$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft File: bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft (raw, json) Hash identifier: c66uePI46HqVdGu7b3qtOXvtNL8v5Omck13qUyOv2GU= Subject key identifier: 5A:4A:EC:BB:5C:4F:11:C3:78:1B:04:76:7E:C7:CF:ED:9F:8C:06:14 Authority key identifier: 6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 Certificate issuer: /CN=A91FBD28/serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Certificate serial: 1B69 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft Manifest number: 1B51 Signing time: Tue 12 May 2026 15:40:17 +0000 Manifest this update: Tue 12 May 2026 15:40:17 +0000 Manifest next update: Tue 19 May 2026 15:40:17 +0000 Files and hashes: 1: bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl (hash: KKGihP6u7q10+YWSWQ9X8J486p4myhRCupu6syJ6ivs=) 2: D8B92776A16A11EAA517B11EC4F9AE02.roa (hash: rryLB0c3XAkpHMR5QUj9LWqBdvJxU0nRbgd/uoJ3uaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 15:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7017 (0x1b69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD28, serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Validity Not Before: May 12 15:40:17 2026 GMT Not After : May 19 15:40:17 2026 GMT Subject: CN=6a0349e1-88df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4d:a3:ae:77:14:5d:23:9f:eb:fb:74:de:ea: ed:8b:7e:24:35:9d:2c:56:11:86:8e:ae:61:96:a3: d4:d9:74:0e:6c:fb:af:50:81:b0:45:99:4c:cc:a2: 4a:0c:b3:f7:55:8b:f9:f5:53:41:fb:7b:39:a5:3a: 94:ab:e9:87:c2:21:fa:51:d3:2a:1b:1e:34:73:30: f1:0e:4f:3f:b4:55:86:09:18:9e:c4:77:39:6d:9f: cb:37:b9:12:6d:8b:3d:bd:6b:28:5f:e0:81:71:8c: e3:12:b5:9a:32:e9:cf:3e:1b:c9:b6:d0:cc:e9:18: 73:d8:23:3c:18:d8:d1:7e:cb:0c:c6:b8:38:0e:75: 7f:e5:a9:01:52:68:38:38:60:d6:76:ef:e6:03:e7: bc:5d:d2:3b:85:5c:45:ed:72:45:03:e8:b6:70:a5: 6a:76:1f:c9:95:ae:31:a1:17:aa:85:5a:7c:61:4c: 85:30:a2:b3:e2:14:74:a4:2a:df:81:23:08:0b:3f: c6:63:7d:4a:67:dd:17:ef:85:3b:30:a6:b0:e5:fe: 7f:1f:74:2a:28:85:1b:b9:e6:bc:56:62:95:a2:2c: 39:11:70:9d:a1:2f:eb:7b:1d:69:03:f9:d5:25:a2: ec:c6:5d:52:a7:6c:b0:4e:9a:53:4b:6b:5a:40:e9: 7e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:4A:EC:BB:5C:4F:11:C3:78:1B:04:76:7E:C7:CF:ED:9F:8C:06:14 X509v3 Authority Key Identifier: keyid:6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:e4:c7:b3:77:9a:bd:8c:80:76:a2:f0:22:02:d8:00:ac:79: 9c:07:04:30:30:2a:c5:d9:9c:bb:d2:16:39:5d:8a:3b:e4:91: fc:56:98:ae:56:78:7b:f5:3d:59:ff:25:62:2c:11:d0:84:78: 02:8c:1e:32:19:ee:bb:80:a3:4d:ab:0d:85:d3:b0:26:d3:1e: 28:ca:2a:3e:ef:6c:fb:28:84:94:df:86:9e:6a:8d:be:35:f6: 44:66:cb:af:d5:4c:67:11:e2:00:62:a3:c8:71:63:7d:8d:46: 3b:43:4c:c5:02:65:34:8d:5b:47:c0:8e:8c:72:8b:ce:2d:dc: 19:2a:08:37:af:9b:c4:84:57:51:3f:d1:65:b6:3e:31:e2:52: cf:8e:dd:b3:b7:89:63:34:8f:12:dc:ab:61:00:39:b8:87:9c: 6d:8e:e0:a2:b7:76:3b:90:01:85:7c:f7:0f:1c:a4:3b:a2:26: 8d:d5:a1:30:0e:d6:fd:39:71:73:80:bb:d3:d4:4d:26:38:1a: a8:93:67:7f:ff:86:dd:06:a8:60:3a:df:b1:79:7d:0e:cd:33: 91:a1:ae:93:ba:ae:a0:47:ef:65:6f:fc:ba:25:96:e6:c8:c7: 82:d5:e0:0f:20:3b:48:92:38:e1:d9:19:67:45:3d:ff:c8:da: 71:e4:88:06 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICG2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEMjgxMTAvBgNVBAUTKDZFNDg2MTBBQTBFNkIwRTJDNUVFRDQwMkREMDc4MzNB QTczRTdFQTIwHhcNMjYwNTEyMTU0MDE3WhcNMjYwNTE5MTU0MDE3WjAYMRYwFAYD VQQDEw02YTAzNDllMS04OGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtk2jrncUXSOf6/t03urti34kNZ0sVhGGjq5hlqPU2XQObPuvUIGwRZlMzKJK DLP3VYv59VNB+3s5pTqUq+mHwiH6UdMqGx40czDxDk8/tFWGCRiexHc5bZ/LN7kS bYs9vWsoX+CBcYzjErWaMunPPhvJttDM6Rhz2CM8GNjRfssMxrg4DnV/5akBUmg4 OGDWdu/mA+e8XdI7hVxF7XJFA+i2cKVqdh/Jla4xoReqhVp8YUyFMKKz4hR0pCrf gSMICz/GY31KZ90X74U7MKaw5f5/H3QqKIUbuea8VmKVoiw5EXCdoS/rex1pA/nV JaLsxl1Sp2ywTppTS2taQOl+rQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFpK7Ltc TxHDeBsEdn7Hz+2fjAYUMB8GA1UdIwQYMBaAFG5IYQqg5rDixe7UAt0HgzqnPn6i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQyOC8yNjc1OEJCNDNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNPTEY3dFFDM1FlRE9xYy1m cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2JraGhDcURtc09MRjd0UUMzUWVET3FjLWZxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQyOC8yNjc1OEJCNDNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNP TEY3dFFDM1FlRE9xYy1mcUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAo+THs3eavYyAdqLwIgLYAKx5nAcEMDAqxdmcu9IWOV2KO+SR/FaYrlZ4e/U9 Wf8lYiwR0IR4AoweMhnuu4CjTasNhdOwJtMeKMoqPu9s+yiElN+GnmqNvjX2RGbL r9VMZxHiAGKjyHFjfY1GO0NMxQJlNI1bR8COjHKLzi3cGSoIN6+bxIRXUT/RZbY+ MeJSz47ds7eJYzSPEtyrYQA5uIecbY7gord2O5ABhXz3DxykO6ImjdWhMA7W/Tlx c4C709RNJjgaqJNnf/+G3QaoYDrfsXl9Ds0zkaGuk7quoEfvZW/8uiWW5sjHgtXg DyA7SJI44dkZZ0U9/8jaceSIBg== -----END CERTIFICATE-----Generated at Wed May 13 12:33:41 2026 by rpki-client