$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: MjLf2xlxeWTZ0XEyfR6XP5W3FUuEeCN1DA8WuLszy/0= Subject key identifier: C6:94:C0:00:E9:F3:40:B7:29:DE:06:A2:44:04:04:B5:4B:B7:0D:BA Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 0181 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 017D Signing time: Fri 05 Sep 2025 04:01:31 +0000 Manifest this update: Fri 05 Sep 2025 04:01:31 +0000 Manifest next update: Fri 12 Sep 2025 04:01:31 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: kGcgnprZLmzBhVD1itkMNcVtCmI2AWpETind7fx2U6A=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: 34LR4muDkvBv1o97MuicPyBMy45vufYYnTs0rk2DkdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 04:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F, serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Sep 5 04:01:31 2025 GMT Not After : Sep 12 04:01:31 2025 GMT Subject: CN=68ba609b-54ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6c:36:98:60:bd:fa:3a:58:ba:40:2f:67:ba: 05:62:ac:40:e6:69:36:8f:45:5d:15:4b:bc:74:9d: 34:32:d7:5c:d6:b4:e3:ec:df:02:33:18:ab:44:88: 0b:bb:0b:30:b1:05:aa:0b:73:1c:33:85:ed:52:d2: be:3a:02:68:22:49:61:f1:47:5c:2a:e4:ec:62:e2: f8:cf:a3:7d:f7:5b:fa:ae:53:34:1c:30:e9:f3:fd: ca:2c:f3:74:0f:1c:98:d5:61:7a:e4:09:5b:2c:a6: 17:df:56:51:72:ce:ed:de:df:95:7b:68:85:b4:77: f9:74:6a:5d:7a:58:3a:5d:6f:35:2c:45:be:b2:ed: e2:44:94:a6:f9:17:77:74:ef:58:0b:bc:d2:4a:a9: ae:ea:21:b5:b7:59:92:dd:6e:15:5a:35:d2:60:cd: f5:45:dc:5f:19:40:e5:98:bc:26:97:07:f4:49:fa: e7:51:9b:4f:b7:dd:19:46:ee:b5:f7:7f:d4:e1:b9: f6:b3:a0:2d:6e:c5:08:56:7c:14:e7:65:92:94:f5: 70:90:1c:dc:81:f4:ae:95:fb:02:43:a0:76:f1:c0: e8:4f:69:65:88:86:83:d4:57:a3:3b:93:eb:bc:e1: 9e:a9:fd:65:56:6d:4e:69:0e:3e:29:08:40:2e:87: 8d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:94:C0:00:E9:F3:40:B7:29:DE:06:A2:44:04:04:B5:4B:B7:0D:BA X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:03:2c:a8:d8:08:c9:f0:02:ec:85:7c:dc:11:76:9a:dc:ec: e9:f1:99:8e:99:c8:c9:95:71:8b:0e:d3:0c:2a:4f:39:42:66: 17:09:01:cd:2c:8d:03:82:53:c1:fa:21:07:e5:eb:5c:0e:70: d4:a3:6d:51:79:00:49:b4:0f:1f:40:80:92:81:ae:1d:8b:11: b4:bb:f7:50:a6:79:41:ba:2c:ab:a8:30:89:0b:00:d8:24:c8: 09:34:8a:a4:09:01:b2:65:26:4a:7c:71:32:00:b1:ea:8b:1b: 17:3d:ac:b7:39:3a:81:a3:84:06:d8:47:2d:a3:86:ae:7b:ea: d5:1d:f8:c5:67:4c:b9:4a:dd:15:b4:6e:21:f7:5b:12:7b:26: 64:f7:a0:dd:82:a7:28:39:51:1c:fd:88:b4:b4:51:4a:a4:46: 56:52:fc:8e:f3:51:f0:16:63:d0:85:e7:0b:61:b8:88:8f:54: 44:94:8a:49:cb:d8:3a:d4:94:f3:4f:7a:cd:58:24:35:9e:c2: 0f:8a:2c:c7:43:07:df:db:1c:d8:a9:45:7d:a0:86:6d:2d:a5: 03:3b:46:0a:89:66:1e:cf:85:73:1f:1e:08:07:38:54:69:49: a3:55:c5:1e:66:7b:b8:e5:74:ad:19:b5:6d:14:12:74:d8:97: 71:fc:e7:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjUwOTA1MDQwMTMxWhcNMjUwOTEyMDQwMTMxWjAYMRYwFAYD VQQDEw02OGJhNjA5Yi01NGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWw2mGC9+jpYukAvZ7oFYqxA5mk2j0VdFUu8dJ00Mtdc1rTj7N8CMxirRIgL uwswsQWqC3McM4XtUtK+OgJoIklh8UdcKuTsYuL4z6N991v6rlM0HDDp8/3KLPN0 DxyY1WF65AlbLKYX31ZRcs7t3t+Ve2iFtHf5dGpdelg6XW81LEW+su3iRJSm+Rd3 dO9YC7zSSqmu6iG1t1mS3W4VWjXSYM31RdxfGUDlmLwmlwf0SfrnUZtPt90ZRu61 93/U4bn2s6AtbsUIVnwU52WSlPVwkBzcgfSulfsCQ6B28cDoT2lliIaD1FejO5Pr vOGeqf1lVm1OaQ4+KQhALoeNKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMaUwADp 80C3Kd4GokQEBLVLtw26MB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoAyyo2AjJ8ALshXzcEXaa3Ozp8ZmOmcjJlXGLDtMMKk85QmYXCQHN LI0DglPB+iEH5etcDnDUo21ReQBJtA8fQICSga4dixG0u/dQpnlBuiyrqDCJCwDY JMgJNIqkCQGyZSZKfHEyALHqixsXPay3OTqBo4QG2Ecto4aue+rVHfjFZ0y5St0V tG4h91sSeyZk96DdgqcoOVEc/Yi0tFFKpEZWUvyO81HwFmPQhecLYbiIj1RElIpJ y9g61JTzT3rNWCQ1nsIPiizHQwff2xzYqUV9oIZtLaUDO0YKiWYez4VzHx4IBzhU aUmjVcUeZnu45XStGbVtFBJ02Jdx/Odz -----END CERTIFICATE-----Generated at Sat Sep 6 13:47:46 2025 by rpki-client