$ rpki-client -vvf rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft File: BQIPvxAg_WO-V9oblwSwqoEDREo.mft (raw, json) Hash identifier: wpG92QVzjXdbWkzwTkiL4jXMpbB1TR/ozZQ87y2bRxg= Subject key identifier: C9:7D:C7:B3:97:DC:80:A8:8C:CC:5E:5B:CF:D0:D5:2C:45:08:17:1D Authority key identifier: 05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A Certificate issuer: /CN=A914A140/serialNumber=05020FBF1020FD63BE57DA1B9704B0AA8103444A Certificate serial: 1D32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft Manifest number: 1D21 Signing time: Thu 30 Oct 2025 16:09:43 +0000 Manifest this update: Thu 30 Oct 2025 16:09:42 +0000 Manifest next update: Thu 06 Nov 2025 16:09:42 +0000 Files and hashes: 1: BQIPvxAg_WO-V9oblwSwqoEDREo.crl (hash: YnurBNygFU126f6jIKwl8N/PRVcRlaCUgaUmOPUMO4M=) 2: 8E652A7AC77611E68B1CDE6AC4F9AE02.roa (hash: XZLgq4o4I2bTXK3CwsSFqA/5epMchG5aEZim0xVwISs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.crl rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 16:09:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7474 (0x1d32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A140, serialNumber=05020FBF1020FD63BE57DA1B9704B0AA8103444A Validity Not Before: Oct 30 16:09:42 2025 GMT Not After : Nov 6 16:09:42 2025 GMT Subject: CN=69038dc6-1fef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:89:a2:1a:9b:43:4e:8b:65:9d:3c:e7:d8:7a: 63:c2:1d:f6:4a:27:d3:0b:80:fa:1a:41:b3:85:15: 89:ff:eb:8e:a7:6e:35:17:f1:51:1f:f6:73:c0:ea: 5f:6d:78:5a:7d:36:00:f7:d4:22:11:58:2f:cf:6c: c9:fe:da:20:a7:f4:68:0d:09:e1:96:2b:3c:09:a8: 30:37:a2:c8:a1:f5:2b:78:d2:02:33:25:ab:3b:39: 6d:cd:28:01:a2:1e:39:65:ea:62:fb:02:ad:ef:f9: 6d:9f:8a:4e:24:69:ca:ee:fa:69:c1:6e:b0:fb:b6: 5f:4f:fc:39:cf:67:c5:e9:f4:93:66:f0:7b:31:84: e3:6b:bd:5c:aa:e9:22:9f:46:b9:fe:a8:90:09:40: e9:dc:03:3a:06:51:0f:3a:f0:72:63:1b:89:d0:00: fb:3c:01:22:f3:21:e3:1c:ee:86:5f:7e:7c:ab:7c: 14:6e:42:f1:82:9e:ed:4e:f8:72:20:21:5a:d8:29: 84:fb:12:d5:f8:34:86:1f:69:a9:92:ac:18:e7:59: 2c:46:99:ea:ce:63:c8:4b:b7:d7:44:1d:2c:d3:3d: 94:70:98:bb:48:34:49:76:0e:56:70:85:99:a5:65: 29:fa:1f:7d:3d:b0:2f:31:5b:e7:93:83:b2:9f:79: 3f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:7D:C7:B3:97:DC:80:A8:8C:CC:5E:5B:CF:D0:D5:2C:45:08:17:1D X509v3 Authority Key Identifier: keyid:05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:c5:09:b9:6c:0f:48:f5:17:28:d4:33:b9:36:aa:e2:4e:57: bb:e7:e1:14:0d:61:d1:f4:26:b4:77:02:6d:02:31:32:4e:d5: 5e:d4:f6:52:44:a3:30:5d:12:75:31:b3:02:8e:e8:99:86:4b: ba:e1:69:a0:0c:85:a4:c4:e9:44:59:f1:ba:d3:92:2f:37:94: 51:3c:51:88:6d:8e:a2:d7:0c:50:d0:44:9d:2d:b4:ca:16:05: eb:34:b2:31:db:00:5b:28:27:52:a3:f1:ed:02:6c:95:0f:23: eb:08:bf:a7:ad:66:ef:f3:dc:6b:74:6f:c5:5f:21:bb:dd:da: 2f:6e:d6:93:ca:62:60:a1:2c:30:14:b2:b9:86:e4:7f:03:a4: ea:c7:0f:c8:61:d8:e4:a9:3b:7a:be:2a:97:7d:78:b4:0a:94: 16:71:2d:94:46:40:78:3b:3c:6f:d7:d6:da:75:7a:de:e2:b7: af:44:11:bb:93:36:5f:f0:f9:1d:a8:34:5c:d0:57:be:20:33: a6:a4:af:b5:5a:71:a2:89:87:92:e5:82:74:c1:3f:40:29:51: ee:47:52:c8:5c:76:64:87:0f:cd:60:20:85:aa:77:8a:8d:f5: 62:ad:9d:cf:ea:4b:dd:95:f6:ec:e8:cb:22:c1:e5:98:9e:84: 56:f5:8d:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEExNDAxMTAvBgNVBAUTKDA1MDIwRkJGMTAyMEZENjNCRTU3REExQjk3MDRCMEFB ODEwMzQ0NEEwHhcNMjUxMDMwMTYwOTQyWhcNMjUxMTA2MTYwOTQyWjAYMRYwFAYD VQQDEw02OTAzOGRjNi0xZmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1omiGptDTotlnTzn2Hpjwh32SifTC4D6GkGzhRWJ/+uOp241F/FRH/ZzwOpf bXhafTYA99QiEVgvz2zJ/togp/RoDQnhlis8CagwN6LIofUreNICMyWrOzltzSgB oh45Zepi+wKt7/ltn4pOJGnK7vppwW6w+7ZfT/w5z2fF6fSTZvB7MYTja71cquki n0a5/qiQCUDp3AM6BlEPOvByYxuJ0AD7PAEi8yHjHO6GX358q3wUbkLxgp7tTvhy ICFa2CmE+xLV+DSGH2mpkqwY51ksRpnqzmPIS7fXRB0s0z2UcJi7SDRJdg5WcIWZ pWUp+h99PbAvMVvnk4Oyn3k/8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMl9x7OX 3ICojMxeW8/Q1SxFCBcdMB8GA1UdIwQYMBaAFAUCD78QIP1jvlfaG5cEsKqBA0RK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTE0MC9DQzFEQ0NFOEM3 NzQxMUU2OTgxNkIwNjhDNEY5QUUwMi9CUUlQdnhBZ19XTy1WOW9ibHdTd3FvRURS RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRSVB2eEFnX1dPLVY5b2Jsd1N3cW9FRFJFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTE0MC9DQzFEQ0NFOEM3NzQxMUU2OTgxNkIwNjhDNEY5QUUwMi9CUUlQdnhBZ19X Ty1WOW9ibHdTd3FvRURSRW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFxQm5bA9I9Rco1DO5NqriTle75+EUDWHR9Ca0dwJtAjEyTtVe1PZS RKMwXRJ1MbMCjuiZhku64WmgDIWkxOlEWfG605IvN5RRPFGIbY6i1wxQ0ESdLbTK FgXrNLIx2wBbKCdSo/HtAmyVDyPrCL+nrWbv89xrdG/FXyG73dovbtaTymJgoSww FLK5huR/A6Tqxw/IYdjkqTt6viqXfXi0CpQWcS2URkB4Ozxv19badXre4revRBG7 kzZf8PkdqDRc0Fe+IDOmpK+1WnGiiYeS5YJ0wT9AKVHuR1LIXHZkhw/NYCCFqneK jfVirZ3P6kvdlfbs6MsiweWYnoRW9Y1H -----END CERTIFICATE-----Generated at Fri Oct 31 05:40:22 2025 by rpki-client