$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft File: bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft (raw, json) Hash identifier: kX6UyAzqtRuNuxgYyH0oGxU0hRkC7LA/GYg7t1XygBU= Subject key identifier: A4:9E:42:9A:1C:D0:71:2C:6A:4F:61:97:C8:34:A5:0A:4D:B6:5E:5B Authority key identifier: 6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 Certificate issuer: /CN=A91FBD28/serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Certificate serial: 1B5C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft Manifest number: 1B44 Signing time: Thu 16 Apr 2026 15:38:09 +0000 Manifest this update: Thu 16 Apr 2026 15:38:08 +0000 Manifest next update: Thu 23 Apr 2026 15:38:08 +0000 Files and hashes: 1: bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl (hash: ZA0EowsrJIiIAaX/oFPCDSELcShcaXg96XriQ1OXs1o=) 2: D8B92776A16A11EAA517B11EC4F9AE02.roa (hash: rryLB0c3XAkpHMR5QUj9LWqBdvJxU0nRbgd/uoJ3uaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7004 (0x1b5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD28, serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Validity Not Before: Apr 16 15:38:08 2026 GMT Not After : Apr 23 15:38:08 2026 GMT Subject: CN=69e10260-c420 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:67:15:0c:18:96:6d:d1:d1:d5:3d:8e:7b:f9: b9:b5:fa:7c:9b:39:e7:6a:28:91:3f:bc:4f:3a:c5: 6c:e9:04:f4:bf:9b:e7:bf:ad:0d:0d:d1:ec:08:f0: 34:bc:df:a2:f9:1c:93:15:2a:2f:8c:3c:56:10:b7: 83:b6:3f:32:65:fd:0e:44:a1:4b:75:6c:bb:7b:f4: 6a:52:35:10:eb:ca:2e:2f:89:35:7d:9d:c8:ea:04: 87:6c:b7:f4:c8:a7:ae:0e:3d:f5:ef:6a:4b:aa:c4: 95:36:9a:19:c0:e9:22:c5:5b:e7:0f:12:b6:90:b5: 88:64:f5:94:e4:a7:2b:93:db:46:ed:c5:f4:9a:9f: 6d:35:56:71:0f:31:e1:c7:52:9d:f9:58:88:dd:08: fa:20:63:9d:27:7b:27:d8:47:1b:08:0f:8d:64:71: 05:f8:f0:d1:8a:04:76:88:f9:ac:21:f3:63:89:3b: 34:e3:1b:80:43:83:90:24:ad:84:89:ac:ec:ea:56: 1e:50:f5:28:b6:64:b3:77:c2:77:1b:47:e6:04:d7: 69:44:0d:c7:c4:e0:c9:d0:56:28:8c:dd:2a:0f:74: 97:7f:f1:db:1b:02:28:af:da:01:eb:08:47:03:14: 80:77:f0:25:87:d7:6b:44:28:37:5d:a0:cd:d9:0c: b1:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:9E:42:9A:1C:D0:71:2C:6A:4F:61:97:C8:34:A5:0A:4D:B6:5E:5B X509v3 Authority Key Identifier: keyid:6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:49:aa:25:c0:7d:57:a6:4f:62:ac:4e:0f:c6:24:fb:96:3b: 09:84:c3:c8:1b:bb:bb:78:43:58:cb:1f:42:84:ee:5e:85:f1: 83:60:84:4e:89:70:ce:01:be:c2:f6:d1:14:84:cc:55:ce:0c: ca:fc:73:11:ba:fe:55:47:3b:c9:b6:d5:b2:4e:de:2f:05:c6: 3e:5d:5f:3e:79:4d:2a:80:99:e9:c5:af:fe:4a:f5:a2:9e:f0: bf:57:a1:47:0b:55:50:ac:8a:56:28:67:3d:a5:ed:cf:69:bb: d1:b8:91:49:9c:94:35:6d:f5:4c:d1:5a:e5:26:8a:dd:3f:13: ac:c0:a0:5d:9c:fa:a8:10:37:fb:a1:0c:15:a0:a4:5d:07:ff: 9c:54:6d:ba:2c:21:b8:21:a5:5c:29:0f:80:c5:75:22:46:96: 50:e9:df:9e:3c:6d:28:0e:2b:d7:9a:35:15:e5:da:f7:de:78: 45:ad:5a:37:12:ce:c3:bd:45:1a:33:5c:ec:4e:c1:71:29:af: 7f:13:02:09:e0:0b:f4:4c:ad:fc:59:15:a4:ba:2a:8d:70:1d: 5b:88:68:cb:30:b6:84:69:3c:2d:e9:d2:41:5c:12:a5:3a:77: 4f:03:d5:0f:61:b4:26:dc:0e:af:a1:c2:60:ea:83:07:85:64: ad:e4:9f:91 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICG1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEMjgxMTAvBgNVBAUTKDZFNDg2MTBBQTBFNkIwRTJDNUVFRDQwMkREMDc4MzNB QTczRTdFQTIwHhcNMjYwNDE2MTUzODA4WhcNMjYwNDIzMTUzODA4WjAYMRYwFAYD VQQDEw02OWUxMDI2MC1jNDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmcVDBiWbdHR1T2Oe/m5tfp8mznnaiiRP7xPOsVs6QT0v5vnv60NDdHsCPA0 vN+i+RyTFSovjDxWELeDtj8yZf0ORKFLdWy7e/RqUjUQ68ouL4k1fZ3I6gSHbLf0 yKeuDj3172pLqsSVNpoZwOkixVvnDxK2kLWIZPWU5Kcrk9tG7cX0mp9tNVZxDzHh x1Kd+ViI3Qj6IGOdJ3sn2EcbCA+NZHEF+PDRigR2iPmsIfNjiTs04xuAQ4OQJK2E iazs6lYeUPUotmSzd8J3G0fmBNdpRA3HxODJ0FYojN0qD3SXf/HbGwIor9oB6whH AxSAd/Alh9drRCg3XaDN2QyxMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKSeQpoc 0HEsak9hl8g0pQpNtl5bMB8GA1UdIwQYMBaAFG5IYQqg5rDixe7UAt0HgzqnPn6i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQyOC8yNjc1OEJCNDNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNPTEY3dFFDM1FlRE9xYy1m cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2JraGhDcURtc09MRjd0UUMzUWVET3FjLWZxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQyOC8yNjc1OEJCNDNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNP TEY3dFFDM1FlRE9xYy1mcUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZEmqJcB9V6ZPYqxOD8Yk+5Y7CYTDyBu7u3hDWMsfQoTuXoXxg2CETolwzgG+ wvbRFITMVc4MyvxzEbr+VUc7ybbVsk7eLwXGPl1fPnlNKoCZ6cWv/kr1op7wv1eh RwtVUKyKVihnPaXtz2m70biRSZyUNW31TNFa5SaK3T8TrMCgXZz6qBA3+6EMFaCk XQf/nFRtuiwhuCGlXCkPgMV1IkaWUOnfnjxtKA4r15o1FeXa9954Ra1aNxLOw71F GjNc7E7BcSmvfxMCCeAL9Eyt/FkVpLoqjXAdW4hoyzC2hGk8LenSQVwSpTp3TwPV D2G0JtwOr6HCYOqDB4VkreSfkQ== -----END CERTIFICATE-----Generated at Fri Apr 17 23:42:38 2026 by rpki-client