$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: PK5kiRHHwbLWd9B749R2mgnJmX/iw67eJhiGb4YCbGA= Subject key identifier: 76:81:96:6E:71:1C:9D:7A:C2:78:41:F5:00:A3:65:D5:6F:49:55:60 Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 017A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 0176 Signing time: Sat 23 Aug 2025 03:53:35 +0000 Manifest this update: Sat 23 Aug 2025 03:53:35 +0000 Manifest next update: Sat 30 Aug 2025 03:53:35 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: cSqRRTj3MJG8jzqEQqJzBDX1QH+IcWc+25hRIsyXGUQ=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: 34LR4muDkvBv1o97MuicPyBMy45vufYYnTs0rk2DkdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:53:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F, serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Aug 23 03:53:35 2025 GMT Not After : Aug 30 03:53:35 2025 GMT Subject: CN=68a93b3f-bbdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1b:17:a3:8d:3f:8e:4d:f6:91:10:1c:3c:58: d0:51:0c:11:f6:4f:a5:32:e8:44:d1:5d:5a:0e:35: be:d4:6a:7c:6f:dc:a8:2c:0f:6a:81:63:0d:e1:a0: 0a:f6:14:cb:44:04:7d:b5:8c:a5:10:b3:09:4a:e1: 2e:4c:19:56:97:e9:ee:67:9c:af:db:10:ce:18:88: 91:7c:e8:28:b5:25:bd:81:24:4d:3e:82:b6:4c:c5: 6f:ff:3a:b8:39:4d:d1:49:5c:51:32:cc:82:94:f4: 75:69:66:ee:00:e4:fa:96:3d:1e:c5:0f:af:e0:09: 15:09:0d:96:4c:37:0a:48:af:ac:53:e9:a8:d2:a8: ac:74:ad:3d:0a:83:df:3d:e8:c0:6f:4e:94:30:43: 5e:9e:d0:1f:56:ad:48:97:a6:a1:e3:17:ef:f5:3e: 5d:da:d9:d4:eb:11:76:63:3b:25:fe:3e:3a:e1:bb: 97:5f:9a:41:d6:80:79:55:1c:60:c2:37:d3:47:a2: 67:39:6e:e3:3d:fe:9e:81:f8:f5:33:f4:e1:9a:8a: 69:45:cb:fd:da:f3:db:0b:34:bd:f4:74:a3:d4:72: d3:c3:95:30:74:89:1d:8e:67:4c:d2:51:42:9e:d8: d6:e0:7a:92:72:72:7b:d0:e2:8e:38:bd:38:a8:6d: c7:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:81:96:6E:71:1C:9D:7A:C2:78:41:F5:00:A3:65:D5:6F:49:55:60 X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:36:cd:db:4e:6a:10:62:23:ec:b7:a7:38:4f:c0:94:f1:82: cf:d2:5b:a0:e7:22:1c:69:35:ee:71:f9:76:e6:22:d6:07:cf: fd:a6:9a:74:33:09:e2:47:c2:da:38:5d:14:51:f7:c6:27:e1: 67:52:57:7a:9e:72:8e:3c:b5:b1:92:ea:8e:c6:72:d9:e5:3b: 9b:f2:2f:3e:3d:ea:fe:82:f3:9b:77:ff:fc:bc:9c:9d:ba:6c: ed:b7:a6:2d:d9:fa:d9:a2:75:ca:fc:a6:d3:15:83:82:1e:e7: df:9c:55:96:2f:b3:f9:6d:fd:b6:08:bb:25:34:57:38:d3:be: 3e:ce:6c:45:05:1f:8d:c4:41:d9:0b:6f:22:45:87:f9:0f:cf: 79:9f:eb:e4:81:54:94:9f:01:d5:2f:b4:15:bb:71:66:0a:a1: 36:6b:a7:8b:9f:cf:49:02:b1:ce:ec:00:c8:51:39:c1:c4:d2: 5c:e0:1c:aa:5a:a6:d0:23:85:48:44:cd:08:33:7f:d8:62:e3: 1d:ec:4a:76:50:38:2f:5a:12:e5:34:46:58:86:e4:9c:bb:da: 48:99:12:0e:74:72:ab:60:0a:5b:2a:73:b7:57:f9:65:fa:d1: 87:d6:f8:27:84:27:e6:4f:cb:95:1e:a0:b8:d3:2e:86:24:2b: 0d:b3:30:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjUwODIzMDM1MzM1WhcNMjUwODMwMDM1MzM1WjAYMRYwFAYD VQQDEw02OGE5M2IzZi1iYmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuBsXo40/jk32kRAcPFjQUQwR9k+lMuhE0V1aDjW+1Gp8b9yoLA9qgWMN4aAK 9hTLRAR9tYylELMJSuEuTBlWl+nuZ5yv2xDOGIiRfOgotSW9gSRNPoK2TMVv/zq4 OU3RSVxRMsyClPR1aWbuAOT6lj0exQ+v4AkVCQ2WTDcKSK+sU+mo0qisdK09CoPf PejAb06UMENentAfVq1Il6ah4xfv9T5d2tnU6xF2Yzsl/j464buXX5pB1oB5VRxg wjfTR6JnOW7jPf6egfj1M/ThmoppRcv92vPbCzS99HSj1HLTw5UwdIkdjmdM0lFC ntjW4HqScnJ70OKOOL04qG3HEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHaBlm5x HJ16wnhB9QCjZdVvSVVgMB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClNs3bTmoQYiPst6c4T8CU8YLP0lug5yIcaTXucfl25iLWB8/9ppp0 MwniR8LaOF0UUffGJ+FnUld6nnKOPLWxkuqOxnLZ5Tub8i8+Per+gvObd//8vJyd umztt6Yt2frZonXK/KbTFYOCHuffnFWWL7P5bf22CLslNFc4074+zmxFBR+NxEHZ C28iRYf5D895n+vkgVSUnwHVL7QVu3FmCqE2a6eLn89JArHO7ADIUTnBxNJc4Byq WqbQI4VIRM0IM3/YYuMd7Ep2UDgvWhLlNEZYhuScu9pImRIOdHKrYApbKnO3V/ll +tGH1vgnhCfmT8uVHqC40y6GJCsNszAQ -----END CERTIFICATE-----Generated at Sat Aug 23 10:38:18 2025 by rpki-client