$ rpki-client -vvf rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft File: BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft (raw, json) Hash identifier: uQGgllUuJ+Lsq2cByDvGpebUeiC2rLAni+Q1bipMirI= Subject key identifier: 82:BA:C2:ED:11:11:B2:A5:C6:E4:B3:DF:00:90:01:23:03:15:40:12 Authority key identifier: 04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D Certificate issuer: /CN=A911CC61/serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft Manifest number: 54 Signing time: Mon 11 May 2026 08:27:50 +0000 Manifest this update: Mon 11 May 2026 08:27:50 +0000 Manifest next update: Mon 18 May 2026 08:27:50 +0000 Files and hashes: 1: BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl (hash: GXirQoLs7D/rszvx68JyuHwkUvhN4xSdQAGJIZNLtjU=) 2: 9C1B70121D1A11F1A275F377103D8C67.roa (hash: y0kiR2bauMVDFaqNZbNEH9+p4Ybcw1shQXfdJNNrqvI=) 3: 8EE78F481D1A11F19DA5ED77103D8C67.roa (hash: FtCatlAW9Re17rwqCuc7Yn9ywx696GppCQCdjrmZAlM=) 4: 8FEAA0421D1A11F19DA5ED77103D8C67.roa (hash: dEk3degjNLUiA3kpAMrU5suBNlrDXd9oTzhhHbGgPc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 08:27:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CC61, serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Validity Not Before: May 11 08:27:50 2026 GMT Not After : May 18 08:27:50 2026 GMT Subject: CN=6a019306-d515 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:13:af:47:f7:55:af:16:1d:80:b0:f1:a4:81: 76:0a:bb:18:69:33:53:a6:fe:b6:64:1c:76:2f:6d: 1d:f5:dc:bb:cb:60:01:a4:26:49:39:19:a6:af:cd: 01:5f:89:a8:04:ac:3b:ec:cd:3c:c4:e6:ae:ee:e7: 82:c5:e9:59:7a:03:5d:57:09:78:66:22:16:6b:6f: 19:37:f3:76:57:b2:bd:b1:8e:51:64:2f:6f:a8:72: e6:76:3f:c8:da:52:aa:ee:7c:be:a8:ff:5b:81:73: 0f:02:53:a5:e5:8a:1f:03:30:0e:1e:8e:31:2c:d8: 87:27:32:1e:1a:08:f3:70:3d:73:42:c5:0e:9d:f8: 3b:85:9a:42:f8:7d:cc:21:92:9a:cb:60:2e:5f:b2: 55:98:e9:ca:67:93:c0:0e:c2:39:b6:94:23:59:50: 2a:18:84:86:aa:92:ed:b2:0d:a8:c7:7a:18:4f:0f: 69:4e:5b:64:c2:99:2c:4e:c6:e2:7f:57:c9:88:3e: 76:6f:9f:f2:06:bd:75:6b:a7:11:cb:f6:d4:5c:f3: a1:b8:72:52:44:2f:ce:64:52:2a:61:4a:95:93:70: 29:76:48:41:4c:b4:48:97:74:a1:ac:03:65:38:92: e6:55:d2:aa:bd:6a:1b:f6:a1:7a:c9:3c:c9:c8:74: 3a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:BA:C2:ED:11:11:B2:A5:C6:E4:B3:DF:00:90:01:23:03:15:40:12 X509v3 Authority Key Identifier: keyid:04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:18:42:85:0c:6e:b9:e5:cb:ef:4c:4a:09:d5:2f:fa:39:1c: e5:04:27:c1:c4:d4:9c:70:2b:92:7b:29:4f:00:4b:50:6a:81: b0:03:f5:8e:37:b5:e5:8b:17:67:6b:ac:78:25:d9:f1:ee:35: 33:95:74:96:93:84:fc:13:b9:66:b2:39:c9:c7:96:3d:c9:02: 26:5d:cf:d8:26:6b:d1:ae:08:79:d7:63:80:40:20:8a:3c:38: 81:0a:a0:3b:1b:0b:9b:08:b8:26:08:a3:3a:04:40:bd:21:17: 34:d8:1b:a5:4a:d4:2f:b0:d8:58:0e:c9:58:d2:84:d6:32:1c: a4:87:ca:ba:9a:87:70:d2:35:07:98:0a:52:fd:04:49:f9:92: 46:bb:53:55:c9:00:99:36:85:8b:35:39:bc:57:43:d1:19:f0: 43:bb:85:f8:04:7b:a2:7c:9e:a1:54:7c:9e:ab:22:c7:76:ab: ef:52:11:53:74:dd:4f:fd:d0:d2:59:7a:e2:80:62:dc:0b:7c: c7:de:42:2f:bc:29:bf:a7:27:01:bb:f7:0c:21:f3:a0:a8:c6: 11:8f:c8:91:03:c4:fd:c0:05:63:c2:76:58:e1:b5:fc:dd:fa: fe:e6:45:7e:5a:68:f9:91:1a:77:df:64:db:e1:09:b5:0d:ff: 22:93:54:9d -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0M2MTExMC8GA1UEBRMoMDQ3NDkzN0U3OUE5RDY3MzM1M0VBQkQ4MkM0Qjg0MjRC NkM2ODMwRDAeFw0yNjA1MTEwODI3NTBaFw0yNjA1MTgwODI3NTBaMBgxFjAUBgNV BAMTDTZhMDE5MzA2LWQ1MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBE69H91WvFh2AsPGkgXYKuxhpM1Om/rZkHHYvbR313LvLYAGkJkk5GaavzQFf iagErDvszTzE5q7u54LF6Vl6A11XCXhmIhZrbxk383ZXsr2xjlFkL2+ocuZ2P8ja UqrufL6o/1uBcw8CU6Xlih8DMA4ejjEs2IcnMh4aCPNwPXNCxQ6d+DuFmkL4fcwh kprLYC5fslWY6cpnk8AOwjm2lCNZUCoYhIaqku2yDajHehhPD2lOW2TCmSxOxuJ/ V8mIPnZvn/IGvXVrpxHL9tRc86G4clJEL85kUiphSpWTcCl2SEFMtEiXdKGsA2U4 kuZV0qq9ahv2oXrJPMnIdDpHAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUgrrC7RER sqXG5LPfAJABIwMVQBIwHwYDVR0jBBgwFoAUBHSTfnmp1nM1PqvYLEuEJLbGgw0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQzYxLzMzMUQxNDE4REEz RTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5NMVBxdllMRXVFSkxiR2d3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQkhTVGZubXAxbk0xUHF2WUxFdUVKTGJHZ3cwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD QzYxLzMzMUQxNDE4REEzRTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5N MVBxdllMRXVFSkxiR2d3MC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCIGEKFDG655cvvTEoJ1S/6ORzlBCfBxNSccCuSeylPAEtQaoGwA/WON7Xlixdn a6x4Jdnx7jUzlXSWk4T8E7lmsjnJx5Y9yQImXc/YJmvRrgh512OAQCCKPDiBCqA7 GwubCLgmCKM6BEC9IRc02BulStQvsNhYDslY0oTWMhykh8q6modw0jUHmApS/QRJ +ZJGu1NVyQCZNoWLNTm8V0PRGfBDu4X4BHuifJ6hVHyeqyLHdqvvUhFTdN1P/dDS WXrigGLcC3zH3kIvvCm/pycBu/cMIfOgqMYRj8iRA8T9wAVjwnZY4bX83fr+5kV+ Wmj5kRp332Tb4Qm1Df8ik1Sd -----END CERTIFICATE-----Generated at Wed May 13 04:10:13 2026 by rpki-client