$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: /8RlBMEGc7NpPBu9BHb6YDvd2QSW45G14S7Aj+4J+gU= Subject key identifier: 3B:F6:1B:E1:21:5A:10:E1:3F:DB:8D:E0:67:8B:63:79:3E:1B:A6:E4 Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 0194 Signing time: Thu 23 Oct 2025 05:06:45 +0000 Manifest this update: Thu 23 Oct 2025 05:06:45 +0000 Manifest next update: Thu 30 Oct 2025 05:06:45 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: /GvvUie6uCEch+m3JEiaKCrS/e3iK4M21/LTu+l4UTQ=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: 34LR4muDkvBv1o97MuicPyBMy45vufYYnTs0rk2DkdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 05:06:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F, serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Oct 23 05:06:45 2025 GMT Not After : Oct 30 05:06:45 2025 GMT Subject: CN=68f9b7e5-8f7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:56:ff:82:8d:bd:47:1d:5e:03:ab:44:af:81: 65:01:d1:11:80:9c:00:3f:77:79:f1:33:a7:e6:53: a3:75:59:f0:b0:8c:e3:51:cf:49:9d:9d:b1:d9:6d: 0c:3b:26:b2:b3:34:17:02:d4:31:4c:cd:3d:41:51: bc:6b:d6:f2:b6:d9:53:33:4b:6e:d0:d6:53:65:1c: f2:5f:45:36:a8:65:89:0a:ec:65:b5:23:91:c6:bc: f9:6d:3c:7b:8d:bd:36:10:8d:75:a9:3c:62:f7:9e: 48:fa:7e:09:dc:43:5b:53:c1:e6:f4:d4:c2:ed:15: 2a:5b:02:09:de:e1:be:a6:c4:8b:14:69:08:1a:c5: 83:f7:89:ce:4d:b7:0c:89:4a:67:6d:1c:2a:53:fc: 0f:61:41:4d:41:3a:38:39:f5:76:7e:c0:9a:09:a2: 32:a5:25:46:d8:8c:02:c1:7e:8d:d0:7d:37:18:29: d8:02:0a:90:de:45:6f:b2:5f:0a:5a:88:2e:3f:f6: 3f:93:a7:7f:f9:17:81:68:87:08:53:1f:09:9b:79: d9:66:d2:b3:2a:ab:d7:41:be:b0:28:2e:3b:83:68: fa:6b:81:37:a0:45:29:37:21:c5:15:a1:dc:83:c1: 3a:a7:c7:e5:10:e4:0a:b7:47:15:56:55:49:96:83: fb:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:F6:1B:E1:21:5A:10:E1:3F:DB:8D:E0:67:8B:63:79:3E:1B:A6:E4 X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:e8:4f:cc:30:0f:e2:40:ea:64:95:b5:11:05:a1:48:ed:f3: ff:6c:f5:62:7b:9f:bc:2b:9f:5c:22:7e:3a:88:37:c4:f0:78: a0:9b:a0:2d:40:11:10:9a:fd:d0:81:c1:d5:db:9f:9d:15:18: 84:0c:8b:ec:94:ff:6e:6b:7a:38:64:f1:88:28:26:dd:50:e0: e7:45:ac:12:73:9b:f3:c1:cb:77:37:90:41:72:35:3c:ac:11: 18:8f:f6:fb:4e:cd:5f:fd:c4:76:b0:a7:ed:2c:d4:a0:05:b0: 0b:82:bd:47:7b:5a:46:d1:c8:ca:6a:92:a1:cf:8d:8f:55:ca: cd:45:ce:a9:7b:c1:49:2f:19:fd:9b:4b:97:71:0d:7c:1f:d1: 6f:c2:8f:d2:81:34:75:41:53:1d:62:12:d7:cd:ec:b0:11:61: 73:1d:5f:9e:ba:50:c7:2e:9e:48:a1:f1:15:7f:95:6e:99:1c: cb:0e:d4:9d:b3:bc:4f:95:57:1c:b0:a7:e9:be:06:d6:66:db: fa:84:fd:12:4c:94:a3:0b:76:4e:ae:a8:2c:fe:34:2a:14:8f: 64:4b:3e:bb:d3:c8:af:c5:f2:5c:50:c9:be:93:6a:78:23:9d: 19:16:34:da:14:05:c1:a5:95:7d:87:ed:6e:77:3c:cc:26:f6: 03:3f:4c:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjUxMDIzMDUwNjQ1WhcNMjUxMDMwMDUwNjQ1WjAYMRYwFAYD VQQDEw02OGY5YjdlNS04ZjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVb/go29Rx1eA6tEr4FlAdERgJwAP3d58TOn5lOjdVnwsIzjUc9JnZ2x2W0M OyayszQXAtQxTM09QVG8a9byttlTM0tu0NZTZRzyX0U2qGWJCuxltSORxrz5bTx7 jb02EI11qTxi955I+n4J3ENbU8Hm9NTC7RUqWwIJ3uG+psSLFGkIGsWD94nOTbcM iUpnbRwqU/wPYUFNQTo4OfV2fsCaCaIypSVG2IwCwX6N0H03GCnYAgqQ3kVvsl8K WoguP/Y/k6d/+ReBaIcIUx8Jm3nZZtKzKqvXQb6wKC47g2j6a4E3oEUpNyHFFaHc g8E6p8flEOQKt0cVVlVJloP7DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDv2G+Eh WhDhP9uN4GeLY3k+G6bkMB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn6E/MMA/iQOpklbURBaFI7fP/bPVie5+8K59cIn46iDfE8Higm6At QBEQmv3QgcHV25+dFRiEDIvslP9ua3o4ZPGIKCbdUODnRawSc5vzwct3N5BBcjU8 rBEYj/b7Ts1f/cR2sKftLNSgBbALgr1He1pG0cjKapKhz42PVcrNRc6pe8FJLxn9 m0uXcQ18H9Fvwo/SgTR1QVMdYhLXzeywEWFzHV+eulDHLp5IofEVf5VumRzLDtSd s7xPlVccsKfpvgbWZtv6hP0STJSjC3ZOrqgs/jQqFI9kSz6708ivxfJcUMm+k2p4 I50ZFjTaFAXBpZV9h+1udzzMJvYDP0ye -----END CERTIFICATE-----Generated at Thu Oct 23 20:32:25 2025 by rpki-client