$ rpki-client -vvf rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft File: BKfrBJqTf9nyuG4Vnd310sma1B4.mft (raw, json) Hash identifier: p2mPS43HWSy/0JPzAyVbesZpBWNus4ujUT2tTgVolto= Subject key identifier: 36:53:D7:F2:EC:4E:EE:24:61:CA:56:28:55:61:47:07:DE:3F:6F:7A Authority key identifier: 04:A7:EB:04:9A:93:7F:D9:F2:B8:6E:15:9D:DD:F5:D2:C9:9A:D4:1E Certificate issuer: /CN=A91E87AB/serialNumber=04A7EB049A937FD9F2B86E159DDDF5D2C99AD41E Certificate serial: 0525 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft Manifest number: 051F Signing time: Fri 22 Aug 2025 23:46:34 +0000 Manifest this update: Fri 22 Aug 2025 23:46:33 +0000 Manifest next update: Fri 29 Aug 2025 23:46:33 +0000 Files and hashes: 1: BKfrBJqTf9nyuG4Vnd310sma1B4.crl (hash: WaHcLVog5lVkdJCT9aoaNk6UZarFe26CPg4cGMlBrxE=) 2: 709F3B2E145C11EC9A902165C4F9AE02.roa (hash: UibVZP54wNfnJM5fmfROJ4sssLQa2oOrL7RimgDBnPw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.crl rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1317 (0x525) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E87AB, serialNumber=04A7EB049A937FD9F2B86E159DDDF5D2C99AD41E Validity Not Before: Aug 22 23:46:33 2025 GMT Not After : Aug 29 23:46:33 2025 GMT Subject: CN=68a9015a-374d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bf:7e:49:a5:f4:32:99:c4:c5:38:22:6c:a4: e4:9b:b3:f5:c7:66:73:58:bf:48:fa:23:28:9a:86: e0:ee:f7:1c:bc:63:af:dd:1a:69:3e:01:24:3c:f3: ff:b4:a2:b4:1c:17:39:a5:c3:e0:f0:8c:ab:c4:44: 76:f1:a2:29:a5:32:67:84:82:43:0e:00:31:7d:5e: e1:84:a2:b5:6a:e5:f8:21:2d:71:85:49:ba:7d:0b: 4b:5f:e2:2b:72:8f:93:3d:36:c3:c2:b1:fb:ed:13: bf:85:0f:2a:ce:ee:a5:20:2c:c1:a4:d4:95:1d:6a: fa:49:99:c6:ff:8d:ac:1c:23:22:fa:e6:2d:30:16: 19:ba:15:86:fc:a2:a3:03:a9:fd:17:62:37:72:da: a3:48:79:1d:94:1b:4b:8a:b8:6c:cc:1e:d3:52:3a: 8c:9b:a6:3e:15:e5:7e:cf:9a:8b:dc:1b:d0:f8:a4: 67:50:29:c6:8a:9b:50:07:4f:cb:b9:8d:52:8e:4c: cb:ed:3b:a8:5e:b3:49:c1:fd:eb:d5:da:9d:f1:a5: 47:d2:57:b3:72:f2:f4:7f:1d:21:41:3b:28:3d:6f: 82:81:06:25:f7:d4:3a:34:44:66:13:4c:0e:0c:29: 30:42:9f:63:f6:ab:05:cf:38:11:11:2e:a6:46:58: 6f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:53:D7:F2:EC:4E:EE:24:61:CA:56:28:55:61:47:07:DE:3F:6F:7A X509v3 Authority Key Identifier: keyid:04:A7:EB:04:9A:93:7F:D9:F2:B8:6E:15:9D:DD:F5:D2:C9:9A:D4:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:12:04:a8:47:e4:ae:b7:b6:a3:eb:4b:77:21:82:dc:97:c7: f4:e2:ba:fc:cf:d7:f2:b1:bf:72:75:9c:76:a0:f9:ad:3c:39: 06:af:c9:bb:9a:00:e7:70:5e:ea:c4:a8:32:eb:79:8e:98:66: 62:bc:83:50:35:ed:9f:7a:44:c2:49:03:4d:67:a4:17:0d:91: 32:09:b5:1f:9b:c5:c3:b5:3f:5b:8f:a1:9e:36:d4:09:d0:90: 98:26:fa:9d:f1:de:d0:13:d8:66:a0:40:c9:48:0d:c6:67:79: e0:5c:67:1f:e1:4c:78:5c:11:88:51:14:c5:5b:4e:59:76:60: a0:1e:65:db:68:76:be:15:8a:92:7e:55:ec:76:87:81:a4:9d: b6:ce:cf:d0:92:a6:7b:0c:2c:23:ed:90:f6:db:5a:d9:0e:fb: 9e:22:82:22:ba:c9:82:88:a4:16:5f:68:9f:41:a8:09:fd:f9: 01:29:04:f8:9b:0b:b1:74:21:fb:a1:5e:06:69:67:35:14:95: ed:dc:fe:88:03:2b:b4:3a:69:35:fa:e1:70:ab:46:35:6f:9d: 42:e3:ab:c3:01:6f:2d:71:32:f7:ee:58:bc:cd:07:d0:e9:2f: 8f:5d:eb:02:62:ec:39:c0:71:58:ae:02:1d:83:dc:53:e4:42: db:b8:0b:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg3QUIxMTAvBgNVBAUTKDA0QTdFQjA0OUE5MzdGRDlGMkI4NkUxNTlERERGNUQy Qzk5QUQ0MUUwHhcNMjUwODIyMjM0NjMzWhcNMjUwODI5MjM0NjMzWjAYMRYwFAYD VQQDEw02OGE5MDE1YS0zNzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvb9+SaX0MpnExTgibKTkm7P1x2ZzWL9I+iMomobg7vccvGOv3RppPgEkPPP/ tKK0HBc5pcPg8IyrxER28aIppTJnhIJDDgAxfV7hhKK1auX4IS1xhUm6fQtLX+Ir co+TPTbDwrH77RO/hQ8qzu6lICzBpNSVHWr6SZnG/42sHCMi+uYtMBYZuhWG/KKj A6n9F2I3ctqjSHkdlBtLirhszB7TUjqMm6Y+FeV+z5qL3BvQ+KRnUCnGiptQB0/L uY1SjkzL7TuoXrNJwf3r1dqd8aVH0lezcvL0fx0hQTsoPW+CgQYl99Q6NERmE0wO DCkwQp9j9qsFzzgRES6mRlhvWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZT1/Ls Tu4kYcpWKFVhRwfeP296MB8GA1UdIwQYMBaAFASn6wSak3/Z8rhuFZ3d9dLJmtQe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODdBQi85MTZCMDY2NjE0 NTgxMUVDOUVENkM3M0JDNEY5QUUwMi9CS2ZyQkpxVGY5bnl1RzRWbmQzMTBzbWEx QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLZnJCSnFUZjlueXVHNFZuZDMxMHNtYTFCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODdBQi85MTZCMDY2NjE0NTgxMUVDOUVENkM3M0JDNEY5QUUwMi9CS2ZyQkpxVGY5 bnl1RzRWbmQzMTBzbWExQjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmEgSoR+Sut7aj60t3IYLcl8f04rr8z9fysb9ydZx2oPmtPDkGr8m7 mgDncF7qxKgy63mOmGZivINQNe2fekTCSQNNZ6QXDZEyCbUfm8XDtT9bj6GeNtQJ 0JCYJvqd8d7QE9hmoEDJSA3GZ3ngXGcf4Ux4XBGIURTFW05ZdmCgHmXbaHa+FYqS flXsdoeBpJ22zs/QkqZ7DCwj7ZD221rZDvueIoIiusmCiKQWX2ifQagJ/fkBKQT4 mwuxdCH7oV4GaWc1FJXt3P6IAyu0Omk1+uFwq0Y1b51C46vDAW8tcTL37li8zQfQ 6S+PXesCYuw5wHFYrgIdg9xT5ELbuAuA -----END CERTIFICATE-----Generated at Sat Aug 23 15:45:59 2025 by rpki-client