$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: aJmruSMp+X8qnKDckdVYZq0gb4i5aSq8o13+Tf6YcyU= Subject key identifier: 8A:7D:18:00:EA:CB:86:88:AB:DA:6B:58:78:EE:1D:E7:F2:3A:F2:BF Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 0155 Signing time: Thu 19 Jun 2025 03:32:42 +0000 Manifest this update: Thu 19 Jun 2025 03:32:42 +0000 Manifest next update: Thu 26 Jun 2025 03:32:42 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: bSk4XZHE4ezRreLGVWDc4MDyqMj8E+Fmzy3gBroNwyg=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: 34LR4muDkvBv1o97MuicPyBMy45vufYYnTs0rk2DkdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 03:32:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F, serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Jun 19 03:32:42 2025 GMT Not After : Jun 26 03:32:42 2025 GMT Subject: CN=685384da-4209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:fe:7f:41:7e:b8:b7:cd:ed:fb:f2:c4:d5:c3: e2:07:08:57:59:b8:1d:16:fa:7a:61:32:f3:fd:e2: 89:34:b5:5d:32:8d:7a:d1:c4:ad:b1:66:4a:09:d7: cc:0c:a5:8a:6c:cb:3d:a7:1e:25:3c:e6:7d:63:f6: 03:0e:b5:b4:ac:8f:2e:af:5a:1e:23:6d:3c:37:a6: 50:45:33:49:6b:90:6e:da:0b:38:df:dd:0e:43:96: 18:e4:91:b4:0a:b0:78:cd:b4:38:f2:f6:8b:2c:c5: 0f:f5:d6:85:b2:e8:12:3f:83:3b:35:69:eb:0d:65: 08:4f:98:28:98:a8:90:de:f7:6f:4a:a0:cc:13:a5: 48:e6:19:24:2b:92:80:54:97:21:71:f9:d1:eb:3e: eb:98:37:f5:45:89:fb:aa:e7:08:45:2d:6a:21:2d: ca:a3:cc:5c:1e:e1:4c:c0:1a:6b:0d:f6:b3:15:3e: b2:e0:f7:90:be:ff:65:19:35:66:9a:a5:30:8f:f3: b0:6d:98:1b:c1:0f:40:c6:52:b9:73:63:24:2e:f6: 0b:f6:5b:f1:40:70:07:3f:8f:91:f8:35:d8:41:3e: 57:a4:7f:a6:fa:c1:75:bf:be:5d:8b:87:71:fe:5e: 11:2f:bb:f6:99:05:f8:0a:02:83:52:f3:8e:1c:e9: 87:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:7D:18:00:EA:CB:86:88:AB:DA:6B:58:78:EE:1D:E7:F2:3A:F2:BF X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:2e:cc:16:d8:c2:9f:1c:5d:48:66:2b:25:93:ae:61:19:83: a8:06:a8:69:6e:ea:5f:49:38:84:bf:ad:bc:e2:37:9e:a5:76: 3e:cf:95:17:24:da:06:74:53:2c:78:7c:b4:17:3b:65:58:81: 46:0b:e4:83:06:b0:f8:a1:ce:23:b7:5c:e4:79:6c:22:5c:df: cd:c0:70:65:4c:f6:1c:49:f1:d9:8b:9f:70:99:67:1c:4e:26: f5:7d:66:39:6d:95:95:c3:45:37:7a:97:c7:01:60:df:7e:55: 4f:44:45:0e:70:ad:00:5a:6a:a1:1b:a6:41:76:24:47:f0:49: e0:e5:ce:4c:13:d8:8f:9b:64:f9:66:14:66:ae:30:fc:88:5a: e9:26:bb:16:42:2d:97:bd:06:8e:72:88:52:b0:f1:39:c3:57: d2:91:9a:9a:9c:d4:71:54:f9:e0:c4:63:22:86:5c:85:a3:1e: 13:50:9a:a6:33:3f:39:72:c0:ff:a7:da:b1:a2:44:13:48:18: 4d:8c:50:25:17:c9:3f:ca:99:ff:03:eb:90:e6:d7:e4:ba:be: 41:c3:16:7b:e6:42:d7:f9:df:81:ea:96:4e:38:28:06:b0:77: f4:37:27:da:ce:8b:fd:ba:83:82:a3:f6:74:f9:61:4b:84:7b: 6e:d2:8f:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjUwNjE5MDMzMjQyWhcNMjUwNjI2MDMzMjQyWjAYMRYwFAYD VQQDEw02ODUzODRkYS00MjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6/5/QX64t83t+/LE1cPiBwhXWbgdFvp6YTLz/eKJNLVdMo160cStsWZKCdfM DKWKbMs9px4lPOZ9Y/YDDrW0rI8ur1oeI208N6ZQRTNJa5Bu2gs4390OQ5YY5JG0 CrB4zbQ48vaLLMUP9daFsugSP4M7NWnrDWUIT5gomKiQ3vdvSqDME6VI5hkkK5KA VJchcfnR6z7rmDf1RYn7qucIRS1qIS3Ko8xcHuFMwBprDfazFT6y4PeQvv9lGTVm mqUwj/OwbZgbwQ9AxlK5c2MkLvYL9lvxQHAHP4+R+DXYQT5XpH+m+sF1v75di4dx /l4RL7v2mQX4CgKDUvOOHOmHGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIp9GADq y4aIq9prWHjuHefyOvK/MB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATLswW2MKfHF1IZislk65hGYOoBqhpbupfSTiEv6284jeepXY+z5UX JNoGdFMseHy0FztlWIFGC+SDBrD4oc4jt1zkeWwiXN/NwHBlTPYcSfHZi59wmWcc Tib1fWY5bZWVw0U3epfHAWDfflVPREUOcK0AWmqhG6ZBdiRH8Eng5c5ME9iPm2T5 ZhRmrjD8iFrpJrsWQi2XvQaOcohSsPE5w1fSkZqanNRxVPngxGMihlyFox4TUJqm Mz85csD/p9qxokQTSBhNjFAlF8k/ypn/A+uQ5tfkur5BwxZ75kLX+d+B6pZOOCgG sHf0Nyfazov9uoOCo/Z0+WFLhHtu0o+g -----END CERTIFICATE-----Generated at Thu Jun 19 09:54:43 2025 by rpki-client