$ rpki-client -vvf rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft File: BQFHuU3J1svowLDxrQwBg6YHfDQ.mft (raw, json) Hash identifier: sHZRwyCxhmpM3RN1woEq93Cywmun4BAiyJHU33j9ojQ= Subject key identifier: 64:81:5A:E7:64:33:81:15:06:B3:6E:5A:E1:90:DA:5B:35:2B:DE:FD Authority key identifier: 05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 Certificate issuer: /CN=A91629AA/serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft Manifest number: FB Signing time: Sat 19 Jul 2025 05:24:59 +0000 Manifest this update: Sat 19 Jul 2025 05:24:59 +0000 Manifest next update: Sat 26 Jul 2025 05:24:59 +0000 Files and hashes: 1: BQFHuU3J1svowLDxrQwBg6YHfDQ.crl (hash: oVVVO3N+SQcFXQH5FLLrCnM08keZW1y6RMsA4mowvlo=) 2: 1E347CDCE74A11EE8602742BC4F9AE02.roa (hash: 1KFMJqeP1xSunnIgreiULJOt/F6oOyvmT80gXMxgyXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:24:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91629AA, serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Validity Not Before: Jul 19 05:24:59 2025 GMT Not After : Jul 26 05:24:59 2025 GMT Subject: CN=687b2c2b-5ce1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7f:c3:a3:85:64:c4:aa:f3:f3:9f:a3:bf:78: 98:eb:c6:80:71:98:ef:1b:fc:0d:21:60:53:f4:e8: 86:d5:b1:24:73:52:16:93:19:44:78:c3:d6:f7:d0: e4:78:4a:fd:01:20:22:56:c9:c1:6e:79:c7:a1:95: 19:15:e4:f4:eb:99:eb:bb:39:1f:f0:77:c7:fa:25: 56:09:15:24:44:89:76:78:38:99:01:c5:c8:db:f2: cd:40:19:a4:50:5d:8b:96:26:ff:73:d3:82:2d:ec: 32:44:e8:a0:32:d8:73:43:f1:e1:37:97:32:da:e2: a2:01:1f:48:4f:48:d1:7c:d3:06:01:d9:11:d2:c2: fb:f1:29:1c:16:69:9e:43:d6:e0:14:e2:5e:7e:b2: f6:61:78:d9:89:98:76:b6:9a:f6:9e:03:b3:15:85: 12:be:d8:29:2a:c1:e8:9f:b0:cc:a6:b4:84:c7:fe: ed:85:ce:98:8c:e7:13:d7:d4:63:53:db:f5:2a:2e: a6:d1:31:ba:85:b1:1a:48:19:f1:74:83:10:6c:6e: 14:e0:8c:c0:d9:7e:53:be:a7:4c:b7:6f:69:3e:4d: 5e:b3:d6:f7:28:62:0f:eb:9c:ae:a7:99:87:1d:b4: 59:48:30:df:d9:54:c6:9b:08:42:08:c7:b3:89:84: 95:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:81:5A:E7:64:33:81:15:06:B3:6E:5A:E1:90:DA:5B:35:2B:DE:FD X509v3 Authority Key Identifier: keyid:05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:3b:15:cb:63:09:ea:40:01:d6:f2:ce:46:cc:72:50:61:a6: 3c:66:5f:80:2d:44:4a:18:89:20:1d:9e:74:fb:4a:17:94:87: df:9c:db:ac:22:bf:51:ff:88:16:95:79:2b:a8:2d:fa:13:f1: c5:b3:2f:20:1b:86:72:a1:3e:43:a4:69:bb:32:7c:e8:67:81: f5:86:9f:5e:99:42:33:86:48:81:eb:ad:7c:39:f8:60:5b:b3: 9b:83:5c:ac:29:0c:9d:56:86:c1:bc:7a:f7:77:de:aa:1d:dc: ec:2d:0d:9e:94:ef:bc:83:db:2a:b8:e2:78:1f:7b:96:30:be: e5:05:0d:8f:bc:a5:f6:02:62:d8:e3:6f:3b:b8:e0:25:65:14: 69:4f:e0:8c:8a:d3:1f:3d:55:29:95:2e:94:bf:20:0d:7a:8a: 4b:2f:78:87:19:34:af:39:9c:f2:ee:c4:68:5a:a2:ca:27:ec: 5c:75:bd:28:45:fe:9a:f9:ec:c3:b8:5a:78:27:ae:5c:3a:a5: a8:d7:2f:14:72:00:9e:9d:fa:9d:dc:77:67:7b:df:01:3a:78: 84:f7:a1:9d:01:7a:8b:6e:ff:42:9b:05:89:ae:7d:94:3c:0b: b5:c1:a8:ab:70:34:1f:da:fa:b3:45:ff:b8:b8:16:73:c6:6e: ee:6b:17:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI5QUExMTAvBgNVBAUTKDA1MDE0N0I5NERDOUQ2Q0JFOEMwQjBGMUFEMEMwMTgz QTYwNzdDMzQwHhcNMjUwNzE5MDUyNDU5WhcNMjUwNzI2MDUyNDU5WjAYMRYwFAYD VQQDEw02ODdiMmMyYi01Y2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3/Do4VkxKrz85+jv3iY68aAcZjvG/wNIWBT9OiG1bEkc1IWkxlEeMPW99Dk eEr9ASAiVsnBbnnHoZUZFeT065nruzkf8HfH+iVWCRUkRIl2eDiZAcXI2/LNQBmk UF2Llib/c9OCLewyROigMthzQ/HhN5cy2uKiAR9IT0jRfNMGAdkR0sL78SkcFmme Q9bgFOJefrL2YXjZiZh2tpr2ngOzFYUSvtgpKsHon7DMprSEx/7thc6YjOcT19Rj U9v1Ki6m0TG6hbEaSBnxdIMQbG4U4IzA2X5TvqdMt29pPk1es9b3KGIP65yup5mH HbRZSDDf2VTGmwhCCMeziYSVSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGSBWudk M4EVBrNuWuGQ2ls1K979MB8GA1UdIwQYMBaAFAUBR7lNydbL6MCw8a0MAYOmB3w0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjlBQS81RjA2OTNGNEU3 NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFzdm93TER4clF3Qmc2WUhm RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRRkh1VTNKMXN2b3dMRHhyUXdCZzZZSGZEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjlBQS81RjA2OTNGNEU3NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFz dm93TER4clF3Qmc2WUhmRFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuOxXLYwnqQAHW8s5GzHJQYaY8Zl+ALURKGIkgHZ50+0oXlIffnNus Ir9R/4gWlXkrqC36E/HFsy8gG4ZyoT5DpGm7MnzoZ4H1hp9emUIzhkiB6618Ofhg W7Obg1ysKQydVobBvHr3d96qHdzsLQ2elO+8g9squOJ4H3uWML7lBQ2PvKX2AmLY 4287uOAlZRRpT+CMitMfPVUplS6UvyANeopLL3iHGTSvOZzy7sRoWqLKJ+xcdb0o Rf6a+ezDuFp4J65cOqWo1y8UcgCenfqd3Hdne98BOniE96GdAXqLbv9CmwWJrn2U PAu1waircDQf2vqzRf+4uBZzxm7uaxdp -----END CERTIFICATE-----Generated at Sun Jul 20 02:55:19 2025 by rpki-client