$ rpki-client -vvf rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft File: BKAnX1srXBgOfg0Slu7WC8DPY0c.mft (raw, json) Hash identifier: RZM3ps4JP9CXm2Q7cUf+2C+U/25WyroemMRuWR5Qqns= Subject key identifier: 89:11:35:14:9B:3B:0F:47:38:AC:23:4B:BF:89:EA:2A:55:7F:56:F8 Authority key identifier: 04:A0:27:5F:5B:2B:5C:18:0E:7E:0D:12:96:EE:D6:0B:C0:CF:63:47 Certificate issuer: /CN=A919C563/serialNumber=04A0275F5B2B5C180E7E0D1296EED60BC0CF6347 Certificate serial: 1162 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft Manifest number: 1154 Signing time: Sun 02 Nov 2025 17:16:21 +0000 Manifest this update: Sun 02 Nov 2025 17:16:21 +0000 Manifest next update: Sun 09 Nov 2025 17:16:21 +0000 Files and hashes: 1: BKAnX1srXBgOfg0Slu7WC8DPY0c.crl (hash: PUrTZ32NEssF7cdAYLeczomNPmqe5LnSrFNyHyhK2Ig=) 2: 7F35DF3CB74E11F0B044DA80C4F9AE02.roa (hash: c359sIW4Z5sIwnmuCSGuu4Dc9VbeC09XzNfroSlImmE=) 3: C484F3C0B74E11F0823EBC10C4F9AE02.roa (hash: TgAtTR3AGX5ew51UqibGXUzKLmbtmQK+cqf1ZOWJIZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.crl rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:16:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4450 (0x1162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C563, serialNumber=04A0275F5B2B5C180E7E0D1296EED60BC0CF6347 Validity Not Before: Nov 2 17:16:21 2025 GMT Not After : Nov 9 17:16:21 2025 GMT Subject: CN=690791e5-f91c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:07:28:82:90:38:a3:9f:e0:d4:6f:a8:15:6a: cd:52:0d:a8:ab:44:64:74:36:04:2e:31:2c:d6:61: 2a:7e:6e:ea:2f:d8:9c:9f:60:7b:2f:ef:c7:b5:d0: 04:bb:d9:78:7d:d9:2c:c1:37:82:fb:85:55:40:8a: 01:9e:7b:77:6c:19:35:d7:fa:0b:ff:ce:72:7b:1f: 51:20:14:7f:d5:e9:ed:a8:93:a5:b3:61:92:e5:47: 40:8b:06:0c:63:ce:83:43:5f:61:7c:6d:9b:0b:06: 93:dc:6b:86:54:f0:d0:7d:0a:02:0e:24:6a:99:fe: 91:6b:f2:3d:49:f9:58:87:4b:9c:90:17:cd:14:4a: 56:03:08:33:98:85:c9:2d:cd:96:fd:03:1f:a9:0a: b4:3e:0a:4c:36:22:f3:91:1e:06:65:c7:e0:0e:30: 32:5d:30:9b:45:1c:f0:bb:4c:fc:02:13:6a:fc:92: b9:a7:01:d5:f7:0c:17:21:9e:1d:f8:bf:00:c2:a7: 20:2b:0b:e1:04:ae:22:8c:73:33:ca:46:79:7a:bd: ce:c8:1d:3f:88:94:ab:bd:d0:81:39:3e:d2:63:58: 3d:52:6f:4b:f0:3b:f5:87:aa:a8:d7:70:9f:32:06: 40:35:0e:4c:00:72:fa:eb:dc:ee:11:d2:66:60:da: 4f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:11:35:14:9B:3B:0F:47:38:AC:23:4B:BF:89:EA:2A:55:7F:56:F8 X509v3 Authority Key Identifier: keyid:04:A0:27:5F:5B:2B:5C:18:0E:7E:0D:12:96:EE:D6:0B:C0:CF:63:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:fb:2e:d6:f8:27:05:d6:ec:22:3f:ed:0c:36:39:2b:ff:d8: 01:ee:88:7a:39:3d:f6:00:88:a8:c1:5c:a7:36:1f:a0:a4:08: 6f:d4:09:84:fc:ac:dc:e9:8b:71:08:94:78:f3:90:d0:83:71: a1:fc:f7:ee:bf:d8:54:b7:d1:74:78:a7:51:e9:a6:f7:ed:d1: dd:0e:9f:fd:7a:7d:f3:2c:fa:b5:e3:52:fd:78:5c:65:6e:3b: 0e:16:e7:f9:c7:dd:21:5b:76:7a:d7:e6:51:ef:f8:43:4d:d8: d1:22:22:87:b0:4e:17:b6:c8:53:1b:c2:a7:8c:fb:0e:95:72: 92:04:99:29:73:b5:10:45:cb:7e:b1:d6:17:6b:10:e0:1e:87: 2b:6c:a8:50:52:e1:8d:df:cb:5c:c5:4b:be:06:78:d8:37:18: 51:65:76:00:75:72:04:07:86:f1:19:d8:b2:26:00:33:c3:2d: 06:b4:91:4c:d2:88:92:a4:66:f9:99:29:68:64:1a:13:69:cc: 13:c9:d9:69:35:70:f6:9e:97:b9:d9:f4:8d:83:7a:86:43:9d: 41:b4:09:96:3a:59:27:9b:fe:14:d2:08:90:7f:46:27:43:78: 9d:38:9e:b5:f7:f7:a7:b0:24:d6:80:39:be:b9:1a:c9:19:42: 1b:45:19:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM1NjMxMTAvBgNVBAUTKDA0QTAyNzVGNUIyQjVDMTgwRTdFMEQxMjk2RUVENjBC QzBDRjYzNDcwHhcNMjUxMTAyMTcxNjIxWhcNMjUxMTA5MTcxNjIxWjAYMRYwFAYD VQQDEw02OTA3OTFlNS1mOTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2AcogpA4o5/g1G+oFWrNUg2oq0RkdDYELjEs1mEqfm7qL9icn2B7L+/HtdAE u9l4fdkswTeC+4VVQIoBnnt3bBk11/oL/85yex9RIBR/1entqJOls2GS5UdAiwYM Y86DQ19hfG2bCwaT3GuGVPDQfQoCDiRqmf6Ra/I9SflYh0uckBfNFEpWAwgzmIXJ Lc2W/QMfqQq0PgpMNiLzkR4GZcfgDjAyXTCbRRzwu0z8AhNq/JK5pwHV9wwXIZ4d +L8AwqcgKwvhBK4ijHMzykZ5er3OyB0/iJSrvdCBOT7SY1g9Um9L8Dv1h6qo13Cf MgZANQ5MAHL669zuEdJmYNpP1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkRNRSb Ow9HOKwjS7+J6ipVf1b4MB8GA1UdIwQYMBaAFASgJ19bK1wYDn4NEpbu1gvAz2NH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzU2My8xMUI2MzM2NDE3 QzExMUU5ODEwODBGNkNDNEY5QUUwMi9CS0FuWDFzclhCZ09mZzBTbHU3V0M4RFBZ MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLQW5YMXNyWEJnT2ZnMFNsdTdXQzhEUFkwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzU2My8xMUI2MzM2NDE3QzExMUU5ODEwODBGNkNDNEY5QUUwMi9CS0FuWDFzclhC Z09mZzBTbHU3V0M4RFBZMGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCt+y7W+CcF1uwiP+0MNjkr/9gB7oh6OT32AIiowVynNh+gpAhv1AmE /Kzc6YtxCJR485DQg3Gh/Pfuv9hUt9F0eKdR6ab37dHdDp/9en3zLPq141L9eFxl bjsOFuf5x90hW3Z61+ZR7/hDTdjRIiKHsE4XtshTG8KnjPsOlXKSBJkpc7UQRct+ sdYXaxDgHocrbKhQUuGN38tcxUu+BnjYNxhRZXYAdXIEB4bxGdiyJgAzwy0GtJFM 0oiSpGb5mSloZBoTacwTydlpNXD2npe52fSNg3qGQ51BtAmWOlknm/4U0giQf0Yn Q3idOJ619/ensCTWgDm+uRrJGUIbRRk8 -----END CERTIFICATE-----Generated at Tue Nov 4 12:41:17 2025 by rpki-client