$ rpki-client -vvf rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft File: BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft (raw, json) Hash identifier: SEoKpjcoK+O37anJynNhdJ4/7dTXtpjku2NJSPMgLxY= Subject key identifier: C7:52:76:76:15:4C:E6:CF:FF:D2:79:FF:89:81:C7:BF:41:FF:B1:34 Authority key identifier: 04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D Certificate issuer: /CN=A91238EC/serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Certificate serial: 1804 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft Manifest number: 17E6 Signing time: Wed 20 May 2026 16:33:04 +0000 Manifest this update: Wed 20 May 2026 16:33:04 +0000 Manifest next update: Wed 27 May 2026 16:33:04 +0000 Files and hashes: 1: BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl (hash: GHCcP5AbRE1YOBk1w3TFFM9YMy8QPVF4e4keXcZhAYk=) 2: 2F9D268C76B211ECABA1A612C4F9AE02.roa (hash: uxg1Vz02k9PJduPGV4AMR2b2pATyu+ms5B8uFxBNAz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 16:33:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6148 (0x1804) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238EC, serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Validity Not Before: May 20 16:33:04 2026 GMT Not After : May 27 16:33:04 2026 GMT Subject: CN=6a0de240-2863 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:43:84:1c:8a:38:39:85:85:18:8f:95:bb:18: d8:19:f0:6e:5b:84:59:ed:ad:5c:7a:97:e5:22:6c: ea:a4:00:aa:c8:a3:39:e8:de:1d:b7:71:e4:f8:4a: 5d:7a:da:6f:6a:0a:64:fe:42:4c:0b:39:62:28:64: 32:ac:90:89:f8:02:34:80:ab:ec:82:38:8a:42:1c: 61:6c:3a:37:bc:62:dc:f2:cd:f2:c1:07:9d:1a:33: 49:2a:83:57:7a:fa:ef:17:7e:63:fb:2b:72:fc:13: a0:d7:71:f2:4e:b3:32:b6:67:9a:56:55:bd:e4:8d: de:c4:4f:8a:c8:7a:40:3a:46:89:45:7d:6d:4d:67: b2:1d:70:b1:f5:5e:3e:a1:2a:76:54:08:7e:76:8b: 75:d3:d1:4e:b8:66:71:b8:0f:7c:60:69:5a:64:69: 37:7f:a5:c4:86:54:39:e8:22:34:cb:14:3d:99:a9: 16:8a:80:82:e4:bb:05:f9:84:aa:d0:d8:e9:df:fe: 7c:d8:ea:e9:a7:64:35:13:b7:ad:a4:13:6d:0e:3f: da:a0:ac:2d:b4:26:67:02:d0:78:a1:a9:98:09:c3: c4:cb:4a:84:11:37:0f:28:a4:91:06:c8:7e:60:08: d2:45:65:97:ba:1f:18:21:95:e1:c1:0e:3e:a3:cb: 5a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:52:76:76:15:4C:E6:CF:FF:D2:79:FF:89:81:C7:BF:41:FF:B1:34 X509v3 Authority Key Identifier: keyid:04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:05:b9:06:22:84:39:94:71:c7:b6:30:54:25:92:89:dd:e1: 59:a8:48:20:c7:a7:b8:8f:22:1e:50:df:bc:89:37:29:b0:2c: 40:9d:b9:46:92:0a:89:ac:51:b7:11:ea:ab:46:4e:ab:a7:a4: bd:fc:5b:a5:89:ed:2c:b5:9f:2a:d4:53:f4:7c:fc:08:ee:04: 29:33:dc:2d:5b:1e:af:54:09:2a:38:c6:19:ca:c3:a5:23:05: d0:62:fb:d1:e5:67:71:38:5b:90:7e:fc:e8:5b:6e:fe:76:64: c8:3b:13:83:56:86:72:dd:a6:37:4f:05:f1:c1:9a:0b:1b:6c: 12:51:7a:21:59:d7:32:c7:fb:db:70:6d:4b:e2:7f:85:3f:57: 64:b2:cc:30:9d:12:20:1e:21:92:3c:98:b2:5c:45:de:8e:10: ac:c0:7e:22:6f:b8:6d:8b:58:4c:d0:3d:86:aa:84:da:54:cf: 79:e3:ec:7a:7d:3b:c1:91:62:94:dd:dd:57:4e:5c:1b:a2:af: 4f:ae:6a:8f:ca:0a:e7:08:dd:6e:a9:c8:0e:a1:97:90:9d:a5: 75:a3:14:4c:bf:e5:8d:5e:f2:cb:24:21:99:14:c5:4f:3c:2c: dd:3b:90:4e:dc:ca:6f:1c:d7:90:d2:96:95:b7:01:fe:00:ea: 79:b4:21:e4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RUMxMTAvBgNVBAUTKDA0ODMyRkJFNzBDN0I4ODU5Q0ExQTBFM0UwNUEyOTZC QjA5QzVEM0QwHhcNMjYwNTIwMTYzMzA0WhcNMjYwNTI3MTYzMzA0WjAYMRYwFAYD VQQDEw02YTBkZTI0MC0yODYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5EOEHIo4OYWFGI+VuxjYGfBuW4RZ7a1cepflImzqpACqyKM56N4dt3Hk+Epd etpvagpk/kJMCzliKGQyrJCJ+AI0gKvsgjiKQhxhbDo3vGLc8s3ywQedGjNJKoNX evrvF35j+yty/BOg13HyTrMytmeaVlW95I3exE+KyHpAOkaJRX1tTWeyHXCx9V4+ oSp2VAh+dot109FOuGZxuA98YGlaZGk3f6XEhlQ56CI0yxQ9makWioCC5LsF+YSq 0Njp3/582Orpp2Q1E7etpBNtDj/aoKwttCZnAtB4oamYCcPEy0qEETcPKKSRBsh+ YAjSRWWXuh8YIZXhwQ4+o8taeQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMdSdnYV TObP/9J5/4mBx79B/7E0MB8GA1UdIwQYMBaAFASDL75wx7iFnKGg4+BaKWuwnF09 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhFQy82MUQ0RjQ4QUUz RTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJV2NvYURqNEZvcGE3Q2NY VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJTXZ2bkRIdUlXY29hRGo0Rm9wYTdDY1hUMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhFQy82MUQ0RjQ4QUUzRTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJ V2NvYURqNEZvcGE3Q2NYVDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFgW5BiKEOZRxx7YwVCWSid3hWahIIMenuI8iHlDfvIk3KbAsQJ25RpIKiaxR txHqq0ZOq6ekvfxbpYntLLWfKtRT9Hz8CO4EKTPcLVser1QJKjjGGcrDpSMF0GL7 0eVncThbkH786Ftu/nZkyDsTg1aGct2mN08F8cGaCxtsElF6IVnXMsf723BtS+J/ hT9XZLLMMJ0SIB4hkjyYslxF3o4QrMB+Im+4bYtYTNA9hqqE2lTPeePsen07wZFi lN3dV05cG6KvT65qj8oK5wjdbqnIDqGXkJ2ldaMUTL/ljV7yyyQhmRTFTzws3TuQ TtzKbxzXkNKWlbcB/gDqebQh5A== -----END CERTIFICATE-----Generated at Thu May 21 10:14:20 2026 by rpki-client