$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft File: BQ5HmwmNZLazhlsr5GiFdeotTVE.mft (raw, json) Hash identifier: ON2fDiBobqUdZ7+rPd+VGqDwG1HPxdDaPek8hFFavsc= Subject key identifier: A2:A0:3C:D0:D9:AF:53:14:9B:1B:25:82:C1:6F:87:9B:AC:AA:0B:DA Authority key identifier: 05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 Certificate issuer: /CN=A91AB457/serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Certificate serial: 0BFB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft Manifest number: 0BFB Signing time: Thu 18 Sep 2025 18:58:38 +0000 Manifest this update: Thu 18 Sep 2025 18:58:37 +0000 Manifest next update: Thu 25 Sep 2025 18:58:37 +0000 Files and hashes: 1: BQ5HmwmNZLazhlsr5GiFdeotTVE.crl (hash: XoMkp6CLmceUQRCVUXN1uMizoqQ7zoIBU1J+oi5iZ+I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:58:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3067 (0xbfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB457, serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Validity Not Before: Sep 18 18:58:37 2025 GMT Not After : Sep 25 18:58:37 2025 GMT Subject: CN=68cc565d-d4f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:05:c2:61:b4:85:ab:78:00:6e:36:69:0c:fa: da:b3:fe:f5:41:9f:d0:c3:b4:b6:f9:dd:96:b0:ef: cb:e2:c6:27:2a:36:90:92:d4:01:7d:a2:d4:e4:0c: ae:02:d3:60:2c:34:06:8f:da:e9:7e:1e:c0:cf:23: 1b:07:10:2f:80:e0:17:df:d0:34:d8:f5:66:65:04: c8:d1:f1:27:b2:3d:5a:56:3e:ae:65:3e:d8:ad:66: 2b:55:b0:78:82:cc:33:8a:bd:c4:f2:ca:50:8d:2d: 1f:db:38:56:d3:e3:85:c7:f2:d8:f7:1f:9f:96:0b: 05:fc:64:7a:23:96:2d:60:79:a1:19:2b:9e:ed:a6: 45:1f:7e:c4:bf:e9:76:54:b4:01:ec:42:7b:6d:47: 5f:c4:6c:a8:7e:6b:09:26:3e:21:f5:17:6c:a1:f5: c1:5b:c4:e4:d0:e1:46:04:55:1d:66:46:7c:b7:00: f7:7f:c0:e1:75:05:c5:67:64:1e:6d:61:1b:cc:e6: fb:c3:82:15:77:4b:c8:82:f7:c7:21:09:b3:4a:4f: 21:46:c4:50:ae:af:a4:3c:07:84:62:5d:1c:a3:b1: a9:61:6e:91:21:e1:38:9b:56:41:d4:fe:8e:cb:6b: 76:71:cf:6a:c9:c6:11:0a:c5:10:c9:2e:74:78:18: 21:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:A0:3C:D0:D9:AF:53:14:9B:1B:25:82:C1:6F:87:9B:AC:AA:0B:DA X509v3 Authority Key Identifier: keyid:05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:09:dc:a2:d8:2c:8a:fc:fc:a9:53:0c:16:3f:53:14:08:8b: dc:97:50:ea:84:8b:e0:6b:a2:23:ff:b3:e6:df:9f:be:e3:e3: d4:c2:28:8b:3f:de:b6:22:9c:0c:25:b8:27:38:07:51:53:0c: 5b:83:5a:c4:5a:48:75:14:31:b1:24:0e:ef:4a:c5:a4:6f:cc: 41:6a:55:f4:9f:04:93:a3:e4:12:7c:8c:b4:dc:b8:1d:0a:fa: 5a:b6:5d:13:d3:47:b7:05:51:0a:db:d1:5b:b1:31:54:40:52: 95:80:23:d7:b4:95:b6:98:f4:8f:52:c0:a2:ab:01:b0:c8:4f: a4:e8:65:be:e0:46:13:89:65:b3:84:c0:06:d0:1b:f0:5f:0f: 0f:14:3a:f9:e5:dc:ae:92:36:1a:fb:04:82:24:f4:2a:62:77: a6:5d:e8:4a:67:8d:c8:86:1a:f2:60:9b:65:bf:75:ad:52:93: 1b:de:8a:cb:57:fe:63:de:aa:82:9b:18:5b:d4:4d:f4:ab:62: d2:b1:3f:72:71:47:11:76:d7:d7:22:75:2e:1f:c5:fb:82:31: 88:a5:4d:dc:1f:d6:e2:05:1c:ef:31:0d:98:4f:ec:10:d2:85: b8:18:f6:30:0d:d9:69:4e:20:b2:94:d0:83:2a:f5:5a:be:7d: 41:b7:16:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0NTcxMTAvBgNVBAUTKDA1MEU0NzlCMDk4RDY0QjZCMzg2NUIyQkU0Njg4NTc1 RUEyRDRENTEwHhcNMjUwOTE4MTg1ODM3WhcNMjUwOTI1MTg1ODM3WjAYMRYwFAYD VQQDEw02OGNjNTY1ZC1kNGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQXCYbSFq3gAbjZpDPras/71QZ/Qw7S2+d2WsO/L4sYnKjaQktQBfaLU5Ayu AtNgLDQGj9rpfh7AzyMbBxAvgOAX39A02PVmZQTI0fEnsj1aVj6uZT7YrWYrVbB4 gswzir3E8spQjS0f2zhW0+OFx/LY9x+flgsF/GR6I5YtYHmhGSue7aZFH37Ev+l2 VLQB7EJ7bUdfxGyofmsJJj4h9RdsofXBW8Tk0OFGBFUdZkZ8twD3f8DhdQXFZ2Qe bWEbzOb7w4IVd0vIgvfHIQmzSk8hRsRQrq+kPAeEYl0co7GpYW6RIeE4m1ZB1P6O y2t2cc9qycYRCsUQyS50eBghFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKKgPNDZ r1MUmxslgsFvh5usqgvaMB8GA1UdIwQYMBaAFAUOR5sJjWS2s4ZbK+RohXXqLU1R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjQ1Ny81QUY2NjEwMjFD OTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpMYXpobHNyNUdpRmRlb3RU VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRNUhtd21OWkxhemhsc3I1R2lGZGVvdFRWRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjQ1Ny81QUY2NjEwMjFDOTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpM YXpobHNyNUdpRmRlb3RUVkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYCdyi2CyK/PypUwwWP1MUCIvcl1DqhIvga6Ij/7Pm35++4+PUwiiL P962IpwMJbgnOAdRUwxbg1rEWkh1FDGxJA7vSsWkb8xBalX0nwSTo+QSfIy03Lgd Cvpatl0T00e3BVEK29FbsTFUQFKVgCPXtJW2mPSPUsCiqwGwyE+k6GW+4EYTiWWz hMAG0BvwXw8PFDr55dyukjYa+wSCJPQqYnemXehKZ43IhhryYJtlv3WtUpMb3orL V/5j3qqCmxhb1E30q2LSsT9ycUcRdtfXInUuH8X7gjGIpU3cH9biBRzvMQ2YT+wQ 0oW4GPYwDdlpTiCylNCDKvVavn1BtxaL -----END CERTIFICATE-----Generated at Sat Sep 20 03:02:43 2025 by rpki-client