$ rpki-client -vvf rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft File: BKfrBJqTf9nyuG4Vnd310sma1B4.mft (raw, json) Hash identifier: mGw4yALwMzNOWXLbteSFkEIIwewE6AlExQgsYRXGobc= Subject key identifier: D7:DF:93:A5:EE:84:91:C3:F5:B0:95:DA:1D:2E:3D:AE:5D:8B:6A:4F Authority key identifier: 04:A7:EB:04:9A:93:7F:D9:F2:B8:6E:15:9D:DD:F5:D2:C9:9A:D4:1E Certificate issuer: /CN=A91E87AB/serialNumber=04A7EB049A937FD9F2B86E159DDDF5D2C99AD41E Certificate serial: 0514 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft Manifest number: 050E Signing time: Sun 20 Jul 2025 23:49:48 +0000 Manifest this update: Sun 20 Jul 2025 23:49:48 +0000 Manifest next update: Sun 27 Jul 2025 23:49:48 +0000 Files and hashes: 1: BKfrBJqTf9nyuG4Vnd310sma1B4.crl (hash: 5cqbv95eQV5nA6xGxh7n77AwYBsTv/B1ZRvRPBIEItc=) 2: 709F3B2E145C11EC9A902165C4F9AE02.roa (hash: UibVZP54wNfnJM5fmfROJ4sssLQa2oOrL7RimgDBnPw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.crl rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:49:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1300 (0x514) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E87AB, serialNumber=04A7EB049A937FD9F2B86E159DDDF5D2C99AD41E Validity Not Before: Jul 20 23:49:48 2025 GMT Not After : Jul 27 23:49:48 2025 GMT Subject: CN=687d809c-1478 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c0:f3:6a:9d:ff:60:52:4c:39:53:3e:45:d3: c0:7c:5d:9b:97:40:fc:eb:d2:2a:4b:48:cd:4c:ba: 19:b1:ef:73:94:33:3e:53:50:5b:ca:25:51:cf:3f: 65:39:e1:f5:72:c0:70:9e:15:c8:20:3b:89:c5:23: 62:a2:88:0d:53:6d:00:38:58:15:73:97:2e:8b:af: fc:d7:df:6e:70:65:42:0d:14:9e:e0:a8:bd:46:c4: ce:8b:0f:61:96:16:7a:67:72:3c:8e:44:c4:9d:20: c5:59:33:78:58:c1:ff:83:1b:05:28:c2:2f:77:ec: 2f:a5:69:0a:f2:6a:e2:49:1d:39:c3:ec:ad:87:e9: 11:16:e2:0c:68:4a:2d:cd:87:bd:6f:14:01:4e:fb: 49:49:e8:28:d4:ee:a7:e5:a6:d5:54:df:8f:d3:98: 49:77:f2:b1:59:8c:46:84:32:62:2f:ea:59:77:ee: 11:17:81:35:3e:54:ef:bd:c8:4d:22:2c:40:91:21: e6:53:1b:d2:78:8d:6e:d2:4e:60:53:2a:f8:a1:a7: 83:e6:c0:ef:2b:d0:9e:1b:13:5d:5d:55:9f:d4:ff: 75:9a:44:25:44:72:42:21:ab:f8:8d:27:50:f6:51: e1:b5:46:8f:68:c9:1f:5a:e7:d3:fb:12:6d:bf:5c: 5e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:DF:93:A5:EE:84:91:C3:F5:B0:95:DA:1D:2E:3D:AE:5D:8B:6A:4F X509v3 Authority Key Identifier: keyid:04:A7:EB:04:9A:93:7F:D9:F2:B8:6E:15:9D:DD:F5:D2:C9:9A:D4:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:a3:5f:3b:1f:f8:65:0d:a0:55:a5:63:df:7f:6e:35:2b:d1: ce:f3:43:be:fa:ac:dd:b6:af:a7:4d:2c:41:7c:d5:ba:d5:cf: 31:df:b7:58:27:56:fd:eb:4b:bf:e6:03:16:40:cf:cb:83:4b: a6:0c:32:07:56:62:80:06:ab:0f:da:d8:e5:01:7b:54:5a:93: 7b:36:a2:46:bd:cc:ac:11:22:39:a7:02:47:55:62:6a:e5:8f: ed:9a:7f:3c:b0:40:f0:f4:38:0c:7d:30:ec:10:e1:7b:ac:0e: 2a:0d:7e:36:6a:f0:dd:3c:5a:25:47:0f:65:38:10:bb:1e:a3: ab:00:aa:48:a0:25:06:e9:7e:f0:eb:25:26:84:72:d8:5a:0a: 5d:ff:f9:c7:f6:6f:06:6c:cb:7e:75:73:74:62:c3:58:c0:b0: 32:5b:33:41:99:54:37:ed:cd:fa:08:da:f1:2c:45:2c:2f:66: e5:7b:7e:58:9d:72:fe:ae:bd:fc:d7:ec:38:de:b6:99:10:a9: f1:01:27:75:c2:bb:29:af:bd:47:4c:98:c2:20:e8:ed:71:8d: 7a:b3:48:81:aa:a4:ee:db:76:11:2a:6b:6a:6b:fb:31:38:ef: 2a:37:18:c7:72:39:ed:07:e7:58:ca:3a:0f:bb:5c:6e:d9:c2: 37:55:99:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg3QUIxMTAvBgNVBAUTKDA0QTdFQjA0OUE5MzdGRDlGMkI4NkUxNTlERERGNUQy Qzk5QUQ0MUUwHhcNMjUwNzIwMjM0OTQ4WhcNMjUwNzI3MjM0OTQ4WjAYMRYwFAYD VQQDEw02ODdkODA5Yy0xNDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAocDzap3/YFJMOVM+RdPAfF2bl0D869IqS0jNTLoZse9zlDM+U1BbyiVRzz9l OeH1csBwnhXIIDuJxSNioogNU20AOFgVc5cui6/8199ucGVCDRSe4Ki9RsTOiw9h lhZ6Z3I8jkTEnSDFWTN4WMH/gxsFKMIvd+wvpWkK8mriSR05w+yth+kRFuIMaEot zYe9bxQBTvtJSego1O6n5abVVN+P05hJd/KxWYxGhDJiL+pZd+4RF4E1PlTvvchN IixAkSHmUxvSeI1u0k5gUyr4oaeD5sDvK9CeGxNdXVWf1P91mkQlRHJCIav4jSdQ 9lHhtUaPaMkfWufT+xJtv1xesQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNffk6Xu hJHD9bCV2h0uPa5di2pPMB8GA1UdIwQYMBaAFASn6wSak3/Z8rhuFZ3d9dLJmtQe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODdBQi85MTZCMDY2NjE0 NTgxMUVDOUVENkM3M0JDNEY5QUUwMi9CS2ZyQkpxVGY5bnl1RzRWbmQzMTBzbWEx QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLZnJCSnFUZjlueXVHNFZuZDMxMHNtYTFCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODdBQi85MTZCMDY2NjE0NTgxMUVDOUVENkM3M0JDNEY5QUUwMi9CS2ZyQkpxVGY5 bnl1RzRWbmQzMTBzbWExQjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmo187H/hlDaBVpWPff241K9HO80O++qzdtq+nTSxBfNW61c8x37dY J1b960u/5gMWQM/Lg0umDDIHVmKABqsP2tjlAXtUWpN7NqJGvcysESI5pwJHVWJq 5Y/tmn88sEDw9DgMfTDsEOF7rA4qDX42avDdPFolRw9lOBC7HqOrAKpIoCUG6X7w 6yUmhHLYWgpd//nH9m8GbMt+dXN0YsNYwLAyWzNBmVQ37c36CNrxLEUsL2ble35Y nXL+rr381+w43raZEKnxASd1wrspr71HTJjCIOjtcY16s0iBqqTu23YRKmtqa/sx OO8qNxjHcjntB+dYyjoPu1xu2cI3VZka -----END CERTIFICATE-----Generated at Mon Jul 21 07:09:55 2025 by rpki-client