$ rpki-client -vvf rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft File: BKM4-nsSbgfA74urj33BycGsMiE.mft (raw, json) Hash identifier: PlsB2zg1eoLt3QCApy7B+h0uJBrwzFprCX/YvlbgopM= Subject key identifier: 1D:23:BD:E6:9D:D0:B1:CF:24:E9:1B:BC:8C:BA:74:09:A2:7F:65:DB Authority key identifier: 04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21 Certificate issuer: /CN=A91C146D/serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft Manifest number: C3 Signing time: Wed 25 Mar 2026 06:08:11 +0000 Manifest this update: Wed 25 Mar 2026 06:08:11 +0000 Manifest next update: Wed 01 Apr 2026 06:08:11 +0000 Files and hashes: 1: BKM4-nsSbgfA74urj33BycGsMiE.crl (hash: GmYoU/j20GhffNG93f4uxCFg/+odLjol2bnJwh8aYgA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:08:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C146D, serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221 Validity Not Before: Mar 25 06:08:11 2026 GMT Not After : Apr 1 06:08:11 2026 GMT Subject: CN=69c37bcb-9d11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:18:88:71:2c:31:a7:5a:81:ef:4d:7b:68:2e: 19:fc:b5:08:cf:ec:27:bc:80:87:79:f3:fb:6d:26: 9e:fc:98:28:9c:d9:c6:52:57:ae:55:94:54:92:da: d9:cb:bb:11:ff:9c:1a:24:1b:3f:09:f2:67:86:ef: c8:f6:32:15:ff:ea:bb:47:45:ba:52:67:20:2a:d4: 57:80:ff:af:7c:b7:0f:3f:6d:d7:0b:88:3d:d0:42: 46:b8:d1:8b:ea:89:92:95:1f:6e:c3:09:2f:f2:cf: 29:97:dc:40:15:66:41:0d:21:f4:69:59:8a:c0:46: ff:ba:d5:e7:1b:a7:47:6d:fb:68:53:64:19:34:de: c7:16:e1:4d:dd:7a:99:28:82:7c:57:ce:70:62:5b: 10:52:92:05:49:96:94:4a:e1:95:64:83:52:b4:e0: 42:31:cd:27:b0:50:a4:a0:49:a0:cf:b0:99:34:d5: 33:42:95:9a:16:57:c6:6e:ef:07:99:82:6e:88:28: b5:b1:32:e5:99:ae:e5:c1:8c:f2:86:0f:dc:71:a7: d7:84:35:7f:7d:12:56:2e:b5:46:46:a5:fc:83:d3: 47:e3:13:da:3a:0d:f6:63:a4:cf:0b:bf:16:7e:4a: 45:2f:34:23:62:02:d6:d3:da:aa:30:3c:44:30:7c: ff:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:23:BD:E6:9D:D0:B1:CF:24:E9:1B:BC:8C:BA:74:09:A2:7F:65:DB X509v3 Authority Key Identifier: keyid:04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:7f:79:0c:d4:ab:21:8f:bf:01:7b:66:c1:a9:9d:82:00:e0: 57:7e:7f:2b:63:a5:d5:8b:cc:9e:56:4f:5c:df:02:7f:24:93: b1:00:b0:df:54:07:a7:14:2a:3b:32:ec:94:7b:db:e7:47:1b: a3:81:8f:2b:bc:a1:d4:ef:a1:15:d2:a0:0d:3e:9f:d5:f4:72: 08:24:24:9c:56:a3:05:63:46:0d:3a:63:93:11:77:57:7d:65: be:01:b1:3c:c0:0f:8a:14:2f:7a:80:83:74:ce:07:ed:d0:49: 85:8c:67:c8:6f:91:31:01:49:5d:4e:97:5f:fd:f1:21:ac:19: c3:d8:a8:ec:e5:38:41:be:ed:f8:12:16:37:82:50:48:37:71: 3d:5d:99:4d:2b:8a:5c:3e:a2:33:06:4a:b7:6e:12:3b:be:34: f0:94:5a:6b:05:3e:98:37:f6:06:d6:bd:2f:66:1c:3d:e1:1a: 7d:39:90:b0:17:d8:6b:6a:2c:16:93:44:51:e8:6e:de:47:92: 86:82:0b:ba:f6:c5:d4:5c:e3:bd:b1:ff:a8:0a:7d:09:04:d1: 2d:ee:57:bf:45:0e:2d:33:fc:72:72:db:18:fc:e0:e1:3b:c5: bb:41:28:59:f0:39:0e:fc:92:c2:22:be:fc:91:9e:8f:b4:91: 0d:18:ad:16 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE0NkQxMTAvBgNVBAUTKDA0QTMzOEZBN0IxMjZFMDdDMEVGOEJBQjhGN0RDMUM5 QzFBQzMyMjEwHhcNMjYwMzI1MDYwODExWhcNMjYwNDAxMDYwODExWjAYMRYwFAYD VQQDEw02OWMzN2JjYi05ZDExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRiIcSwxp1qB7017aC4Z/LUIz+wnvICHefP7bSae/JgonNnGUleuVZRUktrZ y7sR/5waJBs/CfJnhu/I9jIV/+q7R0W6UmcgKtRXgP+vfLcPP23XC4g90EJGuNGL 6omSlR9uwwkv8s8pl9xAFWZBDSH0aVmKwEb/utXnG6dHbftoU2QZNN7HFuFN3XqZ KIJ8V85wYlsQUpIFSZaUSuGVZINStOBCMc0nsFCkoEmgz7CZNNUzQpWaFlfGbu8H mYJuiCi1sTLlma7lwYzyhg/ccafXhDV/fRJWLrVGRqX8g9NH4xPaOg32Y6TPC78W fkpFLzQjYgLW09qqMDxEMHz/dQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB0jvead 0LHPJOkbvIy6dAmif2XbMB8GA1UdIwQYMBaAFASjOPp7Em4HwO+Lq499wcnBrDIh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTQ2RC9GNEQ1QTY3RTAw MzcxMUYwQkJENzI0NzVDNEY5QUUwMi9CS000LW5zU2JnZkE3NHVyajMzQnljR3NN aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLTTQtbnNTYmdmQTc0dXJqMzNCeWNHc01pRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTQ2RC9GNEQ1QTY3RTAwMzcxMUYwQkJENzI0NzVDNEY5QUUwMi9CS000LW5zU2Jn ZkE3NHVyajMzQnljR3NNaUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaH95DNSrIY+/AXtmwamdggDgV35/K2Ol1YvMnlZPXN8CfySTsQCw31QHpxQq OzLslHvb50cbo4GPK7yh1O+hFdKgDT6f1fRyCCQknFajBWNGDTpjkxF3V31lvgGx PMAPihQveoCDdM4H7dBJhYxnyG+RMQFJXU6XX/3xIawZw9io7OU4Qb7t+BIWN4JQ SDdxPV2ZTSuKXD6iMwZKt24SO7408JRaawU+mDf2Bta9L2YcPeEafTmQsBfYa2os FpNEUehu3keShoILuvbF1FzjvbH/qAp9CQTRLe5Xv0UOLTP8cnLbGPzg4TvFu0Eo WfA5DvySwiK+/JGej7SRDRitFg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:34:35 2026 by rpki-client