$ rpki-client -vvf rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft File: BKM4-nsSbgfA74urj33BycGsMiE.mft (raw, json) Hash identifier: A/guTRsn7jQqy3SorxqeZSysP/xdYes/9BpND3ezl3g= Subject key identifier: A4:17:76:43:FC:20:C5:22:FF:AD:A1:1E:58:2F:4A:6C:EA:68:84:AD Authority key identifier: 04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21 Certificate issuer: /CN=A91C146D/serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft Manifest number: DB Signing time: Mon 11 May 2026 06:45:58 +0000 Manifest this update: Mon 11 May 2026 06:45:58 +0000 Manifest next update: Mon 18 May 2026 06:45:58 +0000 Files and hashes: 1: BKM4-nsSbgfA74urj33BycGsMiE.crl (hash: h0kQajPnIP9KuRe9hpBSrjNdPB776F/Gu+EJFlmYkcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 06:45:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C146D, serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221 Validity Not Before: May 11 06:45:58 2026 GMT Not After : May 18 06:45:58 2026 GMT Subject: CN=6a017b26-81a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0b:2d:29:a7:3a:56:a2:84:65:f9:39:83:c0: 04:45:d6:4c:17:85:8d:b4:48:2b:18:7c:85:11:fc: 53:86:3c:43:2b:07:6c:9a:42:c7:5f:99:41:ca:44: 49:c8:aa:57:81:af:a1:4c:99:97:09:8a:c8:3e:b5: 18:77:ac:14:c2:72:a0:33:52:45:f5:38:03:7c:55: 8d:31:77:a6:29:8e:a5:51:92:a7:75:14:b3:06:bb: 4c:7c:45:12:ac:26:77:7a:fa:86:ed:a3:be:f2:7d: 62:98:6a:c8:61:c5:b0:ca:52:05:18:1a:38:7c:65: ba:de:a1:d6:f3:01:46:d8:70:50:21:0d:8f:f1:1e: 1c:31:cb:28:57:13:3b:92:11:b9:53:6d:2b:be:d5: 41:1d:1d:74:8c:45:56:d9:1c:a7:f9:73:7f:55:e0: 5a:81:b2:50:a6:a7:ed:03:23:fa:bc:bb:27:11:a1: ef:83:16:de:78:d6:45:a0:ca:6b:27:fc:d2:a9:a7: 11:b8:75:48:55:55:47:8b:ff:5f:59:8a:b8:24:c3: e5:6a:64:d6:28:08:20:3d:9d:99:e6:80:99:06:b6: 23:ca:1b:35:7a:2c:c9:1e:03:0a:be:7b:0f:f5:4b: 77:5d:c0:fb:78:33:a9:7b:d2:a1:c1:4a:d4:4d:5c: 08:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:17:76:43:FC:20:C5:22:FF:AD:A1:1E:58:2F:4A:6C:EA:68:84:AD X509v3 Authority Key Identifier: keyid:04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:74:a4:e4:42:5f:7f:c4:9f:89:3b:1d:35:6d:6c:48:81:2c: e6:0c:98:37:8a:f5:25:a6:f9:53:2d:8e:dd:fd:ec:cd:c1:83: 5f:38:bc:04:f8:dc:8e:33:5c:b8:91:ae:90:d6:b4:74:e3:69: ce:cc:40:2a:e5:78:91:b2:8c:4c:c8:41:0d:0a:37:f6:c7:f2: ed:21:f2:41:00:57:b4:16:75:85:f0:27:b0:b8:61:e7:5e:2a: c6:5e:7c:e3:ac:d2:a9:7c:a2:26:4c:b4:df:0c:42:a9:59:5a: 12:6e:7d:89:b1:a8:2f:1c:0c:3e:63:db:36:84:d0:18:63:5a: 08:15:71:9d:93:7a:98:31:b0:73:17:7c:97:d7:15:f8:ec:24: 1c:e7:2c:76:80:e7:66:ca:e4:f5:b5:1c:14:4e:16:7b:06:07: ab:0c:25:08:db:ab:50:3b:00:4b:70:87:b9:e2:a6:7f:4e:a9: c3:21:d7:67:c1:6d:fd:82:08:5d:ec:67:a5:89:03:c7:44:5b: e1:1f:21:18:a4:63:7c:dc:e9:7c:e8:44:c2:ff:57:67:e1:85: de:91:46:d5:7b:d8:90:1f:01:52:bd:b2:dc:56:42:af:33:27: 7e:30:9d:9c:a4:45:8e:ab:c5:34:38:ba:2a:b9:26:c6:8d:3b: 25:fa:62:e4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE0NkQxMTAvBgNVBAUTKDA0QTMzOEZBN0IxMjZFMDdDMEVGOEJBQjhGN0RDMUM5 QzFBQzMyMjEwHhcNMjYwNTExMDY0NTU4WhcNMjYwNTE4MDY0NTU4WjAYMRYwFAYD VQQDEw02YTAxN2IyNi04MWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgstKac6VqKEZfk5g8AERdZMF4WNtEgrGHyFEfxThjxDKwdsmkLHX5lBykRJ yKpXga+hTJmXCYrIPrUYd6wUwnKgM1JF9TgDfFWNMXemKY6lUZKndRSzBrtMfEUS rCZ3evqG7aO+8n1imGrIYcWwylIFGBo4fGW63qHW8wFG2HBQIQ2P8R4cMcsoVxM7 khG5U20rvtVBHR10jEVW2Ryn+XN/VeBagbJQpqftAyP6vLsnEaHvgxbeeNZFoMpr J/zSqacRuHVIVVVHi/9fWYq4JMPlamTWKAggPZ2Z5oCZBrYjyhs1eizJHgMKvnsP 9Ut3XcD7eDOpe9KhwUrUTVwIFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKQXdkP8 IMUi/62hHlgvSmzqaIStMB8GA1UdIwQYMBaAFASjOPp7Em4HwO+Lq499wcnBrDIh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTQ2RC9GNEQ1QTY3RTAw MzcxMUYwQkJENzI0NzVDNEY5QUUwMi9CS000LW5zU2JnZkE3NHVyajMzQnljR3NN aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLTTQtbnNTYmdmQTc0dXJqMzNCeWNHc01pRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTQ2RC9GNEQ1QTY3RTAwMzcxMUYwQkJENzI0NzVDNEY5QUUwMi9CS000LW5zU2Jn ZkE3NHVyajMzQnljR3NNaUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGnSk5EJff8SfiTsdNW1sSIEs5gyYN4r1Jab5Uy2O3f3szcGDXzi8BPjcjjNc uJGukNa0dONpzsxAKuV4kbKMTMhBDQo39sfy7SHyQQBXtBZ1hfAnsLhh514qxl58 46zSqXyiJky03wxCqVlaEm59ibGoLxwMPmPbNoTQGGNaCBVxnZN6mDGwcxd8l9cV +OwkHOcsdoDnZsrk9bUcFE4WewYHqwwlCNurUDsAS3CHueKmf06pwyHXZ8Ft/YII XexnpYkDx0Rb4R8hGKRjfNzpfOhEwv9XZ+GF3pFG1XvYkB8BUr2y3FZCrzMnfjCd nKRFjqvFNDi6Krkmxo07Jfpi5A== -----END CERTIFICATE-----Generated at Wed May 13 08:34:35 2026 by rpki-client