$ rpki-client -vvf rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft File: BKAnX1srXBgOfg0Slu7WC8DPY0c.mft (raw, json) Hash identifier: FsZQDKW0HSdg/gjuqleZrNppYi+1bnbgQbrHIGQQOKI= Subject key identifier: 34:41:72:41:49:5B:0B:A8:8F:5D:F8:59:72:E9:62:DB:D7:07:98:F2 Authority key identifier: 04:A0:27:5F:5B:2B:5C:18:0E:7E:0D:12:96:EE:D6:0B:C0:CF:63:47 Certificate issuer: /CN=A919C563/serialNumber=04A0275F5B2B5C180E7E0D1296EED60BC0CF6347 Certificate serial: 110C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft Manifest number: 1101 Signing time: Fri 30 May 2025 17:28:23 +0000 Manifest this update: Fri 30 May 2025 17:28:22 +0000 Manifest next update: Fri 06 Jun 2025 17:28:22 +0000 Files and hashes: 1: BKAnX1srXBgOfg0Slu7WC8DPY0c.crl (hash: 2TdnljftFD3g7kX7DDqpPE2CSdXxAo/yLi5OuMmgwwQ=) 2: 2B2B06B2401E11EBB0588F5FC4F9AE02.roa (hash: njXqnLM6vnU07txVMRRTX8IPNMY9z1UdckP2aMY3pBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.crl rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:28:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4364 (0x110c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C563, serialNumber=04A0275F5B2B5C180E7E0D1296EED60BC0CF6347 Validity Not Before: May 30 17:28:22 2025 GMT Not After : Jun 6 17:28:22 2025 GMT Subject: CN=6839eab7-8d4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:71:f4:08:d6:0f:15:6b:84:a2:28:7b:5d:42: cc:43:89:37:26:63:d8:93:05:8e:6f:e8:5e:e0:dc: 25:b5:67:bc:05:28:a3:39:59:fa:74:8b:51:f3:54: dd:3b:bd:59:c0:e8:b1:ef:21:54:ee:21:0f:cc:f5: 55:17:56:94:f9:77:83:22:35:db:41:14:5d:d2:b2: 8b:37:cb:27:37:f1:06:06:56:22:ae:09:17:9c:df: 5a:33:8a:77:cb:32:76:de:c6:3a:20:a7:be:83:47: a6:09:49:02:c7:fe:75:c9:60:58:70:50:dc:34:ea: 27:d4:be:35:6f:aa:55:b0:4a:11:10:45:56:59:d3: 36:1a:d7:8d:a0:9d:2a:cc:19:38:a0:48:17:2f:6d: c8:3a:8b:41:4a:55:bc:82:25:07:8c:49:3c:39:89: 83:d0:6a:35:bb:7c:5f:79:72:de:5c:98:e8:82:ac: 0b:9a:13:89:94:a1:d5:3f:ce:4e:d6:1c:9f:1b:e2: d4:ca:3d:09:f6:55:ce:d2:e3:e7:d4:22:4a:5c:aa: 37:13:55:12:08:7a:aa:43:1d:30:d8:25:10:05:a5: 1e:1c:31:f0:62:29:7a:ab:17:04:62:de:2a:bf:ab: d6:8b:e0:fe:fe:ef:17:8c:b3:9d:3d:4a:3e:ab:55: 2d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:41:72:41:49:5B:0B:A8:8F:5D:F8:59:72:E9:62:DB:D7:07:98:F2 X509v3 Authority Key Identifier: keyid:04:A0:27:5F:5B:2B:5C:18:0E:7E:0D:12:96:EE:D6:0B:C0:CF:63:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:c1:0f:2c:ab:dd:50:9b:5b:f0:05:9e:82:86:a5:b4:ed:d7: 48:e8:97:bd:da:40:5d:cc:53:b9:01:d0:e6:92:d5:83:bf:93: 4c:20:8a:97:f3:56:96:75:c2:0f:93:45:b0:70:bd:ed:ea:89: 70:62:0f:1e:ae:12:32:30:dd:fe:27:22:a9:46:e0:7c:ef:ef: cb:0c:61:fb:d1:c3:dc:1d:77:e0:c4:31:a0:4b:c9:5c:de:84: ae:3b:18:21:cb:29:2f:5c:c4:8d:4e:a7:3e:d8:b0:26:17:8a: 84:c6:ee:ef:b8:12:ae:ab:78:a8:66:0c:f7:a0:72:37:91:a8: dc:23:86:b5:28:6e:37:7e:d8:43:a3:ef:66:b1:71:0f:ed:91: a5:34:02:ba:6d:0e:10:02:95:f5:ef:c9:b7:7c:b4:d3:0e:4b: bb:9c:25:f5:85:01:2d:ce:d5:01:ed:e7:31:ac:a6:97:d0:a0: d3:c3:f1:93:b5:19:e3:28:42:df:56:de:7e:5a:e8:96:88:b8: 91:5a:3f:bd:37:ca:a2:eb:e3:7f:a6:b6:41:85:dd:22:ea:5f: be:5f:2f:c3:d8:8c:9a:5d:52:5b:1c:1b:61:85:b8:47:25:5e: 38:9d:1d:be:76:6b:9e:8e:b0:2f:03:d8:1c:ea:07:3f:13:d6: 08:94:48:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM1NjMxMTAvBgNVBAUTKDA0QTAyNzVGNUIyQjVDMTgwRTdFMEQxMjk2RUVENjBC QzBDRjYzNDcwHhcNMjUwNTMwMTcyODIyWhcNMjUwNjA2MTcyODIyWjAYMRYwFAYD VQQDEw02ODM5ZWFiNy04ZDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnH0CNYPFWuEoih7XULMQ4k3JmPYkwWOb+he4NwltWe8BSijOVn6dItR81Td O71ZwOix7yFU7iEPzPVVF1aU+XeDIjXbQRRd0rKLN8snN/EGBlYirgkXnN9aM4p3 yzJ23sY6IKe+g0emCUkCx/51yWBYcFDcNOon1L41b6pVsEoREEVWWdM2GteNoJ0q zBk4oEgXL23IOotBSlW8giUHjEk8OYmD0Go1u3xfeXLeXJjogqwLmhOJlKHVP85O 1hyfG+LUyj0J9lXO0uPn1CJKXKo3E1USCHqqQx0w2CUQBaUeHDHwYil6qxcEYt4q v6vWi+D+/u8XjLOdPUo+q1UtJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRBckFJ Wwuoj134WXLpYtvXB5jyMB8GA1UdIwQYMBaAFASgJ19bK1wYDn4NEpbu1gvAz2NH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzU2My8xMUI2MzM2NDE3 QzExMUU5ODEwODBGNkNDNEY5QUUwMi9CS0FuWDFzclhCZ09mZzBTbHU3V0M4RFBZ MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLQW5YMXNyWEJnT2ZnMFNsdTdXQzhEUFkwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzU2My8xMUI2MzM2NDE3QzExMUU5ODEwODBGNkNDNEY5QUUwMi9CS0FuWDFzclhC Z09mZzBTbHU3V0M4RFBZMGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNwQ8sq91Qm1vwBZ6ChqW07ddI6Je92kBdzFO5AdDmktWDv5NMIIqX 81aWdcIPk0WwcL3t6olwYg8erhIyMN3+JyKpRuB87+/LDGH70cPcHXfgxDGgS8lc 3oSuOxghyykvXMSNTqc+2LAmF4qExu7vuBKuq3ioZgz3oHI3kajcI4a1KG43fthD o+9msXEP7ZGlNAK6bQ4QApX178m3fLTTDku7nCX1hQEtztUB7ecxrKaX0KDTw/GT tRnjKELfVt5+WuiWiLiRWj+9N8qi6+N/prZBhd0i6l++Xy/D2IyaXVJbHBthhbhH JV44nR2+dmuejrAvA9gc6gc/E9YIlEgP -----END CERTIFICATE-----Generated at Sat May 31 15:28:22 2025 by rpki-client