$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft File: bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft (raw, json) Hash identifier: VTbrw5D8Ywu8Uy3Rv00EmZVHQXPfa6fZwpaPmQyKQmA= Subject key identifier: 1E:F9:5E:2D:38:98:D7:CC:22:D9:8F:DD:B3:F5:2A:CE:A8:94:57:51 Authority key identifier: 6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 Certificate issuer: /CN=A91FBD28/serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Certificate serial: 1B51 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft Manifest number: 1B39 Signing time: Thu 26 Mar 2026 15:40:33 +0000 Manifest this update: Thu 26 Mar 2026 15:40:32 +0000 Manifest next update: Thu 02 Apr 2026 15:40:32 +0000 Files and hashes: 1: bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl (hash: CHTectqVN8NiIhCgVbSzjL6bphYVMde4JGjs7lckSEk=) 2: D8B92776A16A11EAA517B11EC4F9AE02.roa (hash: rryLB0c3XAkpHMR5QUj9LWqBdvJxU0nRbgd/uoJ3uaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6993 (0x1b51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD28, serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Validity Not Before: Mar 26 15:40:32 2026 GMT Not After : Apr 2 15:40:32 2026 GMT Subject: CN=69c55370-dff7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:4e:90:34:09:40:a2:96:16:1c:a1:13:ff:a6: f4:d6:9a:a8:3c:69:87:63:30:b2:c4:e3:db:45:ca: 4b:02:cc:8a:93:2e:2b:1f:aa:72:61:cd:4e:29:ff: 92:9f:14:db:8d:ea:28:25:dd:b4:21:52:84:ab:60: d8:14:34:bb:59:9d:ab:53:d2:10:3f:2f:d5:4f:50: 02:b3:e5:15:31:ed:ad:0d:2a:bf:47:2d:a6:70:0f: c5:20:8e:a5:24:3f:57:4a:15:b5:b0:d3:2b:8d:d0: 62:c3:9f:32:62:41:12:7c:9e:f3:ed:1c:78:5e:40: f4:9a:ff:fe:d3:32:49:ee:1e:eb:15:4b:2a:5d:47: b4:43:a7:6a:86:67:7b:4d:c3:b2:b5:49:b8:71:6d: b2:c3:89:60:b0:d7:ff:ca:7a:e8:cc:d6:d3:ca:53: a1:f5:43:81:da:fd:c9:3a:5a:f3:bf:82:d4:76:32: cf:7f:d7:b5:20:97:9e:1f:2c:8d:1e:14:99:70:fd: 82:c6:7d:79:db:68:44:ca:d8:5e:db:bc:09:a7:83: 40:d2:71:e2:b7:78:73:be:4e:5b:f0:3f:16:fa:b5: d4:cd:20:4a:f2:a5:85:b8:31:fb:7f:1f:ca:26:1b: 77:a2:ac:5c:8e:08:e2:50:70:90:ef:9c:33:62:07: f2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:F9:5E:2D:38:98:D7:CC:22:D9:8F:DD:B3:F5:2A:CE:A8:94:57:51 X509v3 Authority Key Identifier: keyid:6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:18:ee:88:54:ab:c1:1d:d0:2c:b8:fb:9c:83:6a:ae:48:fc: af:08:a1:55:2c:6d:3f:1a:99:6a:27:20:1e:64:0f:16:a9:33: d8:ad:9c:ef:b0:42:0e:99:3c:7d:b6:e5:70:e5:0c:96:83:e7: f0:bf:03:76:10:a0:7b:f9:d0:f3:f2:9d:81:0e:42:1f:21:fa: a3:35:15:f7:cf:5d:e7:a6:f4:70:93:e0:a1:9f:46:00:e7:71: 26:03:f9:97:0b:2a:f1:51:66:d6:ec:f9:c1:74:b5:d4:98:6d: fc:25:ec:e3:89:90:10:3b:01:27:44:4b:95:c4:ab:11:59:a1: a4:25:f4:88:c3:29:3e:b5:36:28:c6:63:3b:1a:64:df:9e:81: 37:16:d1:cb:76:ac:99:46:7e:6d:2b:3d:9f:3d:2d:80:d5:30: fb:8a:0b:91:0a:3e:73:03:92:ef:d2:28:b2:75:4c:97:92:22: 64:d7:f8:85:27:f8:91:6d:ba:3f:06:16:b1:1b:9d:8e:ed:63: d9:6b:3d:0c:4d:31:60:16:d0:9a:82:df:3e:ed:d7:77:13:84: 3c:15:71:99:76:13:6a:44:2b:b8:a1:3f:5f:75:d9:05:98:f6: b9:60:55:db:c8:1f:af:04:ef:29:b7:37:28:17:82:b3:45:78: 23:b7:8d:eb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICG1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEMjgxMTAvBgNVBAUTKDZFNDg2MTBBQTBFNkIwRTJDNUVFRDQwMkREMDc4MzNB QTczRTdFQTIwHhcNMjYwMzI2MTU0MDMyWhcNMjYwNDAyMTU0MDMyWjAYMRYwFAYD VQQDEw02OWM1NTM3MC1kZmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoU6QNAlAopYWHKET/6b01pqoPGmHYzCyxOPbRcpLAsyKky4rH6pyYc1OKf+S nxTbjeooJd20IVKEq2DYFDS7WZ2rU9IQPy/VT1ACs+UVMe2tDSq/Ry2mcA/FII6l JD9XShW1sNMrjdBiw58yYkESfJ7z7Rx4XkD0mv/+0zJJ7h7rFUsqXUe0Q6dqhmd7 TcOytUm4cW2yw4lgsNf/ynrozNbTylOh9UOB2v3JOlrzv4LUdjLPf9e1IJeeHyyN HhSZcP2Cxn1522hEythe27wJp4NA0nHit3hzvk5b8D8W+rXUzSBK8qWFuDH7fx/K Jht3oqxcjgjiUHCQ75wzYgfyKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB75Xi04 mNfMItmP3bP1Ks6olFdRMB8GA1UdIwQYMBaAFG5IYQqg5rDixe7UAt0HgzqnPn6i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQyOC8yNjc1OEJCNDNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNPTEY3dFFDM1FlRE9xYy1m cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2JraGhDcURtc09MRjd0UUMzUWVET3FjLWZxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQyOC8yNjc1OEJCNDNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNP TEY3dFFDM1FlRE9xYy1mcUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWRjuiFSrwR3QLLj7nINqrkj8rwihVSxtPxqZaicgHmQPFqkz2K2c77BCDpk8 fbblcOUMloPn8L8DdhCge/nQ8/KdgQ5CHyH6ozUV989d56b0cJPgoZ9GAOdxJgP5 lwsq8VFm1uz5wXS11Jht/CXs44mQEDsBJ0RLlcSrEVmhpCX0iMMpPrU2KMZjOxpk 356BNxbRy3asmUZ+bSs9nz0tgNUw+4oLkQo+cwOS79IosnVMl5IiZNf4hSf4kW26 PwYWsRudju1j2Ws9DE0xYBbQmoLfPu3XdxOEPBVxmXYTakQruKE/X3XZBZj2uWBV 28gfrwTvKbc3KBeCs0V4I7eN6w== -----END CERTIFICATE-----Generated at Fri Mar 27 03:06:03 2026 by rpki-client