$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft File: b70F9jC-RBCpUSzbaahco3zoxzk.mft (raw, json) Hash identifier: /alXfixVGQOPz569TgzyXVxTaoyfIKby44/wFLNf39A= Subject key identifier: 0E:C5:19:8F:49:9A:5D:E0:EA:8A:B7:0C:CD:11:44:A4:0D:9B:EA:0C Authority key identifier: 6F:BD:05:F6:30:BE:44:10:A9:51:2C:DB:69:A8:5C:A3:7C:E8:C7:39 Certificate issuer: /CN=A91DC897/serialNumber=6FBD05F630BE4410A9512CDB69A85CA37CE8C739 Certificate serial: 25 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/b70F9jC-RBCpUSzbaahco3zoxzk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft Manifest number: 21 Signing time: Sun 29 Mar 2026 08:33:18 +0000 Manifest this update: Sun 29 Mar 2026 08:33:18 +0000 Manifest next update: Sun 05 Apr 2026 08:33:18 +0000 Files and hashes: 1: b70F9jC-RBCpUSzbaahco3zoxzk.crl (hash: TiJftSdt4rwwDFElDpZgtxk+zR/qYLjn74ke5bNbQk4=) 2: 2764AC08003111F18836FC08486F56BC.roa (hash: yELvoRc3S+vHFcCwKMNPwYPmKbFYr2Z48ucu1l1HAEs=) 3: B8EA8ABC033311F1AAD74374203D8C67.roa (hash: VGTwiIqmaXq4MsscshpbxlIvpQ6VN4x9kiDNRx4VLZE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.crl rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/b70F9jC-RBCpUSzbaahco3zoxzk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 08:33:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC897, serialNumber=6FBD05F630BE4410A9512CDB69A85CA37CE8C739 Validity Not Before: Mar 29 08:33:18 2026 GMT Not After : Apr 5 08:33:18 2026 GMT Subject: CN=69c8e3ce-d855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:51:43:58:08:d4:a1:ab:d2:04:a5:d7:f8:e3: 14:35:72:80:16:a7:12:3f:1a:61:75:b9:79:50:f1: 35:42:a6:aa:91:c1:dc:87:7c:4a:d9:fd:be:23:cb: 5b:66:0b:30:d7:2c:1f:a7:22:0f:6b:4b:0b:f9:b8: 33:64:32:cf:dd:b8:de:20:57:c2:43:98:17:86:58: 50:d6:90:9d:95:09:ce:94:67:81:46:ed:fe:a8:b0: 28:c3:ba:ac:e6:16:f0:c9:be:28:a4:ab:fd:0c:08: 84:38:97:f3:d7:3c:31:4c:9b:9f:ef:11:3d:21:53: f5:16:06:5a:22:65:2d:0b:ef:b2:84:31:4c:ae:21: 7a:35:8c:77:25:84:69:f1:f0:e2:e5:db:5a:27:1e: 98:3b:f7:92:d4:ff:e6:bf:1a:96:a3:d4:89:6f:94: 08:71:a4:00:21:6a:79:05:e0:42:53:41:a0:17:0f: 5c:89:fd:3f:75:b4:fe:94:a4:3a:80:59:e4:7c:db: 13:40:1f:be:8e:15:08:5f:c9:9d:a5:1a:2d:78:70: 27:c7:ae:8a:c7:5d:e6:8b:69:61:18:d6:9e:5e:fe: df:19:17:12:f8:99:35:86:b5:38:0a:5d:56:c1:50: ce:2e:37:89:56:95:c1:6c:38:02:42:34:9e:bd:7b: ed:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:C5:19:8F:49:9A:5D:E0:EA:8A:B7:0C:CD:11:44:A4:0D:9B:EA:0C X509v3 Authority Key Identifier: keyid:6F:BD:05:F6:30:BE:44:10:A9:51:2C:DB:69:A8:5C:A3:7C:E8:C7:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/b70F9jC-RBCpUSzbaahco3zoxzk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:1f:bd:0a:c9:30:e1:61:ab:50:f0:6c:19:0a:e3:ba:0b:47: 50:51:c3:16:03:32:7c:91:ef:02:bd:d1:c9:59:df:5e:4c:0f: d4:e6:48:51:7e:f3:77:d9:54:cf:59:8e:a8:14:09:bd:03:e8: 73:99:9a:10:77:17:42:aa:65:5b:44:56:62:af:e4:83:92:b0: fd:04:fb:34:da:79:ce:68:3c:3f:d9:a4:13:ec:b5:fb:54:e9: d4:66:60:24:e1:61:23:8b:50:fb:1e:01:2b:d5:c8:e7:2b:22: 2a:38:12:db:8f:7b:aa:84:a7:b2:5f:fc:33:15:4f:1c:0d:00: b3:ae:6b:9c:fb:10:21:b1:6f:17:9c:b1:f9:b7:8a:7e:4e:bb: 75:e2:43:be:57:8c:65:d7:95:0e:de:3f:89:61:4b:3c:55:a4: cc:79:a3:de:47:62:7e:10:5f:26:43:13:55:8c:36:47:de:99: 97:62:fe:a6:7d:8e:3c:c5:8b:b1:66:37:92:9d:85:23:86:cd: 1c:c0:50:73:f2:62:f7:5a:6d:fd:ef:5a:6f:fe:67:1a:4e:9f: 6d:2e:57:6d:0a:43:14:82:0a:27:02:5f:1a:4d:06:b2:ee:85: 1a:05:d9:84:aa:68:3c:d3:23:39:ff:06:e5:2f:4a:59:40:4a: d6:fd:62:02 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Qzg5NzExMC8GA1UEBRMoNkZCRDA1RjYzMEJFNDQxMEE5NTEyQ0RCNjlBODVDQTM3 Q0U4QzczOTAeFw0yNjAzMjkwODMzMThaFw0yNjA0MDUwODMzMThaMBgxFjAUBgNV BAMTDTY5YzhlM2NlLWQ4NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDtUUNYCNShq9IEpdf44xQ1coAWpxI/GmF1uXlQ8TVCpqqRwdyHfErZ/b4jy1tm CzDXLB+nIg9rSwv5uDNkMs/duN4gV8JDmBeGWFDWkJ2VCc6UZ4FG7f6osCjDuqzm FvDJviikq/0MCIQ4l/PXPDFMm5/vET0hU/UWBloiZS0L77KEMUyuIXo1jHclhGnx 8OLl21onHpg795LU/+a/Gpaj1IlvlAhxpAAhankF4EJTQaAXD1yJ/T91tP6UpDqA WeR82xNAH76OFQhfyZ2lGi14cCfHrorHXeaLaWEY1p5e/t8ZFxL4mTWGtTgKXVbB UM4uN4lWlcFsOAJCNJ69e+1/AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUDsUZj0ma XeDqircMzRFEpA2b6gwwHwYDVR0jBBgwFoAUb70F9jC+RBCpUSzbaahco3zoxzkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDODk3LzdGNEU2M0VDMDAz MDExRjE5NEEyNTdBQjQ3NkY1NkJDL2I3MEY5akMtUkJDcFVTemJhYWhjbzN6b3h6 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvYjcwRjlqQy1SQkNwVVN6YmFhaGNvM3pveHprLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURD ODk3LzdGNEU2M0VDMDAzMDExRjE5NEEyNTdBQjQ3NkY1NkJDL2I3MEY5akMtUkJD cFVTemJhYWhjbzN6b3h6ay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAqH70KyTDhYatQ8GwZCuO6C0dQUcMWAzJ8ke8CvdHJWd9eTA/U5khRfvN32VTP WY6oFAm9A+hzmZoQdxdCqmVbRFZir+SDkrD9BPs02nnOaDw/2aQT7LX7VOnUZmAk 4WEji1D7HgEr1cjnKyIqOBLbj3uqhKeyX/wzFU8cDQCzrmuc+xAhsW8XnLH5t4p+ Trt14kO+V4xl15UO3j+JYUs8VaTMeaPeR2J+EF8mQxNVjDZH3pmXYv6mfY48xYux ZjeSnYUjhs0cwFBz8mL3Wm3971pv/mcaTp9tLldtCkMUggonAl8aTQay7oUaBdmE qmg80yM5/wblL0pZQErW/WIC -----END CERTIFICATE-----Generated at Sun Mar 29 18:49:14 2026 by rpki-client