$ rpki-client -vvf rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft File: BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft (raw, json) Hash identifier: MIz5wIvLjJKpFH26F96hpwVRUxN0uzI3WzFvgipDUMU= Subject key identifier: FA:84:62:3E:82:D7:A2:CD:24:4B:58:82:D9:F1:25:08:7E:B3:8D:3F Authority key identifier: 04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D Certificate issuer: /CN=A911CC61/serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft Manifest number: 56 Signing time: Fri 15 May 2026 08:24:24 +0000 Manifest this update: Fri 15 May 2026 08:24:23 +0000 Manifest next update: Fri 22 May 2026 08:24:23 +0000 Files and hashes: 1: BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl (hash: 0ge45IONUiOjdYVYkPS5Fz4hzFUc3CkR+RdWLbWk/4A=) 2: 8EE78F481D1A11F19DA5ED77103D8C67.roa (hash: FtCatlAW9Re17rwqCuc7Yn9ywx696GppCQCdjrmZAlM=) 3: 8FEAA0421D1A11F19DA5ED77103D8C67.roa (hash: dEk3degjNLUiA3kpAMrU5suBNlrDXd9oTzhhHbGgPc0=) 4: 9C1B70121D1A11F1A275F377103D8C67.roa (hash: y0kiR2bauMVDFaqNZbNEH9+p4Ybcw1shQXfdJNNrqvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 May 2026 08:24:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CC61, serialNumber=0474937E79A9D673353EABD82C4B8424B6C6830D Validity Not Before: May 15 08:24:23 2026 GMT Not After : May 22 08:24:23 2026 GMT Subject: CN=6a06d837-7b48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f6:c1:0c:b6:54:46:77:c9:43:bf:62:0d:07: ca:5f:8c:0f:80:d6:d0:58:fd:8e:51:36:4c:9b:db: 25:6c:71:c8:56:4a:c2:8b:17:03:f8:cc:7f:a6:37: 11:81:8b:a4:8c:8b:8e:74:16:8d:53:c3:88:dd:9f: 8b:9f:eb:bc:dd:2e:7e:d9:40:1f:f9:79:30:1a:f7: f9:6d:b5:7c:c0:5e:9a:1a:92:9b:cd:1f:42:ce:26: f3:89:1c:3b:84:46:e0:78:21:cf:85:f7:33:1a:eb: 4f:e1:a9:4f:9c:5c:50:0c:74:b8:b4:65:c3:9f:2c: 1d:22:f6:cc:19:7e:13:ef:ee:f8:5c:53:34:b2:e6: 0b:be:2b:e9:7d:2b:d0:8c:9f:6f:04:ea:c9:76:7c: 19:db:19:5a:0e:5a:5e:8c:d7:6d:d4:b3:c0:d2:26: 15:e0:ea:cf:8b:c0:33:5e:e6:87:cc:de:41:d8:c4: 59:7e:ee:e9:cb:9d:3a:49:5c:54:e1:9f:0c:9c:0f: d9:75:9d:84:6a:ae:f8:6f:38:de:0a:5b:c9:e7:71: c6:da:f3:29:dc:af:bf:b3:f6:2f:84:eb:91:2e:dd: c9:5f:ac:e8:70:b4:71:3c:4b:ba:fd:22:3f:87:13: 58:6b:25:23:30:a4:f8:0a:4b:6c:e1:b0:98:d8:0f: f4:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:84:62:3E:82:D7:A2:CD:24:4B:58:82:D9:F1:25:08:7E:B3:8D:3F X509v3 Authority Key Identifier: keyid:04:74:93:7E:79:A9:D6:73:35:3E:AB:D8:2C:4B:84:24:B6:C6:83:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BHSTfnmp1nM1PqvYLEuEJLbGgw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CC61/331D1418DA3E11F08FD1E8388ED3641D/BHSTfnmp1nM1PqvYLEuEJLbGgw0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:bf:9a:b1:bd:8d:88:d4:e8:79:dc:1c:47:23:05:48:df:48: 63:7b:96:d9:e9:9c:b1:64:62:6e:e9:18:d9:55:ab:a2:37:ce: 4d:e8:c1:1b:64:ed:8e:81:8b:e1:c8:21:3d:a1:2d:d8:ec:45: 4c:8b:27:57:91:7b:1d:6e:95:74:c3:d1:82:64:2c:af:ad:5f: cd:bf:c4:58:9e:12:f7:8e:d1:f9:76:7e:b8:4b:62:ba:b3:24: 30:ec:87:2d:f1:98:a4:dd:de:a2:c8:83:bb:b4:28:5b:8e:57: b9:c1:bf:d2:ac:cb:b3:54:35:04:e0:53:06:58:85:69:65:8d: dd:81:00:9b:eb:72:70:59:2f:26:28:35:d9:f7:c2:84:15:d9: b2:bf:f9:5b:76:d2:57:31:4d:25:c1:43:a1:5e:53:22:1e:10: 74:75:da:40:55:ca:dc:84:ee:10:cd:93:1d:58:2c:e7:a4:ab: b9:7c:a9:ad:f7:0b:53:dc:e9:c0:a7:9d:01:7e:cf:56:83:31: bc:a7:6f:b2:cb:dc:73:00:56:ed:fe:d0:6b:54:55:38:e5:aa: 3b:4f:c2:9c:ba:ea:56:f9:6e:b6:12:ec:61:e3:5d:83:ab:c6: 0b:1a:87:18:47:34:98:2a:e2:be:b6:9b:16:b5:9c:c9:13:8b: b0:12:63:25 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0M2MTExMC8GA1UEBRMoMDQ3NDkzN0U3OUE5RDY3MzM1M0VBQkQ4MkM0Qjg0MjRC NkM2ODMwRDAeFw0yNjA1MTUwODI0MjNaFw0yNjA1MjIwODI0MjNaMBgxFjAUBgNV BAMTDTZhMDZkODM3LTdiNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCp9sEMtlRGd8lDv2INB8pfjA+A1tBY/Y5RNkyb2yVscchWSsKLFwP4zH+mNxGB i6SMi450Fo1Tw4jdn4uf67zdLn7ZQB/5eTAa9/lttXzAXpoakpvNH0LOJvOJHDuE RuB4Ic+F9zMa60/hqU+cXFAMdLi0ZcOfLB0i9swZfhPv7vhcUzSy5gu+K+l9K9CM n28E6sl2fBnbGVoOWl6M123Us8DSJhXg6s+LwDNe5ofM3kHYxFl+7unLnTpJXFTh nwycD9l1nYRqrvhvON4KW8nnccba8yncr7+z9i+E65Eu3clfrOhwtHE8S7r9Ij+H E1hrJSMwpPgKS2zhsJjYD/TrAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU+oRiPoLX os0kS1iC2fElCH6zjT8wHwYDVR0jBBgwFoAUBHSTfnmp1nM1PqvYLEuEJLbGgw0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDQzYxLzMzMUQxNDE4REEz RTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5NMVBxdllMRXVFSkxiR2d3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQkhTVGZubXAxbk0xUHF2WUxFdUVKTGJHZ3cwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD QzYxLzMzMUQxNDE4REEzRTExRjA4RkQxRTgzODhFRDM2NDFEL0JIU1Rmbm1wMW5N MVBxdllMRXVFSkxiR2d3MC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAJv5qxvY2I1Oh53BxHIwVI30hje5bZ6ZyxZGJu6RjZVauiN85N6MEbZO2OgYvh yCE9oS3Y7EVMiydXkXsdbpV0w9GCZCyvrV/Nv8RYnhL3jtH5dn64S2K6syQw7Ict 8Zik3d6iyIO7tChbjle5wb/SrMuzVDUE4FMGWIVpZY3dgQCb63JwWS8mKDXZ98KE Fdmyv/lbdtJXMU0lwUOhXlMiHhB0ddpAVcrchO4QzZMdWCznpKu5fKmt9wtT3OnA p50Bfs9WgzG8p2+yy9xzAFbt/tBrVFU45ao7T8KcuupW+W62Euxh412Dq8YLGocY RzSYKuK+tpsWtZzJE4uwEmMl -----END CERTIFICATE-----Generated at Sun May 17 04:36:24 2026 by rpki-client