$ rpki-client -vvf rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft File: BKM4-nsSbgfA74urj33BycGsMiE.mft (raw, json) Hash identifier: M/Nq/Xe/6Ecry+2y7zb3xnAu0tsKMTuut46cG9IUG0g= Subject key identifier: AC:65:56:BC:D3:2B:4C:FE:77:CD:1B:73:03:4A:8F:E4:F9:AB:63:B2 Authority key identifier: 04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21 Certificate issuer: /CN=A91C146D/serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft Manifest number: 22 Signing time: Thu 15 May 2025 07:09:46 +0000 Manifest this update: Thu 15 May 2025 07:09:45 +0000 Manifest next update: Thu 22 May 2025 07:09:45 +0000 Files and hashes: 1: BKM4-nsSbgfA74urj33BycGsMiE.crl (hash: um+PjE2wNrbdxaKvx0qxjJ0JGAhiWsGnG2HuF8iNsIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 07:09:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C146D, serialNumber=04A338FA7B126E07C0EF8BAB8F7DC1C9C1AC3221 Validity Not Before: May 15 07:09:45 2025 GMT Not After : May 22 07:09:45 2025 GMT Subject: CN=6825933a-b3ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3c:6b:9f:98:7a:d0:21:ab:e7:b6:3f:ff:2b: 87:b8:98:98:c6:2a:e1:ba:19:96:6b:35:46:95:d8: 04:de:28:81:13:7d:c0:72:97:3d:62:4e:20:c7:0e: a9:75:8a:ae:73:cb:b3:3f:bc:d3:b8:59:e9:2a:b7: fb:9e:c3:2a:cf:2f:d9:8d:ca:20:4a:b3:dd:2a:ca: 38:a5:2e:80:df:ab:c4:2d:6d:8f:8d:dc:e5:b2:6f: 4f:c6:64:d3:26:90:fe:95:8c:ab:25:41:1f:37:13: b8:a7:28:f5:ed:96:00:85:ee:6e:97:b3:a1:a0:26: 8a:4f:f1:db:fa:eb:b6:20:4e:fb:83:ca:cc:06:cc: a7:42:7d:8c:65:fa:f9:f9:88:75:9d:e7:50:58:b0: 47:0a:7a:96:7d:02:16:10:e8:b2:a5:9a:1d:42:d9: 8b:7a:1f:4a:ef:50:11:a9:b4:e4:8e:5f:e7:b0:88: 15:05:be:c4:99:42:ff:c7:6a:a7:64:b8:6e:ac:43: 67:9b:46:bb:36:46:59:3c:56:6c:f5:c5:89:1f:28: c8:f2:40:8a:80:a8:ff:0a:18:dd:fd:c0:17:23:1c: e8:c4:f7:13:a5:9e:ad:75:f6:4b:1a:26:9a:d8:14: 31:50:6c:5d:24:96:86:c5:8e:29:f9:0e:c7:bf:46: fd:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:65:56:BC:D3:2B:4C:FE:77:CD:1B:73:03:4A:8F:E4:F9:AB:63:B2 X509v3 Authority Key Identifier: keyid:04:A3:38:FA:7B:12:6E:07:C0:EF:8B:AB:8F:7D:C1:C9:C1:AC:32:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKM4-nsSbgfA74urj33BycGsMiE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C146D/F4D5A67E003711F0BBD72475C4F9AE02/BKM4-nsSbgfA74urj33BycGsMiE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:93:65:a3:50:a1:21:b1:10:58:cd:32:64:b3:f2:c2:e4:1f: 3c:6c:aa:62:7d:a0:55:9c:64:89:ca:39:87:72:35:c0:b3:ac: 60:4e:6a:4c:e0:94:e3:7e:94:f8:96:31:7f:eb:62:e6:1e:75: 57:51:ed:3a:19:c9:65:b2:48:c3:4a:50:fc:de:78:f1:61:78: 04:d6:e4:f0:b6:91:2c:bd:63:d0:61:57:0e:e3:f0:6e:dd:bc: b5:d1:b8:02:c8:1c:3c:89:e0:05:8c:57:a4:b7:cf:f9:be:3e: 57:34:e8:10:19:09:70:37:da:58:28:c3:6c:9e:6b:34:7b:32: a9:8b:04:49:a6:5f:24:e1:fa:e6:b8:28:52:03:ba:99:84:9d: ce:b2:f3:f6:21:95:e1:34:1d:4a:4b:c5:6b:09:5c:44:6d:1b: 66:7f:36:69:e0:4b:a0:26:9f:ab:7c:8e:ab:54:7a:ae:06:bc: 7b:ab:91:c7:62:a0:7c:f3:de:e2:75:d8:e2:46:57:2f:9e:ce: 1a:c9:3a:2a:cc:f4:81:d6:68:42:69:99:90:b7:90:42:eb:9b: a5:30:3b:97:f6:ea:00:06:e6:cf:61:04:b9:3e:5f:84:81:3c: dc:69:a6:be:49:1e:00:59:e3:38:2f:ef:d9:f3:02:b8:d1:6d: fa:13:ea:5d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTQ2RDExMC8GA1UEBRMoMDRBMzM4RkE3QjEyNkUwN0MwRUY4QkFCOEY3REMxQzlD MUFDMzIyMTAeFw0yNTA1MTUwNzA5NDVaFw0yNTA1MjIwNzA5NDVaMBgxFjAUBgNV BAMTDTY4MjU5MzNhLWIzYWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/PGufmHrQIavntj//K4e4mJjGKuG6GZZrNUaV2ATeKIETfcBylz1iTiDHDql1 iq5zy7M/vNO4Wekqt/uewyrPL9mNyiBKs90qyjilLoDfq8QtbY+N3OWyb0/GZNMm kP6VjKslQR83E7inKPXtlgCF7m6Xs6GgJopP8dv667YgTvuDyswGzKdCfYxl+vn5 iHWd51BYsEcKepZ9AhYQ6LKlmh1C2Yt6H0rvUBGptOSOX+ewiBUFvsSZQv/Haqdk uG6sQ2ebRrs2Rlk8Vmz1xYkfKMjyQIqAqP8KGN39wBcjHOjE9xOlnq119ksaJprY FDFQbF0klobFjin5Dse/Rv1BAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrGVWvNMr TP53zRtzA0qP5PmrY7IwHwYDVR0jBBgwFoAUBKM4+nsSbgfA74urj33BycGsMiEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxNDZEL0Y0RDVBNjdFMDAz NzExRjBCQkQ3MjQ3NUM0RjlBRTAyL0JLTTQtbnNTYmdmQTc0dXJqMzNCeWNHc01p RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQktNNC1uc1NiZ2ZBNzR1cmozM0J5Y0dzTWlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMx NDZEL0Y0RDVBNjdFMDAzNzExRjBCQkQ3MjQ3NUM0RjlBRTAyL0JLTTQtbnNTYmdm QTc0dXJqMzNCeWNHc01pRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAqTZaNQoSGxEFjNMmSz8sLkHzxsqmJ9oFWcZInKOYdyNcCzrGBOakzg lON+lPiWMX/rYuYedVdR7ToZyWWySMNKUPzeePFheATW5PC2kSy9Y9BhVw7j8G7d vLXRuALIHDyJ4AWMV6S3z/m+Plc06BAZCXA32lgow2yeazR7MqmLBEmmXyTh+ua4 KFIDupmEnc6y8/YhleE0HUpLxWsJXERtG2Z/NmngS6Amn6t8jqtUeq4GvHurkcdi oHzz3uJ12OJGVy+ezhrJOirM9IHWaEJpmZC3kELrm6UwO5f26gAG5s9hBLk+X4SB PNxppr5JHgBZ4zgv79nzArjRbfoT6l0= -----END CERTIFICATE-----Generated at Fri May 16 01:08:52 2025 by rpki-client