$ rpki-client -vvf rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft File: BKM4-nsSbgfA74urj33BycGsMiE.mft (raw, json) Hash identifier: RJrvwc+Aig8Zlit8JEU5ZAufOV0s23V5U0ab8hcfFGo= Subject key identifier: E1:74:2D:B5:98:82:E1:01:15:2A:E3:C3:19:E9:40:01:4F:86:EB:28 Authority key identifier: 04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21 Certificate issuer: /CN=A91C146D/serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221 Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft Manifest number: C9 Signing time: Sun 05 Apr 2026 06:15:01 +0000 Manifest this update: Sun 05 Apr 2026 06:15:00 +0000 Manifest next update: Sun 12 Apr 2026 06:15:00 +0000 Files and hashes: 1: BKM4-nsSbgfA74urj33BycGsMiE.crl (hash: LQOKeHhVi96x60ZWNwfUHSQ9a9JRohwfewElL7N2XnA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:15:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C146D, serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221 Validity Not Before: Apr 5 06:15:00 2026 GMT Not After : Apr 12 06:15:00 2026 GMT Subject: CN=69d1fde5-23ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:7a:eb:da:96:d4:f7:63:2c:e9:2c:2c:22:c8: 61:9b:d3:d6:2e:23:e4:98:0d:c9:47:96:63:ac:c1: f6:f5:43:93:d9:b6:2a:b4:69:a7:eb:a5:52:d0:ce: 5b:ed:b3:0b:fc:bb:2d:4f:d8:b8:8b:b4:cf:e0:e6: ef:14:46:7f:3a:e5:6f:5f:e7:af:53:79:76:d8:59: 3f:04:ac:59:b4:f1:c0:f5:e1:e6:71:bf:f0:d8:8f: 97:0d:f9:64:96:b3:62:13:9b:98:e6:ea:85:6a:05: 4c:d8:f2:23:d1:29:a5:4a:b9:ed:96:21:0c:bd:bb: 5a:b3:a4:24:ec:64:91:ae:3a:a5:56:de:95:cc:2c: e3:d8:e4:e2:ec:89:79:d5:91:cc:b7:7f:8e:7b:46: fd:66:31:19:14:39:0a:47:cb:e0:3a:3e:c5:35:31: a4:5f:c4:35:a7:db:4d:c5:04:66:40:3f:c0:3d:64: 3c:84:4b:12:a0:dc:13:f3:94:68:6a:ac:37:1c:34: 82:f1:11:ed:ea:d1:c7:ad:cf:eb:c5:34:d7:97:69: 1c:23:c0:9c:96:5c:49:bb:43:fd:44:e8:55:be:6d: f1:a4:24:3d:fa:5e:12:17:19:fc:dd:09:4e:7e:1b: 6d:78:4f:38:03:10:51:93:64:f8:52:0a:ae:b4:50: 5d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:74:2D:B5:98:82:E1:01:15:2A:E3:C3:19:E9:40:01:4F:86:EB:28 X509v3 Authority Key Identifier: keyid:04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:81:00:d9:94:3c:ed:9b:d7:39:b3:27:8a:a0:35:98:a2:d2: e5:d6:34:1b:9f:ba:d7:59:a5:2f:0f:52:d6:3a:c5:c6:b1:fa: 9c:ed:79:57:f1:e1:df:7b:3d:15:8e:52:98:cc:43:92:73:0d: 3c:ba:53:4b:dd:8c:4d:e0:25:f9:e3:f1:26:cc:05:78:e7:e1: dc:58:27:44:66:52:7b:73:2a:b0:84:ef:d6:44:ed:4b:bf:de: 55:d3:2e:46:fd:4a:29:d4:34:a1:39:8a:4c:a4:8c:e6:c4:60: 3d:65:29:bf:2f:ca:a3:a0:e0:c3:80:83:c2:49:d4:40:3e:70: 3c:f1:57:b4:ac:ab:6a:0e:a1:44:92:5b:2d:4f:5f:76:49:2a: 43:e0:09:ff:c8:1a:26:c9:a2:d1:2e:5f:17:74:53:2e:34:5b: 94:ce:ce:01:f6:55:14:16:bc:1b:22:80:fb:51:b3:e1:77:f6: c0:6f:dd:78:6b:b0:40:64:88:96:7a:e7:9e:1c:3a:2c:7d:9d: 6c:b5:55:90:5c:17:c2:da:8b:03:86:c2:da:e3:d6:1f:39:a4: f6:dc:21:cd:83:54:ee:d3:2e:eb:26:82:9e:99:65:e5:eb:2c: 44:df:ff:5e:a1:d7:19:8d:d6:20:bd:bc:99:10:03:4f:2a:39: 59:ad:e1:a1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE0NkQxMTAvBgNVBAUTKDA0QTMzOEZBN0IxMjZFMDdDMEVGOEJBQjhGN0RDMUM5 QzFBQzMyMjEwHhcNMjYwNDA1MDYxNTAwWhcNMjYwNDEyMDYxNTAwWjAYMRYwFAYD VQQDEw02OWQxZmRlNS0yM2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA53rr2pbU92Ms6SwsIshhm9PWLiPkmA3JR5ZjrMH29UOT2bYqtGmn66VS0M5b 7bML/LstT9i4i7TP4ObvFEZ/OuVvX+evU3l22Fk/BKxZtPHA9eHmcb/w2I+XDflk lrNiE5uY5uqFagVM2PIj0SmlSrntliEMvbtas6Qk7GSRrjqlVt6VzCzj2OTi7Il5 1ZHMt3+Oe0b9ZjEZFDkKR8vgOj7FNTGkX8Q1p9tNxQRmQD/APWQ8hEsSoNwT85Ro aqw3HDSC8RHt6tHHrc/rxTTXl2kcI8CcllxJu0P9ROhVvm3xpCQ9+l4SFxn83QlO fhtteE84AxBRk2T4UgqutFBdwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOF0LbWY guEBFSrjwxnpQAFPhusoMB8GA1UdIwQYMBaAFASjOPp7Em4HwO+Lq499wcnBrDIh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTQ2RC9GNEQ1QTY3RTAw MzcxMUYwQkJENzI0NzVDNEY5QUUwMi9CS000LW5zU2JnZkE3NHVyajMzQnljR3NN aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLTTQtbnNTYmdmQTc0dXJqMzNCeWNHc01pRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTQ2RC9GNEQ1QTY3RTAwMzcxMUYwQkJENzI0NzVDNEY5QUUwMi9CS000LW5zU2Jn ZkE3NHVyajMzQnljR3NNaUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuoEA2ZQ87ZvXObMniqA1mKLS5dY0G5+611mlLw9S1jrFxrH6nO15V/Hh33s9 FY5SmMxDknMNPLpTS92MTeAl+ePxJswFeOfh3FgnRGZSe3MqsITv1kTtS7/eVdMu Rv1KKdQ0oTmKTKSM5sRgPWUpvy/Ko6Dgw4CDwknUQD5wPPFXtKyrag6hRJJbLU9f dkkqQ+AJ/8gaJsmi0S5fF3RTLjRblM7OAfZVFBa8GyKA+1Gz4Xf2wG/deGuwQGSI lnrnnhw6LH2dbLVVkFwXwtqLA4bC2uPWHzmk9twhzYNU7tMu6yaCnpll5essRN// XqHXGY3WIL28mRADTyo5Wa3hoQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:32:03 2026 by rpki-client