU+bmRAMtqLmA+D3HtkwhSZbV/4wdkgRo8 ER4vemtImUnikVkGQZLJxzEh0LtYWOKx/x8B/euCGmHITYb8bHyAFqdfxmxt/7k1 w2yjWP5ykX6QBTZKkKnhHKi7 -----END CERTIFICATE-----Generated at Mon Mar 30 13:15:24 2026 by rpki-client