$ rpki-client -vvf rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft File: BKM4-nsSbgfA74urj33BycGsMiE.mft (raw, json) Hash identifier: UgsgNYR4hjZ9f/MQTauJbU20ZiuoPzleK7BBhbovnHI= Subject key identifier: D2:16:39:02:46:D9:6E:0E:7C:0A:1B:06:B0:85:D4:83:AD:3F:4B:3B Authority key identifier: 04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21 Certificate issuer: /CN=A91C146D/serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft Manifest number: 78 Signing time: Mon 03 Nov 2025 06:48:34 +0000 Manifest this update: Mon 03 Nov 2025 06:48:33 +0000 Manifest next update: Mon 10 Nov 2025 06:48:33 +0000 Files and hashes: 1: BKM4-nsSbgfA74urj33BycGsMiE.crl (hash: SGnLzYM/dXcDmDdNOPJgqjJaA9twNPNVGfFTe+64FgU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:48:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C146D, serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221 Validity Not Before: Nov 3 06:48:33 2025 GMT Not After : Nov 10 06:48:33 2025 GMT Subject: CN=69085041-bf68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1b:71:a6:7f:ab:08:32:e1:17:73:c9:ed:e0: 01:30:6a:bc:fc:1b:ce:c6:f4:1a:97:95:13:4c:29: da:43:83:8d:06:3d:dc:68:df:1a:8a:54:23:ed:c9: 86:43:a0:fd:56:ae:e1:b1:15:a3:44:ba:33:d2:20: 4e:43:d2:78:70:c1:6e:40:54:89:43:03:f4:87:41: ee:48:43:1f:e9:ab:ca:d1:d1:15:3f:1a:f8:b7:15: 0a:7c:80:a1:da:bf:ff:75:af:23:e8:21:fd:a7:0d: e3:c2:36:9f:4d:c3:2f:45:bf:b6:cf:84:2f:01:35: e2:85:04:4e:4b:62:ba:88:f4:65:f0:be:a1:bb:3a: 54:4e:93:ab:70:37:2f:8a:44:66:dc:76:75:ee:a5: 57:e5:3f:82:13:ad:6e:f5:1f:cb:9f:6c:46:8c:d5: 33:99:07:cb:53:4a:7d:93:d6:ce:28:8c:2d:ab:20: dd:9c:b0:b7:16:f3:da:0c:b2:35:27:1f:6d:7d:c4: c1:d5:1e:09:8c:cd:76:4e:c3:9d:63:af:3d:0b:a4: 26:30:20:ff:35:36:00:88:03:00:da:f0:2b:d2:19: 44:86:cd:22:55:d7:bf:cd:fc:42:8a:84:f6:df:c7: 75:37:39:61:25:4b:31:89:d2:a0:26:e1:46:c0:73: 9d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:16:39:02:46:D9:6E:0E:7C:0A:1B:06:B0:85:D4:83:AD:3F:4B:3B X509v3 Authority Key Identifier: keyid:04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:7c:c9:85:ae:dd:59:47:90:80:44:2b:d2:9d:03:a9:75:14: ac:3e:aa:fc:66:2e:8a:07:08:54:bf:a9:fa:1f:06:34:01:7e: f0:bc:d4:98:ce:fb:c4:a0:fe:c0:ce:c1:4d:c0:a8:cc:d4:ee: ff:71:10:59:69:c3:da:96:7c:68:d9:04:fd:10:e2:fb:b3:02: 54:9d:90:34:36:9e:13:b6:6a:c3:8f:d8:71:df:8d:73:5c:c4: 5c:61:63:4d:53:24:3c:e9:8c:3b:99:48:4c:f8:b4:d1:38:3e: 38:d0:00:33:da:ab:11:28:ef:0a:eb:28:99:dc:ad:c6:ff:bc: 0a:04:f0:ec:19:79:07:38:09:48:dd:2c:5a:0b:8e:ab:07:c7: 66:51:dd:b9:04:f8:52:47:b6:77:a5:6f:cc:13:9d:d0:4d:fc: 0f:87:84:43:a8:28:38:a7:29:b9:77:97:b8:c5:31:b9:e2:43: 77:f6:fc:4d:f5:12:6d:3d:6a:26:af:1c:1c:87:65:5a:91:c2: b6:cd:f9:a7:c7:9f:26:71:24:33:42:35:1b:43:f5:2a:86:a0: 36:76:a1:98:36:e6:5e:ca:c3:da:b5:32:b3:de:3e:70:39:6e: cd:a5:a7:63:ed:cd:19:80:08:36:ea:54:d2:f5:3a:34:40:8b: f1:02:35:42 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTQ2RDExMC8GA1UEBRMoMDRBMzM4RkE3QjEyNkUwN0MwRUY4QkFCOEY3REMxQzlD MUFDMzIyMTAeFw0yNTExMDMwNjQ4MzNaFw0yNTExMTAwNjQ4MzNaMBgxFjAUBgNV BAMTDTY5MDg1MDQxLWJmNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrG3Gmf6sIMuEXc8nt4AEwarz8G87G9BqXlRNMKdpDg40GPdxo3xqKVCPtyYZD oP1WruGxFaNEujPSIE5D0nhwwW5AVIlDA/SHQe5IQx/pq8rR0RU/Gvi3FQp8gKHa v/91ryPoIf2nDePCNp9Nwy9Fv7bPhC8BNeKFBE5LYrqI9GXwvqG7OlROk6twNy+K RGbcdnXupVflP4ITrW71H8ufbEaM1TOZB8tTSn2T1s4ojC2rIN2csLcW89oMsjUn H219xMHVHgmMzXZOw51jrz0LpCYwIP81NgCIAwDa8CvSGUSGzSJV17/N/EKKhPbf x3U3OWElSzGJ0qAm4UbAc52lAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0hY5AkbZ bg58ChsGsIXUg60/SzswHwYDVR0jBBgwFoAUBKM4+nsSbgfA74urj33BycGsMiEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxNDZEL0Y0RDVBNjdFMDAz NzExRjBCQkQ3MjQ3NUM0RjlBRTAyL0JLTTQtbnNTYmdmQTc0dXJqMzNCeWNHc01p RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQktNNC1uc1NiZ2ZBNzR1cmozM0J5Y0dzTWlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMx NDZEL0Y0RDVBNjdFMDAzNzExRjBCQkQ3MjQ3NUM0RjlBRTAyL0JLTTQtbnNTYmdm QTc0dXJqMzNCeWNHc01pRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACh8yYWu3VlHkIBEK9KdA6l1FKw+qvxmLooHCFS/qfofBjQBfvC81JjO +8Sg/sDOwU3AqMzU7v9xEFlpw9qWfGjZBP0Q4vuzAlSdkDQ2nhO2asOP2HHfjXNc xFxhY01TJDzpjDuZSEz4tNE4PjjQADPaqxEo7wrrKJncrcb/vAoE8OwZeQc4CUjd LFoLjqsHx2ZR3bkE+FJHtnelb8wTndBN/A+HhEOoKDinKbl3l7jFMbniQ3f2/E31 Em09aiavHByHZVqRwrbN+afHnyZxJDNCNRtD9SqGoDZ2oZg25l7Kw9q1MrPePnA5 bs2lp2PtzRmACDbqVNL1OjRAi/ECNUI= -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:24 2025 by rpki-client