$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft File: bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft (raw, json) Hash identifier: I/EtUjA6EZTJwoyRIBPvgxIdlgLhvLefMdNfUtSz7eI= Subject key identifier: 87:BB:9B:DF:D4:96:2F:96:CF:D5:04:0E:52:44:49:08:04:5D:03:B8 Authority key identifier: 6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 Certificate issuer: /CN=A91FBD28/serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Certificate serial: 1B5E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft Manifest number: 1B46 Signing time: Mon 20 Apr 2026 15:37:49 +0000 Manifest this update: Mon 20 Apr 2026 15:37:49 +0000 Manifest next update: Mon 27 Apr 2026 15:37:49 +0000 Files and hashes: 1: bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl (hash: 7BhWSfyKmdX7s+U21cTlE2HVkmvIbbYk7soXU2UNchw=) 2: D8B92776A16A11EAA517B11EC4F9AE02.roa (hash: rryLB0c3XAkpHMR5QUj9LWqBdvJxU0nRbgd/uoJ3uaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 15:37:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7006 (0x1b5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD28, serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Validity Not Before: Apr 20 15:37:49 2026 GMT Not After : Apr 27 15:37:49 2026 GMT Subject: CN=69e6484d-9f3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4a:f8:33:40:04:b9:37:4b:89:b8:a6:6f:26: 84:86:85:14:82:c6:02:47:79:67:0c:47:3b:22:24: 0e:ec:57:b4:d2:31:00:7b:84:b0:c7:70:4f:8d:f0: 60:85:32:a1:53:46:f1:b1:01:1f:66:6b:81:cc:5e: 05:48:a3:bc:5d:e3:1a:76:16:36:fd:f3:33:ec:93: 12:21:6b:50:1d:2f:fe:30:f8:70:cd:9f:c5:64:89: 67:d2:77:f0:77:8c:93:9f:65:1d:8a:73:e3:1f:17: 92:95:53:96:c9:b4:4e:6c:89:bf:34:15:5b:8e:87: 6d:45:d4:60:c3:1d:a9:fa:4a:c5:8b:27:33:db:84: 06:8a:e5:2c:ae:ae:4c:00:63:1a:c2:e1:ee:9f:f7: 38:47:8c:e0:52:60:24:f1:53:bc:37:9c:0b:4d:b5: cd:50:02:05:be:a0:94:58:54:5f:c0:66:26:e1:73: 92:2a:a0:26:1a:3b:29:25:91:1c:ba:e4:be:0a:81: bb:6d:60:1c:a7:04:e2:bb:81:ad:b1:49:88:5c:15: 5e:4c:0e:e6:c9:11:2d:90:16:0c:39:49:fa:6a:5e: b0:06:18:9e:66:19:25:13:c9:6b:b1:21:e5:4d:8a: 58:c8:0b:6a:f0:49:ba:7c:94:a6:93:f6:5c:91:46: 4b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:BB:9B:DF:D4:96:2F:96:CF:D5:04:0E:52:44:49:08:04:5D:03:B8 X509v3 Authority Key Identifier: keyid:6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:d5:e6:fe:4a:57:b3:57:a2:48:aa:32:c1:c9:38:c8:5d:45: c1:27:b7:c0:9c:42:5f:23:00:95:de:bd:d6:7d:a6:21:a7:d1: 00:de:e5:12:84:a2:77:57:82:16:8f:f3:2c:80:5c:36:e2:ab: c5:a8:9d:63:52:08:e5:e4:63:dc:ca:52:be:82:f7:68:93:ee: 36:b1:1f:f5:a2:01:8f:57:4a:bb:f3:e8:7b:ae:c2:11:37:54: ce:42:ea:67:50:ca:bb:50:1c:50:44:98:0d:4d:0e:91:f0:81: 5d:12:24:c8:0a:7f:2f:43:04:13:03:fd:26:50:cc:0f:49:c3: 1d:6d:04:c8:47:ec:cc:77:09:e9:bf:32:2c:a0:f4:ac:64:f3: 36:d5:f0:a2:e9:97:b0:c1:ac:87:66:93:85:61:fc:8f:28:d4: a2:f5:35:78:4f:35:88:9a:8a:05:37:e4:d2:b6:6f:1c:b1:e2: 46:79:b9:30:2e:c2:fb:bd:76:d2:c0:ec:3e:09:b2:68:e9:d1: c2:93:e5:75:64:24:7c:95:54:e7:ca:a4:fe:03:a4:ea:8b:ce: 93:3b:f0:83:d1:1a:08:f9:d9:87:73:17:bb:d7:28:5d:e8:7c: e7:c9:f2:43:16:d3:2f:40:8b:09:79:46:3b:8a:86:39:12:57: 73:bc:ac:db -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICG14wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEMjgxMTAvBgNVBAUTKDZFNDg2MTBBQTBFNkIwRTJDNUVFRDQwMkREMDc4MzNB QTczRTdFQTIwHhcNMjYwNDIwMTUzNzQ5WhcNMjYwNDI3MTUzNzQ5WjAYMRYwFAYD VQQDEw02OWU2NDg0ZC05ZjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEr4M0AEuTdLibimbyaEhoUUgsYCR3lnDEc7IiQO7Fe00jEAe4Swx3BPjfBg hTKhU0bxsQEfZmuBzF4FSKO8XeMadhY2/fMz7JMSIWtQHS/+MPhwzZ/FZIln0nfw d4yTn2UdinPjHxeSlVOWybRObIm/NBVbjodtRdRgwx2p+krFiycz24QGiuUsrq5M AGMawuHun/c4R4zgUmAk8VO8N5wLTbXNUAIFvqCUWFRfwGYm4XOSKqAmGjspJZEc uuS+CoG7bWAcpwTiu4GtsUmIXBVeTA7myREtkBYMOUn6al6wBhieZhklE8lrsSHl TYpYyAtq8Em6fJSmk/ZckUZLzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIe7m9/U li+Wz9UEDlJESQgEXQO4MB8GA1UdIwQYMBaAFG5IYQqg5rDixe7UAt0HgzqnPn6i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQyOC8yNjc1OEJCNDNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNPTEY3dFFDM1FlRE9xYy1m cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2JraGhDcURtc09MRjd0UUMzUWVET3FjLWZxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQyOC8yNjc1OEJCNDNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNP TEY3dFFDM1FlRE9xYy1mcUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAM9Xm/kpXs1eiSKoywck4yF1FwSe3wJxCXyMAld691n2mIafRAN7lEoSid1eC Fo/zLIBcNuKrxaidY1II5eRj3MpSvoL3aJPuNrEf9aIBj1dKu/Poe67CETdUzkLq Z1DKu1AcUESYDU0OkfCBXRIkyAp/L0MEEwP9JlDMD0nDHW0EyEfszHcJ6b8yLKD0 rGTzNtXwoumXsMGsh2aThWH8jyjUovU1eE81iJqKBTfk0rZvHLHiRnm5MC7C+712 0sDsPgmyaOnRwpPldWQkfJVU58qk/gOk6ovOkzvwg9EaCPnZh3MXu9coXeh858ny QxbTL0CLCXlGO4qGORJXc7ys2w== -----END CERTIFICATE-----Generated at Wed Apr 22 00:13:28 2026 by rpki-client