$ rpki-client -vvf rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft File: BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft (raw, json) Hash identifier: 96kKoEQ7j1KMPc+rYxs2y8XXXiH9NaTb5xmlMY1sq6Y= Subject key identifier: E7:AF:86:48:E8:B7:61:9A:72:08:54:CF:22:3F:38:27:2D:ED:0D:1E Authority key identifier: 04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D Certificate issuer: /CN=A91238EC/serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Certificate serial: 1771 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft Manifest number: 1756 Signing time: Fri 22 Aug 2025 16:43:03 +0000 Manifest this update: Fri 22 Aug 2025 16:43:02 +0000 Manifest next update: Fri 29 Aug 2025 16:43:02 +0000 Files and hashes: 1: BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl (hash: kGAnH+AtVB5Xwt25uqweqikS5MJz7gXtLTwxaaehe78=) 2: 2F9D268C76B211ECABA1A612C4F9AE02.roa (hash: N4cX9Gn5/2UN1QBdCa0fdRS9KCB6RvJx+JIs1tA6NvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:43:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6001 (0x1771) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238EC, serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Validity Not Before: Aug 22 16:43:02 2025 GMT Not After : Aug 29 16:43:02 2025 GMT Subject: CN=68a89e17-3310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6e:1a:44:b8:a9:2d:d9:fb:15:a6:36:c9:8f: 46:6a:65:de:b7:c6:5c:64:c2:ce:ca:c8:75:2c:01: 33:1e:d8:ef:0b:e1:83:47:0e:d0:5c:ea:e0:58:67: 11:87:1e:fa:0b:9a:c6:9f:8a:65:07:c7:7d:93:24: b4:7f:7f:4c:15:2a:61:b6:ee:ca:29:aa:dc:4b:55: 92:ae:05:83:fa:9f:f8:65:b5:98:e8:15:dd:5a:04: 58:d0:ef:c2:70:00:9c:ca:f0:27:0c:ef:4b:a2:39: df:65:40:da:18:60:d7:e4:ee:00:c4:a9:1e:12:bf: a3:08:c0:83:bb:b7:a6:03:de:bc:82:6c:05:1d:23: 43:8a:ba:81:d8:97:21:a9:b9:b7:f2:05:2b:34:49: 41:41:d5:28:44:17:89:fb:48:2d:e0:08:bc:3d:7c: 48:48:6f:02:34:87:81:22:1c:c1:06:84:39:1e:75: 4a:32:35:dd:d1:cf:65:40:ab:2c:4b:e4:91:9c:b2: 52:cf:9f:c7:1e:00:61:02:85:50:79:00:4c:99:aa: 3d:01:d7:26:3d:15:40:b3:90:83:18:09:7d:82:fc: e4:a2:14:6d:6f:d7:30:51:e0:7a:08:fb:87:49:89: ab:d8:8c:3f:1c:43:8e:a6:36:f7:9e:b0:83:8e:e0: 54:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:AF:86:48:E8:B7:61:9A:72:08:54:CF:22:3F:38:27:2D:ED:0D:1E X509v3 Authority Key Identifier: keyid:04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:9e:76:a7:b0:be:b5:25:1d:a9:61:ab:d7:5f:2d:22:5a:51: 43:ff:0a:2d:32:e2:e5:64:ab:52:c9:f7:a8:ee:2e:1b:32:54: 14:bd:61:4e:b6:24:34:2c:6b:eb:36:af:f4:84:ec:36:98:da: 5e:40:3a:eb:b6:43:cc:fc:9d:b8:03:bf:dd:e3:f2:7c:39:c7: 38:5e:e5:8d:e8:40:5b:7c:bb:98:e1:c2:62:d2:6f:b3:4a:87: 0e:f7:f5:80:62:0f:22:b1:71:11:2e:78:70:e8:ad:f6:5a:7c: 33:88:ab:b3:2c:a1:ce:3b:2c:b1:6b:4a:df:9a:1b:be:46:9c: 5d:b3:29:46:84:18:58:da:c8:51:ad:87:27:40:cb:78:2a:b6: 07:d4:af:06:88:eb:9e:1f:4d:23:45:da:fe:f5:e0:ed:45:cd: a3:f4:a2:6f:f1:82:87:13:40:7e:76:68:64:1f:51:da:8f:3b: 2a:24:c9:a9:9d:24:bc:e7:c0:8b:a3:3b:22:25:7d:47:4e:2c: 0b:a0:69:21:ab:79:ed:75:6c:ff:26:24:52:17:42:2b:47:c9: 97:fe:6f:71:1b:f7:4a:86:dd:3e:1c:c8:a0:c4:db:b4:93:f7: 26:e0:06:85:31:da:d7:f6:ee:40:47:fe:8d:af:36:fc:32:24: 68:fc:58:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RUMxMTAvBgNVBAUTKDA0ODMyRkJFNzBDN0I4ODU5Q0ExQTBFM0UwNUEyOTZC QjA5QzVEM0QwHhcNMjUwODIyMTY0MzAyWhcNMjUwODI5MTY0MzAyWjAYMRYwFAYD VQQDEw02OGE4OWUxNy0zMzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAym4aRLipLdn7FaY2yY9GamXet8ZcZMLOysh1LAEzHtjvC+GDRw7QXOrgWGcR hx76C5rGn4plB8d9kyS0f39MFSphtu7KKarcS1WSrgWD+p/4ZbWY6BXdWgRY0O/C cACcyvAnDO9LojnfZUDaGGDX5O4AxKkeEr+jCMCDu7emA968gmwFHSNDirqB2Jch qbm38gUrNElBQdUoRBeJ+0gt4Ai8PXxISG8CNIeBIhzBBoQ5HnVKMjXd0c9lQKss S+SRnLJSz5/HHgBhAoVQeQBMmao9AdcmPRVAs5CDGAl9gvzkohRtb9cwUeB6CPuH SYmr2Iw/HEOOpjb3nrCDjuBUDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOevhkjo t2GacghUzyI/OCct7Q0eMB8GA1UdIwQYMBaAFASDL75wx7iFnKGg4+BaKWuwnF09 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhFQy82MUQ0RjQ4QUUz RTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJV2NvYURqNEZvcGE3Q2NY VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJTXZ2bkRIdUlXY29hRGo0Rm9wYTdDY1hUMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhFQy82MUQ0RjQ4QUUzRTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJ V2NvYURqNEZvcGE3Q2NYVDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTnnansL61JR2pYavXXy0iWlFD/wotMuLlZKtSyfeo7i4bMlQUvWFO tiQ0LGvrNq/0hOw2mNpeQDrrtkPM/J24A7/d4/J8Occ4XuWN6EBbfLuY4cJi0m+z SocO9/WAYg8isXERLnhw6K32WnwziKuzLKHOOyyxa0rfmhu+RpxdsylGhBhY2shR rYcnQMt4KrYH1K8GiOueH00jRdr+9eDtRc2j9KJv8YKHE0B+dmhkH1HajzsqJMmp nSS858CLozsiJX1HTiwLoGkhq3ntdWz/JiRSF0IrR8mX/m9xG/dKht0+HMigxNu0 k/cm4AaFMdrX9u5AR/6Nrzb8MiRo/Fhr -----END CERTIFICATE-----Generated at Sat Aug 23 16:11:16 2025 by rpki-client