$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft File: bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft (raw, json) Hash identifier: wUZNTZPkr3jwe82Bmgr0uqXNwdVJoOzC6s+kSsxPvTA= Subject key identifier: 91:2E:2B:16:54:22:D6:75:1A:55:28:B5:EB:6F:40:B9:58:29:00:A4 Authority key identifier: 6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 Certificate issuer: /CN=A91FBD28/serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Certificate serial: 1B40 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft Manifest number: 1B2A Signing time: Sat 28 Feb 2026 15:41:29 +0000 Manifest this update: Sat 28 Feb 2026 15:41:29 +0000 Manifest next update: Sat 07 Mar 2026 15:41:29 +0000 Files and hashes: 1: bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl (hash: sI6lBf4nrIy7PyHuirM4OJ+Le8Iuc0rJPO+npiy4wvo=) 2: D8B92776A16A11EAA517B11EC4F9AE02.roa (hash: 0/HP0DwNYOfkRXXhvxhJ7qmLcNQDOwmKr3HHIF1F5nU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 15:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6976 (0x1b40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD28, serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Validity Not Before: Feb 28 15:41:29 2026 GMT Not After : Mar 7 15:41:29 2026 GMT Subject: CN=69a30ca9-4f5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:81:61:85:c5:81:a0:57:3a:fe:ad:23:a5:b3: 0a:72:df:06:a5:a7:8e:41:9a:a2:fa:61:c6:d1:07: 5b:6e:9e:3d:ae:2d:c6:a9:f6:d5:cd:13:2b:2c:ff: 4c:44:52:65:33:09:38:ea:7a:c7:94:db:ab:f1:c0: 8b:5e:e0:63:12:60:91:85:65:d5:44:71:50:b9:c4: 22:3b:24:5d:e9:51:fb:a3:bf:77:b2:5d:f1:4b:05: ab:58:46:05:cf:43:26:71:17:cc:4d:84:aa:a0:8e: f5:bd:f8:c1:89:b2:ff:fc:76:79:f2:d5:60:fc:66: 49:17:66:6b:45:52:ce:ae:ec:c6:80:38:68:f1:c6: 74:7b:54:c7:bd:eb:72:b7:45:56:c4:02:61:0e:b6: 66:5c:52:7c:6a:54:ba:39:27:ea:b2:71:1f:4a:e9: 22:f1:a2:f0:6b:46:2a:7f:72:d4:f7:7a:cf:20:b2: 23:b3:e6:bc:ed:f2:97:9f:0b:dc:b2:25:88:0b:ca: 2a:89:ab:e5:bb:9e:3e:b7:65:5d:e5:14:af:56:88: 68:47:06:71:ed:39:e1:1d:6d:0c:cf:a7:84:b4:8c: 32:b3:fd:29:fe:82:fc:56:04:e3:58:4c:10:25:e0: 25:84:da:9d:21:59:01:8e:88:1e:e5:d1:b2:50:bf: 27:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:2E:2B:16:54:22:D6:75:1A:55:28:B5:EB:6F:40:B9:58:29:00:A4 X509v3 Authority Key Identifier: keyid:6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:74:4e:a9:0e:bb:52:94:f8:04:46:23:7e:02:2d:98:71:80: f5:5d:e6:b9:20:5c:aa:08:7b:da:ab:9f:7a:eb:91:b8:e0:e1: b7:8a:d7:b0:2d:c2:af:0d:90:f3:c7:b2:e0:6e:40:b1:6f:f6: a6:9e:89:43:f1:c6:cc:31:43:5c:7d:70:20:19:a0:10:17:3d: 94:08:0d:a8:0d:6a:ad:eb:d1:0b:98:51:bd:2f:2f:34:33:74: 2e:f0:cf:ce:96:7d:4b:52:19:25:c3:83:f1:b1:f6:65:d8:b7: c2:8d:5b:cd:aa:23:5c:4e:46:ff:55:87:8e:aa:ad:42:61:a5: 08:b9:38:1c:ff:ef:0c:58:8b:8c:0e:ae:d8:fb:0c:bb:4c:b9: ee:f5:f6:41:9a:42:70:ff:f3:ed:d0:84:6d:eb:fc:19:a8:bc: 9b:b0:66:a9:a1:69:8c:67:27:ab:c0:63:d3:25:45:fa:61:0d: 07:ba:8c:85:9f:73:83:7a:32:9d:5e:f7:e4:de:dc:c8:2a:c4: 13:dc:8d:79:96:fb:13:1c:a6:4e:66:1b:31:08:fe:b6:f7:05: 6d:9b:41:e4:1d:79:3f:32:fb:3e:26:f4:9d:ad:10:b2:15:44: c1:3f:69:14:33:29:93:d5:6d:f1:f2:40:9a:40:95:65:8b:9a: a1:10:d9:6e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICG0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEMjgxMTAvBgNVBAUTKDZFNDg2MTBBQTBFNkIwRTJDNUVFRDQwMkREMDc4MzNB QTczRTdFQTIwHhcNMjYwMjI4MTU0MTI5WhcNMjYwMzA3MTU0MTI5WjAYMRYwFAYD VQQDDA02OWEzMGNhOS00ZjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4FhhcWBoFc6/q0jpbMKct8GpaeOQZqi+mHG0Qdbbp49ri3GqfbVzRMrLP9M RFJlMwk46nrHlNur8cCLXuBjEmCRhWXVRHFQucQiOyRd6VH7o793sl3xSwWrWEYF z0MmcRfMTYSqoI71vfjBibL//HZ58tVg/GZJF2ZrRVLOruzGgDho8cZ0e1THvety t0VWxAJhDrZmXFJ8alS6OSfqsnEfSuki8aLwa0Yqf3LU93rPILIjs+a87fKXnwvc siWIC8oqiavlu54+t2Vd5RSvVohoRwZx7TnhHW0Mz6eEtIwys/0p/oL8VgTjWEwQ JeAlhNqdIVkBjoge5dGyUL8nfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJEuKxZU ItZ1GlUotetvQLlYKQCkMB8GA1UdIwQYMBaAFG5IYQqg5rDixe7UAt0HgzqnPn6i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQyOC8yNjc1OEJCNDNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNPTEY3dFFDM1FlRE9xYy1m cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2JraGhDcURtc09MRjd0UUMzUWVET3FjLWZxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQyOC8yNjc1OEJCNDNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNP TEY3dFFDM1FlRE9xYy1mcUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjHROqQ67UpT4BEYjfgItmHGA9V3muSBcqgh72qufeuuRuODht4rXsC3Crw2Q 88ey4G5AsW/2pp6JQ/HGzDFDXH1wIBmgEBc9lAgNqA1qrevRC5hRvS8vNDN0LvDP zpZ9S1IZJcOD8bH2Zdi3wo1bzaojXE5G/1WHjqqtQmGlCLk4HP/vDFiLjA6u2PsM u0y57vX2QZpCcP/z7dCEbev8Gai8m7BmqaFpjGcnq8Bj0yVF+mENB7qMhZ9zg3oy nV735N7cyCrEE9yNeZb7ExymTmYbMQj+tvcFbZtB5B15PzL7Pib0na0QshVEwT9p FDMpk9Vt8fJAmkCVZYuaoRDZbg== -----END CERTIFICATE-----Generated at Sun Mar 1 21:08:09 2026 by rpki-client