$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft File: BQ5HmwmNZLazhlsr5GiFdeotTVE.mft (raw, json) Hash identifier: dpEHYTvFHyRSWMN5Uufgn5JwvvZveFYxcthOPF1X27Q= Subject key identifier: 01:0E:D3:2E:47:22:87:7E:A5:3E:EF:7E:81:28:78:FF:37:A2:06:E3 Authority key identifier: 05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 Certificate issuer: /CN=A91AB457/serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Certificate serial: 0BDB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft Manifest number: 0BDB Signing time: Fri 18 Jul 2025 19:00:38 +0000 Manifest this update: Fri 18 Jul 2025 19:00:38 +0000 Manifest next update: Fri 25 Jul 2025 19:00:38 +0000 Files and hashes: 1: BQ5HmwmNZLazhlsr5GiFdeotTVE.crl (hash: b3AK7wUX8WMn+QKo2jg5/1+dM2W8CzrMq9VKfLSXKuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 19:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3035 (0xbdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB457, serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Validity Not Before: Jul 18 19:00:38 2025 GMT Not After : Jul 25 19:00:38 2025 GMT Subject: CN=687a99d6-7d28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:41:06:4b:2f:50:f8:58:f6:a8:6f:91:e3:2f: d3:df:8a:52:d3:9b:f0:47:99:d8:14:98:49:75:f5: a6:7e:09:10:dc:6e:a8:53:1e:68:ce:6a:4c:25:2a: 38:0e:1c:c4:52:52:a3:e6:dc:bd:b3:87:3f:86:ee: 55:42:41:c2:5a:f1:ea:a2:8f:20:a4:8c:1e:b4:49: 55:24:bd:3f:55:44:eb:f7:01:0f:47:cd:15:43:13: b6:f2:8c:e8:3a:3b:00:12:83:c0:48:3a:d4:83:20: 70:24:df:78:7e:d2:8c:e8:c7:59:51:0d:3c:95:c9: 75:b6:ea:c3:57:68:0b:b7:8b:be:17:93:5c:c7:21: 07:63:8d:8d:82:c0:31:95:47:1c:86:fd:a6:c4:99: d9:05:40:ae:78:af:a9:56:ee:db:f7:2f:b2:ba:35: 59:3d:c8:db:c1:33:74:16:f3:44:88:6f:7b:23:73: 2c:c7:0b:29:16:d3:ca:52:9e:6c:8d:bb:b1:59:73: 62:4b:97:d7:ea:da:5e:22:d3:1b:ca:87:a1:e1:c5: a5:54:2d:66:67:f7:65:e2:ae:5d:1f:27:ea:c8:4a: ae:5b:cd:72:e1:04:29:9f:4e:3c:ea:65:62:2f:fc: 4d:6d:1f:13:db:b2:f1:d5:bc:67:46:9e:ad:98:cc: d3:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:0E:D3:2E:47:22:87:7E:A5:3E:EF:7E:81:28:78:FF:37:A2:06:E3 X509v3 Authority Key Identifier: keyid:05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:f6:5a:ff:c8:fc:f6:7b:9b:d9:b1:6b:fc:7f:53:76:32:d4: b4:ed:3d:c7:e3:f3:84:80:08:3c:ba:d5:c7:cf:6f:9e:13:84: 49:ae:21:c8:61:c0:fa:fb:dd:c0:43:77:1d:8a:de:cd:4f:e2: c7:3e:a7:75:0d:a3:1f:25:a1:55:ac:68:96:c3:b9:29:7f:ac: 74:a0:50:1c:d3:ac:3b:1e:f6:eb:43:ce:fb:3b:68:f7:b7:b7: df:61:cc:6d:a8:cc:ac:2c:ad:33:0f:d1:2c:40:ca:b0:53:a5: 7f:4f:63:97:b8:bc:65:68:b0:4b:2d:37:55:72:29:7f:75:5a: 0e:ea:33:5c:9c:44:d8:01:b4:7e:75:32:38:ff:56:8e:55:e4: 58:cc:c6:a0:a9:13:57:ae:88:99:5c:b7:c0:8f:06:01:3e:f5: 14:ea:36:44:e7:69:25:16:ad:20:7f:41:0f:23:1d:ce:3a:e7: c2:8c:08:04:82:55:34:a6:d0:d0:c1:54:ca:9a:0b:38:b9:d4: e7:6f:77:e0:75:23:a6:e8:b2:85:0e:3a:b4:91:fc:b8:cb:1e: 30:fa:81:2e:d8:65:13:06:6f:3b:10:b7:36:71:dc:42:fd:f8: 38:a8:87:18:76:fe:76:fd:a1:4f:4e:d0:a8:2e:f6:de:71:aa: dd:7e:98:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0NTcxMTAvBgNVBAUTKDA1MEU0NzlCMDk4RDY0QjZCMzg2NUIyQkU0Njg4NTc1 RUEyRDRENTEwHhcNMjUwNzE4MTkwMDM4WhcNMjUwNzI1MTkwMDM4WjAYMRYwFAYD VQQDEw02ODdhOTlkNi03ZDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0EGSy9Q+Fj2qG+R4y/T34pS05vwR5nYFJhJdfWmfgkQ3G6oUx5ozmpMJSo4 DhzEUlKj5ty9s4c/hu5VQkHCWvHqoo8gpIwetElVJL0/VUTr9wEPR80VQxO28ozo OjsAEoPASDrUgyBwJN94ftKM6MdZUQ08lcl1turDV2gLt4u+F5NcxyEHY42NgsAx lUcchv2mxJnZBUCueK+pVu7b9y+yujVZPcjbwTN0FvNEiG97I3MsxwspFtPKUp5s jbuxWXNiS5fX6tpeItMbyoeh4cWlVC1mZ/dl4q5dHyfqyEquW81y4QQpn0486mVi L/xNbR8T27Lx1bxnRp6tmMzTUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAEO0y5H Iod+pT7vfoEoeP83ogbjMB8GA1UdIwQYMBaAFAUOR5sJjWS2s4ZbK+RohXXqLU1R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjQ1Ny81QUY2NjEwMjFD OTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpMYXpobHNyNUdpRmRlb3RU VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRNUhtd21OWkxhemhsc3I1R2lGZGVvdFRWRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjQ1Ny81QUY2NjEwMjFDOTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpM YXpobHNyNUdpRmRlb3RUVkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr9lr/yPz2e5vZsWv8f1N2MtS07T3H4/OEgAg8utXHz2+eE4RJriHI YcD6+93AQ3cdit7NT+LHPqd1DaMfJaFVrGiWw7kpf6x0oFAc06w7HvbrQ877O2j3 t7ffYcxtqMysLK0zD9EsQMqwU6V/T2OXuLxlaLBLLTdVcil/dVoO6jNcnETYAbR+ dTI4/1aOVeRYzMagqRNXroiZXLfAjwYBPvUU6jZE52klFq0gf0EPIx3OOufCjAgE glU0ptDQwVTKmgs4udTnb3fgdSOm6LKFDjq0kfy4yx4w+oEu2GUTBm87ELc2cdxC /fg4qIcYdv52/aFPTtCoLvbecardfpgP -----END CERTIFICATE-----Generated at Sun Jul 20 07:32:12 2025 by rpki-client