$ rpki-client -vvf rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft File: BKAnX1srXBgOfg0Slu7WC8DPY0c.mft (raw, json) Hash identifier: Uy+ZPgQKNpZ/wuWseGddB6lct5dl99i6eLBgIpZDAaw= Subject key identifier: C6:EF:E5:76:90:97:54:45:B3:56:99:EC:A0:A1:4F:04:D0:C4:95:21 Authority key identifier: 04:A0:27:5F:5B:2B:5C:18:0E:7E:0D:12:96:EE:D6:0B:C0:CF:63:47 Certificate issuer: /CN=A919C563/serialNumber=04A0275F5B2B5C180E7E0D1296EED60BC0CF6347 Certificate serial: 11BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft Manifest number: 11A8 Signing time: Sat 04 Apr 2026 17:05:31 +0000 Manifest this update: Sat 04 Apr 2026 17:05:30 +0000 Manifest next update: Sat 11 Apr 2026 17:05:30 +0000 Files and hashes: 1: BKAnX1srXBgOfg0Slu7WC8DPY0c.crl (hash: ySG6vCA5YfE3IMUL4Ghs0DtFljZrvpVr0EbzLA24Ag0=) 2: C484F3C0B74E11F0823EBC10C4F9AE02.roa (hash: h2DwpWR+IjAMG7fxYPQ9pAtPnP4GTYNqqiG9hVcrgDE=) 3: 7F35DF3CB74E11F0B044DA80C4F9AE02.roa (hash: cXPjCHPaKFx65HIG8toHkGNypseR6/vfwRdThb3BfVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.crl rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:05:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4540 (0x11bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C563, serialNumber=04A0275F5B2B5C180E7E0D1296EED60BC0CF6347 Validity Not Before: Apr 4 17:05:30 2026 GMT Not After : Apr 11 17:05:30 2026 GMT Subject: CN=69d144db-33d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8d:83:3f:b7:71:1b:86:4e:5b:60:9c:c3:8e: a3:a1:2b:44:5e:c1:ff:c8:2d:8b:5d:59:81:11:57: 6a:f2:b2:e0:41:25:4d:4e:48:24:b5:7b:1c:cc:ad: 15:de:c5:43:a9:e9:93:e4:eb:a7:71:ed:81:44:db: 13:8c:f1:fb:c4:5b:f0:0b:58:c4:01:09:60:76:9a: 5e:cc:71:43:b5:46:61:bb:42:b0:04:1b:dd:9f:ce: ed:4d:d4:e6:b8:d0:c4:3d:f2:0a:61:2e:5d:0e:ae: b7:80:f8:ad:80:cd:88:e4:7b:04:a4:76:3a:07:14: cc:3f:50:ad:f4:ef:1d:20:88:10:6c:86:ca:1c:5b: d7:06:f8:da:ba:22:0f:4d:48:a8:b6:05:f5:1f:f4: b3:9e:3d:7a:ee:64:ea:38:d6:c2:e7:8b:b6:b7:a1: 7e:7b:76:30:c8:6e:54:e9:3d:c8:0b:86:14:a6:4b: f0:5e:d7:b9:f2:ba:90:08:db:29:55:6f:85:d2:9d: cf:80:56:40:99:ac:28:09:6f:c8:92:56:2e:af:75: cb:a7:aa:67:fc:b8:0e:ce:a2:39:6b:d6:af:76:8f: 55:3d:1a:2a:7d:5e:bc:cb:53:ec:d4:6d:5d:8b:fd: 3f:00:5a:0f:2d:7a:6f:47:31:f0:b3:6f:65:f0:a8: 18:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:EF:E5:76:90:97:54:45:B3:56:99:EC:A0:A1:4F:04:D0:C4:95:21 X509v3 Authority Key Identifier: keyid:04:A0:27:5F:5B:2B:5C:18:0E:7E:0D:12:96:EE:D6:0B:C0:CF:63:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:1c:84:fc:85:20:01:37:f0:d5:dd:04:ba:a7:cd:51:82:eb: 24:47:4b:f6:6a:6d:68:9e:cb:ce:13:a8:26:5e:36:cd:cc:71: 2b:d6:7f:cd:10:9c:80:f7:b8:e9:bd:ae:6c:03:de:65:37:8b: b5:6a:ad:68:3f:60:97:81:b9:31:c5:1f:3a:6d:ea:e3:a3:00: c4:c4:dd:19:7b:24:12:71:cc:f1:71:ed:55:fc:c6:ff:6c:1e: a3:1d:c3:66:91:0d:a2:5a:aa:14:c0:e1:56:31:23:c7:99:00: 20:75:04:8b:a0:5e:a8:09:4d:e5:5d:e8:b2:8e:a8:cf:84:0d: 9a:de:1a:43:59:bd:a4:4c:a4:d2:a8:43:e8:7d:26:3f:bd:33: a5:c6:a9:77:97:4b:98:93:37:c7:c9:f4:96:a3:57:fc:e0:dd: 5e:55:5a:33:8d:ec:20:50:6a:e4:3b:d1:c8:4b:f3:59:60:e0: f8:f6:f8:f9:66:fa:9b:17:62:39:a1:70:55:9c:a2:70:ce:26: 99:2f:04:05:58:07:d5:d3:ab:90:f8:3a:f3:c3:55:35:41:bf: 5e:94:ac:66:05:74:1d:b7:32:1e:32:5c:b8:dc:f0:1e:0b:af: 99:ea:42:5f:9c:09:5b:e5:71:17:c4:55:b0:6f:1a:8f:ef:a4: ed:74:df:3b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM1NjMxMTAvBgNVBAUTKDA0QTAyNzVGNUIyQjVDMTgwRTdFMEQxMjk2RUVENjBC QzBDRjYzNDcwHhcNMjYwNDA0MTcwNTMwWhcNMjYwNDExMTcwNTMwWjAYMRYwFAYD VQQDEw02OWQxNDRkYi0zM2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtI2DP7dxG4ZOW2Ccw46joStEXsH/yC2LXVmBEVdq8rLgQSVNTkgktXsczK0V 3sVDqemT5Ounce2BRNsTjPH7xFvwC1jEAQlgdppezHFDtUZhu0KwBBvdn87tTdTm uNDEPfIKYS5dDq63gPitgM2I5HsEpHY6BxTMP1Ct9O8dIIgQbIbKHFvXBvjauiIP TUiotgX1H/Sznj167mTqONbC54u2t6F+e3YwyG5U6T3IC4YUpkvwXte58rqQCNsp VW+F0p3PgFZAmawoCW/IklYur3XLp6pn/LgOzqI5a9avdo9VPRoqfV68y1Ps1G1d i/0/AFoPLXpvRzHws29l8KgYoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMbv5XaQ l1RFs1aZ7KChTwTQxJUhMB8GA1UdIwQYMBaAFASgJ19bK1wYDn4NEpbu1gvAz2NH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzU2My8xMUI2MzM2NDE3 QzExMUU5ODEwODBGNkNDNEY5QUUwMi9CS0FuWDFzclhCZ09mZzBTbHU3V0M4RFBZ MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLQW5YMXNyWEJnT2ZnMFNsdTdXQzhEUFkwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzU2My8xMUI2MzM2NDE3QzExMUU5ODEwODBGNkNDNEY5QUUwMi9CS0FuWDFzclhC Z09mZzBTbHU3V0M4RFBZMGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQhyE/IUgATfw1d0EuqfNUYLrJEdL9mptaJ7LzhOoJl42zcxxK9Z/zRCcgPe4 6b2ubAPeZTeLtWqtaD9gl4G5McUfOm3q46MAxMTdGXskEnHM8XHtVfzG/2weox3D ZpENolqqFMDhVjEjx5kAIHUEi6BeqAlN5V3oso6oz4QNmt4aQ1m9pEyk0qhD6H0m P70zpcapd5dLmJM3x8n0lqNX/ODdXlVaM43sIFBq5DvRyEvzWWDg+Pb4+Wb6mxdi OaFwVZyicM4mmS8EBVgH1dOrkPg688NVNUG/XpSsZgV0HbcyHjJcuNzwHguvmepC X5wJW+VxF8RVsG8aj++k7XTfOw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:54:02 2026 by rpki-client