$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft File: BZ5vA652dqnQ8J1fbL25CGGFWlc.mft (raw, json) Hash identifier: TRf5GhVHi4uEP79gzDWVu9MJwSUrQxEqsh3Wfo2Irus= Subject key identifier: E2:EB:E0:D9:26:91:12:52:7D:E7:F7:14:8B:F0:EF:93:94:E4:0C:93 Authority key identifier: 05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 Certificate issuer: /CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Certificate serial: 0789 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft Manifest number: 0761 Signing time: Sat 04 Apr 2026 21:09:18 +0000 Manifest this update: Sat 04 Apr 2026 21:09:17 +0000 Manifest next update: Sat 11 Apr 2026 21:09:17 +0000 Files and hashes: 1: BZ5vA652dqnQ8J1fbL25CGGFWlc.crl (hash: SuN2R8LTog6eqASbTRQn0hL1wQxzxVk8Vp14BRKVE5g=) 2: 7E0AB01C782C11EBB0B71971C4F9AE02.roa (hash: QZpGdBeLR/9QiZlZAdnU1Y45E5G+uOVVhczPqvB6SAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:09:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1929 (0x789) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF74B, serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Validity Not Before: Apr 4 21:09:17 2026 GMT Not After : Apr 11 21:09:17 2026 GMT Subject: CN=69d17dfd-41fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:53:56:22:e8:52:4e:e8:e7:8f:1d:24:c9:d3: bd:e7:dd:be:e5:3d:fc:63:bc:fd:db:b0:97:32:0b: 8a:57:c2:d0:3b:6c:28:0c:5f:88:5a:f3:c0:1c:f6: ee:72:bb:ac:eb:86:a3:62:95:23:24:78:e7:9d:39: 56:ac:eb:e8:bc:99:37:cc:8d:74:0d:68:f9:f2:54: e2:a0:a9:e7:6a:6b:9d:db:6e:e0:72:52:c4:a2:6a: 31:33:14:86:63:a7:60:21:14:a5:0c:c2:be:2c:ad: 0d:75:a2:c9:fd:ad:05:6d:b3:09:c2:ac:4e:6e:d4: 8a:ba:6b:81:9d:14:e4:c1:77:ac:31:81:f3:c7:ab: bf:42:a9:20:af:4d:ee:ed:43:a1:84:35:f0:2d:80: 62:3d:5c:5f:53:44:f2:ae:8c:61:1d:84:44:0d:8f: 92:48:d4:0b:74:96:b3:c0:d3:72:19:c9:e5:61:13: c9:bc:f9:4f:2f:f0:52:e1:3f:4b:27:69:0d:9b:13: 15:bd:41:bb:47:ca:4c:bc:c3:42:a8:e0:0a:38:2b: be:fc:c0:f7:00:cd:b7:44:65:09:ea:a8:b6:28:94: cf:08:25:db:91:eb:08:78:95:21:5f:54:8a:e2:99: e4:59:d5:8e:08:f8:6f:e6:99:fd:43:d1:03:d3:98: d4:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:EB:E0:D9:26:91:12:52:7D:E7:F7:14:8B:F0:EF:93:94:E4:0C:93 X509v3 Authority Key Identifier: keyid:05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:32:fc:f9:17:7f:1d:41:ee:94:ea:96:2a:d1:d6:30:98:05: ae:38:ce:ff:b1:0f:73:0a:5c:58:4e:f5:f0:53:fa:44:5a:ce: 02:68:03:a7:60:33:f4:78:10:a1:09:de:5a:c4:5e:2b:3d:eb: 3c:21:a8:48:e4:55:38:b7:bb:dd:88:ef:4d:ed:3d:e7:eb:62: 88:01:01:de:d8:2b:04:d3:13:78:80:62:86:b8:2d:a4:5b:26: 82:8b:3d:fa:7a:e0:f2:32:1d:5c:35:4f:7a:62:48:df:50:08: ef:66:2d:bf:ce:9b:a0:ca:d3:af:25:9d:7f:b0:61:42:b3:09: f5:6f:1b:59:6e:24:7e:d6:8d:9c:a0:68:8f:f4:2c:46:66:42: ba:8d:d5:03:87:fb:ce:c4:fa:ee:b4:65:6f:ac:7b:48:5c:22: 95:34:8b:9e:30:34:35:75:60:69:b8:0b:c5:45:c5:c6:2f:8d: 6c:b9:04:64:a0:03:ec:3d:a5:4f:a3:44:82:24:5d:bc:db:f4: 0c:89:74:34:e7:40:e7:45:a7:c9:58:d8:99:02:01:04:84:2f: e6:1f:3e:4f:51:f8:1b:a1:0b:65:f7:10:37:ec:69:27:66:a7: c1:9d:e0:aa:78:fd:9a:0a:4f:fc:88:96:a0:12:a6:09:f4:9c: 51:da:f4:2b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3NEIxMTAvBgNVBAUTKDA1OUU2RjAzQUU3Njc2QTlEMEYwOUQ1RjZDQkRCOTA4 NjE4NTVBNTcwHhcNMjYwNDA0MjEwOTE3WhcNMjYwNDExMjEwOTE3WjAYMRYwFAYD VQQDEw02OWQxN2RmZC00MWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7VNWIuhSTujnjx0kydO9592+5T38Y7z927CXMguKV8LQO2woDF+IWvPAHPbu crus64ajYpUjJHjnnTlWrOvovJk3zI10DWj58lTioKnnamud227gclLEomoxMxSG Y6dgIRSlDMK+LK0NdaLJ/a0FbbMJwqxObtSKumuBnRTkwXesMYHzx6u/Qqkgr03u 7UOhhDXwLYBiPVxfU0TyroxhHYREDY+SSNQLdJazwNNyGcnlYRPJvPlPL/BS4T9L J2kNmxMVvUG7R8pMvMNCqOAKOCu+/MD3AM23RGUJ6qi2KJTPCCXbkesIeJUhX1SK 4pnkWdWOCPhv5pn9Q9ED05jU+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOLr4Nkm kRJSfef3FIvw75OU5AyTMB8GA1UdIwQYMBaAFAWebwOudnap0PCdX2y9uQhhhVpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjc0Qi82MUEzMzg0QTc4 MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRxblE4SjFmYkwyNUNHR0ZX bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JaNXZBNjUyZHFuUThKMWZiTDI1Q0dHRldsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjc0Qi82MUEzMzg0QTc4MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRx blE4SjFmYkwyNUNHR0ZXbGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfDL8+Rd/HUHulOqWKtHWMJgFrjjO/7EPcwpcWE718FP6RFrOAmgDp2Az9HgQ oQneWsReKz3rPCGoSORVOLe73YjvTe095+tiiAEB3tgrBNMTeIBihrgtpFsmgos9 +nrg8jIdXDVPemJI31AI72Ytv86boMrTryWdf7BhQrMJ9W8bWW4kftaNnKBoj/Qs RmZCuo3VA4f7zsT67rRlb6x7SFwilTSLnjA0NXVgabgLxUXFxi+NbLkEZKAD7D2l T6NEgiRdvNv0DIl0NOdA50WnyVjYmQIBBIQv5h8+T1H4G6ELZfcQN+xpJ2anwZ3g qnj9mgpP/IiWoBKmCfScUdr0Kw== -----END CERTIFICATE-----Generated at Mon Apr 6 13:36:47 2026 by rpki-client