$ rpki-client -vvf rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft File: BKfrBJqTf9nyuG4Vnd310sma1B4.mft (raw, json) Hash identifier: bX2mkQw69QLjVDqBTbErut4ko4YI6FsFA+gJM0VMyzg= Subject key identifier: EC:4C:39:6B:E2:73:14:E6:50:84:6E:63:37:A3:57:7E:EB:EE:6C:FF Authority key identifier: 04:A7:EB:04:9A:93:7F:D9:F2:B8:6E:15:9D:DD:F5:D2:C9:9A:D4:1E Certificate issuer: /CN=A91E87AB/serialNumber=04A7EB049A937FD9F2B86E159DDDF5D2C99AD41E Certificate serial: 05B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft Manifest number: 05A9 Signing time: Tue 12 May 2026 23:16:05 +0000 Manifest this update: Tue 12 May 2026 23:16:04 +0000 Manifest next update: Tue 19 May 2026 23:16:04 +0000 Files and hashes: 1: BKfrBJqTf9nyuG4Vnd310sma1B4.crl (hash: vScO695iIEaYXMeXdPRQ2Ph5DkQlEChbI1q8yMNbhQ4=) 2: 709F3B2E145C11EC9A902165C4F9AE02.roa (hash: SmXQ1SFMrsEIIaY56t+M+nddsnk+Z8U9mmLAhEWuQV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.crl rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 23:16:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1458 (0x5b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E87AB, serialNumber=04A7EB049A937FD9F2B86E159DDDF5D2C99AD41E Validity Not Before: May 12 23:16:04 2026 GMT Not After : May 19 23:16:04 2026 GMT Subject: CN=6a03b4b4-e468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:28:57:85:25:65:dc:76:5c:97:37:5c:45:76: 19:6e:21:4a:c1:05:c4:16:6b:04:73:1b:ea:3e:89: 17:a5:28:cd:97:f1:9e:f9:e8:e8:9d:dd:32:3a:af: 0b:5f:70:96:24:de:73:fc:5b:a0:1c:c2:4c:4d:9c: dc:27:e9:77:a8:42:36:0c:47:aa:80:28:92:e2:1d: de:cb:b9:e8:ed:60:4b:7c:5d:27:f6:e2:81:f9:4f: 31:9d:27:9c:6b:fa:7d:3d:0e:88:2c:bd:d9:93:13: f3:13:e7:0d:b0:f7:b3:e6:55:4a:97:73:d5:d2:fc: 3c:89:fa:8a:da:00:dc:aa:d4:46:5c:f6:d9:01:a2: 7e:ae:ec:7a:1b:df:2b:b4:5a:20:25:1b:1b:4f:fa: 34:d6:f9:56:70:18:00:c0:d2:6d:7e:4c:29:69:fe: ec:dc:f0:99:9e:e2:dd:51:1e:5d:f2:e5:66:ff:04: 71:3f:08:ec:2b:7f:eb:33:0d:58:4b:94:f1:e6:2d: 50:79:bf:f9:0d:16:e2:88:0c:b1:e5:30:03:3f:1c: dd:31:9a:e5:2b:cd:56:8c:25:94:50:7a:36:d6:50: a4:2a:a2:c4:56:bf:d1:ef:21:c6:67:28:53:9e:29: 90:e1:f1:ab:d0:4f:7c:13:ca:7f:42:7a:8b:84:94: 7c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:4C:39:6B:E2:73:14:E6:50:84:6E:63:37:A3:57:7E:EB:EE:6C:FF X509v3 Authority Key Identifier: keyid:04:A7:EB:04:9A:93:7F:D9:F2:B8:6E:15:9D:DD:F5:D2:C9:9A:D4:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:70:2b:1a:ff:ef:34:01:eb:27:67:2a:bb:cd:0c:80:85:66: 38:77:bb:d2:89:91:90:8a:fe:38:a9:fe:e2:87:79:d7:1a:c3: 00:53:29:3c:ea:63:54:d6:44:62:ee:ce:d3:af:93:59:51:57: 30:ec:93:a6:07:19:b6:f9:50:75:46:34:ba:e3:8c:1b:22:38: 9e:9d:93:c1:1b:68:16:bc:a6:08:cb:86:fb:1a:e3:ad:82:56: 0b:96:36:64:0d:84:54:1b:b6:e8:ef:b0:8f:99:5d:bd:28:1c: ea:cd:7d:77:3e:8c:b2:a9:7a:74:1f:7c:9b:8a:bd:4d:04:f5: 1d:23:80:a5:c7:10:99:56:f5:2d:7b:51:cd:e8:ce:2c:f9:d2: d4:01:2a:6d:c8:94:40:5f:8f:98:30:77:54:5f:d4:9b:3d:ba: f5:d6:2a:48:2f:e7:bd:bc:23:f7:fe:0c:cc:0b:48:d3:52:15: f3:77:99:6c:c3:88:6a:0c:f9:af:5f:c8:96:52:8b:86:d8:5e: ed:5a:67:a4:02:89:cb:62:73:10:98:00:f7:2b:6b:aa:1f:e0: 58:8b:97:5d:6e:1e:9e:98:69:4e:3f:be:2c:03:19:2d:e4:9c: 88:cf:ff:0c:2e:f2:90:55:26:19:6f:6f:fb:55:ca:e6:61:4b: 46:d7:9c:1b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg3QUIxMTAvBgNVBAUTKDA0QTdFQjA0OUE5MzdGRDlGMkI4NkUxNTlERERGNUQy Qzk5QUQ0MUUwHhcNMjYwNTEyMjMxNjA0WhcNMjYwNTE5MjMxNjA0WjAYMRYwFAYD VQQDEw02YTAzYjRiNC1lNDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArChXhSVl3HZclzdcRXYZbiFKwQXEFmsEcxvqPokXpSjNl/Ge+ejond0yOq8L X3CWJN5z/FugHMJMTZzcJ+l3qEI2DEeqgCiS4h3ey7no7WBLfF0n9uKB+U8xnSec a/p9PQ6ILL3ZkxPzE+cNsPez5lVKl3PV0vw8ifqK2gDcqtRGXPbZAaJ+rux6G98r tFogJRsbT/o01vlWcBgAwNJtfkwpaf7s3PCZnuLdUR5d8uVm/wRxPwjsK3/rMw1Y S5Tx5i1Qeb/5DRbiiAyx5TADPxzdMZrlK81WjCWUUHo21lCkKqLEVr/R7yHGZyhT nimQ4fGr0E98E8p/QnqLhJR8YwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOxMOWvi cxTmUIRuYzejV37r7mz/MB8GA1UdIwQYMBaAFASn6wSak3/Z8rhuFZ3d9dLJmtQe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODdBQi85MTZCMDY2NjE0 NTgxMUVDOUVENkM3M0JDNEY5QUUwMi9CS2ZyQkpxVGY5bnl1RzRWbmQzMTBzbWEx QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLZnJCSnFUZjlueXVHNFZuZDMxMHNtYTFCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODdBQi85MTZCMDY2NjE0NTgxMUVDOUVENkM3M0JDNEY5QUUwMi9CS2ZyQkpxVGY5 bnl1RzRWbmQzMTBzbWExQjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAW3ArGv/vNAHrJ2cqu80MgIVmOHe70omRkIr+OKn+4od51xrDAFMpPOpjVNZE Yu7O06+TWVFXMOyTpgcZtvlQdUY0uuOMGyI4np2TwRtoFrymCMuG+xrjrYJWC5Y2 ZA2EVBu26O+wj5ldvSgc6s19dz6Msql6dB98m4q9TQT1HSOApccQmVb1LXtRzejO LPnS1AEqbciUQF+PmDB3VF/Umz269dYqSC/nvbwj9/4MzAtI01IV83eZbMOIagz5 r1/IllKLhthe7VpnpAKJy2JzEJgA9ytrqh/gWIuXXW4enphpTj++LAMZLeSciM// DC7ykFUmGW9v+1XK5mFLRtecGw== -----END CERTIFICATE-----Generated at Wed May 13 14:30:53 2026 by rpki-client