$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft File: BstI9X1UOpeC2KfJbaTh3tvDwws.mft (raw, json) Hash identifier: fpya1/pUZ1kNVgyL1gFTdKP7pcWrZKl9OTmAeVtk9/U= Subject key identifier: 7D:7C:98:F1:A6:5F:71:2A:EB:E0:C7:0E:FA:95:9D:93:86:B8:C4:A8 Authority key identifier: 06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B Certificate issuer: /CN=A91E2EFF/serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft Manifest number: 99 Signing time: Sun 05 Apr 2026 06:45:53 +0000 Manifest this update: Sun 05 Apr 2026 06:45:52 +0000 Manifest next update: Sun 12 Apr 2026 06:45:52 +0000 Files and hashes: 1: BstI9X1UOpeC2KfJbaTh3tvDwws.crl (hash: DeeOHcUnGSNO4zXjoXbH56iTitmii0w4t2Fhv9jS5/I=) 2: 3698C9BA484A11F0B96B9D10C4F9AE02.roa (hash: 0vz5hH8Qi0mQ8l4HL29D2PA4e6vODvqozBm3+6JiuQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EFF, serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Validity Not Before: Apr 5 06:45:52 2026 GMT Not After : Apr 12 06:45:52 2026 GMT Subject: CN=69d20521-ca48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:3d:6d:1c:07:c2:3c:80:3b:79:cd:cc:1e:37: f8:b5:ba:90:ec:ea:37:09:ff:bd:f2:34:5a:97:61: 25:bc:82:9e:bb:8c:a1:c7:c6:96:5b:1a:09:41:54: 53:f8:54:6b:53:f4:35:85:ed:5f:f7:52:e3:ed:16: 92:4a:48:37:a7:7a:ce:97:2e:5b:ad:3f:bf:26:59: a9:e4:30:45:0d:4b:25:de:c8:11:eb:7c:1c:29:25: bb:0b:0a:97:79:7c:4e:d8:2d:e7:b5:dc:51:6a:b2: 9f:04:2f:b8:b7:42:14:7f:8a:63:67:2d:9a:52:67: 9b:dc:a8:e5:a3:66:47:44:67:0e:39:16:59:e6:f0: a4:37:5d:47:33:0c:40:c9:26:ec:d6:88:fb:ad:3d: c6:3e:a5:f8:0b:e7:70:d0:c5:80:81:43:f8:d2:26: 72:50:d6:3d:59:68:fc:5c:f4:65:21:c2:75:4b:69: 62:ab:30:8a:70:ae:d5:e1:c2:56:ae:dd:0e:63:1e: de:f9:82:20:6b:ed:f5:9e:1c:e4:70:c3:56:15:11: b1:74:3c:20:66:2f:4f:9f:fa:da:ac:95:13:cd:f6: de:07:db:c2:46:2d:cf:9a:3d:87:b7:26:54:98:38: 0a:49:9b:3e:61:c5:8e:10:9e:31:0a:28:6f:dc:7a: 14:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:7C:98:F1:A6:5F:71:2A:EB:E0:C7:0E:FA:95:9D:93:86:B8:C4:A8 X509v3 Authority Key Identifier: keyid:06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:0c:b2:7a:fb:38:e0:f9:21:57:a9:f6:ea:db:66:7f:d0:d9: a0:8a:a4:fe:58:c3:3d:7c:2b:fd:73:32:df:ae:a0:74:28:d8: c4:aa:70:22:52:e0:5d:5e:ef:7f:d6:c8:fb:56:09:31:10:04: 68:19:e6:f8:e8:14:fe:b5:19:b0:da:0e:41:d6:54:b3:cf:a0: 8a:c0:18:95:c9:9a:7a:1c:15:9f:3a:69:c3:09:ae:4c:9a:c5: de:08:70:57:71:37:53:b9:9d:e5:35:85:10:d6:f6:f8:f6:18: 2c:f1:26:eb:91:db:c1:42:c9:53:b9:9e:48:4d:78:56:d7:ba: 44:95:7b:ef:29:21:d8:11:ea:32:4c:cf:2d:c1:4f:f2:ba:94: 96:c3:f4:c0:80:52:69:84:5b:ed:33:f9:42:2f:5f:91:7b:9f: 84:75:43:e2:ac:3f:27:a6:29:09:7e:1b:ce:ca:81:9a:30:21: 3e:d5:a6:68:78:ca:5f:84:bf:9b:8d:cb:58:ff:25:76:81:9f: e6:ed:35:0f:c6:72:a1:69:eb:31:17:29:64:a4:ad:d8:81:17: d6:0e:11:e3:8b:74:15:82:52:d1:e5:82:ae:3f:6d:de:06:ec: db:19:e5:a1:00:27:8d:fe:ec:60:a8:57:78:eb:e8:71:e1:c8: 5a:d0:7f:38 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJFRkYxMTAvBgNVBAUTKDA2Q0I0OEY1N0Q1NDNBOTc4MkQ4QTdDOTZEQTRFMURF REJDM0MzMEIwHhcNMjYwNDA1MDY0NTUyWhcNMjYwNDEyMDY0NTUyWjAYMRYwFAYD VQQDEw02OWQyMDUyMS1jYTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjz1tHAfCPIA7ec3MHjf4tbqQ7Oo3Cf+98jRal2ElvIKeu4yhx8aWWxoJQVRT +FRrU/Q1he1f91Lj7RaSSkg3p3rOly5brT+/Jlmp5DBFDUsl3sgR63wcKSW7CwqX eXxO2C3ntdxRarKfBC+4t0IUf4pjZy2aUmeb3Kjlo2ZHRGcOORZZ5vCkN11HMwxA ySbs1oj7rT3GPqX4C+dw0MWAgUP40iZyUNY9WWj8XPRlIcJ1S2liqzCKcK7V4cJW rt0OYx7e+YIga+31nhzkcMNWFRGxdDwgZi9Pn/rarJUTzfbeB9vCRi3Pmj2HtyZU mDgKSZs+YcWOEJ4xCihv3HoUIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH18mPGm X3Eq6+DHDvqVnZOGuMSoMB8GA1UdIwQYMBaAFAbLSPV9VDqXgtinyW2k4d7bw8ML MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkVGRi9BMzE0ODQ3QzQ4 NDkxMUYwQkYwNzAzNzBDNEY5QUUwMi9Cc3RJOVgxVU9wZUMyS2ZKYmFUaDN0dkR3 d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JzdEk5WDFVT3BlQzJLZkpiYVRoM3R2RHd3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkVGRi9BMzE0ODQ3QzQ4NDkxMUYwQkYwNzAzNzBDNEY5QUUwMi9Cc3RJOVgxVU9w ZUMyS2ZKYmFUaDN0dkR3d3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHAyyevs44PkhV6n26ttmf9DZoIqk/ljDPXwr/XMy366gdCjYxKpwIlLgXV7v f9bI+1YJMRAEaBnm+OgU/rUZsNoOQdZUs8+gisAYlcmaehwVnzppwwmuTJrF3ghw V3E3U7md5TWFENb2+PYYLPEm65HbwULJU7meSE14Vte6RJV77ykh2BHqMkzPLcFP 8rqUlsP0wIBSaYRb7TP5Qi9fkXufhHVD4qw/J6YpCX4bzsqBmjAhPtWmaHjKX4S/ m43LWP8ldoGf5u01D8ZyoWnrMRcpZKSt2IEX1g4R44t0FYJS0eWCrj9t3gbs2xnl oQAnjf7sYKhXeOvoceHIWtB/OA== -----END CERTIFICATE-----Generated at Mon Apr 6 13:58:19 2026 by rpki-client