$ rpki-client -vvf rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft File: BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft (raw, json) Hash identifier: L++3GBTRd/uzhVF9nMz4yweG83AGlh+IjbyToF9wlsI= Subject key identifier: 49:A3:C9:4E:4D:D8:98:85:AE:E4:7C:FE:33:7A:EC:AD:C4:42:BB:C2 Authority key identifier: 04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D Certificate issuer: /CN=A911CC61/serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft Manifest number: 64 Signing time: Sat 13 Jun 2026 08:10:44 +0000 Manifest this update: Sat 13 Jun 2026 08:10:44 +0000 Manifest next update: Sat 20 Jun 2026 08:10:44 +0000 Files and hashes: 1: BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl (hash: zGvpFfgsBt01RtB3vjsteZkfyw3eibyz9Q4ydepPUAY=) 2: 8EE78F481D1A11F19DA5ED77103D8C67.roa (hash: FtCatlAW9Re17rwqCuc7Yn9ywx696GppCQCdjrmZAlM=) 3: 8FEAA0421D1A11F19DA5ED77103D8C67.roa (hash: dEk3degjNLUiA3kpAMrU5suBNlrDXd9oTzhhHbGgPc0=) 4: 9C1B70121D1A11F1A275F377103D8C67.roa (hash: y0kiR2bauMVDFaqNZbNEH9+p4Ybcw1shQXfdJNNrqvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CC61, serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Validity Not Before: Jun 13 08:10:44 2026 GMT Not After : Jun 20 08:10:44 2026 GMT Subject: CN=6a2d1084-85bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:93:1d:41:f1:ee:47:a6:93:28:f5:2d:d4:67: 75:3b:67:29:21:e4:48:1f:2c:f1:46:a4:92:6b:e8: c4:07:56:3b:18:cb:87:91:f0:a7:64:26:98:2a:04: c3:4c:5a:18:b0:92:96:52:ef:fa:1a:af:b4:e2:f4: 62:8f:ed:9e:6a:4f:a9:5a:2f:d7:20:b2:68:19:7f: 34:e9:95:3b:a4:84:b6:9a:e7:1f:d5:67:62:3b:0d: fc:34:de:e5:92:98:9f:b3:c8:fd:9a:2d:38:75:62: 51:0c:b7:be:bb:49:cb:83:e0:ab:10:d7:50:f3:58: 91:89:02:f7:b0:f3:94:b7:f8:7a:5a:d1:a4:40:17: bc:8f:42:ae:b8:c7:df:45:75:62:53:f2:16:a5:18: 9e:1e:4e:d5:58:22:b7:71:2e:06:c5:60:de:dd:1c: 85:46:95:59:72:90:41:c2:66:26:b2:b5:02:03:d7: 79:e6:00:51:49:05:7d:8b:0d:8a:d1:e7:7d:d8:31: 08:d0:3f:03:8c:bc:26:00:65:4d:ce:5f:09:c9:7c: a5:51:b2:88:d8:d0:52:d9:db:27:f0:67:4a:cc:f9: 1f:e0:84:9a:90:b6:93:64:a6:ee:fa:94:21:e8:16: fd:b2:e5:34:8a:cf:4e:0a:13:d5:65:51:92:5e:9f: fb:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:A3:C9:4E:4D:D8:98:85:AE:E4:7C:FE:33:7A:EC:AD:C4:42:BB:C2 X509v3 Authority Key Identifier: keyid:04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:33:11:4a:8f:29:94:b9:f7:d7:87:fe:85:6d:3c:e9:8f:60: 3d:99:70:6f:0a:b0:23:3b:01:11:b0:1f:2f:57:31:ac:ec:1c: 19:3a:7f:4e:52:17:72:6a:bf:6a:57:e7:f0:5c:6e:b1:2b:57: 08:97:60:77:22:70:fe:61:aa:5c:25:71:0c:d3:cd:c4:12:63: 37:e6:d3:20:29:9c:39:e3:b0:73:e2:79:3c:b8:3e:e5:fa:47: 02:67:ad:28:e7:b1:4d:08:df:dc:c0:c9:33:32:f9:9e:2c:b0: 95:d7:48:68:d9:c7:79:34:95:6b:c1:9c:f5:48:e8:41:ad:52: 72:bb:9f:df:2d:46:4e:17:62:12:ce:ec:f9:01:1d:8e:5d:06: 82:b6:cf:1c:7b:19:6a:b3:a1:8e:c9:e5:c7:0b:c9:26:f9:6a: 7f:b8:ed:ab:c7:5b:f0:71:b7:94:cf:3a:c4:f5:6f:27:58:c6: 68:96:19:dc:7b:9d:2a:5e:4c:d9:f3:1d:16:18:90:d2:bf:5e: 8a:42:1e:69:ba:b8:2e:2f:be:14:8c:54:38:7f:5c:03:8d:da: 28:25:5f:3e:79:2d:47:97:d6:73:6f:73:ad:21:7f:0f:69:a3: 5a:6b:13:4c:d3:29:93:ec:a9:4b:aa:f4:8a:36:03:50:10:18: c9:44:46:ef -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0M2MTExMC8GA1UEBRMoMDQ3NDkzN0U3OUE5RDY3MzM1M0VBQkQ4MkM0Qjg0MjRC NkM2ODMwRDAeFw0yNjA2MTMwODEwNDRaFw0yNjA2MjAwODEwNDRaMBgxFjAUBgNV BAMTDTZhMmQxMDg0LTg1YmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCikx1B8e5HppMo9S3UZ3U7Zykh5EgfLPFGpJJr6MQHVjsYy4eR8KdkJpgqBMNM WhiwkpZS7/oar7Ti9GKP7Z5qT6laL9cgsmgZfzTplTukhLaa5x/VZ2I7Dfw03uWS mJ+zyP2aLTh1YlEMt767ScuD4KsQ11DzWJGJAvew85S3+Hpa0aRAF7yPQq64x99F dWJT8halGJ4eTtVYIrdxLgbFYN7dHIVGlVlykEHCZiaytQID13nmAFFJBX2LDYrR 533YMQjQPwOMvCYAZU3OXwnJfKVRsojY0FLZ2yfwZ0rM+R/ghJqQtpNkpu76lCHo Fv2y5TSKz04KE9VlUZJen/vFAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUSaPJTk3Y mIWu5Hz+M3rsrcRCu8IwHwYDVR0jBBgwFoAUBHSTfnmp1nM1PqvYLEuEJLbGgw0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQzYxLzMzMUQxNDE4REEz RTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5NMVBxdllMRXVFSkxiR2d3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQkhTVGZubXAxbk0xUHF2WUxFdUVKTGJHZ3cwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD QzYxLzMzMUQxNDE4REEzRTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5N MVBxdllMRXVFSkxiR2d3MC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBgMxFKjymUuffXh/6FbTzpj2A9mXBvCrAjOwERsB8vVzGs7BwZOn9OUhdyar9q V+fwXG6xK1cIl2B3InD+YapcJXEM083EEmM35tMgKZw547Bz4nk8uD7l+kcCZ60o 57FNCN/cwMkzMvmeLLCV10ho2cd5NJVrwZz1SOhBrVJyu5/fLUZOF2ISzuz5AR2O XQaCts8cexlqs6GOyeXHC8km+Wp/uO2rx1vwcbeUzzrE9W8nWMZolhnce50qXkzZ 8x0WGJDSv16KQh5purguL74UjFQ4f1wDjdooJV8+eS1Hl9Zzb3OtIX8PaaNaaxNM 0ymT7KlLqvSKNgNQEBjJREbv -----END CERTIFICATE-----Generated at Sat Jun 13 10:03:39 2026 by rpki-client