$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft File: BFm798uEwX7tUbaM6tlBlX14X68.mft (raw, json) Hash identifier: JbkVKIbN6G0tCEKr5pGMR/zlGLEEJYAqqiICncPtxZw= Subject key identifier: E3:E2:95:25:D8:99:0A:F7:2D:21:A9:55:AA:A8:F1:59:07:B3:DF:17 Authority key identifier: 04:59:BB:F7:CB:84:C1:7E:ED:51:B6:8C:EA:D9:41:95:7D:78:5F:AF Certificate issuer: /CN=A91CFBA9/serialNumber=0459BBF7CB84C17EED51B68CEAD941957D785FAF Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft Manifest number: 71 Signing time: Mon 11 May 2026 07:59:27 +0000 Manifest this update: Mon 11 May 2026 07:59:26 +0000 Manifest next update: Mon 18 May 2026 07:59:26 +0000 Files and hashes: 1: BFm798uEwX7tUbaM6tlBlX14X68.crl (hash: 57LXJPwJ/1GLahD7PLZNVivdj2DwtAuU41MsN5Uz5jk=) 2: 88B9736AA77811F092FD731BC4F9AE02.roa (hash: t9dZnts+IlYuSJrBx0IgU/pwjcYxg43h5hJtdZZSKtM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.crl rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFBA9, serialNumber=0459BBF7CB84C17EED51B68CEAD941957D785FAF Validity Not Before: May 11 07:59:26 2026 GMT Not After : May 18 07:59:26 2026 GMT Subject: CN=6a018c5f-1ff6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:04:e2:0d:90:0d:ba:e2:cd:ac:7e:30:af:bd: b5:7c:b8:25:73:34:89:2e:fe:f5:01:2e:f3:47:87: 8c:8a:b6:53:9e:d4:b3:de:09:d7:31:f3:f8:1b:ac: e2:f2:89:59:12:21:62:70:3d:6f:a1:14:a6:ff:cb: 45:51:f2:b1:c0:0a:da:ff:7b:68:1a:aa:c5:5a:60: c2:64:fd:b3:63:e6:6c:4d:ce:b3:25:3a:cf:ee:cb: 68:4b:18:39:ff:31:3e:26:73:0d:df:63:35:d0:85: f2:14:2f:ca:fb:b1:f9:1d:bf:0b:da:d9:25:5f:e7: af:e6:0a:17:4e:14:5c:4e:64:0e:e6:fa:a5:1a:1d: 23:fb:94:b4:e1:7a:c0:bd:0f:a7:a2:81:40:5c:c3: 81:af:03:20:77:ac:76:00:b0:da:28:84:4a:63:0b: 8d:63:b6:d1:9a:60:d9:bc:82:d4:a8:02:54:0f:ba: e7:c1:d2:89:02:d6:d3:3c:aa:68:ea:69:5e:73:f2: 16:3a:92:ee:8c:4b:18:ea:cf:6f:1b:c9:fb:93:e9: d4:c0:29:31:fb:27:32:67:d5:5e:f2:55:a9:dd:3e: 2f:34:4e:96:f9:c3:d2:22:b8:4e:94:9b:07:f0:82: 3c:a9:27:1d:c2:c9:00:5c:d6:be:6a:9c:25:d8:26: 96:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:E2:95:25:D8:99:0A:F7:2D:21:A9:55:AA:A8:F1:59:07:B3:DF:17 X509v3 Authority Key Identifier: keyid:04:59:BB:F7:CB:84:C1:7E:ED:51:B6:8C:EA:D9:41:95:7D:78:5F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:e8:9d:e6:0f:5e:51:11:b7:d5:94:ed:16:e2:b8:8a:f2:72: 6a:bc:b3:c5:07:5d:93:ea:a7:6f:31:a3:9a:e3:05:49:7d:39: 4c:c0:a2:53:af:6e:26:f1:47:02:e8:ad:f3:e2:41:b1:8e:e8: f0:16:ee:e7:27:99:ae:45:02:6f:46:15:69:e0:bf:58:e0:47: f3:35:c8:bf:5b:82:9f:61:c8:5d:46:30:3e:fc:87:35:1b:b1: db:94:b0:65:68:aa:88:24:17:cc:98:18:75:7f:d6:43:d8:d9: 3f:fd:f3:9c:29:5d:96:5c:86:10:82:66:df:95:ce:91:22:e1: cb:28:81:f2:af:9d:fa:2d:5a:a1:d8:da:9b:ed:8e:51:50:33: 6b:64:ec:c0:81:55:db:29:26:af:46:7c:ae:33:b4:3e:9d:d0: da:b4:d3:4c:1a:ea:24:7f:af:fe:ee:4e:d3:da:e3:0f:72:64: 8d:99:79:3c:ad:77:b1:5b:5e:28:0a:65:96:96:83:b8:71:03: ae:a7:3d:c8:cb:36:27:5e:0f:52:1c:24:72:01:5d:64:75:75: 98:a9:12:73:8a:cd:c0:4f:a1:9a:21:02:c0:06:74:3d:f5:67: f4:60:3d:f8:f3:ba:85:2f:db:80:55:86:ce:15:13:f9:c5:b9: b9:57:cd:a1 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkJBOTExMC8GA1UEBRMoMDQ1OUJCRjdDQjg0QzE3RUVENTFCNjhDRUFEOTQxOTU3 RDc4NUZBRjAeFw0yNjA1MTEwNzU5MjZaFw0yNjA1MTgwNzU5MjZaMBgxFjAUBgNV BAMTDTZhMDE4YzVmLTFmZjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLBOINkA264s2sfjCvvbV8uCVzNIku/vUBLvNHh4yKtlOe1LPeCdcx8/gbrOLy iVkSIWJwPW+hFKb/y0VR8rHACtr/e2gaqsVaYMJk/bNj5mxNzrMlOs/uy2hLGDn/ MT4mcw3fYzXQhfIUL8r7sfkdvwva2SVf56/mChdOFFxOZA7m+qUaHSP7lLThesC9 D6eigUBcw4GvAyB3rHYAsNoohEpjC41jttGaYNm8gtSoAlQPuufB0okC1tM8qmjq aV5z8hY6ku6MSxjqz28byfuT6dTAKTH7JzJn1V7yVandPi80Tpb5w9IiuE6Umwfw gjypJx3CyQBc1r5qnCXYJpaRAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU4+KVJdiZ CvctIalVqqjxWQez3xcwHwYDVR0jBBgwFoAUBFm798uEwX7tUbaM6tlBlX14X68w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGQkE5LzU3MzAxNTlBQTc3 NTExRjA5NERFQkYyREM0RjlBRTAyL0JGbTc5OHVFd1g3dFViYU02dGxCbFgxNFg2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQkZtNzk4dUV3WDd0VWJhTTZ0bEJsWDE0WDY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG QkE5LzU3MzAxNTlBQTc3NTExRjA5NERFQkYyREM0RjlBRTAyL0JGbTc5OHVFd1g3 dFViYU02dGxCbFgxNFg2OC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAe6J3mD15REbfVlO0W4riK8nJqvLPFB12T6qdvMaOa4wVJfTlMwKJTr24m8UcC 6K3z4kGxjujwFu7nJ5muRQJvRhVp4L9Y4EfzNci/W4KfYchdRjA+/Ic1G7HblLBl aKqIJBfMmBh1f9ZD2Nk//fOcKV2WXIYQgmbflc6RIuHLKIHyr536LVqh2Nqb7Y5R UDNrZOzAgVXbKSavRnyuM7Q+ndDatNNMGuokf6/+7k7T2uMPcmSNmXk8rXexW14o CmWWloO4cQOupz3IyzYnXg9SHCRyAV1kdXWYqRJzis3AT6GaIQLABnQ99Wf0YD34 87qFL9uAVYbOFRP5xbm5V82h -----END CERTIFICATE-----Generated at Wed May 13 07:17:07 2026 by rpki-client