$ rpki-client -vvf rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft File: BQIPvxAg_WO-V9oblwSwqoEDREo.mft (raw, json) Hash identifier: ImNXW2Yve69rK8L/jZq4CChBL6hZDg5zUAj4hJDRNmE= Subject key identifier: AB:64:E9:4E:86:7B:A7:C2:65:27:A8:12:65:AC:C2:BE:23:FA:C6:C4 Authority key identifier: 05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A Certificate issuer: /CN=A914A140/serialNumber=05020FBF1020FD63BE57DA1B9704B0AA8103444A Certificate serial: 1D18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft Manifest number: 1D07 Signing time: Mon 08 Sep 2025 16:09:26 +0000 Manifest this update: Mon 08 Sep 2025 16:09:25 +0000 Manifest next update: Mon 15 Sep 2025 16:09:25 +0000 Files and hashes: 1: BQIPvxAg_WO-V9oblwSwqoEDREo.crl (hash: n2bPu7aVeNwY8SGVp/UykcqW/srKNOjEWzZyq3dbQC8=) 2: 8E652A7AC77611E68B1CDE6AC4F9AE02.roa (hash: XZLgq4o4I2bTXK3CwsSFqA/5epMchG5aEZim0xVwISs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.crl rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 16:09:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7448 (0x1d18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A140, serialNumber=05020FBF1020FD63BE57DA1B9704B0AA8103444A Validity Not Before: Sep 8 16:09:25 2025 GMT Not After : Sep 15 16:09:25 2025 GMT Subject: CN=68beffb5-a9b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:14:80:e7:48:b3:2b:27:4e:3d:e4:ad:07:0d: a3:d8:a2:2b:91:46:c5:11:5a:fc:fb:24:b0:8e:3d: 3b:bb:3e:7d:00:0f:82:f1:83:9a:6a:29:d6:e7:9c: eb:d2:25:25:12:5c:6a:fc:81:b7:20:74:b5:6a:d4: eb:e7:8c:d8:d3:13:7b:54:5d:2e:99:b3:8f:2c:88: 6c:76:f8:bb:86:c3:41:43:6c:ed:4a:2b:1f:d0:86: d1:02:9c:1d:b3:dd:70:17:fb:c7:5e:8e:2b:95:4d: 8a:1b:98:77:24:a7:50:0a:fb:e7:d8:ca:a0:40:f8: d0:ac:4a:48:92:62:5a:b5:5a:ec:a6:93:39:65:4f: 6f:a6:70:f8:cd:99:75:70:02:56:b1:58:d1:f9:e4: f6:c9:d1:aa:07:44:98:89:3b:22:fe:ed:f8:60:02: 0d:c0:0c:fb:4d:2e:9f:3a:11:80:c3:b9:57:a6:4f: f0:b2:8b:66:29:25:6b:9b:4d:38:19:a1:00:a7:a8: 80:35:04:97:6e:9c:24:bf:88:38:fe:89:8e:62:fb: 5b:9a:a5:b1:bd:7d:0f:9c:b5:23:aa:8e:94:e4:cf: 7c:81:22:40:e3:51:9d:a6:93:1d:17:2f:10:42:70: b0:dc:3b:7e:d7:cf:61:c8:79:e0:5b:a3:88:fe:65: 07:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:64:E9:4E:86:7B:A7:C2:65:27:A8:12:65:AC:C2:BE:23:FA:C6:C4 X509v3 Authority Key Identifier: keyid:05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:ca:cd:b6:ad:06:f8:0c:b5:ea:b6:d7:cf:7a:49:9b:0f:1e: 1c:b4:89:a8:05:9b:a8:8e:32:5f:07:82:70:00:2e:8c:55:01: 9f:c2:8f:b1:c4:b9:7b:f9:1c:5f:ef:97:d2:9a:c4:7d:67:d9: ac:80:f1:5a:ce:07:c3:1b:7d:22:83:fa:f9:9e:14:42:fb:21: a2:8d:25:c7:3f:c0:93:57:f5:94:06:cf:0c:86:9d:18:a7:0e: 56:ce:79:e4:05:7f:25:bc:58:dc:d7:0b:2e:f5:ca:c2:6c:a1: 3c:ec:68:6b:f1:22:c4:55:30:ad:8a:c1:1a:eb:bb:5c:11:e5: f8:32:ec:1b:0e:3e:33:b6:27:a7:7d:e4:00:7e:fc:eb:ef:5b: 1d:0b:2c:cc:23:26:c7:1b:8c:20:3a:35:8c:b7:00:45:d4:db: c3:44:ff:12:7b:28:6e:0f:b9:dc:9c:fb:d4:be:ce:0b:25:0a: c6:26:2d:8d:fa:66:b6:7a:58:9d:60:51:1c:97:15:9c:a7:1b: 5c:8a:e0:2d:90:41:8f:0a:89:be:8e:ae:6b:f8:d1:b4:e5:51: 55:86:ab:06:14:dc:3b:43:20:0c:d2:95:ac:c7:c5:dd:c2:be: 5b:0b:1e:45:c2:90:d3:ec:3a:4a:33:9b:77:2a:ba:25:ee:e2: 96:2a:19:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEExNDAxMTAvBgNVBAUTKDA1MDIwRkJGMTAyMEZENjNCRTU3REExQjk3MDRCMEFB ODEwMzQ0NEEwHhcNMjUwOTA4MTYwOTI1WhcNMjUwOTE1MTYwOTI1WjAYMRYwFAYD VQQDEw02OGJlZmZiNS1hOWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxSA50izKydOPeStBw2j2KIrkUbFEVr8+ySwjj07uz59AA+C8YOaainW55zr 0iUlElxq/IG3IHS1atTr54zY0xN7VF0umbOPLIhsdvi7hsNBQ2ztSisf0IbRApwd s91wF/vHXo4rlU2KG5h3JKdQCvvn2MqgQPjQrEpIkmJatVrsppM5ZU9vpnD4zZl1 cAJWsVjR+eT2ydGqB0SYiTsi/u34YAINwAz7TS6fOhGAw7lXpk/wsotmKSVrm004 GaEAp6iANQSXbpwkv4g4/omOYvtbmqWxvX0PnLUjqo6U5M98gSJA41GdppMdFy8Q QnCw3Dt+189hyHngW6OI/mUHyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKtk6U6G e6fCZSeoEmWswr4j+sbEMB8GA1UdIwQYMBaAFAUCD78QIP1jvlfaG5cEsKqBA0RK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTE0MC9DQzFEQ0NFOEM3 NzQxMUU2OTgxNkIwNjhDNEY5QUUwMi9CUUlQdnhBZ19XTy1WOW9ibHdTd3FvRURS RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRSVB2eEFnX1dPLVY5b2Jsd1N3cW9FRFJFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTE0MC9DQzFEQ0NFOEM3NzQxMUU2OTgxNkIwNjhDNEY5QUUwMi9CUUlQdnhBZ19X Ty1WOW9ibHdTd3FvRURSRW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNys22rQb4DLXqttfPekmbDx4ctImoBZuojjJfB4JwAC6MVQGfwo+x xLl7+Rxf75fSmsR9Z9msgPFazgfDG30ig/r5nhRC+yGijSXHP8CTV/WUBs8Mhp0Y pw5WznnkBX8lvFjc1wsu9crCbKE87Ghr8SLEVTCtisEa67tcEeX4MuwbDj4ztien feQAfvzr71sdCyzMIybHG4wgOjWMtwBF1NvDRP8SeyhuD7ncnPvUvs4LJQrGJi2N +ma2elidYFEclxWcpxtciuAtkEGPCom+jq5r+NG05VFVhqsGFNw7QyAM0pWsx8Xd wr5bCx5FwpDT7DpKM5t3Krol7uKWKhmu -----END CERTIFICATE-----Generated at Tue Sep 9 13:08:43 2025 by rpki-client