$ rpki-client -vvf rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft File: BKM4-nsSbgfA74urj33BycGsMiE.mft (raw, json) Hash identifier: 2NkuB+W8RPNKuluL92rm5xvNfB4KKrwGB04JpjDcBjs= Subject key identifier: FB:D3:38:41:B3:1E:97:55:61:16:48:0C:A6:8F:AF:D6:57:CB:53:8D Authority key identifier: 04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21 Certificate issuer: /CN=A91C146D/serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221 Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft Manifest number: 61 Signing time: Wed 17 Sep 2025 07:48:55 +0000 Manifest this update: Wed 17 Sep 2025 07:48:55 +0000 Manifest next update: Wed 24 Sep 2025 07:48:55 +0000 Files and hashes: 1: BKM4-nsSbgfA74urj33BycGsMiE.crl (hash: CJuRFWCQ2LUdUu6xGzIJp8S5o4hcwT72bcJfUVyzGS0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:48:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C146D, serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221 Validity Not Before: Sep 17 07:48:55 2025 GMT Not After : Sep 24 07:48:55 2025 GMT Subject: CN=68ca67e7-a138 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:9c:d1:c0:b7:a7:d8:70:7c:06:ae:33:d9:56: 19:fb:2d:8f:be:32:0b:49:f5:37:35:c0:4d:67:75: b4:47:2a:af:f3:2b:26:4c:7d:e3:cf:84:83:52:38: e3:21:36:9e:36:fe:d4:df:d7:8a:8c:d3:f9:64:34: 47:b0:95:a6:e0:d8:7d:ac:8c:1a:7b:bf:d3:5e:85: 0a:3b:35:9c:7f:af:87:6e:1a:42:46:46:c6:2b:f5: f2:09:5a:92:85:1a:d3:98:3a:14:07:f7:40:25:38: 82:af:97:ca:b0:21:d1:ef:d9:a9:22:d8:43:79:98: 23:31:92:d8:1e:de:2c:65:89:bf:da:cd:7f:28:db: 88:36:4f:81:9a:46:be:ed:cc:26:20:d8:f1:31:a6: 76:67:17:9f:ff:1d:4e:91:7c:ef:fb:f2:8c:f7:4f: c2:36:60:44:ad:e0:f8:87:34:58:30:7f:dc:f2:c5: d3:72:4f:e9:01:ff:8b:d7:30:0f:ac:c0:bd:ff:f1: 2d:22:4a:54:77:b6:f7:98:a0:95:93:70:82:ca:ba: 4d:25:5d:a9:f2:56:06:1f:13:28:40:b5:bd:74:78: fd:8d:c6:39:e1:ae:0f:83:8c:6f:32:c6:02:ea:f6: c0:3c:bc:9d:11:45:79:c0:53:25:28:81:6d:18:d6: 7b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:D3:38:41:B3:1E:97:55:61:16:48:0C:A6:8F:AF:D6:57:CB:53:8D X509v3 Authority Key Identifier: keyid:04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:0b:e8:ac:84:0a:e3:41:50:09:0c:4d:f6:9c:36:46:19:79: ec:85:fa:ab:d5:2f:ae:a0:1e:6f:43:f0:85:e5:ae:a1:78:f5: 9c:79:19:c7:1b:e7:94:23:78:03:a3:02:29:45:1d:1a:eb:4c: 7a:3b:ac:66:0f:f5:0a:a0:56:cc:a7:10:6f:0d:8d:16:30:f9: 1d:92:05:e4:18:56:1c:df:e0:a7:a4:5c:99:27:3b:05:ef:26: 3d:ac:92:8c:e7:61:c9:6b:06:df:19:08:5f:ec:d6:41:57:a7: 8d:a1:a6:b2:15:b0:e5:53:33:0d:9a:a8:0f:fe:fc:19:65:b3: b0:f0:dd:4f:a5:65:3c:62:cf:4c:31:ef:40:fb:8d:bc:e4:4f: 8d:a5:a0:54:d6:7e:0f:95:7b:d9:57:5e:d8:ae:32:c1:2c:e1: b9:50:25:ca:a0:b5:36:66:e1:21:b2:fe:74:4f:06:c1:20:62: 5d:df:d3:04:62:f5:e4:ad:c0:4c:ae:0e:a3:5d:a6:f8:37:40: 5d:e3:08:1b:31:8d:77:4d:48:93:9f:dc:42:74:0d:63:61:c1: 53:bf:79:bd:9f:29:4b:d7:c9:93:79:91:95:07:1e:72:e0:52: f2:ca:cc:6a:03:80:5f:3e:95:22:84:df:59:07:8b:de:c1:cb: f9:08:63:cd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTQ2RDExMC8GA1UEBRMoMDRBMzM4RkE3QjEyNkUwN0MwRUY4QkFCOEY3REMxQzlD MUFDMzIyMTAeFw0yNTA5MTcwNzQ4NTVaFw0yNTA5MjQwNzQ4NTVaMBgxFjAUBgNV BAMTDTY4Y2E2N2U3LWExMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgnNHAt6fYcHwGrjPZVhn7LY++MgtJ9Tc1wE1ndbRHKq/zKyZMfePPhINSOOMh Np42/tTf14qM0/lkNEewlabg2H2sjBp7v9NehQo7NZx/r4duGkJGRsYr9fIJWpKF GtOYOhQH90AlOIKvl8qwIdHv2aki2EN5mCMxktge3ixlib/azX8o24g2T4GaRr7t zCYg2PExpnZnF5//HU6RfO/78oz3T8I2YESt4PiHNFgwf9zyxdNyT+kB/4vXMA+s wL3/8S0iSlR3tveYoJWTcILKuk0lXanyVgYfEyhAtb10eP2Nxjnhrg+DjG8yxgLq 9sA8vJ0RRXnAUyUogW0Y1nvvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+9M4QbMe l1VhFkgMpo+v1lfLU40wHwYDVR0jBBgwFoAUBKM4+nsSbgfA74urj33BycGsMiEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxNDZEL0Y0RDVBNjdFMDAz NzExRjBCQkQ3MjQ3NUM0RjlBRTAyL0JLTTQtbnNTYmdmQTc0dXJqMzNCeWNHc01p RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQktNNC1uc1NiZ2ZBNzR1cmozM0J5Y0dzTWlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMx NDZEL0Y0RDVBNjdFMDAzNzExRjBCQkQ3MjQ3NUM0RjlBRTAyL0JLTTQtbnNTYmdm QTc0dXJqMzNCeWNHc01pRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAoL6KyECuNBUAkMTfacNkYZeeyF+qvVL66gHm9D8IXlrqF49Zx5Gccb 55QjeAOjAilFHRrrTHo7rGYP9QqgVsynEG8NjRYw+R2SBeQYVhzf4KekXJknOwXv Jj2skoznYclrBt8ZCF/s1kFXp42hprIVsOVTMw2aqA/+/Blls7Dw3U+lZTxiz0wx 70D7jbzkT42loFTWfg+Ve9lXXtiuMsEs4blQJcqgtTZm4SGy/nRPBsEgYl3f0wRi 9eStwEyuDqNdpvg3QF3jCBsxjXdNSJOf3EJ0DWNhwVO/eb2fKUvXyZN5kZUHHnLg UvLKzGoDgF8+lSKE31kHi97By/kIY80= -----END CERTIFICATE-----Generated at Fri Sep 19 08:34:38 2025 by rpki-client