$ rpki-client -vvf rpki.apnic.net/member_repository/A91E855B/70D7F38AEF6611F0833D7B26586F56BC/bzlXnZcRM1EDpt5yAX7QdbPWlu8.mft File: bzlXnZcRM1EDpt5yAX7QdbPWlu8.mft (raw, json) Hash identifier: oHXYG3qRhhW56D6Xlx5FkaUnWrhtJIxW5NiyHTtFwz8= Subject key identifier: AB:DC:53:22:2D:79:FB:36:E0:25:A5:B8:E2:1D:04:00:52:81:C4:B3 Authority key identifier: 6F:39:57:9D:97:11:33:51:03:A6:DE:72:01:7E:D0:75:B3:D6:96:EF Certificate issuer: /CN=A91E855B/serialNumber=6F39579D9711335103A6DE72017ED075B3D696EF Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzlXnZcRM1EDpt5yAX7QdbPWlu8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E855B/70D7F38AEF6611F0833D7B26586F56BC/bzlXnZcRM1EDpt5yAX7QdbPWlu8.mft Manifest number: 20 Signing time: Tue 03 Mar 2026 08:33:10 +0000 Manifest this update: Tue 03 Mar 2026 08:33:10 +0000 Manifest next update: Tue 10 Mar 2026 08:33:10 +0000 Files and hashes: 1: bzlXnZcRM1EDpt5yAX7QdbPWlu8.crl (hash: Tb04YCX/UGv+K6hl/tJjGZe4VC5IoBtPTGUQIS1ZS0k=) 2: C1B7F140EF6811F09BA576A7586F56BC.roa (hash: FZsMYhs+HhbrIDEvkDPfRQGiXabysevZPy7KXtW9MPU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E855B/70D7F38AEF6611F0833D7B26586F56BC/bzlXnZcRM1EDpt5yAX7QdbPWlu8.crl rsync://rpki.apnic.net/member_repository/A91E855B/70D7F38AEF6611F0833D7B26586F56BC/bzlXnZcRM1EDpt5yAX7QdbPWlu8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzlXnZcRM1EDpt5yAX7QdbPWlu8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 08:33:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E855B, serialNumber=6F39579D9711335103A6DE72017ED075B3D696EF Validity Not Before: Mar 3 08:33:10 2026 GMT Not After : Mar 10 08:33:10 2026 GMT Subject: CN=69a69cc6-c452 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:69:28:9c:13:68:85:6b:e0:dc:e6:37:2f:0f: 97:88:5f:04:b7:3b:fc:70:cf:95:a6:0e:40:ff:9e: e5:90:51:3e:c6:ff:1e:5e:b1:6c:09:80:ca:48:53: 7a:4f:aa:4d:42:25:ef:f6:78:a6:61:d8:ca:b7:c0: 76:e6:27:12:94:41:56:c0:c0:a0:72:d7:d1:15:98: dc:7b:9a:e2:57:cf:94:54:3b:08:ce:95:dd:c7:f2: ef:a7:ef:f5:2f:92:20:b8:7c:c6:43:bb:83:03:48: da:6c:e3:ae:a9:42:bb:a0:ee:16:72:bc:c5:a7:ab: 59:63:26:80:d4:90:9f:22:5c:18:48:67:22:d2:dc: fd:4c:07:63:cc:6d:f8:db:2b:9b:21:28:e1:27:a8: 90:c0:c4:d5:e6:08:58:a7:be:0e:07:19:69:70:4f: a3:9c:10:3c:9e:cc:32:c8:c3:28:13:fe:1d:7c:f5: 83:46:f4:26:8e:8b:4a:62:2a:45:11:ba:ac:c9:1d: ad:11:d3:2d:49:2d:24:0d:27:6c:76:7f:f6:b0:e1: 96:55:f8:b5:63:b5:36:1d:36:83:6e:4f:ff:50:fd: d7:97:83:be:18:f0:97:4d:c6:d2:d6:68:9a:f5:fe: 9f:f1:82:81:73:11:dd:c5:ec:94:6d:ce:c9:c7:76: f3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:DC:53:22:2D:79:FB:36:E0:25:A5:B8:E2:1D:04:00:52:81:C4:B3 X509v3 Authority Key Identifier: keyid:6F:39:57:9D:97:11:33:51:03:A6:DE:72:01:7E:D0:75:B3:D6:96:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E855B/70D7F38AEF6611F0833D7B26586F56BC/bzlXnZcRM1EDpt5yAX7QdbPWlu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzlXnZcRM1EDpt5yAX7QdbPWlu8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E855B/70D7F38AEF6611F0833D7B26586F56BC/bzlXnZcRM1EDpt5yAX7QdbPWlu8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:ce:f3:82:40:9f:9f:2b:a9:5f:bb:bf:37:29:d7:df:25:b0: 6e:74:b9:df:24:2b:4d:56:2b:02:1d:8a:fe:26:51:55:b3:cd: 67:54:59:4d:43:6b:2b:32:11:0f:b4:a5:f2:c6:de:6c:8f:9a: 9d:69:c5:9e:7d:2b:d0:2e:48:c5:34:61:d0:05:f0:e0:ae:ab: 74:22:60:d1:1d:1b:af:1b:78:30:56:7b:8a:28:4a:6d:78:d4: 76:4a:44:a9:be:ed:a3:fe:e2:08:53:e8:68:76:d6:b8:ed:91: 72:b1:1f:d7:95:a0:6a:21:aa:bc:b2:16:71:9d:b5:bf:47:89: 41:4d:45:01:42:91:43:61:a1:76:da:63:bb:49:ca:f3:20:83: 0c:bf:12:d6:ae:9c:72:c6:08:cb:a7:a4:1c:5e:2a:05:ed:8e: 2c:47:55:86:8d:29:5e:63:de:73:16:ce:c6:93:17:88:bb:f8: 75:03:79:16:86:ab:64:6d:48:ed:a0:f7:cf:bd:da:42:95:a4: 7b:9b:53:21:c8:35:fe:56:13:da:af:23:d5:c7:7d:c5:1b:22: 9e:fa:0c:b1:c6:52:6e:4c:7f:34:9a:cd:64:41:30:09:4c:a0: b1:37:b9:83:30:1a:3a:e1:93:7b:17:89:67:ba:0c:75:ec:32: c0:2e:3a:87 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODU1QjExMC8GA1UEBRMoNkYzOTU3OUQ5NzExMzM1MTAzQTZERTcyMDE3RUQwNzVC M0Q2OTZFRjAeFw0yNjAzMDMwODMzMTBaFw0yNjAzMTAwODMzMTBaMBgxFjAUBgNV BAMTDTY5YTY5Y2M2LWM0NTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6aSicE2iFa+Dc5jcvD5eIXwS3O/xwz5WmDkD/nuWQUT7G/x5esWwJgMpIU3pP qk1CJe/2eKZh2Mq3wHbmJxKUQVbAwKBy19EVmNx7muJXz5RUOwjOld3H8u+n7/Uv kiC4fMZDu4MDSNps466pQrug7hZyvMWnq1ljJoDUkJ8iXBhIZyLS3P1MB2PMbfjb K5shKOEnqJDAxNXmCFinvg4HGWlwT6OcEDyezDLIwygT/h189YNG9CaOi0piKkUR uqzJHa0R0y1JLSQNJ2x2f/aw4ZZV+LVjtTYdNoNuT/9Q/deXg74Y8JdNxtLWaJr1 /p/xgoFzEd3F7JRtzsnHdvM3AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUq9xTIi15 +zbgJaW44h0EAFKBxLMwHwYDVR0jBBgwFoAUbzlXnZcRM1EDpt5yAX7QdbPWlu8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4NTVCLzcwRDdGMzhBRUY2 NjExRjA4MzNEN0IyNjU4NkY1NkJDL2J6bFhuWmNSTTFFRHB0NXlBWDdRZGJQV2x1 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYnpsWG5aY1JNMUVEcHQ1eUFYN1FkYlBXbHU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 NTVCLzcwRDdGMzhBRUY2NjExRjA4MzNEN0IyNjU4NkY1NkJDL2J6bFhuWmNSTTFF RHB0NXlBWDdRZGJQV2x1OC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCzzvOCQJ+fK6lfu783KdffJbBudLnfJCtNVisCHYr+JlFVs81nVFlNQ2srMhEP tKXyxt5sj5qdacWefSvQLkjFNGHQBfDgrqt0ImDRHRuvG3gwVnuKKEpteNR2SkSp vu2j/uIIU+hodta47ZFysR/XlaBqIaq8shZxnbW/R4lBTUUBQpFDYaF22mO7Scrz IIMMvxLWrpxyxgjLp6QcXioF7Y4sR1WGjSleY95zFs7GkxeIu/h1A3kWhqtkbUjt oPfPvdpClaR7m1MhyDX+VhParyPVx33FGyKe+gyxxlJuTH80ms1kQTAJTKCxN7mD MBo64ZN7F4lnugx17DLALjqH -----END CERTIFICATE-----Generated at Wed Mar 4 15:10:39 2026 by rpki-client