$ rpki-client -vvf rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft File: BKAnX1srXBgOfg0Slu7WC8DPY0c.mft (raw, json) Hash identifier: 23u/ihDdXlvDFmeFVQArUnkki3Wu28l/unFhKSH5Yk8= Subject key identifier: 3A:1B:27:C5:A5:62:6A:9A:05:C4:63:36:94:07:21:62:1C:94:9E:BD Authority key identifier: 04:A0:27:5F:5B:2B:5C:18:0E:7E:0D:12:96:EE:D6:0B:C0:CF:63:47 Certificate issuer: /CN=A919C563/serialNumber=04A0275F5B2B5C180E7E0D1296EED60BC0CF6347 Certificate serial: 1115 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft Manifest number: 110A Signing time: Mon 16 Jun 2025 17:18:53 +0000 Manifest this update: Mon 16 Jun 2025 17:18:53 +0000 Manifest next update: Mon 23 Jun 2025 17:18:53 +0000 Files and hashes: 1: BKAnX1srXBgOfg0Slu7WC8DPY0c.crl (hash: TylnraJJ0yhBYfVlyH/1pr+dkO0khcD7G+F6bk9Thpk=) 2: 2B2B06B2401E11EBB0588F5FC4F9AE02.roa (hash: njXqnLM6vnU07txVMRRTX8IPNMY9z1UdckP2aMY3pBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.crl rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 17:18:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4373 (0x1115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C563, serialNumber=04A0275F5B2B5C180E7E0D1296EED60BC0CF6347 Validity Not Before: Jun 16 17:18:53 2025 GMT Not After : Jun 23 17:18:53 2025 GMT Subject: CN=685051fd-08ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:80:4c:31:c9:21:c5:d5:04:7f:65:28:31:bf: 2c:0e:6c:01:3a:63:86:ce:84:1c:a9:ad:60:03:19: b0:6e:0c:59:82:cb:86:d5:85:25:f1:b8:71:90:4b: 6b:27:0f:34:98:3b:4c:9d:d5:ca:9d:b7:ca:c5:37: 6a:b5:68:d2:cf:f9:65:01:e5:57:62:2a:d6:ee:a3: 08:d9:b4:d2:fe:af:5c:d1:bd:9a:55:f2:87:25:36: 55:58:22:ac:64:ee:18:8a:14:a1:2c:dc:b6:7c:61: 59:17:dd:db:58:8b:ec:bb:29:2c:ca:9d:0d:ff:fc: 42:ee:31:c7:fd:7e:80:18:e5:3a:b8:3b:ef:e5:52: ad:bc:74:59:8f:0e:24:89:2f:58:96:dd:46:fc:49: 42:d2:d7:73:ed:a5:57:3f:4b:c1:c3:2d:96:f9:a9: f3:f1:a5:f3:37:c4:9c:63:0a:84:48:3a:d2:dd:6d: 7d:32:be:32:5b:4e:dc:45:dc:ba:7d:0e:81:6c:ac: 90:6d:fc:20:70:8c:d4:df:0a:6c:d6:dd:9e:d7:6a: da:6d:cd:6e:f1:a7:d3:92:3c:fc:74:bb:39:6b:f7: 89:d1:f2:72:3d:bc:15:65:ee:79:09:41:79:86:a4: 62:84:e0:58:69:63:63:17:22:6b:4e:c1:9f:1b:14: 25:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:1B:27:C5:A5:62:6A:9A:05:C4:63:36:94:07:21:62:1C:94:9E:BD X509v3 Authority Key Identifier: keyid:04:A0:27:5F:5B:2B:5C:18:0E:7E:0D:12:96:EE:D6:0B:C0:CF:63:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:7b:f9:d8:a8:15:b5:eb:76:bc:9b:3a:88:48:ac:8b:d1:07: dc:cb:4d:2f:c2:8c:ef:8c:c3:0b:d8:ce:f2:11:80:a2:f8:f3: 1d:3b:59:8d:91:ac:01:55:7b:92:ea:5d:15:b6:89:e5:00:07: a7:24:98:5c:47:f1:08:a4:ad:b8:1e:90:9b:a4:cc:75:fe:90: 19:3b:4f:d2:14:92:c7:38:ef:f9:0d:16:94:74:70:40:4e:09: 9e:7e:34:8d:a1:d4:5c:98:36:79:62:55:d6:8b:8e:8b:12:4c: f0:35:2d:50:a7:74:66:1f:e2:1a:b5:f6:b0:ac:ff:3e:32:6f: 24:40:db:f2:ea:77:df:e0:b0:60:16:80:72:5a:34:ad:46:fc: e6:50:be:98:9b:df:ca:f9:b0:e9:82:7b:0a:f2:7d:a8:ee:99: ed:b9:23:7a:27:6d:8b:ae:75:f9:84:54:cb:14:2a:80:ad:8b: 95:7f:2e:7d:6c:6f:87:a1:d2:70:99:6d:fb:08:ef:c8:0a:79: 86:66:10:9f:e7:61:a8:89:0e:3f:f9:03:49:91:44:35:cf:00: 7c:b0:cb:d0:68:50:7d:e7:07:3b:38:35:4e:ff:0d:2d:1c:ee: 0f:ee:a7:df:20:f1:5f:72:b8:2e:1f:27:f4:db:2d:a1:d0:39: 5c:64:79:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICERUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM1NjMxMTAvBgNVBAUTKDA0QTAyNzVGNUIyQjVDMTgwRTdFMEQxMjk2RUVENjBC QzBDRjYzNDcwHhcNMjUwNjE2MTcxODUzWhcNMjUwNjIzMTcxODUzWjAYMRYwFAYD VQQDEw02ODUwNTFmZC0wOGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYBMMckhxdUEf2UoMb8sDmwBOmOGzoQcqa1gAxmwbgxZgsuG1YUl8bhxkEtr Jw80mDtMndXKnbfKxTdqtWjSz/llAeVXYirW7qMI2bTS/q9c0b2aVfKHJTZVWCKs ZO4YihShLNy2fGFZF93bWIvsuyksyp0N//xC7jHH/X6AGOU6uDvv5VKtvHRZjw4k iS9Ylt1G/ElC0tdz7aVXP0vBwy2W+anz8aXzN8ScYwqESDrS3W19Mr4yW07cRdy6 fQ6BbKyQbfwgcIzU3wps1t2e12rabc1u8afTkjz8dLs5a/eJ0fJyPbwVZe55CUF5 hqRihOBYaWNjFyJrTsGfGxQl4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDobJ8Wl YmqaBcRjNpQHIWIclJ69MB8GA1UdIwQYMBaAFASgJ19bK1wYDn4NEpbu1gvAz2NH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzU2My8xMUI2MzM2NDE3 QzExMUU5ODEwODBGNkNDNEY5QUUwMi9CS0FuWDFzclhCZ09mZzBTbHU3V0M4RFBZ MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLQW5YMXNyWEJnT2ZnMFNsdTdXQzhEUFkwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzU2My8xMUI2MzM2NDE3QzExMUU5ODEwODBGNkNDNEY5QUUwMi9CS0FuWDFzclhC Z09mZzBTbHU3V0M4RFBZMGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCue/nYqBW163a8mzqISKyL0Qfcy00vwozvjMML2M7yEYCi+PMdO1mN kawBVXuS6l0VtonlAAenJJhcR/EIpK24HpCbpMx1/pAZO0/SFJLHOO/5DRaUdHBA TgmefjSNodRcmDZ5YlXWi46LEkzwNS1Qp3RmH+IatfawrP8+Mm8kQNvy6nff4LBg FoByWjStRvzmUL6Ym9/K+bDpgnsK8n2o7pntuSN6J22LrnX5hFTLFCqArYuVfy59 bG+HodJwmW37CO/ICnmGZhCf52GoiQ4/+QNJkUQ1zwB8sMvQaFB95wc7ODVO/w0t HO4P7qffIPFfcrguHyf02y2h0DlcZHlM -----END CERTIFICATE-----Generated at Wed Jun 18 18:23:56 2025 by rpki-client