$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: Yd4VmzSLwwfvUs9rhbMukVjMo9vIRIKb53CVtyznYvc= Subject key identifier: 3B:C6:88:BE:A3:03:8D:DF:83:37:EC:9C:E2:01:0B:46:A5:A8:29:5B Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 0168 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 0164 Signing time: Sat 19 Jul 2025 04:09:08 +0000 Manifest this update: Sat 19 Jul 2025 04:09:08 +0000 Manifest next update: Sat 26 Jul 2025 04:09:08 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: oui+ertSVN7XfkV62Pj6xyD8ItUpMxnmZgIZwXyWwSk=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: 34LR4muDkvBv1o97MuicPyBMy45vufYYnTs0rk2DkdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:09:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 360 (0x168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F, serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Jul 19 04:09:08 2025 GMT Not After : Jul 26 04:09:08 2025 GMT Subject: CN=687b1a64-2573 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:c1:a8:d6:b1:45:31:4c:a7:9c:6a:d2:6d:cb: 09:af:6b:33:92:f2:31:68:07:60:21:c5:d7:f6:64: 6d:97:a3:62:b4:c5:bd:c2:e7:de:6b:1c:11:28:2b: 12:72:67:d6:c2:c7:ef:45:b7:65:11:db:ce:78:ac: 39:da:62:cd:07:2b:32:f7:a3:b5:1b:1f:87:fc:37: d1:7a:ea:83:2b:6c:83:aa:7c:86:0a:6f:37:c4:a9: 4d:df:ac:49:73:89:8e:b9:6f:eb:a9:08:85:65:c1: 30:f3:8e:c0:cb:08:bf:c1:e3:d6:04:db:46:bb:2d: 51:be:e4:e8:b1:10:aa:66:5e:17:c5:03:01:49:e2: 6e:78:29:0f:0c:4e:97:3f:f3:7c:12:2e:33:c4:c5: 26:1f:b8:6f:70:53:d1:2f:21:35:d4:6d:6d:df:cd: 37:90:07:24:f8:6f:dd:25:0b:01:0c:b1:25:ee:8f: 61:a6:21:a1:18:8e:42:9d:7e:a1:f7:70:73:31:7d: 86:ec:67:b6:5b:f8:d5:2e:85:9b:14:82:9a:4c:e5: 4f:5d:0c:58:ee:5a:9f:16:25:67:1f:ab:f2:96:fe: 9c:a8:5a:83:c6:4f:41:ca:5b:84:87:4c:f9:07:a3: e7:65:43:9d:d0:84:af:92:41:14:d8:7c:94:ee:0d: c0:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:C6:88:BE:A3:03:8D:DF:83:37:EC:9C:E2:01:0B:46:A5:A8:29:5B X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:91:42:ce:d8:c4:27:e2:5a:87:b8:19:83:87:d5:10:d0:b9: d8:5d:3e:b4:77:c9:69:8f:5d:3f:60:ca:23:b5:46:6b:51:aa: 9b:3e:29:20:29:b2:67:9c:c5:e0:9f:6c:82:1f:d0:05:61:ba: 7d:c8:76:8e:a1:10:ce:67:ff:71:13:df:72:58:30:6a:8f:2c: ad:e4:86:f6:11:ec:02:fc:78:ff:f1:d0:64:78:8c:f2:46:42: b3:ca:ac:e8:ed:a9:ee:8b:37:1e:e2:3d:f4:d6:16:49:ae:8a: 16:9e:1c:2e:12:73:d3:a4:05:83:be:39:b7:8a:ec:8a:b1:ea: fb:fe:16:78:b6:64:dd:b1:33:05:74:f1:ac:77:78:c5:29:45: d6:fa:47:7d:64:9f:99:01:27:51:18:e8:03:4e:c9:20:41:b6: 7d:f3:fb:69:40:72:f6:5c:23:0d:40:18:d1:53:1c:09:8f:b8: 25:02:71:d0:ff:0f:ae:39:40:b7:fd:0d:f9:c5:67:7a:5b:3a: d9:d2:45:da:53:1a:57:1e:a7:08:57:1e:c7:3f:a8:64:ec:dd: b7:64:0b:09:b2:09:82:7a:2b:ae:cb:d8:56:02:e9:41:1d:c7: 97:f1:d8:14:77:8c:33:90:b1:db:55:b4:9f:2a:b8:c6:2e:ac: dd:69:97:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjUwNzE5MDQwOTA4WhcNMjUwNzI2MDQwOTA4WjAYMRYwFAYD VQQDEw02ODdiMWE2NC0yNTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6sGo1rFFMUynnGrSbcsJr2szkvIxaAdgIcXX9mRtl6NitMW9wufeaxwRKCsS cmfWwsfvRbdlEdvOeKw52mLNBysy96O1Gx+H/DfReuqDK2yDqnyGCm83xKlN36xJ c4mOuW/rqQiFZcEw847Aywi/wePWBNtGuy1RvuTosRCqZl4XxQMBSeJueCkPDE6X P/N8Ei4zxMUmH7hvcFPRLyE11G1t3803kAck+G/dJQsBDLEl7o9hpiGhGI5CnX6h 93BzMX2G7Ge2W/jVLoWbFIKaTOVPXQxY7lqfFiVnH6vylv6cqFqDxk9ByluEh0z5 B6PnZUOd0ISvkkEU2HyU7g3A9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvGiL6j A43fgzfsnOIBC0alqClbMB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9kULO2MQn4lqHuBmDh9UQ0LnYXT60d8lpj10/YMojtUZrUaqbPikg KbJnnMXgn2yCH9AFYbp9yHaOoRDOZ/9xE99yWDBqjyyt5Ib2EewC/Hj/8dBkeIzy RkKzyqzo7anuizce4j301hZJrooWnhwuEnPTpAWDvjm3iuyKser7/hZ4tmTdsTMF dPGsd3jFKUXW+kd9ZJ+ZASdRGOgDTskgQbZ98/tpQHL2XCMNQBjRUxwJj7glAnHQ /w+uOUC3/Q35xWd6WzrZ0kXaUxpXHqcIVx7HP6hk7N23ZAsJsgmCeiuuy9hWAulB HceX8dgUd4wzkLHbVbSfKrjGLqzdaZfO -----END CERTIFICATE-----Generated at Sun Jul 20 06:27:22 2025 by rpki-client