$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: NfHDIz2qmhxKg4q16bSOmcF4D4qS0lm3y6Hhgrhm5dE= Subject key identifier: D4:57:D4:60:48:9A:D0:EB:50:94:21:12:21:4D:4E:62:8D:87:B9:CC Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 019F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 019B Signing time: Wed 05 Nov 2025 03:30:31 +0000 Manifest this update: Wed 05 Nov 2025 03:30:30 +0000 Manifest next update: Wed 12 Nov 2025 03:30:30 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: YXMhFVZRKVug1TRSyzYzLeo5KXqAu8eqFTOSwi4FdTk=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: 34LR4muDkvBv1o97MuicPyBMy45vufYYnTs0rk2DkdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:30:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 415 (0x19f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F, serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Nov 5 03:30:30 2025 GMT Not After : Nov 12 03:30:30 2025 GMT Subject: CN=690ac4d6-8e86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0b:a4:dd:1e:ba:77:1c:1c:55:e2:f5:d2:35: d7:35:10:73:b1:26:55:16:0b:05:55:d9:77:ff:0a: 41:b8:da:6f:f0:ba:7e:ea:7e:61:f0:85:88:b8:6d: 88:f1:6d:5f:d1:b3:0d:13:46:ba:ef:68:14:40:00: 5f:5e:8b:3d:69:b8:78:f8:36:51:e0:a6:72:6e:83: 80:7e:d6:cf:b3:93:f8:63:71:0c:d3:19:3a:e5:c8: 04:66:05:37:45:3a:1c:7c:ba:65:4e:9f:a6:89:ea: 54:bc:00:14:44:39:c4:23:dd:19:34:83:2b:2d:a1: 38:ce:62:b4:62:7c:87:92:b9:ee:ab:0d:cf:2f:fb: 05:e3:c1:60:49:7c:7b:c2:b4:c2:9f:d1:57:7d:09: 01:d9:38:e6:fc:89:83:ca:a0:8a:30:69:c7:a6:de: a9:2e:cb:49:27:a2:3e:bc:60:fa:6b:26:e7:9d:cc: 88:70:4d:80:86:a4:cb:a8:54:68:3a:11:33:59:76: 03:45:dd:99:93:d9:5a:d8:77:d6:6f:f1:16:16:e5: a1:6d:77:9a:f8:15:dc:c2:c8:19:51:39:d8:23:4a: 45:2e:2d:a0:58:6a:04:4a:36:21:26:19:f4:1f:41: 3b:f3:1e:34:99:b3:37:25:67:0f:b3:1c:dd:5b:5f: ff:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:57:D4:60:48:9A:D0:EB:50:94:21:12:21:4D:4E:62:8D:87:B9:CC X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:e4:5e:c2:f0:cb:b7:0d:81:ba:7d:a3:93:62:8f:11:c3:83: 3a:09:46:88:73:3d:39:28:fb:3d:fc:8d:48:44:1b:1b:01:fe: 9d:5f:37:96:ca:84:23:67:8c:d1:69:ed:2a:ae:55:fd:95:13: 0f:70:bb:2d:0e:a4:90:f9:d0:5d:56:aa:68:56:ab:70:f2:10: 3a:a2:1f:c7:12:84:15:a5:89:e3:b1:52:0f:b6:1d:a6:b5:d0: 3e:da:fe:d0:12:f8:12:cf:b9:0e:47:d4:88:e9:fb:1e:f0:10: 8f:82:d9:ce:55:c6:b3:f9:f5:f5:0e:09:84:1b:70:05:76:a7: b4:da:9a:5f:20:ea:53:af:d6:08:e7:35:b7:b0:50:f5:d7:26: 24:86:31:35:27:6e:75:a7:b7:2e:5a:28:8c:db:6c:5d:69:28: 8e:c3:ef:f9:45:19:ee:43:e0:f5:92:45:e6:7a:16:aa:13:7a: d5:6f:de:4c:38:c8:de:29:99:5a:91:c4:a8:a8:bc:b1:f7:f7: be:32:b1:1f:8d:87:cd:eb:b1:de:51:24:b3:88:5a:95:85:b8: f3:c5:25:19:63:dd:c8:75:71:94:b7:a1:40:27:f4:36:f1:69: 8a:0c:62:22:e3:4d:5c:4c:34:2f:7b:e0:50:f3:96:45:48:bf: 18:bd:38:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjUxMTA1MDMzMDMwWhcNMjUxMTEyMDMzMDMwWjAYMRYwFAYD VQQDEw02OTBhYzRkNi04ZTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2wuk3R66dxwcVeL10jXXNRBzsSZVFgsFVdl3/wpBuNpv8Lp+6n5h8IWIuG2I 8W1f0bMNE0a672gUQABfXos9abh4+DZR4KZyboOAftbPs5P4Y3EM0xk65cgEZgU3 RTocfLplTp+miepUvAAURDnEI90ZNIMrLaE4zmK0YnyHkrnuqw3PL/sF48FgSXx7 wrTCn9FXfQkB2Tjm/ImDyqCKMGnHpt6pLstJJ6I+vGD6aybnncyIcE2AhqTLqFRo OhEzWXYDRd2Zk9la2HfWb/EWFuWhbXea+BXcwsgZUTnYI0pFLi2gWGoESjYhJhn0 H0E78x40mbM3JWcPsxzdW1//JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRX1GBI mtDrUJQhEiFNTmKNh7nMMB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJ5F7C8Mu3DYG6faOTYo8Rw4M6CUaIcz05KPs9/I1IRBsbAf6dXzeW yoQjZ4zRae0qrlX9lRMPcLstDqSQ+dBdVqpoVqtw8hA6oh/HEoQVpYnjsVIPth2m tdA+2v7QEvgSz7kOR9SI6fse8BCPgtnOVcaz+fX1DgmEG3AFdqe02ppfIOpTr9YI 5zW3sFD11yYkhjE1J251p7cuWiiM22xdaSiOw+/5RRnuQ+D1kkXmehaqE3rVb95M OMjeKZlakcSoqLyx9/e+MrEfjYfN67HeUSSziFqVhbjzxSUZY93IdXGUt6FAJ/Q2 8WmKDGIi401cTDQve+BQ85ZFSL8YvThb -----END CERTIFICATE-----Generated at Wed Nov 5 17:56:57 2025 by rpki-client