$ rpki-client -vvf rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft File: BKAnX1srXBgOfg0Slu7WC8DPY0c.mft (raw, json) Hash identifier: lxCvqEc74wBpOWtEi2Z0NmSd30or5+32vtXd+cuScYU= Subject key identifier: A7:0E:18:71:EA:AD:C0:C4:BB:89:82:24:7E:7A:A0:9A:6E:E0:5E:1B Authority key identifier: 04:A0:27:5F:5B:2B:5C:18:0E:7E:0D:12:96:EE:D6:0B:C0:CF:63:47 Certificate issuer: /CN=A919C563/serialNumber=04A0275F5B2B5C180E7E0D1296EED60BC0CF6347 Certificate serial: 1145 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft Manifest number: 113A Signing time: Thu 18 Sep 2025 17:25:23 +0000 Manifest this update: Thu 18 Sep 2025 17:25:23 +0000 Manifest next update: Thu 25 Sep 2025 17:25:23 +0000 Files and hashes: 1: BKAnX1srXBgOfg0Slu7WC8DPY0c.crl (hash: fZuNa4XhyECrt1zGcdTaARn70hZTtIGB1/UxFOm6Wu4=) 2: 2B2B06B2401E11EBB0588F5FC4F9AE02.roa (hash: njXqnLM6vnU07txVMRRTX8IPNMY9z1UdckP2aMY3pBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.crl rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:25:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4421 (0x1145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C563, serialNumber=04A0275F5B2B5C180E7E0D1296EED60BC0CF6347 Validity Not Before: Sep 18 17:25:23 2025 GMT Not After : Sep 25 17:25:23 2025 GMT Subject: CN=68cc4083-4c32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:e8:28:4c:ff:0a:50:44:f0:b1:02:b6:e1:ee: 1b:5f:39:80:0a:91:52:f2:07:94:2b:da:10:24:42: bb:43:7f:81:39:3e:3c:1d:17:04:f6:7e:e1:d4:4d: 03:af:8a:6c:26:96:29:26:24:eb:06:ff:f0:8d:13: bc:8c:77:25:3f:85:b4:56:4c:cf:a3:e7:b4:e0:51: 4b:f1:32:06:62:89:49:fd:88:53:3c:19:fa:8a:cb: 92:74:ef:d2:32:63:96:41:3e:02:b2:9c:76:e3:84: 42:31:5f:70:88:f0:ad:76:06:d6:14:59:69:e8:61: 4e:78:db:53:27:2b:50:c2:c1:29:c9:6f:63:d9:28: 97:6f:02:dc:13:1f:07:d6:b7:1f:e5:6d:ec:3b:a7: a9:a7:f5:f0:b5:c1:32:87:ff:4d:be:91:2d:94:ad: 95:88:fa:7d:1b:26:67:c6:50:08:19:06:9e:0f:b5: a6:af:53:28:6b:43:32:93:10:96:33:e7:46:81:8a: 63:7e:5f:3b:f7:49:a4:6f:fc:1e:58:41:9f:8c:e8: f2:98:cf:52:9f:1d:ba:af:7e:07:3b:63:9a:d9:5b: 0c:aa:79:9f:32:5e:e6:de:bf:a1:ba:ed:09:49:a7: 2c:2e:88:21:84:9f:a4:d5:7a:5e:a5:0e:fb:3a:4b: de:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:0E:18:71:EA:AD:C0:C4:BB:89:82:24:7E:7A:A0:9A:6E:E0:5E:1B X509v3 Authority Key Identifier: keyid:04:A0:27:5F:5B:2B:5C:18:0E:7E:0D:12:96:EE:D6:0B:C0:CF:63:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:f0:ec:9d:a5:9c:42:2a:5b:1f:28:f4:20:91:15:fe:a0:ac: bc:ac:aa:69:72:1a:5f:16:3c:9a:90:d8:78:6b:3e:c5:bc:0b: d4:df:42:06:fb:44:c2:4f:5c:be:5a:8a:53:ca:bf:0d:80:c0: da:12:de:c8:f8:8a:8f:89:c4:2b:cf:bb:0b:f0:9f:f3:ab:76: b3:aa:25:64:9f:c8:95:17:59:ea:e2:de:46:a8:c4:6f:4b:39: e0:18:50:1d:f2:b2:85:7a:9f:a5:45:af:4f:61:6e:7b:ab:80: 3e:41:af:e9:d9:0d:83:36:b7:b2:54:e8:84:d5:fe:c2:18:84: 2c:50:87:f3:41:b1:e5:db:78:e4:35:47:73:65:81:2c:8a:85: e1:f2:2f:b8:e1:57:1c:4a:a1:dd:12:32:c6:64:48:d7:65:35: 74:c7:d7:b4:52:3c:8e:9d:89:01:a1:b4:04:56:74:f2:62:39: 36:07:67:2c:eb:b7:1a:43:66:08:cf:73:40:ed:81:7c:bd:c7: 54:a9:fa:2b:a6:c7:30:a2:18:86:c6:ab:d0:66:8f:f5:b5:9d: 7f:f0:49:96:fd:cf:74:a9:25:44:80:7e:67:47:2f:13:b9:3a: 28:4b:0a:8a:ce:67:e4:9a:d4:4a:84:c7:42:16:c9:d9:68:38: 7b:0f:0d:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM1NjMxMTAvBgNVBAUTKDA0QTAyNzVGNUIyQjVDMTgwRTdFMEQxMjk2RUVENjBC QzBDRjYzNDcwHhcNMjUwOTE4MTcyNTIzWhcNMjUwOTI1MTcyNTIzWjAYMRYwFAYD VQQDEw02OGNjNDA4My00YzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmugoTP8KUETwsQK24e4bXzmACpFS8geUK9oQJEK7Q3+BOT48HRcE9n7h1E0D r4psJpYpJiTrBv/wjRO8jHclP4W0VkzPo+e04FFL8TIGYolJ/YhTPBn6isuSdO/S MmOWQT4Cspx244RCMV9wiPCtdgbWFFlp6GFOeNtTJytQwsEpyW9j2SiXbwLcEx8H 1rcf5W3sO6epp/XwtcEyh/9NvpEtlK2ViPp9GyZnxlAIGQaeD7Wmr1Moa0MykxCW M+dGgYpjfl8790mkb/weWEGfjOjymM9Snx26r34HO2Oa2VsMqnmfMl7m3r+huu0J SacsLoghhJ+k1XpepQ77OkveMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKcOGHHq rcDEu4mCJH56oJpu4F4bMB8GA1UdIwQYMBaAFASgJ19bK1wYDn4NEpbu1gvAz2NH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzU2My8xMUI2MzM2NDE3 QzExMUU5ODEwODBGNkNDNEY5QUUwMi9CS0FuWDFzclhCZ09mZzBTbHU3V0M4RFBZ MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLQW5YMXNyWEJnT2ZnMFNsdTdXQzhEUFkwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzU2My8xMUI2MzM2NDE3QzExMUU5ODEwODBGNkNDNEY5QUUwMi9CS0FuWDFzclhC Z09mZzBTbHU3V0M4RFBZMGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa8OydpZxCKlsfKPQgkRX+oKy8rKppchpfFjyakNh4az7FvAvU30IG +0TCT1y+WopTyr8NgMDaEt7I+IqPicQrz7sL8J/zq3azqiVkn8iVF1nq4t5GqMRv SzngGFAd8rKFep+lRa9PYW57q4A+Qa/p2Q2DNreyVOiE1f7CGIQsUIfzQbHl23jk NUdzZYEsioXh8i+44VccSqHdEjLGZEjXZTV0x9e0UjyOnYkBobQEVnTyYjk2B2cs 67caQ2YIz3NA7YF8vcdUqforpscwohiGxqvQZo/1tZ1/8EmW/c90qSVEgH5nRy8T uTooSwqKzmfkmtRKhMdCFsnZaDh7Dw2M -----END CERTIFICATE-----Generated at Fri Sep 19 04:01:57 2025 by rpki-client