$ rpki-client -vvf rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft File: BKM4-nsSbgfA74urj33BycGsMiE.mft (raw, json) Hash identifier: 5j8L42oTj1fJ2hXU78MkA8LgndPz9VNXJi5uwIECfc4= Subject key identifier: DF:9E:79:EE:61:1D:55:A0:B3:83:D1:08:F4:C1:65:B1:21:2A:40:B3 Authority key identifier: 04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21 Certificate issuer: /CN=A91C146D/serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221 Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft Manifest number: 54 Signing time: Sat 23 Aug 2025 07:29:17 +0000 Manifest this update: Sat 23 Aug 2025 07:29:16 +0000 Manifest next update: Sat 30 Aug 2025 07:29:16 +0000 Files and hashes: 1: BKM4-nsSbgfA74urj33BycGsMiE.crl (hash: WQ9l4NHuqfLpeWpWxcEF7CVyrL0KNqMTVsq/mFpUPrM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:29:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C146D, serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221 Validity Not Before: Aug 23 07:29:16 2025 GMT Not After : Aug 30 07:29:16 2025 GMT Subject: CN=68a96dcc-5c36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b3:c7:ed:d0:1f:31:06:26:b7:82:d3:8d:65: 87:8d:54:43:72:b1:c2:fb:6f:65:0e:f7:23:ab:82: 45:98:40:75:5e:8d:77:95:10:25:77:66:69:39:cb: 85:8e:c2:22:5d:b3:91:e9:83:94:05:8c:79:82:9d: 67:79:79:f9:f5:b4:06:c1:18:44:8c:3f:28:12:be: 73:d5:60:89:2f:8c:32:34:4b:d3:c9:1e:51:26:c4: 4e:34:c4:36:3e:ca:7c:12:e5:22:2e:5e:84:44:0b: 93:fb:b0:12:5e:69:51:cd:7c:ed:b0:6b:73:8d:6d: 43:08:92:f9:a9:33:b5:3a:69:d0:01:8e:d5:e0:19: cb:95:a2:ba:80:04:3d:c4:08:dc:32:0c:15:48:12: 3d:b4:c3:5c:78:bb:12:7e:62:1c:51:3a:e5:aa:67: ed:ba:df:99:c7:cf:4a:90:27:18:c6:7c:8a:60:3e: 09:60:8d:7a:13:f7:74:39:b3:12:f3:1b:82:26:4d: 8a:37:6c:b0:41:93:f6:e5:77:f8:38:7e:70:e0:47: 40:17:74:2c:65:be:87:d9:96:6a:9b:01:9d:18:3b: d4:7d:0e:3f:95:79:7a:52:df:01:6e:9f:10:04:fa: 8d:2e:b2:5d:44:d9:06:34:eb:40:37:43:42:c2:1d: ea:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:9E:79:EE:61:1D:55:A0:B3:83:D1:08:F4:C1:65:B1:21:2A:40:B3 X509v3 Authority Key Identifier: keyid:04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:f2:3d:51:5a:b2:3f:15:75:e6:26:82:7d:dc:a2:d4:0d:42: f9:2b:0d:c2:4a:fa:61:1e:35:dc:24:3f:e6:12:e3:c8:a1:46: 18:11:e7:93:ec:ca:e8:23:ec:b2:9c:2c:f1:2d:43:cb:65:7a: 01:08:25:d6:95:fe:2c:85:d9:59:85:9f:eb:3e:03:02:16:85: f5:95:86:6d:07:8b:8e:eb:ab:19:86:60:34:7c:03:e0:70:24: 0a:3a:75:31:84:c2:76:0e:ba:66:2c:b6:7a:8c:46:6a:e6:58: a0:ff:01:c4:f4:1e:c3:30:7f:1e:40:ad:2f:37:d2:a5:d2:99: a2:7e:b4:8a:f9:88:3d:63:91:59:a4:cf:d2:4f:15:36:1b:8d: ff:54:22:7a:d3:c6:ec:3a:d3:0b:d5:4d:95:2f:a7:c0:f9:49: 41:76:d2:56:ff:1e:a3:c6:9c:f9:cf:4b:25:13:59:67:40:01: 9d:45:92:bf:35:d1:be:c0:aa:45:36:ac:e6:0a:ed:98:69:28: bf:ea:80:cd:17:fc:76:9b:3f:24:70:15:5e:a5:a8:9e:ed:49: 94:26:0c:5f:19:31:62:b5:36:88:72:dd:02:80:6e:d5:77:2e: 7f:95:95:07:c6:b8:0d:96:20:88:9a:34:a7:7a:94:53:26:74: 5e:aa:9d:e0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTQ2RDExMC8GA1UEBRMoMDRBMzM4RkE3QjEyNkUwN0MwRUY4QkFCOEY3REMxQzlD MUFDMzIyMTAeFw0yNTA4MjMwNzI5MTZaFw0yNTA4MzAwNzI5MTZaMBgxFjAUBgNV BAMTDTY4YTk2ZGNjLTVjMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCws8ft0B8xBia3gtONZYeNVENyscL7b2UO9yOrgkWYQHVejXeVECV3Zmk5y4WO wiJds5Hpg5QFjHmCnWd5efn1tAbBGESMPygSvnPVYIkvjDI0S9PJHlEmxE40xDY+ ynwS5SIuXoREC5P7sBJeaVHNfO2wa3ONbUMIkvmpM7U6adABjtXgGcuVorqABD3E CNwyDBVIEj20w1x4uxJ+YhxROuWqZ+2635nHz0qQJxjGfIpgPglgjXoT93Q5sxLz G4ImTYo3bLBBk/bld/g4fnDgR0AXdCxlvofZlmqbAZ0YO9R9Dj+VeXpS3wFunxAE +o0usl1E2QY060A3Q0LCHeoXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU35557mEd VaCzg9EI9MFlsSEqQLMwHwYDVR0jBBgwFoAUBKM4+nsSbgfA74urj33BycGsMiEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxNDZEL0Y0RDVBNjdFMDAz NzExRjBCQkQ3MjQ3NUM0RjlBRTAyL0JLTTQtbnNTYmdmQTc0dXJqMzNCeWNHc01p RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQktNNC1uc1NiZ2ZBNzR1cmozM0J5Y0dzTWlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMx NDZEL0Y0RDVBNjdFMDAzNzExRjBCQkQ3MjQ3NUM0RjlBRTAyL0JLTTQtbnNTYmdm QTc0dXJqMzNCeWNHc01pRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACvyPVFasj8VdeYmgn3cotQNQvkrDcJK+mEeNdwkP+YS48ihRhgR55Ps yugj7LKcLPEtQ8tlegEIJdaV/iyF2VmFn+s+AwIWhfWVhm0Hi47rqxmGYDR8A+Bw JAo6dTGEwnYOumYstnqMRmrmWKD/AcT0HsMwfx5ArS830qXSmaJ+tIr5iD1jkVmk z9JPFTYbjf9UInrTxuw60wvVTZUvp8D5SUF20lb/HqPGnPnPSyUTWWdAAZ1Fkr81 0b7AqkU2rOYK7ZhpKL/qgM0X/HabPyRwFV6lqJ7tSZQmDF8ZMWK1Nohy3QKAbtV3 Ln+VlQfGuA2WIIiaNKd6lFMmdF6qneA= -----END CERTIFICATE-----Generated at Sun Aug 24 00:42:53 2025 by rpki-client