$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: Wvx75FHrkLZ21fu7EzvTIPo0P1t3jJ44XFtLE4fSwDw= Subject key identifier: 3C:C9:6E:DB:11:50:12:DC:BA:F9:17:B9:84:CB:BC:E5:A4:AC:28:32 Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 015F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 015B Signing time: Tue 01 Jul 2025 04:31:59 +0000 Manifest this update: Tue 01 Jul 2025 04:31:58 +0000 Manifest next update: Tue 08 Jul 2025 04:31:58 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: CKaAzxkxYNxhnzMsyxns3hyyvPfusHWsy5btA08JIZQ=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: 34LR4muDkvBv1o97MuicPyBMy45vufYYnTs0rk2DkdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:31:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F, serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Jul 1 04:31:58 2025 GMT Not After : Jul 8 04:31:58 2025 GMT Subject: CN=686364be-57a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2e:c6:f9:ff:59:20:31:f5:b6:ba:13:22:c6: 57:4b:02:76:f5:a1:0a:f8:71:84:78:94:c3:bd:23: 5d:d1:71:fa:0e:ba:e0:7a:1c:3f:71:50:eb:9e:1a: 7d:e9:e3:cf:98:47:42:82:6b:e3:87:8e:85:94:f8: b0:c0:8c:09:cc:16:e1:e9:a2:e6:cc:25:cd:4f:98: 53:67:a0:0f:de:c3:d6:16:07:56:b6:99:e1:6e:af: 24:15:fa:9e:b2:ce:7b:39:ce:3a:51:9b:0c:6d:19: ac:0d:5f:6c:54:8b:59:a7:5d:a2:b7:7d:bb:47:b7: 22:90:7d:1d:98:a4:72:98:9a:4a:42:d0:ba:56:c4: 4e:5c:ec:14:d9:8d:df:86:9e:69:f2:42:50:55:d0: 2e:ed:7f:ae:cf:02:56:19:e8:85:8a:53:67:f0:d7: 4a:c4:23:db:3e:f3:7b:28:5d:5a:10:39:2d:14:7c: 91:f8:83:18:4e:a8:e3:87:5e:43:c4:a8:f2:90:9c: 7f:15:db:da:7c:e9:75:aa:69:ef:9a:e0:af:ec:d0: a8:4b:d4:8c:88:7d:dd:25:25:6f:66:6d:ed:c0:cc: 48:ad:68:e1:24:b0:6c:a3:0d:78:19:f7:9e:32:ca: 3e:b0:63:ee:ba:02:f2:62:e3:d7:62:9f:f6:ab:b4: c5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:C9:6E:DB:11:50:12:DC:BA:F9:17:B9:84:CB:BC:E5:A4:AC:28:32 X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:5c:dc:0c:9c:1c:48:e4:57:85:e1:a6:af:35:e3:ef:13:ef: 5e:5f:29:dc:68:c8:07:3f:56:a1:8a:c6:5b:29:1e:de:8b:98: 62:dd:b2:0a:cf:d7:e9:5b:52:4d:13:d2:3d:cf:17:73:b1:75: 4d:37:5a:89:02:69:92:a5:fa:d4:6b:f1:0e:d6:21:27:13:d0: cf:0b:1f:28:c8:bb:d4:29:8a:01:e9:9d:25:34:65:15:d0:07: ed:8c:e3:42:bf:72:8f:13:d8:39:37:7c:79:c6:77:31:1a:d4: 05:52:d7:ec:f1:84:05:54:10:cc:95:50:32:43:36:50:fb:11: e6:df:ef:41:af:d7:30:3c:57:f4:5a:98:23:bf:ad:cb:c6:a5: 58:5c:01:31:30:ce:e7:cc:83:fa:a1:5d:45:56:61:3f:a6:ad: 69:6c:52:84:2e:95:18:86:1d:63:0b:95:e0:54:e2:51:6d:fc: cc:45:cd:59:2d:11:e5:7e:f5:79:8a:55:c0:83:72:ca:cd:5f: bf:23:1c:3b:f7:c7:ba:1e:fd:8b:b6:42:e6:0d:41:ba:9e:fd: e6:2f:2d:4f:1e:42:e5:7d:0c:b9:fa:68:6c:29:f9:29:8f:f0: 71:0b:fd:e8:a6:7a:78:74:3f:c1:c1:f8:b8:e5:0b:34:b6:e7: 65:65:a9:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjUwNzAxMDQzMTU4WhcNMjUwNzA4MDQzMTU4WjAYMRYwFAYD VQQDEw02ODYzNjRiZS01N2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqy7G+f9ZIDH1troTIsZXSwJ29aEK+HGEeJTDvSNd0XH6Drrgehw/cVDrnhp9 6ePPmEdCgmvjh46FlPiwwIwJzBbh6aLmzCXNT5hTZ6AP3sPWFgdWtpnhbq8kFfqe ss57Oc46UZsMbRmsDV9sVItZp12it327R7cikH0dmKRymJpKQtC6VsROXOwU2Y3f hp5p8kJQVdAu7X+uzwJWGeiFilNn8NdKxCPbPvN7KF1aEDktFHyR+IMYTqjjh15D xKjykJx/FdvafOl1qmnvmuCv7NCoS9SMiH3dJSVvZm3twMxIrWjhJLBsow14Gfee Mso+sGPuugLyYuPXYp/2q7TFiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDzJbtsR UBLcuvkXuYTLvOWkrCgyMB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmXNwMnBxI5FeF4aavNePvE+9eXyncaMgHP1ahisZbKR7ei5hi3bIK z9fpW1JNE9I9zxdzsXVNN1qJAmmSpfrUa/EO1iEnE9DPCx8oyLvUKYoB6Z0lNGUV 0AftjONCv3KPE9g5N3x5xncxGtQFUtfs8YQFVBDMlVAyQzZQ+xHm3+9Br9cwPFf0 Wpgjv63LxqVYXAExMM7nzIP6oV1FVmE/pq1pbFKELpUYhh1jC5XgVOJRbfzMRc1Z LRHlfvV5ilXAg3LKzV+/Ixw798e6Hv2LtkLmDUG6nv3mLy1PHkLlfQy5+mhsKfkp j/BxC/3opnp4dD/Bwfi45Qs0tudlZal8 -----END CERTIFICATE-----Generated at Wed Jul 2 19:45:06 2025 by rpki-client