$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE4C1/3644887AE9BB11EFBAAC9D70C4F9AE02/BH7xoc9llmNJhmdnZVZI7vkRDFo.mft File: BH7xoc9llmNJhmdnZVZI7vkRDFo.mft (raw, json) Hash identifier: l4zi8Hj4bE8/4TXeV0kuePlHfoacDvJZUlbct9Ygxg4= Subject key identifier: 03:64:90:EB:9A:29:40:FB:C7:78:6C:14:1E:DC:BD:8D:C8:A5:7E:8B Authority key identifier: 04:7E:F1:A1:CF:65:96:63:49:86:67:67:65:56:48:EE:F9:11:0C:5A Certificate issuer: /CN=A91CE4C1/serialNumber=047EF1A1CF65966349866767655648EEF9110C5A Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BH7xoc9llmNJhmdnZVZI7vkRDFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE4C1/3644887AE9BB11EFBAAC9D70C4F9AE02/BH7xoc9llmNJhmdnZVZI7vkRDFo.mft Manifest number: D1 Signing time: Fri 13 Mar 2026 05:43:41 +0000 Manifest this update: Fri 13 Mar 2026 05:43:41 +0000 Manifest next update: Fri 20 Mar 2026 05:43:41 +0000 Files and hashes: 1: BH7xoc9llmNJhmdnZVZI7vkRDFo.crl (hash: YfdchBhY+Ksboj2kg7t3thF//5KW77L0WCuGFGAmbuA=) 2: FB4C0514E9C311EFADA7270AC4F9AE02.roa (hash: 9PsW59A9Q1knuLfocvHjnopBeCv6jOU+Iw2Q/6PZFX4=) 3: 459E12EAE9C611EFB8012F10C4F9AE02.roa (hash: jHhbEyRPQeuc0ql3FxXQd5TNE++SZnJHu3QLWjLgY8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE4C1/3644887AE9BB11EFBAAC9D70C4F9AE02/BH7xoc9llmNJhmdnZVZI7vkRDFo.crl rsync://rpki.apnic.net/member_repository/A91CE4C1/3644887AE9BB11EFBAAC9D70C4F9AE02/BH7xoc9llmNJhmdnZVZI7vkRDFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BH7xoc9llmNJhmdnZVZI7vkRDFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 05:43:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE4C1, serialNumber=047EF1A1CF65966349866767655648EEF9110C5A Validity Not Before: Mar 13 05:43:41 2026 GMT Not After : Mar 20 05:43:41 2026 GMT Subject: CN=69b3a40d-721d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e6:e3:0c:19:85:96:28:ee:e1:0f:0e:44:9b: c5:0c:94:ab:fc:f6:2d:51:9b:c2:51:04:32:ec:da: 76:53:a7:32:4e:07:30:0a:8d:24:3d:d1:19:5c:31: 88:4c:01:a8:ab:52:0c:f8:df:af:2d:b7:2c:8a:91: f3:d6:35:76:89:ba:af:d0:6c:95:4c:b7:92:78:5f: ce:c8:a3:38:fc:1b:d4:e8:01:62:58:94:99:fd:cd: 6d:c8:a1:f8:25:66:13:34:25:65:32:25:ad:f9:af: 3a:21:c5:c5:93:f9:1d:cb:0c:22:7f:37:40:0f:b6: 43:5f:e7:48:2c:d8:1d:59:d0:f9:22:62:5d:6a:4d: 48:d4:38:0a:fd:08:fc:a1:17:00:95:12:44:38:11: ce:a9:51:b0:b4:96:09:dc:04:96:fb:f6:a6:82:0e: e7:28:e3:86:c6:3d:95:e1:f4:a3:e1:90:3e:ca:c5: f0:ee:43:d8:7e:7e:cd:5a:6d:5e:e1:e9:d7:4d:5c: 42:9a:f6:f0:f1:57:be:e2:1a:2c:f3:ed:e9:42:79: c2:05:31:79:e8:0d:3a:02:f6:11:98:bb:0f:9b:6d: 24:6e:70:b5:23:40:26:c3:f0:9d:b2:7b:6e:e7:b5: dc:78:a6:51:22:31:2c:23:92:58:07:fd:75:ee:6c: 6e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:64:90:EB:9A:29:40:FB:C7:78:6C:14:1E:DC:BD:8D:C8:A5:7E:8B X509v3 Authority Key Identifier: keyid:04:7E:F1:A1:CF:65:96:63:49:86:67:67:65:56:48:EE:F9:11:0C:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE4C1/3644887AE9BB11EFBAAC9D70C4F9AE02/BH7xoc9llmNJhmdnZVZI7vkRDFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BH7xoc9llmNJhmdnZVZI7vkRDFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE4C1/3644887AE9BB11EFBAAC9D70C4F9AE02/BH7xoc9llmNJhmdnZVZI7vkRDFo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:52:dd:da:be:0b:7f:3e:5c:e4:25:f9:1d:06:f6:48:1e:1d: 0a:55:d7:6a:5b:6c:fd:df:64:e2:e9:5d:b3:70:62:e9:a1:9b: 11:d6:16:b2:cb:49:0c:cf:f1:1c:cb:fc:dc:6a:64:d1:77:2d: a8:f8:8c:45:f4:7e:3a:db:fe:4d:fd:59:51:63:d1:d1:80:e4: 93:9a:ca:af:3b:70:de:54:83:6a:43:b6:43:59:4f:5a:9e:0a: d5:6f:2e:c7:33:88:8e:22:ae:88:05:58:06:bd:12:3a:2f:c8: e0:1d:eb:5c:3b:1f:f7:d2:b2:77:03:1b:a0:3a:7c:5f:18:c2: 4e:58:95:e8:bf:1f:af:8e:32:f2:2c:23:e5:ef:eb:6d:64:de: b5:c3:c0:42:1e:d1:3a:c4:85:f7:73:6d:2e:0d:2a:63:e4:31: 2e:0d:16:96:33:30:f0:9e:7b:ef:27:9a:04:a8:74:c8:1a:66: d5:ce:2a:e7:e5:08:a7:ec:e0:93:f3:df:5a:dd:4a:53:92:ca: 59:13:2b:63:ed:9f:39:31:39:e7:9a:fc:3a:60:8d:08:c5:48: bd:49:d7:06:f0:53:61:b3:bf:ac:fc:88:56:df:ed:11:97:4d: 85:d2:38:2e:ae:69:4c:44:ab:22:1d:fa:43:02:15:ad:5a:06: 20:15:2e:47 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U0QzExMTAvBgNVBAUTKDA0N0VGMUExQ0Y2NTk2NjM0OTg2Njc2NzY1NTY0OEVF RjkxMTBDNUEwHhcNMjYwMzEzMDU0MzQxWhcNMjYwMzIwMDU0MzQxWjAYMRYwFAYD VQQDEw02OWIzYTQwZC03MjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyubjDBmFliju4Q8ORJvFDJSr/PYtUZvCUQQy7Np2U6cyTgcwCo0kPdEZXDGI TAGoq1IM+N+vLbcsipHz1jV2ibqv0GyVTLeSeF/OyKM4/BvU6AFiWJSZ/c1tyKH4 JWYTNCVlMiWt+a86IcXFk/kdywwifzdAD7ZDX+dILNgdWdD5ImJdak1I1DgK/Qj8 oRcAlRJEOBHOqVGwtJYJ3ASW+/amgg7nKOOGxj2V4fSj4ZA+ysXw7kPYfn7NWm1e 4enXTVxCmvbw8Ve+4hos8+3pQnnCBTF56A06AvYRmLsPm20kbnC1I0Amw/Cdsntu 57XceKZRIjEsI5JYB/117mxu4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFANkkOua KUD7x3hsFB7cvY3IpX6LMB8GA1UdIwQYMBaAFAR+8aHPZZZjSYZnZ2VWSO75EQxa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTRDMS8zNjQ0ODg3QUU5 QkIxMUVGQkFBQzlENzBDNEY5QUUwMi9CSDd4b2M5bGxtTkpobWRuWlZaSTd2a1JE Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JIN3hvYzlsbG1OSmhtZG5aVlpJN3ZrUkRGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTRDMS8zNjQ0ODg3QUU5QkIxMUVGQkFBQzlENzBDNEY5QUUwMi9CSDd4b2M5bGxt TkpobWRuWlZaSTd2a1JERm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYFLd2r4Lfz5c5CX5HQb2SB4dClXXalts/d9k4ulds3Bi6aGbEdYWsstJDM/x HMv83Gpk0XctqPiMRfR+Otv+Tf1ZUWPR0YDkk5rKrztw3lSDakO2Q1lPWp4K1W8u xzOIjiKuiAVYBr0SOi/I4B3rXDsf99KydwMboDp8XxjCTliV6L8fr44y8iwj5e/r bWTetcPAQh7ROsSF93NtLg0qY+QxLg0WljMw8J577yeaBKh0yBpm1c4q5+UIp+zg k/PfWt1KU5LKWRMrY+2fOTE555r8OmCNCMVIvUnXBvBTYbO/rPyIVt/tEZdNhdI4 Lq5pTESrIh36QwIVrVoGIBUuRw== -----END CERTIFICATE-----Generated at Sat Mar 14 02:09:23 2026 by rpki-client