$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json) Hash identifier: jEH4UnEn9SgflEffpdlMu86ECybuOvac8LOhx1laJsw= Subject key identifier: 85:54:DA:C4:52:89:63:81:80:24:CE:86:81:81:36:86:7B:A5:49:5A Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Certificate serial: 01FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft Manifest number: 01F8 Signing time: Wed 17 Sep 2025 03:00:23 +0000 Manifest this update: Wed 17 Sep 2025 03:00:23 +0000 Manifest next update: Wed 24 Sep 2025 03:00:23 +0000 Files and hashes: 1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: qZgRTNFr9MW0kBvDUqXMP+kLK3AdiJXvcDGAPKOpQtI=) 2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: uh86cXyNLUaa3Xl47qiV2uyaXTpPI55uWsM8f80qnzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 03:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 508 (0x1fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB8D7, serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Validity Not Before: Sep 17 03:00:23 2025 GMT Not After : Sep 24 03:00:23 2025 GMT Subject: CN=68ca2447-592e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:81:fe:6b:6e:73:55:b5:7b:01:ce:fe:e6:9b: 29:70:1d:53:ae:7e:0e:f0:28:c4:87:f4:63:5a:d3: 1f:46:7c:7a:2b:57:6e:b5:8b:53:c8:b2:2b:ae:83: 8b:63:b3:21:ef:dd:78:92:0f:05:af:db:43:16:4e: 6b:87:5b:39:41:f3:e8:d0:54:71:46:0e:10:75:12: f5:ee:72:32:4e:13:48:b1:c2:d3:08:10:72:1d:10: f9:8a:ff:ce:dd:c8:af:96:5d:29:0a:11:57:b5:7c: e4:b0:d9:d8:a7:c0:ba:48:a5:98:d1:71:51:21:69: 21:bc:bf:6e:81:cc:83:5c:80:00:ce:37:2b:6b:c5: 7b:7f:bf:73:ea:51:46:51:4a:f5:ac:08:e3:6c:1c: 49:7d:b1:bd:f6:ac:9a:23:d0:43:58:c7:0a:e5:ac: 78:7f:48:06:74:f1:33:f0:e0:2c:29:39:f1:54:fc: b3:98:e7:28:ba:e0:e2:85:71:7e:6e:15:28:aa:e9: ae:b6:61:ec:65:29:5b:6e:be:0d:27:0e:9f:b4:11: f5:f3:3a:ca:04:39:b1:0d:9a:4f:c7:dc:dc:dd:ea: fa:27:4f:78:86:c2:8d:50:77:da:6a:b8:a7:d2:b7: b4:08:2d:28:27:34:3d:f2:bc:58:24:78:02:dc:9f: c2:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:54:DA:C4:52:89:63:81:80:24:CE:86:81:81:36:86:7B:A5:49:5A X509v3 Authority Key Identifier: keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:9d:b1:1d:ab:59:4c:be:ef:68:8a:73:68:0f:a1:a6:54:a8: 01:49:c4:ab:e0:04:db:45:f1:47:e1:30:35:cd:ab:d8:3a:65: 23:d8:70:2d:55:13:85:97:11:43:9e:0e:cb:16:0e:23:47:eb: 34:ec:a8:73:20:2d:ea:6f:9d:a7:3a:76:e9:ba:5d:48:e0:b6: 27:52:fb:6b:1c:01:6c:01:82:50:2f:9d:cc:82:e8:48:e4:cc: 65:2e:e1:78:9b:11:18:1b:29:3f:b3:c5:94:88:00:df:92:89: a3:f9:d4:6d:6b:0e:ca:ae:10:63:a3:ae:7c:e3:8e:da:29:0a: cf:f6:00:7e:e2:1a:f7:91:29:21:f7:82:2c:97:81:e6:a5:eb: c7:bf:29:8c:0e:e3:ca:5f:42:bc:eb:ad:9f:02:e8:2c:74:8a: aa:53:01:30:02:e0:3a:df:8d:07:96:a5:60:a3:c7:1e:04:51: 5d:8e:92:dd:92:65:06:e8:79:1c:50:3d:d2:14:fc:3b:8a:2d: b9:1d:19:60:33:72:99:21:61:f6:d4:91:b1:8a:d8:7a:7d:70: 08:8a:49:88:c7:96:7d:23:4a:27:97:04:e4:bb:5f:c2:bb:b5: cb:59:11:58:c3:3c:02:c0:de:94:b2:57:ac:8e:84:b1:fe:e2: 5a:66:e2:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4RDcxMTAvBgNVBAUTKDA1MERDMDNCNUQ1OTQ1QTMzRUFCOTUxODE3RjE2NzlC RDkxMEM2QUMwHhcNMjUwOTE3MDMwMDIzWhcNMjUwOTI0MDMwMDIzWjAYMRYwFAYD VQQDEw02OGNhMjQ0Ny01OTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4H+a25zVbV7Ac7+5pspcB1Trn4O8CjEh/RjWtMfRnx6K1dutYtTyLIrroOL Y7Mh7914kg8Fr9tDFk5rh1s5QfPo0FRxRg4QdRL17nIyThNIscLTCBByHRD5iv/O 3civll0pChFXtXzksNnYp8C6SKWY0XFRIWkhvL9ugcyDXIAAzjcra8V7f79z6lFG UUr1rAjjbBxJfbG99qyaI9BDWMcK5ax4f0gGdPEz8OAsKTnxVPyzmOcouuDihXF+ bhUoqumutmHsZSlbbr4NJw6ftBH18zrKBDmxDZpPx9zc3er6J094hsKNUHfaarin 0re0CC0oJzQ98rxYJHgC3J/CeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIVU2sRS iWOBgCTOhoGBNoZ7pUlaMB8GA1UdIwQYMBaAFAUNwDtdWUWjPquVGBfxZ5vZEMas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjhENy9CNjdGMzAxQTk4 OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJhTS1xNVVZRl9Gbm05a1F4 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRM0FPMTFaUmFNLXE1VVlGX0ZubTlrUXhxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjhENy9CNjdGMzAxQTk4OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJh TS1xNVVZRl9Gbm05a1F4cXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjnbEdq1lMvu9oinNoD6GmVKgBScSr4ATbRfFH4TA1zavYOmUj2HAt VROFlxFDng7LFg4jR+s07KhzIC3qb52nOnbpul1I4LYnUvtrHAFsAYJQL53MguhI 5MxlLuF4mxEYGyk/s8WUiADfkomj+dRtaw7KrhBjo658447aKQrP9gB+4hr3kSkh 94Isl4HmpevHvymMDuPKX0K8662fAugsdIqqUwEwAuA6340HlqVgo8ceBFFdjpLd kmUG6HkcUD3SFPw7ii25HRlgM3KZIWH21JGxith6fXAIikmIx5Z9I0onlwTku1/C u7XLWRFYwzwCwN6UslesjoSx/uJaZuIB -----END CERTIFICATE-----Generated at Thu Sep 18 23:27:53 2025 by rpki-client