$ rpki-client -vvf rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft File: BHT0BqF40ixU1e9yTGssLJo7a5g.mft (raw, json) Hash identifier: /mwXZf8HRbEfLlOH38F/GgZ2flbDjH6aP8XwKuQ7Izs= Subject key identifier: 81:6F:35:C0:47:E6:55:E6:9E:2B:05:24:63:47:54:F5:6A:42:C3:5F Authority key identifier: 04:74:F4:06:A1:78:D2:2C:54:D5:EF:72:4C:6B:2C:2C:9A:3B:6B:98 Certificate issuer: /CN=A91D60CF/serialNumber=0474F406A178D22C54D5EF724C6B2C2C9A3B6B98 Certificate serial: 016D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft Manifest number: 0163 Signing time: Mon 27 Apr 2026 04:44:06 +0000 Manifest this update: Mon 27 Apr 2026 04:44:05 +0000 Manifest next update: Mon 04 May 2026 04:44:05 +0000 Files and hashes: 1: BHT0BqF40ixU1e9yTGssLJo7a5g.crl (hash: ba+/pdNac79saaTBWv1Kkb8sC5lG8Ng2N5vPMMEJ/sc=) 2: B56F40DEE9DB11EFBDD8BD26C4F9AE02.roa (hash: 2GXcGnF9Hnk+FPg8WEW+/EUmPpkB7ugokbrO1JSFDnc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.crl rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 04:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 365 (0x16d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D60CF, serialNumber=0474F406A178D22C54D5EF724C6B2C2C9A3B6B98 Validity Not Before: Apr 27 04:44:05 2026 GMT Not After : May 4 04:44:05 2026 GMT Subject: CN=69eee996-4b76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7e:f1:6c:90:56:04:46:2b:79:64:ae:ed:77: 49:25:00:ae:4e:05:a2:ec:a9:3a:e7:8c:79:e6:c8: 46:c4:5c:c3:8c:b0:49:5b:6e:d6:74:61:5f:97:3d: 70:c9:11:be:27:f9:19:60:b7:fe:12:a8:18:88:ad: 19:6a:ed:8b:2a:54:d2:b4:5b:d2:43:e8:f0:50:a1: 0f:1c:d7:da:50:5f:3a:28:1d:f0:0b:aa:9e:ef:e0: a3:f9:5b:ec:7e:e7:7f:9f:dc:94:83:d3:c2:db:26: b3:c7:9e:97:1c:6e:7d:41:7a:58:04:fb:be:46:5a: 71:0f:a9:b2:33:da:99:5b:7d:91:fa:c0:e2:0c:2f: 99:e6:57:9c:ea:a7:46:8d:f7:aa:c8:8f:6f:f3:31: 70:01:b6:16:48:47:07:ba:44:a8:18:c2:50:c1:39: 8f:34:4e:4c:de:10:05:c8:04:a2:bd:51:9d:e2:af: 82:b9:40:58:21:c3:1e:25:67:5c:20:10:d8:e0:a7: a8:9a:68:f7:3c:ee:dc:55:98:b1:35:e9:d1:8d:23: 72:41:61:49:6c:43:21:86:32:40:ca:a3:45:f1:1e: b9:e9:36:1b:e1:59:a9:a9:b2:5c:ad:89:a1:89:4d: a3:b3:40:f9:92:0b:76:ef:d9:a4:e6:35:e5:61:15: 5b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:6F:35:C0:47:E6:55:E6:9E:2B:05:24:63:47:54:F5:6A:42:C3:5F X509v3 Authority Key Identifier: keyid:04:74:F4:06:A1:78:D2:2C:54:D5:EF:72:4C:6B:2C:2C:9A:3B:6B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:30:30:5d:c9:9a:55:b7:a0:a3:ef:bf:55:4c:15:a8:f4:a3: 39:df:1a:77:3a:92:b7:73:82:08:22:8f:f4:e2:12:1a:c8:8e: c4:e8:8c:59:f7:2e:e8:c1:4b:0f:94:6c:4a:d0:8a:94:ca:43: bf:db:3f:15:ed:39:b0:17:25:60:6f:17:d0:d3:2f:51:d5:65: 48:2e:dc:2d:fe:b3:c9:35:a5:66:06:de:8a:ca:dc:6c:72:08: 81:a7:91:f6:35:9f:6b:cd:2d:e5:ec:4a:57:aa:76:5c:8e:8a: ca:eb:32:ce:2c:99:50:0f:32:a8:b1:01:98:53:cd:ab:12:e1: 7e:3d:f4:31:19:7f:1f:45:7e:7c:9c:de:07:64:09:09:5f:40: 04:58:6f:57:44:d2:10:05:7b:ed:87:89:54:9f:88:d8:ab:13: 91:55:9b:01:1d:05:e8:26:33:76:c1:67:c2:40:e7:32:bc:48: 31:8a:f3:6c:0f:f3:27:8d:0f:d3:5d:f6:2e:fb:ed:a4:5e:ca: 7b:f2:37:2e:f4:fe:28:9f:c4:fe:61:5f:ed:31:e4:07:1b:1d: 30:2c:e4:0c:f4:76:30:c0:6d:bc:04:0b:e4:1c:39:cb:8d:ec: 59:e0:94:06:99:5a:00:c5:1d:d8:0d:5d:87:35:c6:9d:2b:4f: 98:f1:70:8b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYwQ0YxMTAvBgNVBAUTKDA0NzRGNDA2QTE3OEQyMkM1NEQ1RUY3MjRDNkIyQzJD OUEzQjZCOTgwHhcNMjYwNDI3MDQ0NDA1WhcNMjYwNTA0MDQ0NDA1WjAYMRYwFAYD VQQDEw02OWVlZTk5Ni00Yjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqX7xbJBWBEYreWSu7XdJJQCuTgWi7Kk654x55shGxFzDjLBJW27WdGFflz1w yRG+J/kZYLf+EqgYiK0Zau2LKlTStFvSQ+jwUKEPHNfaUF86KB3wC6qe7+Cj+Vvs fud/n9yUg9PC2yazx56XHG59QXpYBPu+RlpxD6myM9qZW32R+sDiDC+Z5lec6qdG jfeqyI9v8zFwAbYWSEcHukSoGMJQwTmPNE5M3hAFyASivVGd4q+CuUBYIcMeJWdc IBDY4Keommj3PO7cVZixNenRjSNyQWFJbEMhhjJAyqNF8R656TYb4VmpqbJcrYmh iU2js0D5kgt279mk5jXlYRVbqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIFvNcBH 5lXmnisFJGNHVPVqQsNfMB8GA1UdIwQYMBaAFAR09AaheNIsVNXvckxrLCyaO2uY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjBDRi9FNTM2MDhGMDJB RkMxMUVGQTAyNDNDNEFDNEY5QUUwMi9CSFQwQnFGNDBpeFUxZTl5VEdzc0xKbzdh NWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JIVDBCcUY0MGl4VTFlOXlUR3NzTEpvN2E1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjBDRi9FNTM2MDhGMDJBRkMxMUVGQTAyNDNDNEFDNEY5QUUwMi9CSFQwQnFGNDBp eFUxZTl5VEdzc0xKbzdhNWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMzAwXcmaVbego++/VUwVqPSjOd8adzqSt3OCCCKP9OISGsiOxOiMWfcu6MFL D5RsStCKlMpDv9s/Fe05sBclYG8X0NMvUdVlSC7cLf6zyTWlZgbeisrcbHIIgaeR 9jWfa80t5exKV6p2XI6KyusyziyZUA8yqLEBmFPNqxLhfj30MRl/H0V+fJzeB2QJ CV9ABFhvV0TSEAV77YeJVJ+I2KsTkVWbAR0F6CYzdsFnwkDnMrxIMYrzbA/zJ40P 0132LvvtpF7Ke/I3LvT+KJ/E/mFf7THkBxsdMCzkDPR2MMBtvAQL5Bw5y43sWeCU BplaAMUd2A1dhzXGnStPmPFwiw== -----END CERTIFICATE-----Generated at Mon Apr 27 23:08:31 2026 by rpki-client