$ rpki-client -vvf rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft File: BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft (raw, json) Hash identifier: 4XUBiRgkLFFKgaViJ+0FSYNke8XU6QOjp7XcauWB08U= Subject key identifier: 88:81:5A:1C:9E:9B:61:CA:9C:63:62:7E:7B:0E:53:65:CB:B4:07:FA Authority key identifier: 04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D Certificate issuer: /CN=A911CC61/serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft Manifest number: 48 Signing time: Fri 17 Apr 2026 08:09:07 +0000 Manifest this update: Fri 17 Apr 2026 08:09:07 +0000 Manifest next update: Fri 24 Apr 2026 08:09:07 +0000 Files and hashes: 1: BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl (hash: +z661xsqay/GqDAvO2JjPGU3GmrwwUQiTZNEEed2prw=) 2: 9C1B70121D1A11F1A275F377103D8C67.roa (hash: y0kiR2bauMVDFaqNZbNEH9+p4Ybcw1shQXfdJNNrqvI=) 3: 8FEAA0421D1A11F19DA5ED77103D8C67.roa (hash: dEk3degjNLUiA3kpAMrU5suBNlrDXd9oTzhhHbGgPc0=) 4: 8EE78F481D1A11F19DA5ED77103D8C67.roa (hash: FtCatlAW9Re17rwqCuc7Yn9ywx696GppCQCdjrmZAlM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:09:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CC61, serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Validity Not Before: Apr 17 08:09:07 2026 GMT Not After : Apr 24 08:09:07 2026 GMT Subject: CN=69e1eaa3-1a32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:db:77:46:20:b4:4c:eb:e5:b2:39:94:21:42: e8:74:4f:e4:19:53:fd:1b:16:3f:81:56:ee:ec:0f: e2:53:f9:16:6b:d3:14:35:d6:c5:21:bd:3a:84:37: 18:74:5b:2a:1d:3a:dc:61:cb:42:46:72:c5:7e:c1: 24:af:0d:63:3c:54:61:43:94:69:29:d4:94:88:77: 0a:fe:e8:c3:41:78:72:65:05:83:27:bc:41:f1:02: 1f:0c:c1:31:a0:9d:fd:80:59:7a:a1:a6:f2:47:67: b0:41:3e:f7:fa:9b:91:ca:21:15:8d:c3:75:38:53: 55:d2:fc:7b:34:e1:bd:88:65:a4:5d:a2:7e:31:76: e1:04:d1:6f:e4:87:3e:c2:af:09:48:4c:78:94:66: 46:a3:0b:2b:40:53:38:1a:3f:ae:44:15:22:0d:c3: d4:4a:80:ee:1c:ee:e2:96:62:bd:0d:9a:3b:7e:7d: 3f:b0:88:7b:2a:38:19:51:97:c7:67:18:c0:1f:d6: b5:ce:a7:89:13:7a:9a:f5:8c:da:5a:d2:33:fe:52: 15:60:83:b2:09:e6:95:c4:0e:fb:f3:53:57:8a:29: 78:59:fb:09:6f:65:b7:e3:5f:d1:1a:01:f5:f1:48: 3f:c0:2f:50:72:fa:d9:50:54:95:a0:62:6b:48:62: 72:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:81:5A:1C:9E:9B:61:CA:9C:63:62:7E:7B:0E:53:65:CB:B4:07:FA X509v3 Authority Key Identifier: keyid:04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:ab:30:2e:fa:32:e0:5e:be:24:cb:d1:10:a0:f1:41:e1:a2: 75:f9:d6:47:c1:0d:42:0c:55:0e:93:80:4e:bd:3a:f8:5c:4f: b9:cf:b7:38:7e:e4:72:d0:7b:e4:f0:3c:d6:82:b9:42:74:46: d0:13:74:16:0d:79:f2:3d:a2:a6:e0:76:77:88:bb:a8:81:38: 39:9b:d2:02:6c:d6:21:bc:82:bf:4b:5c:03:bf:a8:df:6b:f1: 05:ab:13:6f:41:12:3a:a5:00:09:32:de:8e:4b:2d:91:57:5e: 74:8d:12:c7:63:85:3a:11:91:43:3a:67:81:5b:01:89:d9:c9: 16:12:5c:22:e8:53:ad:6d:64:e7:16:9e:f0:e1:e7:ed:a7:49: 0c:e5:97:37:2f:56:64:10:d1:c7:c8:95:c1:e7:ca:8b:0f:34: c8:22:94:9e:31:fd:9f:8f:93:0d:49:6e:18:38:db:d2:74:2e: f6:31:e4:6f:3c:fc:9a:92:8d:80:a7:68:cf:f1:07:67:51:61: b8:94:44:f1:d0:a0:fb:c7:24:ee:25:69:ce:9c:ad:c1:be:f4: 9a:7c:0e:86:80:ee:0e:da:1e:4f:81:17:c9:a2:b4:b8:61:f8: d2:ea:b3:d3:10:13:13:ae:b5:ce:eb:d6:99:d4:0c:ca:5b:9a: 02:2f:1c:23 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0M2MTExMC8GA1UEBRMoMDQ3NDkzN0U3OUE5RDY3MzM1M0VBQkQ4MkM0Qjg0MjRC NkM2ODMwRDAeFw0yNjA0MTcwODA5MDdaFw0yNjA0MjQwODA5MDdaMBgxFjAUBgNV BAMTDTY5ZTFlYWEzLTFhMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC323dGILRM6+WyOZQhQuh0T+QZU/0bFj+BVu7sD+JT+RZr0xQ11sUhvTqENxh0 WyodOtxhy0JGcsV+wSSvDWM8VGFDlGkp1JSIdwr+6MNBeHJlBYMnvEHxAh8MwTGg nf2AWXqhpvJHZ7BBPvf6m5HKIRWNw3U4U1XS/Hs04b2IZaRdon4xduEE0W/khz7C rwlITHiUZkajCytAUzgaP65EFSINw9RKgO4c7uKWYr0Nmjt+fT+wiHsqOBlRl8dn GMAf1rXOp4kTepr1jNpa0jP+UhVgg7IJ5pXEDvvzU1eKKXhZ+wlvZbfjX9EaAfXx SD/AL1By+tlQVJWgYmtIYnIvAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUiIFaHJ6b YcqcY2J+ew5TZcu0B/owHwYDVR0jBBgwFoAUBHSTfnmp1nM1PqvYLEuEJLbGgw0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQzYxLzMzMUQxNDE4REEz RTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5NMVBxdllMRXVFSkxiR2d3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQkhTVGZubXAxbk0xUHF2WUxFdUVKTGJHZ3cwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD QzYxLzMzMUQxNDE4REEzRTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5N MVBxdllMRXVFSkxiR2d3MC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAeqzAu+jLgXr4ky9EQoPFB4aJ1+dZHwQ1CDFUOk4BOvTr4XE+5z7c4fuRy0Hvk 8DzWgrlCdEbQE3QWDXnyPaKm4HZ3iLuogTg5m9ICbNYhvIK/S1wDv6jfa/EFqxNv QRI6pQAJMt6OSy2RV150jRLHY4U6EZFDOmeBWwGJ2ckWElwi6FOtbWTnFp7w4eft p0kM5Zc3L1ZkENHHyJXB58qLDzTIIpSeMf2fj5MNSW4YONvSdC72MeRvPPyako2A p2jP8QdnUWG4lETx0KD7xyTuJWnOnK3BvvSafA6GgO4O2h5PgRfJorS4YfjS6rPT EBMTrrXO69aZ1AzKW5oCLxwj -----END CERTIFICATE-----Generated at Sun Apr 19 09:02:42 2026 by rpki-client