$ rpki-client -vvf rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft File: BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft (raw, json) Hash identifier: e8ch2OKqf61QSGUTgAIE7KbCipx9mjHPAVk4vRgVMS8= Subject key identifier: 67:52:34:17:58:19:6D:5B:83:B1:47:E8:FF:E1:C2:3A:2E:3F:35:91 Authority key identifier: 04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D Certificate issuer: /CN=A91238EC/serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Certificate serial: 1756 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft Manifest number: 173B Signing time: Mon 30 Jun 2025 16:46:41 +0000 Manifest this update: Mon 30 Jun 2025 16:46:40 +0000 Manifest next update: Mon 07 Jul 2025 16:46:40 +0000 Files and hashes: 1: BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl (hash: AqN6YllFefQUgoCpirzjW6NlEjyP6moPdkA09igPf1Q=) 2: 2F9D268C76B211ECABA1A612C4F9AE02.roa (hash: N4cX9Gn5/2UN1QBdCa0fdRS9KCB6RvJx+JIs1tA6NvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 16:46:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5974 (0x1756) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238EC, serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Validity Not Before: Jun 30 16:46:40 2025 GMT Not After : Jul 7 16:46:40 2025 GMT Subject: CN=6862bf71-a6c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:46:2a:55:f5:2a:f2:fe:03:05:c8:4d:73:c7: 70:d4:23:1a:bb:6a:de:24:1c:0d:a2:a8:5f:39:ed: ea:62:10:89:61:71:21:4d:c7:fd:99:63:d5:a0:fe: 8d:60:b3:58:1e:1c:f3:ab:fd:7c:3c:f7:a5:12:46: 75:be:26:31:29:df:94:07:ed:68:94:6b:f8:b6:f3: 2d:07:98:e0:df:02:17:c1:e1:78:29:2f:39:f9:0e: b6:87:c6:98:97:d2:9d:b4:f3:e6:61:05:6f:34:bf: 76:a1:0a:e8:e4:65:2b:a7:40:43:1e:fd:a1:4a:16: 15:72:ef:5c:a5:b9:f0:1d:bd:d6:86:a3:96:58:56: 38:0a:1f:ed:35:3b:3b:43:6c:82:77:d2:ba:ca:c5: 2b:8d:23:9e:9d:90:1f:37:14:37:6f:b7:31:98:3e: b2:4c:ab:b3:55:e4:1d:e2:b4:46:af:83:57:96:05: 8d:ba:71:da:91:66:b9:3f:3b:15:9e:29:78:d3:0a: 5b:85:7a:b8:69:0d:82:80:f0:6b:49:fa:36:fd:6a: 33:6b:8f:51:21:b9:37:6d:77:b8:e7:f3:61:6b:c7: da:11:58:de:e1:09:e9:aa:d0:98:6b:a7:57:2f:24: c1:4b:a5:ac:e1:8a:84:12:33:aa:78:02:d2:88:07: 1d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:52:34:17:58:19:6D:5B:83:B1:47:E8:FF:E1:C2:3A:2E:3F:35:91 X509v3 Authority Key Identifier: keyid:04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:43:37:a2:03:65:82:b2:c2:6c:7c:32:6b:ec:ef:0a:7f:26: 46:40:c0:87:f1:a0:12:c7:fa:16:2c:8d:ae:0d:ab:27:68:36: c3:5d:52:50:80:12:f4:84:ef:b3:74:ae:2e:dc:6c:77:d5:da: e6:f1:61:e8:07:d7:fc:94:8e:08:91:5b:b5:d3:1f:9f:1e:5e: 22:06:8c:bf:a3:13:cd:8b:16:c9:11:aa:e3:df:f1:e8:97:b8: b4:ee:ee:68:c4:0d:f8:eb:ed:72:3f:ca:11:e8:20:09:95:59: df:ab:07:16:b4:f2:60:bc:6b:9b:4b:c7:84:01:b6:f5:43:7e: dd:56:31:c0:b6:91:89:56:6e:65:e7:4d:f2:8d:f1:73:8d:31: e3:b0:30:d4:20:dc:80:66:c1:b7:bd:02:94:fe:20:01:35:77: aa:68:65:47:b9:ed:cc:db:f6:9c:a5:0c:3d:35:f7:6a:d4:8b: c5:31:35:20:7e:59:c1:2f:20:d1:00:94:a4:b3:92:46:e3:7b: a5:fc:ad:a4:34:26:e6:9a:eb:43:bb:4f:9d:d4:99:1a:ef:27: e1:8e:e4:52:e5:48:a3:2e:8c:5e:66:1e:6d:a2:62:3c:78:1d: 80:aa:80:17:79:79:5d:d6:27:bb:c2:74:f0:ff:33:29:f3:b4: 1b:91:67:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RUMxMTAvBgNVBAUTKDA0ODMyRkJFNzBDN0I4ODU5Q0ExQTBFM0UwNUEyOTZC QjA5QzVEM0QwHhcNMjUwNjMwMTY0NjQwWhcNMjUwNzA3MTY0NjQwWjAYMRYwFAYD VQQDEw02ODYyYmY3MS1hNmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA30YqVfUq8v4DBchNc8dw1CMau2reJBwNoqhfOe3qYhCJYXEhTcf9mWPVoP6N YLNYHhzzq/18PPelEkZ1viYxKd+UB+1olGv4tvMtB5jg3wIXweF4KS85+Q62h8aY l9KdtPPmYQVvNL92oQro5GUrp0BDHv2hShYVcu9cpbnwHb3WhqOWWFY4Ch/tNTs7 Q2yCd9K6ysUrjSOenZAfNxQ3b7cxmD6yTKuzVeQd4rRGr4NXlgWNunHakWa5PzsV nil40wpbhXq4aQ2CgPBrSfo2/Woza49RIbk3bXe45/Nha8faEVje4QnpqtCYa6dX LyTBS6Ws4YqEEjOqeALSiAcd2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGdSNBdY GW1bg7FH6P/hwjouPzWRMB8GA1UdIwQYMBaAFASDL75wx7iFnKGg4+BaKWuwnF09 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhFQy82MUQ0RjQ4QUUz RTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJV2NvYURqNEZvcGE3Q2NY VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJTXZ2bkRIdUlXY29hRGo0Rm9wYTdDY1hUMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhFQy82MUQ0RjQ4QUUzRTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJ V2NvYURqNEZvcGE3Q2NYVDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3QzeiA2WCssJsfDJr7O8KfyZGQMCH8aASx/oWLI2uDasnaDbDXVJQ gBL0hO+zdK4u3Gx31drm8WHoB9f8lI4IkVu10x+fHl4iBoy/oxPNixbJEarj3/Ho l7i07u5oxA346+1yP8oR6CAJlVnfqwcWtPJgvGubS8eEAbb1Q37dVjHAtpGJVm5l 503yjfFzjTHjsDDUINyAZsG3vQKU/iABNXeqaGVHue3M2/acpQw9Nfdq1IvFMTUg flnBLyDRAJSks5JG43ul/K2kNCbmmutDu0+d1Jka7yfhjuRS5UijLoxeZh5tomI8 eB2AqoAXeXld1ie7wnTw/zMp87QbkWfB -----END CERTIFICATE-----Generated at Tue Jul 1 02:09:49 2025 by rpki-client