$ rpki-client -vvf rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft File: BKM4-nsSbgfA74urj33BycGsMiE.mft (raw, json) Hash identifier: FHOkGUAuMaiVZQ0mi3fww3tTrx/JJnAG8/3oeFqQ/O0= Subject key identifier: 57:29:D8:CE:73:FD:D2:E9:86:50:4B:F2:77:81:69:4E:C1:30:C2:04 Authority key identifier: 04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21 Certificate issuer: /CN=A91C146D/serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221 Certificate serial: E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft Manifest number: E0 Signing time: Thu 21 May 2026 06:40:07 +0000 Manifest this update: Thu 21 May 2026 06:40:07 +0000 Manifest next update: Thu 28 May 2026 06:40:07 +0000 Files and hashes: 1: BKM4-nsSbgfA74urj33BycGsMiE.crl (hash: yu+VjijMrnq2rjyQQG6X60yVEggsahNZc2Q1B6HBGNE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 06:40:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C146D, serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221 Validity Not Before: May 21 06:40:07 2026 GMT Not After : May 28 06:40:07 2026 GMT Subject: CN=6a0ea8c7-6b60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:42:eb:9d:4b:0c:4b:2d:2b:35:f1:d2:b0:9a: cb:66:2d:2b:7f:36:90:65:5e:3f:98:68:5b:f4:e3: f9:a6:90:a6:07:24:6f:58:c2:b4:78:32:30:b7:1a: 1c:74:a2:71:b2:da:87:09:f5:e7:d5:eb:45:54:2b: be:80:ab:b8:11:f8:d2:00:b6:fb:32:7f:ba:ff:bb: 43:ad:49:50:48:2f:36:2f:81:ba:52:5f:70:c2:1d: de:f7:cc:82:7b:6c:87:91:b6:90:1e:45:0b:43:fc: 80:34:82:c2:e6:73:aa:67:f9:21:b6:ae:9e:24:1a: 6f:30:57:67:0f:71:9a:2c:f4:44:e0:c3:f2:34:62: 88:57:45:e7:b8:d8:6a:fd:4e:10:da:e4:c7:2e:03: e8:88:26:c7:de:72:63:8f:16:52:f5:04:4b:34:6d: 1a:83:4f:e0:be:6e:ad:da:e0:75:52:83:c7:f1:ee: c8:b2:05:1d:dd:bc:e1:1d:5b:95:84:7c:49:20:38: bd:e6:c1:f2:e9:2d:4d:3a:a0:5a:63:be:ea:7e:2b: b5:42:98:ca:9f:6b:bb:a6:b3:39:46:86:a3:43:f8: 7f:fb:a5:e4:9b:33:cc:93:e6:db:1d:71:62:ea:c8: f4:01:0b:9d:c4:d3:0b:d9:62:ec:13:2c:3e:0a:90: 7f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:29:D8:CE:73:FD:D2:E9:86:50:4B:F2:77:81:69:4E:C1:30:C2:04 X509v3 Authority Key Identifier: keyid:04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:7f:5d:76:1e:4f:58:11:ab:46:7b:db:d0:50:9e:ed:99:26: ad:29:ee:84:35:83:cf:5f:ce:e3:c1:5a:60:4b:a3:c9:2d:0a: 43:37:a5:62:60:a5:5c:7f:5a:3d:c9:26:e2:7f:b4:6b:c4:21: cd:74:90:91:f9:61:f5:36:47:9c:64:42:fd:db:1b:87:02:3c: fe:8b:6d:fd:c0:f7:43:d4:62:dd:87:e5:65:4a:3d:bc:41:3d: 46:64:5c:d5:7f:f5:3f:c4:61:20:76:df:c8:0d:ff:1d:37:a3: e2:15:15:cd:c6:27:d7:ae:c1:37:5b:2b:f8:74:07:e0:ae:07: 03:04:98:5f:75:80:6c:17:4c:c1:1f:6c:91:0e:b8:eb:a9:18: 8b:8d:5e:29:63:51:22:0f:69:8e:21:fe:3b:a5:fb:be:c5:58: 3f:71:37:a7:0a:3f:98:ad:d6:84:fc:ac:2f:c9:f5:df:84:cc: 70:2d:2c:9f:70:99:9b:27:35:5f:fb:a8:8d:cf:c0:67:27:dc: 48:42:f5:73:4b:3c:d3:fe:f9:42:ab:8b:c9:b5:0e:2e:97:5f: 23:62:a1:bf:55:98:bd:8b:8d:5a:a9:db:65:1b:d6:18:ef:88: a3:c7:46:16:57:3b:25:22:b2:ce:94:af:d6:50:dd:b1:d4:c7: d1:e9:61:1e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE0NkQxMTAvBgNVBAUTKDA0QTMzOEZBN0IxMjZFMDdDMEVGOEJBQjhGN0RDMUM5 QzFBQzMyMjEwHhcNMjYwNTIxMDY0MDA3WhcNMjYwNTI4MDY0MDA3WjAYMRYwFAYD VQQDEw02YTBlYThjNy02YjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsULrnUsMSy0rNfHSsJrLZi0rfzaQZV4/mGhb9OP5ppCmByRvWMK0eDIwtxoc dKJxstqHCfXn1etFVCu+gKu4EfjSALb7Mn+6/7tDrUlQSC82L4G6Ul9wwh3e98yC e2yHkbaQHkULQ/yANILC5nOqZ/khtq6eJBpvMFdnD3GaLPRE4MPyNGKIV0XnuNhq /U4Q2uTHLgPoiCbH3nJjjxZS9QRLNG0ag0/gvm6t2uB1UoPH8e7IsgUd3bzhHVuV hHxJIDi95sHy6S1NOqBaY77qfiu1QpjKn2u7prM5RoajQ/h/+6XkmzPMk+bbHXFi 6sj0AQudxNML2WLsEyw+CpB/awIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFcp2M5z /dLphlBL8neBaU7BMMIEMB8GA1UdIwQYMBaAFASjOPp7Em4HwO+Lq499wcnBrDIh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTQ2RC9GNEQ1QTY3RTAw MzcxMUYwQkJENzI0NzVDNEY5QUUwMi9CS000LW5zU2JnZkE3NHVyajMzQnljR3NN aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLTTQtbnNTYmdmQTc0dXJqMzNCeWNHc01pRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTQ2RC9GNEQ1QTY3RTAwMzcxMUYwQkJENzI0NzVDNEY5QUUwMi9CS000LW5zU2Jn ZkE3NHVyajMzQnljR3NNaUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALH9ddh5PWBGrRnvb0FCe7ZkmrSnuhDWDz1/O48FaYEujyS0KQzelYmClXH9a Pckm4n+0a8QhzXSQkflh9TZHnGRC/dsbhwI8/ott/cD3Q9Ri3YflZUo9vEE9RmRc 1X/1P8RhIHbfyA3/HTej4hUVzcYn167BN1sr+HQH4K4HAwSYX3WAbBdMwR9skQ64 66kYi41eKWNRIg9pjiH+O6X7vsVYP3E3pwo/mK3WhPysL8n134TMcC0sn3CZmyc1 X/uojc/AZyfcSEL1c0s80/75QquLybUOLpdfI2Khv1WYvYuNWqnbZRvWGO+Io8dG Flc7JSKyzpSv1lDdsdTH0elhHg== -----END CERTIFICATE-----Generated at Thu May 21 10:16:19 2026 by rpki-client