$ rpki-client -vvf rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft File: BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft (raw, json) Hash identifier: GyYQNKr++odNNdU7jXmioMJU2EUttvVID+azFLCEGmo= Subject key identifier: 8C:BB:5E:8B:D0:89:01:CB:3E:6A:09:41:A1:99:E3:11:B6:AB:CD:9C Authority key identifier: 04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D Certificate issuer: /CN=A91238EC/serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Certificate serial: 178E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft Manifest number: 1773 Signing time: Sat 18 Oct 2025 17:00:11 +0000 Manifest this update: Sat 18 Oct 2025 17:00:10 +0000 Manifest next update: Sat 25 Oct 2025 17:00:10 +0000 Files and hashes: 1: BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl (hash: uNz+mTmRryHe3H1IQT6pVbBzZJMiLnDnLPJCqNgYBb0=) 2: 2F9D268C76B211ECABA1A612C4F9AE02.roa (hash: N4cX9Gn5/2UN1QBdCa0fdRS9KCB6RvJx+JIs1tA6NvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6030 (0x178e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238EC, serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Validity Not Before: Oct 18 17:00:10 2025 GMT Not After : Oct 25 17:00:10 2025 GMT Subject: CN=68f3c79b-67f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fb:55:7a:6d:7b:a5:7d:ee:5a:d9:57:df:df: f6:cb:fd:ff:11:3a:e1:9f:e5:ad:33:84:fd:21:f0: ac:da:07:99:98:69:6e:fb:b3:a0:62:c1:01:3b:48: 36:82:3e:9c:b5:d8:25:2a:99:8f:aa:cc:9e:ea:3c: 03:2c:5e:11:f2:77:fe:b2:fd:90:1d:bd:2f:1f:07: b5:04:22:71:d9:9a:ff:c4:55:46:4f:dc:96:2e:58: 9c:4d:b7:3e:2b:ee:59:cb:30:70:99:b8:53:99:db: b4:7b:a5:91:14:9d:be:66:e5:7c:6b:99:09:49:fc: 67:e0:59:5b:b2:b1:7b:88:61:3f:c2:f2:cf:f5:91: 15:a4:47:cc:f8:b4:11:4c:bc:b5:9d:e9:89:f6:53: 8f:2f:c0:90:3e:79:05:e0:c3:d6:b7:36:b9:0f:a6: a0:5e:c0:b4:2a:d3:6e:60:09:e0:a2:60:88:68:54: 3e:4a:95:ce:9f:42:93:44:6d:43:8d:73:ad:96:ae: 1d:2d:52:f9:8e:80:2f:54:8c:e5:ec:c4:7a:63:3b: 4b:85:e5:45:d1:58:74:1a:7d:e6:c2:85:43:63:ae: 99:77:e4:cd:03:3f:44:f0:b5:fc:18:25:0b:5e:fa: 56:db:06:43:77:bd:5f:b0:98:97:37:c1:76:41:74: bb:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:BB:5E:8B:D0:89:01:CB:3E:6A:09:41:A1:99:E3:11:B6:AB:CD:9C X509v3 Authority Key Identifier: keyid:04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:1e:b0:f7:25:f4:ed:5d:43:32:01:97:4d:72:ac:d6:f8:9f: 47:c6:6a:04:87:77:b9:bc:d2:6b:b6:d7:68:98:0b:6a:3b:4d: a7:3d:2f:00:89:9f:d3:be:29:5e:84:44:cf:1e:93:b5:8a:e3: 58:8c:cb:b2:a2:c2:00:77:84:48:86:27:8e:2e:57:9f:47:23: bf:1d:7c:b3:4e:5b:49:0d:03:c1:c2:9c:fd:4e:af:cd:5c:c9: 3e:d0:cb:55:e4:7d:0d:96:66:3f:a2:23:e8:68:91:de:80:80: d7:51:5f:0a:7b:6a:ab:68:da:cd:b7:94:01:72:31:4e:b7:85: 13:3a:41:41:ad:d5:54:41:b4:dc:72:8d:ac:2c:47:ad:f7:38: 7b:27:9c:ab:f3:51:00:99:12:2b:7a:46:b8:af:05:33:7a:4f: d1:71:1c:8b:6d:9e:c8:1a:1e:2d:29:d0:62:67:60:b7:65:1b: 43:26:e5:d1:46:63:aa:de:48:d4:a0:76:90:69:56:7b:81:c9: cb:72:c1:35:0a:e4:3e:45:b2:7b:4b:ca:39:25:d1:5a:5a:71: 76:d3:d2:9f:58:85:38:82:6c:b2:19:b8:81:83:6b:f2:5e:8d: 58:21:16:07:fe:29:0f:13:cd:e6:d1:8f:b1:9a:5b:2a:b1:b0: 71:cb:c4:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RUMxMTAvBgNVBAUTKDA0ODMyRkJFNzBDN0I4ODU5Q0ExQTBFM0UwNUEyOTZC QjA5QzVEM0QwHhcNMjUxMDE4MTcwMDEwWhcNMjUxMDI1MTcwMDEwWjAYMRYwFAYD VQQDEw02OGYzYzc5Yi02N2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvtVem17pX3uWtlX39/2y/3/ETrhn+WtM4T9IfCs2geZmGlu+7OgYsEBO0g2 gj6ctdglKpmPqsye6jwDLF4R8nf+sv2QHb0vHwe1BCJx2Zr/xFVGT9yWLlicTbc+ K+5ZyzBwmbhTmdu0e6WRFJ2+ZuV8a5kJSfxn4FlbsrF7iGE/wvLP9ZEVpEfM+LQR TLy1nemJ9lOPL8CQPnkF4MPWtza5D6agXsC0KtNuYAngomCIaFQ+SpXOn0KTRG1D jXOtlq4dLVL5joAvVIzl7MR6YztLheVF0Vh0Gn3mwoVDY66Zd+TNAz9E8LX8GCUL XvpW2wZDd71fsJiXN8F2QXS7DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIy7XovQ iQHLPmoJQaGZ4xG2q82cMB8GA1UdIwQYMBaAFASDL75wx7iFnKGg4+BaKWuwnF09 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhFQy82MUQ0RjQ4QUUz RTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJV2NvYURqNEZvcGE3Q2NY VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJTXZ2bkRIdUlXY29hRGo0Rm9wYTdDY1hUMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhFQy82MUQ0RjQ4QUUzRTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJ V2NvYURqNEZvcGE3Q2NYVDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHHrD3JfTtXUMyAZdNcqzW+J9HxmoEh3e5vNJrttdomAtqO02nPS8A iZ/TvilehETPHpO1iuNYjMuyosIAd4RIhieOLlefRyO/HXyzTltJDQPBwpz9Tq/N XMk+0MtV5H0NlmY/oiPoaJHegIDXUV8Ke2qraNrNt5QBcjFOt4UTOkFBrdVUQbTc co2sLEet9zh7J5yr81EAmRIreka4rwUzek/RcRyLbZ7IGh4tKdBiZ2C3ZRtDJuXR RmOq3kjUoHaQaVZ7gcnLcsE1CuQ+RbJ7S8o5JdFaWnF209KfWIU4gmyyGbiBg2vy Xo1YIRYH/ikPE83m0Y+xmlsqsbBxy8QE -----END CERTIFICATE-----Generated at Mon Oct 20 12:39:41 2025 by rpki-client