$ rpki-client -vvf rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft File: BKAnX1srXBgOfg0Slu7WC8DPY0c.mft (raw, json) Hash identifier: MpBz9Xh7+cpucbRj5NEBAWJ4zw07ve/Szjy9IEYBAM0= Subject key identifier: D0:70:8E:B6:8B:3C:45:DC:C4:A0:FE:45:72:7E:15:A3:D7:64:B7:AF Authority key identifier: 04:A0:27:5F:5B:2B:5C:18:0E:7E:0D:12:96:EE:D6:0B:C0:CF:63:47 Certificate issuer: /CN=A919C563/serialNumber=04A0275F5B2B5C180E7E0D1296EED60BC0CF6347 Certificate serial: 1130 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft Manifest number: 1125 Signing time: Fri 08 Aug 2025 17:28:03 +0000 Manifest this update: Fri 08 Aug 2025 17:28:03 +0000 Manifest next update: Fri 15 Aug 2025 17:28:03 +0000 Files and hashes: 1: BKAnX1srXBgOfg0Slu7WC8DPY0c.crl (hash: 6TwdRJ4Fl6fn6wxcwdmOgEVLUnR3yQv9VWLJ05Wwfak=) 2: 2B2B06B2401E11EBB0588F5FC4F9AE02.roa (hash: njXqnLM6vnU07txVMRRTX8IPNMY9z1UdckP2aMY3pBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.crl rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4400 (0x1130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C563, serialNumber=04A0275F5B2B5C180E7E0D1296EED60BC0CF6347 Validity Not Before: Aug 8 17:28:03 2025 GMT Not After : Aug 15 17:28:03 2025 GMT Subject: CN=689633a3-0f2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e3:73:19:53:ac:9f:f1:87:a3:3b:fb:2b:8a: 4e:de:12:3e:f8:f5:99:ac:3d:7c:a0:66:f5:94:a1: a0:de:b1:a5:26:fc:1a:27:cf:91:f4:4a:f2:0b:b3: 39:31:61:0b:84:56:f5:a4:6f:d1:d0:af:08:27:18: b8:ca:b3:49:9f:ff:c3:51:53:ba:77:99:8d:33:f9: 32:4d:2b:80:c7:bd:a2:0c:b4:7a:2d:05:af:e0:63: 0f:4e:87:c1:6c:72:4a:c5:fe:ce:b1:a8:08:2a:7d: bc:84:c6:45:81:9a:a7:6a:5d:1a:d2:77:30:fb:9a: 56:31:b1:4b:4d:58:d6:2b:65:a1:19:7d:55:a6:ae: d3:ed:83:f4:fc:45:de:e8:bd:09:a3:bf:3b:1e:e6: 48:96:4e:c2:7e:b1:1e:c7:a8:d7:88:b3:76:ae:7c: d2:17:a2:b6:4b:6e:bf:11:d1:46:de:cf:97:38:4a: ed:b4:bd:b8:86:13:5c:38:2b:bb:5c:fb:e5:bc:7a: e7:d9:b0:9f:29:37:01:c8:46:e5:78:08:75:8e:e9: 61:5f:c1:e0:71:e5:ca:68:a0:8f:ea:91:44:aa:6b: 54:66:0b:e5:f0:42:84:cd:ca:ea:a3:92:b5:bc:4c: 4f:87:8b:1c:19:0d:e7:58:ac:b6:3f:5f:b4:c4:47: fc:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:70:8E:B6:8B:3C:45:DC:C4:A0:FE:45:72:7E:15:A3:D7:64:B7:AF X509v3 Authority Key Identifier: keyid:04:A0:27:5F:5B:2B:5C:18:0E:7E:0D:12:96:EE:D6:0B:C0:CF:63:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:1e:86:5d:7f:8c:b7:6f:3f:fd:1f:94:67:36:0e:af:a4:1b: f0:ee:4d:ce:77:a3:d7:c8:9b:c7:85:4b:d9:94:56:f5:35:a9: e4:0d:95:76:de:5b:9e:6f:41:d7:c1:17:5e:8f:ce:fb:01:e1: 15:a3:bf:96:94:6f:54:54:16:16:a7:aa:61:b1:38:63:fc:0e: 88:64:33:80:be:a4:35:97:84:a9:e6:fd:84:e9:b2:9f:ea:82: 67:53:08:cb:2c:20:ce:77:0b:05:c7:cb:4f:ae:f5:45:99:32: 20:9c:10:bd:b1:6d:f2:d4:ab:1c:a6:14:21:f3:93:27:ca:83: 31:59:49:93:94:86:5a:5d:93:9a:17:d2:fc:60:4e:5f:9d:61: bc:35:14:09:cc:f2:2a:1f:2f:8b:ec:05:42:5f:0c:07:d6:56: cd:eb:1f:27:82:c5:24:c6:d3:3a:51:20:df:c3:83:0e:e3:51: 86:d2:2b:c7:69:88:42:6c:ef:c8:63:e2:f4:fd:3f:6d:db:ed: cb:3f:b9:fc:7f:db:fb:6d:c5:cb:54:7c:40:9d:a1:cc:1b:21: 15:e7:27:d6:4e:07:e8:92:19:1a:a6:ab:5a:0b:96:1f:46:a3: 04:be:fc:df:27:db:e5:4b:8e:c4:01:94:b3:6d:93:10:bd:f6: bc:97:9f:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICETAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM1NjMxMTAvBgNVBAUTKDA0QTAyNzVGNUIyQjVDMTgwRTdFMEQxMjk2RUVENjBC QzBDRjYzNDcwHhcNMjUwODA4MTcyODAzWhcNMjUwODE1MTcyODAzWjAYMRYwFAYD VQQDEw02ODk2MzNhMy0wZjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwONzGVOsn/GHozv7K4pO3hI++PWZrD18oGb1lKGg3rGlJvwaJ8+R9EryC7M5 MWELhFb1pG/R0K8IJxi4yrNJn//DUVO6d5mNM/kyTSuAx72iDLR6LQWv4GMPTofB bHJKxf7OsagIKn28hMZFgZqnal0a0ncw+5pWMbFLTVjWK2WhGX1Vpq7T7YP0/EXe 6L0Jo787HuZIlk7CfrEex6jXiLN2rnzSF6K2S26/EdFG3s+XOErttL24hhNcOCu7 XPvlvHrn2bCfKTcByEbleAh1julhX8HgceXKaKCP6pFEqmtUZgvl8EKEzcrqo5K1 vExPh4scGQ3nWKy2P1+0xEf8vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNBwjraL PEXcxKD+RXJ+FaPXZLevMB8GA1UdIwQYMBaAFASgJ19bK1wYDn4NEpbu1gvAz2NH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzU2My8xMUI2MzM2NDE3 QzExMUU5ODEwODBGNkNDNEY5QUUwMi9CS0FuWDFzclhCZ09mZzBTbHU3V0M4RFBZ MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLQW5YMXNyWEJnT2ZnMFNsdTdXQzhEUFkwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzU2My8xMUI2MzM2NDE3QzExMUU5ODEwODBGNkNDNEY5QUUwMi9CS0FuWDFzclhC Z09mZzBTbHU3V0M4RFBZMGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7HoZdf4y3bz/9H5RnNg6vpBvw7k3Od6PXyJvHhUvZlFb1NankDZV2 3lueb0HXwRdej877AeEVo7+WlG9UVBYWp6phsThj/A6IZDOAvqQ1l4Sp5v2E6bKf 6oJnUwjLLCDOdwsFx8tPrvVFmTIgnBC9sW3y1KscphQh85MnyoMxWUmTlIZaXZOa F9L8YE5fnWG8NRQJzPIqHy+L7AVCXwwH1lbN6x8ngsUkxtM6USDfw4MO41GG0ivH aYhCbO/IY+L0/T9t2+3LP7n8f9v7bcXLVHxAnaHMGyEV5yfWTgfokhkapqtaC5Yf RqMEvvzfJ9vlS47EAZSzbZMQvfa8l58x -----END CERTIFICATE-----Generated at Fri Aug 8 20:45:52 2025 by rpki-client