$ rpki-client -vvf rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft File: BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft (raw, json) Hash identifier: huMEqfXUVOme1hACc77byL4Oy31qsMrJBLbifPtG08k= Subject key identifier: EF:E1:33:64:CA:41:06:53:E8:62:54:BA:58:B4:37:D5:B2:93:F2:1C Authority key identifier: 04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D Certificate issuer: /CN=A911CC61/serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft Manifest number: 2C Signing time: Sun 01 Mar 2026 10:13:10 +0000 Manifest this update: Sun 01 Mar 2026 10:13:10 +0000 Manifest next update: Sun 08 Mar 2026 10:13:10 +0000 Files and hashes: 1: BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl (hash: FMkx7DzJh9gHaZG/aF5TtYTfTd92vqSw65sTP2Fqga0=) 2: 86A83D10DA3E11F09B1225578ED3641D.roa (hash: qT26ksHr1adpPy4+cs/Tb7K/RRcosClSwKww1XyI5BQ=) 3: 87421F34DA3E11F09B1225578ED3641D.roa (hash: UtPJM8H0Jn4XRTUJzDBFAqLrKI7+GYkS60Ss/BvP398=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:13:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CC61, serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Validity Not Before: Mar 1 10:13:10 2026 GMT Not After : Mar 8 10:13:10 2026 GMT Subject: CN=69a41136-5aa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b0:53:ab:6c:b7:1b:b6:0c:01:4b:18:83:2b: da:22:ae:23:eb:60:c7:18:0e:17:79:f1:35:6f:df: 5a:8d:c7:91:3b:6b:83:65:24:f1:31:b1:ec:68:d5: 54:a5:1c:cc:27:ce:ba:f5:69:60:70:53:70:f8:59: bf:74:fa:fb:30:e7:d6:10:7b:07:42:f4:81:fc:14: 04:8d:05:6d:c3:c6:24:bf:8c:6e:2b:a0:4e:87:54: 79:b6:65:16:a7:5c:55:43:85:21:61:70:cb:6f:eb: 64:15:15:ff:87:b8:50:37:b7:d8:63:a2:e6:0a:2a: df:e6:49:bf:fa:8f:97:51:35:db:81:7f:fe:26:52: 3d:b8:cc:56:a6:3a:53:49:e3:8b:67:1a:d1:2a:0f: af:cf:ab:4a:b0:f7:e1:17:5c:82:d4:ec:c9:de:63: fc:cc:29:9a:03:17:b2:db:ea:c1:37:d0:fc:99:81: eb:af:2a:8d:2d:1f:ef:b7:3c:c4:0d:41:7e:1a:49: be:35:aa:ff:32:f9:55:1f:38:a6:1a:b0:38:23:d3: 8f:86:06:de:63:58:3d:ed:66:c6:20:a8:15:3c:ec: 7b:8d:74:c6:6e:f9:49:85:7f:8f:b7:b0:5e:f9:da: df:b9:55:e9:68:59:83:4f:67:c0:30:d6:ee:6b:e3: f7:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:E1:33:64:CA:41:06:53:E8:62:54:BA:58:B4:37:D5:B2:93:F2:1C X509v3 Authority Key Identifier: keyid:04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:90:b4:23:62:40:3d:09:d6:ae:b1:9f:83:0c:50:bf:ce:1e: b2:e6:d0:25:18:02:7a:36:e8:de:af:5a:1a:4f:fa:91:7a:18: 99:b2:9d:c8:60:0a:23:74:d1:f5:b7:26:df:c6:cf:6f:d2:a1: 9b:a8:80:9d:53:b5:5d:63:d2:a3:4a:50:90:2d:fa:2f:ac:77: 16:9c:68:99:36:c3:fe:2b:04:42:af:64:81:5e:b0:a6:a4:9c: 4a:ae:6b:a2:1c:0b:25:51:bf:62:2e:1d:54:65:73:a5:79:25: 4c:60:bf:70:81:3f:b2:2b:f1:5f:af:4e:01:c6:1a:f5:42:7f: 52:4e:af:7c:42:84:8e:77:da:cc:f7:84:7c:06:9d:5a:f0:55: 91:f0:cb:74:d4:9b:7d:92:37:4a:7f:43:3b:77:a5:e2:d1:c0: 0d:a5:89:6e:e1:d0:05:a4:35:bf:a9:2a:83:7c:40:60:ae:96: 9a:db:35:2a:09:29:55:c9:f8:17:f3:09:22:c7:f5:85:a0:65: 4f:fb:4a:ed:0f:ee:74:ac:fb:cf:88:3b:bf:07:88:cb:39:4f: 0a:6f:53:eb:41:16:aa:b5:ca:16:c9:31:b0:78:61:bf:8d:8d: c0:cd:50:60:c0:99:8f:94:34:00:84:5f:b7:48:4b:b5:a6:3d: ae:5c:67:4d -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0M2MTExMC8GA1UEBRMoMDQ3NDkzN0U3OUE5RDY3MzM1M0VBQkQ4MkM0Qjg0MjRC NkM2ODMwRDAeFw0yNjAzMDExMDEzMTBaFw0yNjAzMDgxMDEzMTBaMBgxFjAUBgNV BAMTDTY5YTQxMTM2LTVhYTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfsFOrbLcbtgwBSxiDK9oiriPrYMcYDhd58TVv31qNx5E7a4NlJPExsexo1VSl HMwnzrr1aWBwU3D4Wb90+vsw59YQewdC9IH8FASNBW3DxiS/jG4roE6HVHm2ZRan XFVDhSFhcMtv62QVFf+HuFA3t9hjouYKKt/mSb/6j5dRNduBf/4mUj24zFamOlNJ 44tnGtEqD6/Pq0qw9+EXXILU7MneY/zMKZoDF7Lb6sE30PyZgeuvKo0tH++3PMQN QX4aSb41qv8y+VUfOKYasDgj04+GBt5jWD3tZsYgqBU87HuNdMZu+UmFf4+3sF75 2t+5VeloWYNPZ8Aw1u5r4/cxAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU7+EzZMpB BlPoYlS6WLQ31bKT8hwwHwYDVR0jBBgwFoAUBHSTfnmp1nM1PqvYLEuEJLbGgw0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQzYxLzMzMUQxNDE4REEz RTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5NMVBxdllMRXVFSkxiR2d3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQkhTVGZubXAxbk0xUHF2WUxFdUVKTGJHZ3cwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD QzYxLzMzMUQxNDE4REEzRTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5N MVBxdllMRXVFSkxiR2d3MC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA9kLQjYkA9CdausZ+DDFC/zh6y5tAlGAJ6Nujer1oaT/qRehiZsp3IYAojdNH1 tybfxs9v0qGbqICdU7VdY9KjSlCQLfovrHcWnGiZNsP+KwRCr2SBXrCmpJxKrmui HAslUb9iLh1UZXOleSVMYL9wgT+yK/Ffr04Bxhr1Qn9STq98QoSOd9rM94R8Bp1a 8FWR8Mt01Jt9kjdKf0M7d6Xi0cANpYlu4dAFpDW/qSqDfEBgrpaa2zUqCSlVyfgX 8wkix/WFoGVP+0rtD+50rPvPiDu/B4jLOU8Kb1PrQRaqtcoWyTGweGG/jY3AzVBg wJmPlDQAhF+3SEu1pj2uXGdN -----END CERTIFICATE-----Generated at Mon Mar 2 04:12:05 2026 by rpki-client