$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: KGHVftFzkoE9ke0B6oWxXFXTD8LoQ3lriNVz8Yj0fpM= Subject key identifier: BA:50:93:76:D5:18:28:1E:E9:EF:9D:B0:F3:A1:34:27:1D:E3:FA:8E Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 016F Signing time: Sat 09 Aug 2025 04:13:01 +0000 Manifest this update: Sat 09 Aug 2025 04:13:01 +0000 Manifest next update: Sat 16 Aug 2025 04:13:01 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: hWUEvO35K0GM/3kkuo4sAyTTW2yUh2vdvnSqTvVtTb8=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: 34LR4muDkvBv1o97MuicPyBMy45vufYYnTs0rk2DkdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F, serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Aug 9 04:13:01 2025 GMT Not After : Aug 16 04:13:01 2025 GMT Subject: CN=6896cacd-636f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:23:8d:3a:2e:b0:8e:d2:48:f4:41:94:eb:33: 41:e1:b4:7b:f4:1c:e1:ea:a2:ff:1d:e5:6e:96:1b: 51:88:3b:42:b2:aa:cd:ae:55:71:77:86:bc:85:3e: 88:dc:49:f4:98:e9:f7:8b:9a:3b:fc:76:ae:bf:06: 83:ae:0e:6f:73:87:7f:ab:85:f0:6d:9a:3f:53:b9: a6:af:92:29:57:09:b5:6e:03:f0:c2:3b:a8:aa:88: a7:1b:e2:c7:3a:f2:c9:1f:b3:c4:8b:00:20:d1:90: 8a:a3:fc:a9:15:ed:bc:fe:fc:ca:98:f1:d4:24:37: 80:9d:04:da:77:7b:70:9f:b2:a8:7f:b5:fd:9d:91: 7e:3d:ed:22:e9:f2:b7:37:47:00:12:2e:2a:21:d4: 3b:b1:42:b9:a3:02:64:04:d7:ec:a3:17:9b:21:23: ed:42:24:47:81:8e:07:bb:cd:a3:03:93:40:84:2f: b2:06:66:20:b3:6a:b6:43:45:90:de:dc:8b:2d:f8: 05:bd:a2:d2:0f:16:2a:16:39:b5:44:b3:fe:09:b0: 68:60:a5:81:e4:c6:56:2d:c5:34:e2:21:03:53:05: 7a:5d:5b:a5:3d:e8:2a:e2:5d:48:44:f3:79:3f:d8: 1d:1a:aa:ef:cd:22:0e:d6:08:b9:71:ce:1f:c5:c4: 71:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:50:93:76:D5:18:28:1E:E9:EF:9D:B0:F3:A1:34:27:1D:E3:FA:8E X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:d8:70:de:11:d7:05:76:d4:26:84:2d:f3:b2:95:e3:41:e4: 0f:09:e3:7c:b8:58:86:b0:c1:56:25:1e:40:36:95:67:17:51: e7:06:3b:c6:5c:59:04:2e:14:1e:46:d5:a2:51:c5:92:d7:64: 86:60:61:ee:ee:ec:57:67:42:d4:43:11:b2:bf:19:ea:f6:07: 7e:02:4c:86:52:e2:4b:56:15:ea:6d:97:4f:e6:f0:a4:98:ca: 57:6d:c7:27:c4:45:2c:db:3b:1c:62:d7:4e:f7:a4:e3:02:29: 13:f3:23:90:5a:2e:20:ea:af:d9:88:c9:d0:10:b9:f3:f5:7b: ec:03:00:95:75:81:4a:12:94:c3:97:d2:f1:67:c5:5f:1c:28: 5a:7d:94:c8:73:2a:ac:a6:bf:3f:ea:e6:d9:d5:26:3d:82:41: 03:bf:3a:59:45:d7:11:a8:88:24:5f:05:9a:30:2f:a1:d3:4d: 53:61:2d:6e:0a:a7:b4:4e:03:b9:0f:de:85:f1:a0:b7:f5:5a: ba:82:17:73:d1:7d:ba:1b:cb:9f:a1:74:3b:12:42:f5:19:ed: 37:bc:9e:9d:10:b1:7c:30:4d:73:cf:77:31:97:7d:d7:ca:03: 8d:89:0d:01:05:90:40:3f:51:65:ff:86:97:73:28:81:61:23: ae:70:fb:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjUwODA5MDQxMzAxWhcNMjUwODE2MDQxMzAxWjAYMRYwFAYD VQQDEw02ODk2Y2FjZC02MzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuiONOi6wjtJI9EGU6zNB4bR79Bzh6qL/HeVulhtRiDtCsqrNrlVxd4a8hT6I 3En0mOn3i5o7/HauvwaDrg5vc4d/q4XwbZo/U7mmr5IpVwm1bgPwwjuoqoinG+LH OvLJH7PEiwAg0ZCKo/ypFe28/vzKmPHUJDeAnQTad3twn7Kof7X9nZF+Pe0i6fK3 N0cAEi4qIdQ7sUK5owJkBNfsoxebISPtQiRHgY4Hu82jA5NAhC+yBmYgs2q2Q0WQ 3tyLLfgFvaLSDxYqFjm1RLP+CbBoYKWB5MZWLcU04iEDUwV6XVulPegq4l1IRPN5 P9gdGqrvzSIO1gi5cc4fxcRx+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpQk3bV GCge6e+dsPOhNCcd4/qOMB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD2HDeEdcFdtQmhC3zspXjQeQPCeN8uFiGsMFWJR5ANpVnF1HnBjvG XFkELhQeRtWiUcWS12SGYGHu7uxXZ0LUQxGyvxnq9gd+AkyGUuJLVhXqbZdP5vCk mMpXbccnxEUs2zscYtdO96TjAikT8yOQWi4g6q/ZiMnQELnz9XvsAwCVdYFKEpTD l9LxZ8VfHChafZTIcyqspr8/6ubZ1SY9gkEDvzpZRdcRqIgkXwWaMC+h001TYS1u Cqe0TgO5D96F8aC39Vq6ghdz0X26G8ufoXQ7EkL1Ge03vJ6dELF8ME1zz3cxl33X ygONiQ0BBZBAP1Fl/4aXcyiBYSOucPvQ -----END CERTIFICATE-----Generated at Sat Aug 9 10:49:40 2025 by rpki-client