$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft File: BFm798uEwX7tUbaM6tlBlX14X68.mft (raw, json) Hash identifier: gk4mEJfdb+FTaqAr4DDY9Wr9gdICBhNXtWaplXrmdto= Subject key identifier: 6C:1C:47:43:E3:9A:E5:6E:CE:4E:08:01:BC:9E:04:EB:AD:35:F3:60 Authority key identifier: 04:59:BB:F7:CB:84:C1:7E:ED:51:B6:8C:EA:D9:41:95:7D:78:5F:AF Certificate issuer: /CN=A91CFBA9/serialNumber=0459BBF7CB84C17EED51B68CEAD941957D785FAF Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft Manifest number: 5F Signing time: Sun 05 Apr 2026 07:24:20 +0000 Manifest this update: Sun 05 Apr 2026 07:24:19 +0000 Manifest next update: Sun 12 Apr 2026 07:24:19 +0000 Files and hashes: 1: BFm798uEwX7tUbaM6tlBlX14X68.crl (hash: 718M2aR4odc3sWZrPUWBiR6c36zl0tWFmNaavW+3fsI=) 2: 88B9736AA77811F092FD731BC4F9AE02.roa (hash: t9dZnts+IlYuSJrBx0IgU/pwjcYxg43h5hJtdZZSKtM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.crl rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 07:24:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFBA9, serialNumber=0459BBF7CB84C17EED51B68CEAD941957D785FAF Validity Not Before: Apr 5 07:24:19 2026 GMT Not After : Apr 12 07:24:19 2026 GMT Subject: CN=69d20e24-7f1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:52:e9:15:4f:b5:22:80:15:e4:25:dc:51:57: 9a:db:c6:98:39:50:96:54:ba:33:45:51:fd:f2:a2: 58:85:e8:08:ac:41:2e:e0:a3:be:85:93:d6:b4:48: b6:f7:65:f1:f6:7f:4b:c8:89:45:ce:b5:74:e2:d8: 57:63:de:7d:36:06:a2:a7:ec:ef:f2:41:d4:33:e2: f1:08:a5:be:7b:a6:ae:d5:97:11:64:02:05:81:a9: 13:3f:05:05:fd:d5:ee:15:0d:0e:39:dd:39:a7:bf: af:df:fd:9e:d0:fe:a3:14:88:28:05:1c:41:26:a7: d1:60:2c:fe:94:5d:7d:1e:75:b5:64:fb:a2:70:c8: ce:90:21:b4:91:d2:f6:c2:6a:f5:6e:0a:2a:04:fe: 8d:fe:1a:a3:a3:be:fd:b8:db:3a:a6:e2:77:8e:05: 57:ad:f1:f2:ff:ac:8b:3a:d3:cd:67:be:c9:14:ec: e4:70:57:cf:0d:89:78:6e:69:03:5e:c3:27:f1:b1: ca:22:f2:86:ea:9a:3b:80:11:99:80:07:3a:ef:05: 33:3c:4f:f4:a0:e0:88:5e:d4:9e:42:cb:f0:e5:e8: 1a:f7:69:e0:d3:02:51:26:ef:0d:30:c4:c6:78:3d: 04:4d:88:01:8e:6d:28:c0:cc:c9:84:a0:13:65:cc: 85:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:1C:47:43:E3:9A:E5:6E:CE:4E:08:01:BC:9E:04:EB:AD:35:F3:60 X509v3 Authority Key Identifier: keyid:04:59:BB:F7:CB:84:C1:7E:ED:51:B6:8C:EA:D9:41:95:7D:78:5F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:97:c4:d1:d3:b4:7d:60:c5:0a:a8:07:fa:9b:5a:cb:09:78: 12:ef:de:06:bb:60:87:55:61:28:6f:92:15:9c:3e:0c:f8:a6: 14:e2:f7:f3:bf:ef:3c:55:90:f3:b2:b1:68:bc:53:ab:b6:69: ad:89:6a:2f:3c:a6:e0:2e:65:7f:e9:af:df:67:9f:2d:e6:8f: 6b:91:43:4e:96:7e:a5:2c:ba:40:67:95:a7:17:33:5d:ee:df: 42:aa:0e:fb:28:23:86:1b:5f:d0:03:cb:90:d6:f6:62:c0:7c: 6e:21:d2:33:92:ab:93:e8:dc:7a:88:e6:82:cd:16:51:b9:50: cc:98:79:9f:30:60:fc:b2:c6:34:10:51:06:9f:97:dc:95:98: 54:0e:a5:38:5d:aa:bd:fd:90:2d:6a:fe:0e:33:62:07:b0:d7: 04:1f:1e:2c:cc:bd:c6:f5:da:6c:9d:f5:3c:8c:dd:ae:35:b6: 48:9d:a9:80:a8:7d:38:89:aa:6b:42:a5:07:9c:13:cb:20:6e: d5:23:f9:12:33:9b:da:c3:b4:20:62:02:65:17:2a:21:3e:1e: 65:3b:0d:61:a8:0b:7c:32:66:e1:a4:51:4c:76:05:8e:ab:54: a6:78:42:d8:dd:33:f8:ef:63:22:bf:99:0c:72:b2:f5:2c:d6: 7b:6d:e0:33 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkJBOTExMC8GA1UEBRMoMDQ1OUJCRjdDQjg0QzE3RUVENTFCNjhDRUFEOTQxOTU3 RDc4NUZBRjAeFw0yNjA0MDUwNzI0MTlaFw0yNjA0MTIwNzI0MTlaMBgxFjAUBgNV BAMTDTY5ZDIwZTI0LTdmMWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCeUukVT7UigBXkJdxRV5rbxpg5UJZUujNFUf3yoliF6AisQS7go76Fk9a0SLb3 ZfH2f0vIiUXOtXTi2Fdj3n02BqKn7O/yQdQz4vEIpb57pq7VlxFkAgWBqRM/BQX9 1e4VDQ453Tmnv6/f/Z7Q/qMUiCgFHEEmp9FgLP6UXX0edbVk+6JwyM6QIbSR0vbC avVuCioE/o3+GqOjvv242zqm4neOBVet8fL/rIs6081nvskU7ORwV88NiXhuaQNe wyfxscoi8obqmjuAEZmABzrvBTM8T/Sg4Ihe1J5Cy/Dl6Br3aeDTAlEm7w0wxMZ4 PQRNiAGObSjAzMmEoBNlzIULAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUbBxHQ+Oa 5W7OTggBvJ4E660182AwHwYDVR0jBBgwFoAUBFm798uEwX7tUbaM6tlBlX14X68w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGQkE5LzU3MzAxNTlBQTc3 NTExRjA5NERFQkYyREM0RjlBRTAyL0JGbTc5OHVFd1g3dFViYU02dGxCbFgxNFg2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQkZtNzk4dUV3WDd0VWJhTTZ0bEJsWDE0WDY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG QkE5LzU3MzAxNTlBQTc3NTExRjA5NERFQkYyREM0RjlBRTAyL0JGbTc5OHVFd1g3 dFViYU02dGxCbFgxNFg2OC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBQl8TR07R9YMUKqAf6m1rLCXgS794Gu2CHVWEob5IVnD4M+KYU4vfzv+88VZDz srFovFOrtmmtiWovPKbgLmV/6a/fZ58t5o9rkUNOln6lLLpAZ5WnFzNd7t9Cqg77 KCOGG1/QA8uQ1vZiwHxuIdIzkquT6Nx6iOaCzRZRuVDMmHmfMGD8ssY0EFEGn5fc lZhUDqU4Xaq9/ZAtav4OM2IHsNcEHx4szL3G9dpsnfU8jN2uNbZInamAqH04iapr QqUHnBPLIG7VI/kSM5vaw7QgYgJlFyohPh5lOw1hqAt8MmbhpFFMdgWOq1SmeELY 3TP472Miv5kMcrL1LNZ7beAz -----END CERTIFICATE-----Generated at Mon Apr 6 13:58:16 2026 by rpki-client