$ rpki-client -vvf rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft File: BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft (raw, json) Hash identifier: UpD96mqAe38fX9neYTgVqFnh3JSeYEO8RSmrqnimws8= Subject key identifier: C8:38:F7:CA:FC:95:80:8C:CC:CB:42:2F:28:5B:F9:00:84:23:0A:09 Authority key identifier: 04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D Certificate issuer: /CN=A911CC61/serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Certificate serial: 47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft Manifest number: 3C Signing time: Wed 25 Mar 2026 07:47:22 +0000 Manifest this update: Wed 25 Mar 2026 07:47:21 +0000 Manifest next update: Wed 01 Apr 2026 07:47:21 +0000 Files and hashes: 1: BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl (hash: RFVMEKteoDzFiOj2HB5chawNrZtW70l4kepob+PzpuU=) 2: 9C1B70121D1A11F1A275F377103D8C67.roa (hash: y0kiR2bauMVDFaqNZbNEH9+p4Ybcw1shQXfdJNNrqvI=) 3: 8FEAA0421D1A11F19DA5ED77103D8C67.roa (hash: dEk3degjNLUiA3kpAMrU5suBNlrDXd9oTzhhHbGgPc0=) 4: 8EE78F481D1A11F19DA5ED77103D8C67.roa (hash: FtCatlAW9Re17rwqCuc7Yn9ywx696GppCQCdjrmZAlM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:47:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CC61, serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Validity Not Before: Mar 25 07:47:21 2026 GMT Not After : Apr 1 07:47:21 2026 GMT Subject: CN=69c3930a-b5ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:09:ea:ed:d6:99:be:59:a6:bd:d4:e1:4b:fc: 2a:09:b3:0f:db:c0:74:75:02:3c:6d:49:63:42:76: 96:af:99:6a:80:bb:91:05:4f:b4:53:8a:1d:83:8d: ba:65:c5:98:d1:42:b2:16:8b:b0:bd:d4:bd:40:c7: d2:d2:b2:f5:4e:21:75:f1:9e:98:3b:6a:74:04:92: 15:b8:05:8f:e7:2e:d5:88:a3:08:07:de:54:f8:02: 44:73:0c:d4:ae:fa:33:1b:9b:d4:ee:d2:30:9a:7a: 3c:10:82:29:ee:90:e8:75:6d:76:55:cf:a0:92:b4: 2b:ed:9e:19:58:11:b3:ef:33:19:3f:f9:10:43:52: e1:74:10:f2:b3:26:93:87:9e:1f:49:94:07:5e:b9: 0d:41:8f:b3:0f:8b:46:d5:82:f9:88:f2:8d:f3:fc: 2f:9c:42:4a:bf:7e:36:40:a9:4f:27:52:78:b0:c0: 3c:93:e1:8e:e1:3f:6e:c4:b9:67:38:54:b5:db:d1: dd:f4:b0:c2:5f:34:f0:01:71:f3:43:fd:e1:03:b1: f5:ed:46:7d:87:c1:16:93:7e:1c:a7:1c:b3:78:da: 00:36:98:30:52:60:cc:e1:55:f7:95:8d:2e:dc:3c: da:5d:1d:04:25:c5:3e:ca:12:ee:42:cb:77:1c:41: 38:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:38:F7:CA:FC:95:80:8C:CC:CB:42:2F:28:5B:F9:00:84:23:0A:09 X509v3 Authority Key Identifier: keyid:04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:f4:34:29:56:0b:9b:64:a0:2e:c0:5f:c1:ea:1d:ae:bb:d3: bd:22:72:1c:76:ff:e4:fe:67:ef:fd:b9:0f:b7:12:31:1b:37: 38:f1:56:2c:9d:47:ec:35:01:4d:e5:47:ac:00:b6:a7:b4:94: 66:78:0f:7a:6a:9c:64:82:b8:2c:6e:27:cd:15:bc:18:fa:98: a3:46:bb:ac:d6:a4:e9:47:1b:cd:48:92:1a:6c:11:0c:03:45: 60:d9:05:fa:a1:e5:11:5f:0e:1c:83:56:69:0f:26:b5:fe:c9: 60:c0:fa:6a:ca:04:ab:17:08:a6:c7:5f:d4:88:08:6c:49:3c: 62:e9:e5:44:90:0b:69:8f:e0:7c:96:de:43:d5:6c:1f:d1:86: d7:4b:96:45:c0:29:54:70:46:f1:87:bf:33:96:97:14:10:39: 98:ac:e4:d2:8e:f1:8b:61:7a:5e:47:cd:76:f4:ea:7a:ed:df: 99:f6:72:05:dc:53:f8:92:91:13:e4:ad:d5:95:d6:c4:ca:48: 55:c6:4f:23:0e:cf:0d:b9:b8:25:60:98:32:81:32:86:de:80: 6e:2c:22:c4:d8:75:9a:91:45:29:e7:ca:c7:88:a3:ac:b6:b8: 0b:93:9a:a0:1b:68:0c:d1:9f:2b:d8:23:a7:b3:6d:16:a6:4c: 2e:36:e8:bf -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0M2MTExMC8GA1UEBRMoMDQ3NDkzN0U3OUE5RDY3MzM1M0VBQkQ4MkM0Qjg0MjRC NkM2ODMwRDAeFw0yNjAzMjUwNzQ3MjFaFw0yNjA0MDEwNzQ3MjFaMBgxFjAUBgNV BAMTDTY5YzM5MzBhLWI1ZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjCert1pm+Waa91OFL/CoJsw/bwHR1AjxtSWNCdpavmWqAu5EFT7RTih2Djbpl xZjRQrIWi7C91L1Ax9LSsvVOIXXxnpg7anQEkhW4BY/nLtWIowgH3lT4AkRzDNSu +jMbm9Tu0jCaejwQginukOh1bXZVz6CStCvtnhlYEbPvMxk/+RBDUuF0EPKzJpOH nh9JlAdeuQ1Bj7MPi0bVgvmI8o3z/C+cQkq/fjZAqU8nUniwwDyT4Y7hP27EuWc4 VLXb0d30sMJfNPABcfND/eEDsfXtRn2HwRaTfhynHLN42gA2mDBSYMzhVfeVjS7c PNpdHQQlxT7KEu5Cy3ccQTg1AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUyDj3yvyV gIzMy0IvKFv5AIQjCgkwHwYDVR0jBBgwFoAUBHSTfnmp1nM1PqvYLEuEJLbGgw0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQzYxLzMzMUQxNDE4REEz RTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5NMVBxdllMRXVFSkxiR2d3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQkhTVGZubXAxbk0xUHF2WUxFdUVKTGJHZ3cwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD QzYxLzMzMUQxNDE4REEzRTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5N MVBxdllMRXVFSkxiR2d3MC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBE9DQpVgubZKAuwF/B6h2uu9O9InIcdv/k/mfv/bkPtxIxGzc48VYsnUfsNQFN 5UesALantJRmeA96apxkgrgsbifNFbwY+pijRrus1qTpRxvNSJIabBEMA0Vg2QX6 oeURXw4cg1ZpDya1/slgwPpqygSrFwimx1/UiAhsSTxi6eVEkAtpj+B8lt5D1Wwf 0YbXS5ZFwClUcEbxh78zlpcUEDmYrOTSjvGLYXpeR8129Op67d+Z9nIF3FP4kpET 5K3VldbEykhVxk8jDs8NubglYJgygTKG3oBuLCLE2HWakUUp58rHiKOstrgLk5qg G2gM0Z8r2COns20WpkwuNui/ -----END CERTIFICATE-----Generated at Thu Mar 26 19:07:27 2026 by rpki-client