$ rpki-client -vvf rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft File: BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft (raw, json) Hash identifier: 2a3THlsR5tdZyBMgdA61i3q50pl3how5CiMTvTJQQCw= Subject key identifier: B4:54:62:ED:5D:29:79:0E:F7:37:7C:AD:13:87:06:17:18:1A:B2:42 Authority key identifier: 04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D Certificate issuer: /CN=A91238EC/serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Certificate serial: 1772 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft Manifest number: 1757 Signing time: Sun 24 Aug 2025 16:35:36 +0000 Manifest this update: Sun 24 Aug 2025 16:35:35 +0000 Manifest next update: Sun 31 Aug 2025 16:35:35 +0000 Files and hashes: 1: BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl (hash: 63lIF5bXbbH96IEkShQBSYZX5eUuvfXpqhBZ4sRM43s=) 2: 2F9D268C76B211ECABA1A612C4F9AE02.roa (hash: N4cX9Gn5/2UN1QBdCa0fdRS9KCB6RvJx+JIs1tA6NvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 16:35:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6002 (0x1772) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238EC, serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Validity Not Before: Aug 24 16:35:35 2025 GMT Not After : Aug 31 16:35:35 2025 GMT Subject: CN=68ab3f57-c2db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f2:7d:7b:4b:8f:fb:b5:bb:1b:83:66:aa:59: a8:80:77:99:38:3c:dd:05:4f:b9:25:12:21:1a:30: 83:13:ba:df:c6:54:30:c4:15:10:39:0b:ed:20:ed: 89:32:55:32:3a:c3:96:f2:be:27:c2:ed:a6:a2:5e: 67:45:38:00:0a:2c:60:8f:47:99:74:4e:55:1e:22: 20:85:f8:cf:5e:32:d3:61:cd:53:af:fe:ad:36:7b: 44:21:54:18:92:b7:4e:0f:e6:a1:10:a1:37:61:80: 1f:7c:42:b8:48:d3:17:a2:fc:5b:e5:72:18:86:83: 72:d8:65:c4:6d:56:70:a7:6e:0f:75:de:52:a7:a6: 03:5b:c9:da:9e:f0:5b:f5:b2:20:75:f1:f3:3f:a4: fb:a8:21:19:ec:f0:a4:84:7e:50:87:c3:ac:b6:bb: 1e:46:db:e9:da:cc:32:1d:aa:a2:c4:9b:86:7c:3f: ef:7f:75:b8:81:8e:02:5b:d2:42:22:6c:33:c2:28: 5b:ed:3b:dc:29:ed:ba:97:97:86:6a:70:6b:57:32: c7:40:d5:c5:7b:98:82:f6:c9:57:45:b2:cf:cd:a3: 1a:18:ea:f2:48:ed:0d:08:97:f9:4c:1a:9f:57:6e: 2b:a5:3d:35:66:34:f0:ec:44:84:e1:94:7c:2c:bf: 4d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:54:62:ED:5D:29:79:0E:F7:37:7C:AD:13:87:06:17:18:1A:B2:42 X509v3 Authority Key Identifier: keyid:04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:3f:ce:73:74:dd:c2:82:03:85:80:9e:d4:8a:c6:8f:03:37: 74:e7:28:8f:f2:40:3a:cd:f3:0a:38:ac:d1:e0:b2:bf:50:62: 37:7b:8c:0c:ba:95:f8:3c:f4:8c:1c:4f:b8:6c:db:ec:d7:09: ae:cd:86:e2:21:b6:98:78:5d:39:50:2d:fa:c6:69:55:45:02: 96:99:2d:5e:9e:5b:bb:f4:ea:83:dd:47:b7:ac:f9:53:3e:8d: d1:16:ff:56:36:2d:d1:5f:7d:f2:6c:51:6d:f8:2b:ff:73:64: 69:dd:bd:c5:d3:0d:c6:cd:92:f9:4e:ef:ca:7d:1f:66:2b:b1: 7a:48:f8:50:38:1e:c5:34:e1:eb:d1:17:1c:41:d2:a1:37:4c: 37:7f:e1:e3:da:4f:1f:7c:e4:cf:5c:d0:66:81:6c:2a:bb:79: c6:90:bd:3b:49:cf:17:5b:22:b2:cc:29:21:02:7d:c4:29:f4: e1:a8:1e:88:50:52:a0:f8:09:33:d0:63:1a:9f:47:15:d9:9d: 2a:69:89:0e:00:55:8d:92:9f:70:02:fa:8e:a4:48:5d:d6:9e: 8a:e5:1b:ed:b6:a8:13:f1:a0:2f:f7:68:bb:97:a1:f8:ff:67: 2c:a5:98:7d:b1:ba:8c:9b:82:f8:1f:30:47:61:10:fb:d4:2f: a4:df:4d:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RUMxMTAvBgNVBAUTKDA0ODMyRkJFNzBDN0I4ODU5Q0ExQTBFM0UwNUEyOTZC QjA5QzVEM0QwHhcNMjUwODI0MTYzNTM1WhcNMjUwODMxMTYzNTM1WjAYMRYwFAYD VQQDEw02OGFiM2Y1Ny1jMmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvJ9e0uP+7W7G4NmqlmogHeZODzdBU+5JRIhGjCDE7rfxlQwxBUQOQvtIO2J MlUyOsOW8r4nwu2mol5nRTgACixgj0eZdE5VHiIghfjPXjLTYc1Tr/6tNntEIVQY krdOD+ahEKE3YYAffEK4SNMXovxb5XIYhoNy2GXEbVZwp24Pdd5Sp6YDW8nanvBb 9bIgdfHzP6T7qCEZ7PCkhH5Qh8OstrseRtvp2swyHaqixJuGfD/vf3W4gY4CW9JC Imwzwihb7TvcKe26l5eGanBrVzLHQNXFe5iC9slXRbLPzaMaGOrySO0NCJf5TBqf V24rpT01ZjTw7ESE4ZR8LL9NlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLRUYu1d KXkO9zd8rROHBhcYGrJCMB8GA1UdIwQYMBaAFASDL75wx7iFnKGg4+BaKWuwnF09 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhFQy82MUQ0RjQ4QUUz RTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJV2NvYURqNEZvcGE3Q2NY VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJTXZ2bkRIdUlXY29hRGo0Rm9wYTdDY1hUMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhFQy82MUQ0RjQ4QUUzRTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJ V2NvYURqNEZvcGE3Q2NYVDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDP85zdN3CggOFgJ7UisaPAzd05yiP8kA6zfMKOKzR4LK/UGI3e4wM upX4PPSMHE+4bNvs1wmuzYbiIbaYeF05UC36xmlVRQKWmS1enlu79OqD3Ue3rPlT Po3RFv9WNi3RX33ybFFt+Cv/c2Rp3b3F0w3GzZL5Tu/KfR9mK7F6SPhQOB7FNOHr 0RccQdKhN0w3f+Hj2k8ffOTPXNBmgWwqu3nGkL07Sc8XWyKyzCkhAn3EKfThqB6I UFKg+Akz0GMan0cV2Z0qaYkOAFWNkp9wAvqOpEhd1p6K5RvttqgT8aAv92i7l6H4 /2cspZh9sbqMm4L4HzBHYRD71C+k303I -----END CERTIFICATE-----Generated at Sun Aug 24 21:31:16 2025 by rpki-client