$ rpki-client -vvf rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft File: BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft (raw, json) Hash identifier: mesmetDuEn4K4Hji/z4e3FHsjQvkfyVhgXunUeVnyKA= Subject key identifier: 06:1B:19:BB:1B:39:61:20:28:AE:60:43:4F:86:94:70:22:4D:98:29 Authority key identifier: 04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D Certificate issuer: /CN=A911CC61/serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft Manifest number: 3E Signing time: Sun 29 Mar 2026 08:13:30 +0000 Manifest this update: Sun 29 Mar 2026 08:13:29 +0000 Manifest next update: Sun 05 Apr 2026 08:13:29 +0000 Files and hashes: 1: BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl (hash: n+FPtcGqr3nf9rM3Dj7a0IP7O11eNBWKuGBmxQPOCEY=) 2: 8FEAA0421D1A11F19DA5ED77103D8C67.roa (hash: dEk3degjNLUiA3kpAMrU5suBNlrDXd9oTzhhHbGgPc0=) 3: 8EE78F481D1A11F19DA5ED77103D8C67.roa (hash: FtCatlAW9Re17rwqCuc7Yn9ywx696GppCQCdjrmZAlM=) 4: 9C1B70121D1A11F1A275F377103D8C67.roa (hash: y0kiR2bauMVDFaqNZbNEH9+p4Ybcw1shQXfdJNNrqvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 08:13:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CC61, serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Validity Not Before: Mar 29 08:13:29 2026 GMT Not After : Apr 5 08:13:29 2026 GMT Subject: CN=69c8df2a-d23a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:f5:15:da:5e:b8:72:8a:58:f6:70:bb:3a:15: 9e:36:ee:52:76:b7:e7:f7:ff:0a:b1:f9:0c:9e:92: 42:85:ca:ba:98:64:1e:73:87:4a:6b:8d:71:56:18: 85:a2:1b:40:17:4a:87:9b:81:1e:d2:dd:06:71:e1: fa:76:d4:82:4d:35:1e:b8:16:7a:fa:2e:b3:74:da: 50:83:de:c1:d2:c4:b5:5d:0a:67:b6:22:b0:75:ac: 48:56:82:fc:81:d3:b4:75:2b:44:c6:a1:91:57:4d: 3f:9d:83:38:d0:61:6f:ac:5c:1e:2f:3b:11:d1:da: 0d:16:d2:02:59:34:3c:5a:2d:e4:04:28:73:ef:7d: b0:77:98:e6:cd:f8:d6:df:04:d9:34:24:f3:11:a1: 91:ef:07:7f:e9:12:37:38:d5:09:df:16:fb:41:0a: d1:39:32:ad:4d:57:fc:2a:96:bb:c4:70:2f:10:2b: c1:6c:17:1a:21:21:78:b6:f0:c3:78:ea:40:3c:ac: f9:68:d8:e2:c2:e6:70:b8:4f:31:41:10:71:1d:02: 89:4b:55:12:e9:a0:28:c4:fb:6b:fc:26:2c:6c:bd: c8:f4:ca:5b:34:bf:1b:b7:2e:84:c7:4c:d3:a4:d4: 77:aa:62:67:53:e0:7d:d3:d5:29:05:91:c2:28:26: 0d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:1B:19:BB:1B:39:61:20:28:AE:60:43:4F:86:94:70:22:4D:98:29 X509v3 Authority Key Identifier: keyid:04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:62:00:53:a8:27:01:c2:44:61:18:89:95:f7:5b:5f:38:8b: 95:88:61:70:7b:71:cb:df:93:90:e1:e0:ca:be:30:d3:89:bb: e7:ec:e0:3b:e7:b1:3a:9f:95:f0:13:7b:c7:1a:29:9a:91:a0: 16:6a:7d:19:2f:aa:3f:81:fd:6b:b1:d6:f8:18:5e:91:8b:c7: d8:2f:56:c8:f9:1d:11:41:56:b6:0f:38:67:62:76:82:da:6a: b2:5d:2b:90:d0:e9:92:57:46:48:3d:b2:96:c2:db:51:a1:05: ac:9b:94:8f:3b:b6:63:e2:33:53:80:a6:4f:c2:f7:d5:7d:6e: df:03:2c:18:00:6b:12:2a:83:b1:b2:10:5c:99:90:e5:f6:3a: 0f:21:0c:95:18:7e:d4:d6:5d:93:5f:9e:14:f1:16:24:a6:c4: 87:17:0e:2f:42:2a:bc:3b:b3:74:3d:c3:ac:58:de:46:63:3a: b8:d2:b5:b9:fe:66:ca:6a:a9:3b:1d:e8:a9:10:a6:59:3b:50: 6c:bb:09:90:12:04:70:03:1e:65:51:e1:b4:41:e0:af:bf:ce: c4:dc:21:19:e5:22:d6:87:22:40:58:2f:74:57:46:f7:c4:6d: b6:bf:ae:87:3d:e4:ee:92:ce:46:6a:33:4c:bc:e0:42:0f:8e: c0:25:05:40 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0M2MTExMC8GA1UEBRMoMDQ3NDkzN0U3OUE5RDY3MzM1M0VBQkQ4MkM0Qjg0MjRC NkM2ODMwRDAeFw0yNjAzMjkwODEzMjlaFw0yNjA0MDUwODEzMjlaMBgxFjAUBgNV BAMTDTY5YzhkZjJhLWQyM2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCR9RXaXrhyilj2cLs6FZ427lJ2t+f3/wqx+QyekkKFyrqYZB5zh0prjXFWGIWi G0AXSoebgR7S3QZx4fp21IJNNR64Fnr6LrN02lCD3sHSxLVdCme2IrB1rEhWgvyB 07R1K0TGoZFXTT+dgzjQYW+sXB4vOxHR2g0W0gJZNDxaLeQEKHPvfbB3mObN+Nbf BNk0JPMRoZHvB3/pEjc41QnfFvtBCtE5Mq1NV/wqlrvEcC8QK8FsFxohIXi28MN4 6kA8rPlo2OLC5nC4TzFBEHEdAolLVRLpoCjE+2v8Jixsvcj0yls0vxu3LoTHTNOk 1HeqYmdT4H3T1SkFkcIoJg3rAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUBhsZuxs5 YSAormBDT4aUcCJNmCkwHwYDVR0jBBgwFoAUBHSTfnmp1nM1PqvYLEuEJLbGgw0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQzYxLzMzMUQxNDE4REEz RTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5NMVBxdllMRXVFSkxiR2d3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQkhTVGZubXAxbk0xUHF2WUxFdUVKTGJHZ3cwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD QzYxLzMzMUQxNDE4REEzRTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5N MVBxdllMRXVFSkxiR2d3MC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBZYgBTqCcBwkRhGImV91tfOIuViGFwe3HL35OQ4eDKvjDTibvn7OA757E6n5Xw E3vHGimakaAWan0ZL6o/gf1rsdb4GF6Ri8fYL1bI+R0RQVa2DzhnYnaC2mqyXSuQ 0OmSV0ZIPbKWwttRoQWsm5SPO7Zj4jNTgKZPwvfVfW7fAywYAGsSKoOxshBcmZDl 9joPIQyVGH7U1l2TX54U8RYkpsSHFw4vQiq8O7N0PcOsWN5GYzq40rW5/mbKaqk7 HeipEKZZO1BsuwmQEgRwAx5lUeG0QeCvv87E3CEZ5SLWhyJAWC90V0b3xG22v66H PeTuks5GajNMvOBCD47AJQVA -----END CERTIFICATE-----Generated at Mon Mar 30 15:32:49 2026 by rpki-client