$ rpki-client -vvf rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft File: BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft (raw, json) Hash identifier: ye3TPQLEKjZm8yXd2sqz88/CnjM2e0+XGh1FsNPje+M= Subject key identifier: D7:7E:B4:78:FA:31:64:60:23:3A:C7:8F:98:49:EE:96:8E:31:C1:09 Authority key identifier: 04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D Certificate issuer: /CN=A91238EC/serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Certificate serial: 1769 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft Manifest number: 174E Signing time: Wed 06 Aug 2025 16:43:01 +0000 Manifest this update: Wed 06 Aug 2025 16:43:01 +0000 Manifest next update: Wed 13 Aug 2025 16:43:01 +0000 Files and hashes: 1: BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl (hash: Dsklz+8PIRXRzmLsLWikbp6fyjhHzVg0qxoHnO7EUn4=) 2: 2F9D268C76B211ECABA1A612C4F9AE02.roa (hash: N4cX9Gn5/2UN1QBdCa0fdRS9KCB6RvJx+JIs1tA6NvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 16:43:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5993 (0x1769) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238EC, serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Validity Not Before: Aug 6 16:43:01 2025 GMT Not After : Aug 13 16:43:01 2025 GMT Subject: CN=68938615-8e85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:76:9d:c9:63:b7:53:b9:94:3b:b7:09:81:54: 54:38:99:22:a1:19:af:f7:e0:4f:c2:aa:6d:65:a1: a4:a1:93:d4:75:75:4a:a6:b1:06:24:41:92:d1:2a: c1:1b:fd:aa:29:b5:95:c0:36:8d:01:38:b3:d3:c4: d1:42:71:d2:4d:30:2d:e9:a9:a4:63:d5:0a:25:3e: bb:c1:b7:84:34:3d:93:7c:7a:f2:c5:69:17:d2:4f: 9d:c8:51:70:45:1c:05:66:44:bf:e1:62:c0:0f:1e: 29:16:77:ec:61:49:f2:82:ea:91:79:fd:3d:17:ec: 39:6e:e4:5e:f8:00:c7:49:42:ff:ad:a5:0d:38:ca: d3:38:a9:6b:5c:c6:bb:01:29:57:c4:01:b2:eb:e0: 43:6e:7f:65:f4:fc:e0:fd:e1:74:ce:97:b7:90:fd: de:87:63:64:b5:9d:c2:e5:4d:e8:5a:8a:d3:1d:df: c0:a0:1b:df:6a:c9:38:3c:09:f2:cf:3f:30:04:dc: 93:8a:b8:68:6f:b3:48:19:f0:69:7d:3d:96:61:da: b6:76:cc:fc:71:ca:b7:f2:89:04:70:3b:bc:48:fb: 6e:f8:44:cf:05:0d:8a:36:62:ae:c6:02:1c:c5:76: 55:67:40:38:3a:ff:8d:49:29:44:af:53:b3:1d:ee: 33:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:7E:B4:78:FA:31:64:60:23:3A:C7:8F:98:49:EE:96:8E:31:C1:09 X509v3 Authority Key Identifier: keyid:04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:c1:43:a3:d4:b0:82:7c:74:d7:bf:ad:80:30:31:64:0b:51: 9f:bc:47:b2:a1:c4:80:d3:06:03:ca:7a:6c:7d:69:80:b8:63: 51:03:ae:84:c3:10:5d:a1:bd:0a:e9:44:e1:61:ae:cb:19:50: 52:c5:ac:af:d5:64:f7:5e:f5:ea:e8:9e:67:1a:4f:5d:02:0e: a4:b4:d7:1c:63:38:76:58:ca:1b:97:d6:51:63:c7:e9:43:92: 7e:ed:59:75:4e:23:3f:3a:6f:70:1a:f3:5e:33:c6:9a:63:cc: a0:65:7d:66:21:89:73:33:72:f8:8d:a7:0e:72:87:b9:94:16: d0:2d:45:2b:ed:08:f2:ba:41:ed:3f:87:70:5e:a2:36:0b:bb: 1a:2f:da:f1:1c:c8:26:50:f2:f1:8a:6e:6c:ee:49:ef:24:e1: 54:bf:ca:06:af:e6:0c:e7:da:6b:ac:24:af:9a:4a:a6:78:f2: 9b:06:28:e8:4c:44:48:f0:eb:71:40:33:7c:15:0a:b8:e8:2f: 50:3a:d9:f7:2f:c6:c6:92:1d:51:64:c4:cc:d2:8d:ec:fe:9c: 85:f0:71:1f:4e:7c:0f:94:fe:e6:55:0b:d7:b3:70:5c:ca:7b: 88:d5:28:9f:71:c1:00:7f:54:9c:ec:17:b8:e9:b9:c7:87:e8: 24:b8:ee:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RUMxMTAvBgNVBAUTKDA0ODMyRkJFNzBDN0I4ODU5Q0ExQTBFM0UwNUEyOTZC QjA5QzVEM0QwHhcNMjUwODA2MTY0MzAxWhcNMjUwODEzMTY0MzAxWjAYMRYwFAYD VQQDEw02ODkzODYxNS04ZTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHadyWO3U7mUO7cJgVRUOJkioRmv9+BPwqptZaGkoZPUdXVKprEGJEGS0SrB G/2qKbWVwDaNATiz08TRQnHSTTAt6amkY9UKJT67wbeEND2TfHryxWkX0k+dyFFw RRwFZkS/4WLADx4pFnfsYUnyguqRef09F+w5buRe+ADHSUL/raUNOMrTOKlrXMa7 ASlXxAGy6+BDbn9l9Pzg/eF0zpe3kP3eh2NktZ3C5U3oWorTHd/AoBvfask4PAny zz8wBNyTirhob7NIGfBpfT2WYdq2dsz8ccq38okEcDu8SPtu+ETPBQ2KNmKuxgIc xXZVZ0A4Ov+NSSlEr1OzHe4zawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNd+tHj6 MWRgIzrHj5hJ7paOMcEJMB8GA1UdIwQYMBaAFASDL75wx7iFnKGg4+BaKWuwnF09 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhFQy82MUQ0RjQ4QUUz RTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJV2NvYURqNEZvcGE3Q2NY VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJTXZ2bkRIdUlXY29hRGo0Rm9wYTdDY1hUMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhFQy82MUQ0RjQ4QUUzRTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJ V2NvYURqNEZvcGE3Q2NYVDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFwUOj1LCCfHTXv62AMDFkC1GfvEeyocSA0wYDynpsfWmAuGNRA66E wxBdob0K6UThYa7LGVBSxayv1WT3XvXq6J5nGk9dAg6ktNccYzh2WMobl9ZRY8fp Q5J+7Vl1TiM/Om9wGvNeM8aaY8ygZX1mIYlzM3L4jacOcoe5lBbQLUUr7QjyukHt P4dwXqI2C7saL9rxHMgmUPLxim5s7knvJOFUv8oGr+YM59prrCSvmkqmePKbBijo TERI8OtxQDN8FQq46C9QOtn3L8bGkh1RZMTM0o3s/pyF8HEfTnwPlP7mVQvXs3Bc ynuI1SifccEAf1Sc7Be46bnHh+gkuO6J -----END CERTIFICATE-----Generated at Thu Aug 7 04:24:29 2025 by rpki-client