$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: LPs8rfuTbr+OvI54HRK5CtpASp0b2k9hnFHwe7whvfI= Subject key identifier: 50:D8:51:FF:61:97:FE:A4:EF:5E:21:A5:23:3F:FD:29:91:4A:C1:D6 Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 0197 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 0193 Signing time: Sun 19 Oct 2025 06:02:15 +0000 Manifest this update: Sun 19 Oct 2025 06:02:15 +0000 Manifest next update: Sun 26 Oct 2025 06:02:15 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: z6mUbIX/XHLCrkYwX161mMvS4xKB63p8c012b0i5HPI=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: 34LR4muDkvBv1o97MuicPyBMy45vufYYnTs0rk2DkdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:02:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F, serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Oct 19 06:02:15 2025 GMT Not After : Oct 26 06:02:15 2025 GMT Subject: CN=68f47ee7-4f12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b2:0a:57:bd:d1:86:c3:02:d4:fb:4c:e0:87: 91:97:ad:9e:33:df:e6:f6:5c:aa:72:63:41:6d:1b: ba:95:c9:9a:6c:88:d6:a5:b5:34:c3:33:41:03:e6: de:f2:be:70:3a:2f:36:06:17:e5:a7:ee:9a:cd:55: 41:e1:96:a8:2f:f0:7c:e4:03:0a:d2:38:cd:da:1f: 61:bb:ca:c9:cf:1a:69:bd:59:f7:60:72:c1:ca:63: ce:55:50:6e:f1:57:23:a0:66:67:15:45:b9:b3:20: a6:64:15:ef:03:4c:05:05:af:2b:2a:41:6a:26:b1: 42:aa:3f:67:09:70:44:61:18:a7:69:d4:2f:c8:1f: 41:28:0f:ea:20:a4:f2:cc:75:7f:2a:a5:9e:13:36: a1:63:a9:ac:13:78:b7:04:aa:eb:7d:bc:88:37:ec: 09:0d:51:a2:2d:d5:95:48:14:29:2e:fa:4a:ff:f5: 9a:f1:a1:b6:52:e2:99:d4:28:a3:56:bd:a6:e1:8a: ac:3f:c9:3e:5d:62:77:da:fc:69:a0:b0:fe:32:87: be:9c:73:4e:eb:90:95:d0:1d:1a:51:33:c3:5a:c1: 95:9a:18:12:bc:2e:39:ec:c1:5c:cf:07:33:7f:31: 6d:79:5f:b1:4b:8f:5b:bb:fc:39:5b:18:95:29:52: ab:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:D8:51:FF:61:97:FE:A4:EF:5E:21:A5:23:3F:FD:29:91:4A:C1:D6 X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:0b:89:9b:2f:15:4d:a8:d8:51:74:3f:8c:20:4e:11:d9:75: 93:1f:77:eb:e9:e3:33:49:b3:8e:ec:a8:3d:1e:c3:06:59:f1: de:09:0b:55:45:b5:9c:16:f5:dc:17:40:d2:ef:85:22:64:d7: 6c:5d:42:04:c9:61:47:18:a8:35:af:e8:ca:37:66:5e:b9:c8: 38:0e:34:e0:6e:fa:b5:6d:14:e4:0d:50:53:b0:ec:84:ee:b1: bb:6e:36:bc:d4:e9:10:06:63:51:ae:9c:36:54:d5:bb:f3:13: 6a:7f:af:09:c1:12:24:df:be:2d:4c:d1:89:9e:e4:21:e0:50: a8:c5:2f:5f:81:05:1d:4b:39:1a:19:ea:35:66:8b:a3:2e:af: 80:58:cc:2c:90:f1:08:04:7d:25:39:7d:fa:6d:3a:6f:b6:60: 28:8d:e4:8a:21:b1:3b:ce:0d:9d:86:5d:8a:a2:17:25:03:15: c5:37:be:e3:38:93:d4:b3:ce:c9:cc:b5:53:6e:ee:01:e7:3b: 0b:e2:79:4e:da:0e:0a:6a:e5:0c:92:3c:28:60:62:0c:c2:00: 02:64:8c:c0:f9:8e:89:89:e7:a1:42:23:00:da:ad:9a:55:9a: 59:97:81:2f:9c:f0:7f:1f:41:1a:a9:53:f3:78:63:65:92:ba: 45:24:45:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjUxMDE5MDYwMjE1WhcNMjUxMDI2MDYwMjE1WjAYMRYwFAYD VQQDEw02OGY0N2VlNy00ZjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrIKV73RhsMC1PtM4IeRl62eM9/m9lyqcmNBbRu6lcmabIjWpbU0wzNBA+be 8r5wOi82Bhflp+6azVVB4ZaoL/B85AMK0jjN2h9hu8rJzxppvVn3YHLBymPOVVBu 8VcjoGZnFUW5syCmZBXvA0wFBa8rKkFqJrFCqj9nCXBEYRinadQvyB9BKA/qIKTy zHV/KqWeEzahY6msE3i3BKrrfbyIN+wJDVGiLdWVSBQpLvpK//Wa8aG2UuKZ1Cij Vr2m4YqsP8k+XWJ32vxpoLD+Moe+nHNO65CV0B0aUTPDWsGVmhgSvC457MFczwcz fzFteV+xS49bu/w5WxiVKVKrjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDYUf9h l/6k714hpSM//SmRSsHWMB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaC4mbLxVNqNhRdD+MIE4R2XWTH3fr6eMzSbOO7Kg9HsMGWfHeCQtV RbWcFvXcF0DS74UiZNdsXUIEyWFHGKg1r+jKN2Zeucg4DjTgbvq1bRTkDVBTsOyE 7rG7bja81OkQBmNRrpw2VNW78xNqf68JwRIk374tTNGJnuQh4FCoxS9fgQUdSzka Geo1ZoujLq+AWMwskPEIBH0lOX36bTpvtmAojeSKIbE7zg2dhl2KohclAxXFN77j OJPUs87JzLVTbu4B5zsL4nlO2g4KauUMkjwoYGIMwgACZIzA+Y6JieehQiMA2q2a VZpZl4EvnPB/H0EaqVPzeGNlkrpFJEXF -----END CERTIFICATE-----Generated at Mon Oct 20 14:35:19 2025 by rpki-client