$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json) Hash identifier: BT083ZRsCq0ySRv9xiZbSJtj5fug/jYC9OodVrv+RA8= Subject key identifier: 90:30:38:10:34:4B:A6:89:09:AF:DD:1A:A0:E8:DF:8E:CD:05:D3:4D Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Certificate serial: 01DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft Manifest number: 01DA Signing time: Mon 21 Jul 2025 02:53:09 +0000 Manifest this update: Mon 21 Jul 2025 02:53:08 +0000 Manifest next update: Mon 28 Jul 2025 02:53:08 +0000 Files and hashes: 1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: 9TiPagcDA4f8KnTcX1xQUool3w9VnFCC5n0kqIln9i4=) 2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: uh86cXyNLUaa3Xl47qiV2uyaXTpPI55uWsM8f80qnzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:53:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 478 (0x1de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB8D7, serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Validity Not Before: Jul 21 02:53:08 2025 GMT Not After : Jul 28 02:53:08 2025 GMT Subject: CN=687dab94-ca0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f4:d8:0d:da:0a:6e:53:63:23:d6:4c:6d:65: 0d:03:90:9a:f7:8c:b9:b9:19:26:bb:d9:f3:a5:f8: f5:83:ea:72:0b:f8:db:61:e8:50:db:b4:32:f6:08: 60:e9:f0:25:b0:c6:13:d6:02:0c:35:24:c0:55:3a: 96:50:96:e1:99:0a:de:e5:5b:84:23:78:c4:d3:ea: 0e:90:22:d5:f0:cb:39:9c:1f:1b:ca:4d:c1:60:fa: ea:47:2a:4d:ed:09:eb:5b:d5:dc:3c:a7:d7:16:1c: 06:dc:64:6a:e4:f1:58:dc:f4:8c:21:bd:a8:05:ac: d4:4d:67:02:02:99:0e:fb:89:60:6f:6f:f6:30:bd: 74:a5:ce:6b:64:89:d0:8e:34:8e:42:84:41:55:de: b9:6b:87:08:22:1b:70:c7:ed:10:41:62:6c:6e:2f: e2:9f:87:74:c6:f1:9f:ee:5d:25:22:cd:af:96:94: f2:7c:e5:eb:99:2a:32:72:d7:cd:54:50:73:d3:13: a9:20:ab:2c:02:24:3b:99:7f:dc:c4:7a:24:9f:e8: 44:eb:f4:31:58:e4:94:ee:04:e5:e1:d1:ef:f7:71: 23:9b:3b:7e:3d:26:4c:d5:eb:5a:9e:44:dc:1b:61: d9:e1:7c:04:87:16:3e:de:c5:46:de:31:08:ce:44: ce:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:30:38:10:34:4B:A6:89:09:AF:DD:1A:A0:E8:DF:8E:CD:05:D3:4D X509v3 Authority Key Identifier: keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:23:d7:33:63:07:1e:57:fe:eb:c2:61:f9:52:f2:c2:e1:26: e8:d7:a0:71:ca:d3:a7:a2:b0:b9:7b:2a:83:e9:f1:26:d1:e0: 71:f5:28:e2:48:20:51:cb:51:e0:2e:b2:ea:a1:9b:88:32:c7: 10:a1:9a:7b:75:de:a8:8e:fd:3a:0b:13:4e:6c:23:3d:6a:c1: 92:ca:7d:ad:7d:53:6c:13:f4:20:50:c9:de:8d:6a:9c:f6:f1: 99:78:a7:08:08:9e:94:04:bd:86:77:f4:6e:8b:26:fe:5b:73: 6e:2c:62:2e:e2:10:4b:9d:0c:c1:da:0a:ec:9c:7b:de:d5:9d: 75:12:4b:65:9a:4f:8e:55:4f:07:4c:af:96:b7:56:1f:c5:fb: 81:c2:1a:ab:d3:94:43:33:c7:c2:bb:39:3a:80:d2:12:22:8f: 31:24:e4:48:1e:f2:f3:59:31:92:3e:6b:19:3a:ae:32:b3:92: 69:c2:51:85:86:ff:ac:ac:77:33:84:73:34:3a:89:b0:3a:ca: 0c:cf:81:11:ea:e8:87:2b:d3:e1:df:7d:98:1a:b9:a9:b9:8f: 9d:8a:de:15:20:f9:5d:47:85:f6:7e:72:58:ec:74:d9:e3:9f: 07:81:a2:b3:6b:19:8e:78:63:72:bc:68:52:75:28:cf:e5:b7: 7c:6b:18:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4RDcxMTAvBgNVBAUTKDA1MERDMDNCNUQ1OTQ1QTMzRUFCOTUxODE3RjE2NzlC RDkxMEM2QUMwHhcNMjUwNzIxMDI1MzA4WhcNMjUwNzI4MDI1MzA4WjAYMRYwFAYD VQQDEw02ODdkYWI5NC1jYTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPTYDdoKblNjI9ZMbWUNA5Ca94y5uRkmu9nzpfj1g+pyC/jbYehQ27Qy9ghg 6fAlsMYT1gIMNSTAVTqWUJbhmQre5VuEI3jE0+oOkCLV8Ms5nB8byk3BYPrqRypN 7QnrW9XcPKfXFhwG3GRq5PFY3PSMIb2oBazUTWcCApkO+4lgb2/2ML10pc5rZInQ jjSOQoRBVd65a4cIIhtwx+0QQWJsbi/in4d0xvGf7l0lIs2vlpTyfOXrmSoyctfN VFBz0xOpIKssAiQ7mX/cxHokn+hE6/QxWOSU7gTl4dHv93Ejmzt+PSZM1etankTc G2HZ4XwEhxY+3sVG3jEIzkTOBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJAwOBA0 S6aJCa/dGqDo347NBdNNMB8GA1UdIwQYMBaAFAUNwDtdWUWjPquVGBfxZ5vZEMas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjhENy9CNjdGMzAxQTk4 OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJhTS1xNVVZRl9Gbm05a1F4 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRM0FPMTFaUmFNLXE1VVlGX0ZubTlrUXhxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjhENy9CNjdGMzAxQTk4OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJh TS1xNVVZRl9Gbm05a1F4cXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMI9czYwceV/7rwmH5UvLC4Sbo16BxytOnorC5eyqD6fEm0eBx9Sji SCBRy1HgLrLqoZuIMscQoZp7dd6ojv06CxNObCM9asGSyn2tfVNsE/QgUMnejWqc 9vGZeKcICJ6UBL2Gd/Ruiyb+W3NuLGIu4hBLnQzB2grsnHve1Z11Ektlmk+OVU8H TK+Wt1YfxfuBwhqr05RDM8fCuzk6gNISIo8xJORIHvLzWTGSPmsZOq4ys5JpwlGF hv+srHczhHM0OomwOsoMz4ER6uiHK9Ph332YGrmpuY+dit4VIPldR4X2fnJY7HTZ 458HgaKzaxmOeGNyvGhSdSjP5bd8axgo -----END CERTIFICATE-----Generated at Mon Jul 21 06:59:38 2025 by rpki-client