$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json) Hash identifier: WlfVwAC22Tl++Qi0X/flXd+rYbY7WKKBgexm2lQMmWk= Subject key identifier: 24:D3:B0:45:71:69:86:0E:99:F3:AB:5D:66:5F:03:5C:12:9C:47:4A Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Certificate serial: 0213 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft Manifest number: 020F Signing time: Mon 03 Nov 2025 02:17:35 +0000 Manifest this update: Mon 03 Nov 2025 02:17:34 +0000 Manifest next update: Mon 10 Nov 2025 02:17:34 +0000 Files and hashes: 1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: yMu40Okpf+9jgfNso9BboelQ4ocUzwKu/IAk5Zn7jus=) 2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: uh86cXyNLUaa3Xl47qiV2uyaXTpPI55uWsM8f80qnzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:17:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB8D7, serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Validity Not Before: Nov 3 02:17:34 2025 GMT Not After : Nov 10 02:17:34 2025 GMT Subject: CN=690810be-e048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:73:99:40:90:a4:1b:34:74:24:1b:e1:c8:cf: 53:b3:92:6b:1b:f4:27:3a:f7:14:4f:88:aa:aa:7f: dd:6c:f6:92:60:14:40:1f:ce:2d:2a:b5:5f:f4:40: 52:e9:28:c0:fb:72:7e:8e:62:5f:62:86:5a:60:97: 34:9b:af:6a:3c:a2:0d:12:cd:6f:9a:29:28:06:f7: 0a:ff:f0:1c:61:95:30:3d:08:21:85:2a:29:0a:f5: 37:7b:cc:3b:f5:d5:59:d6:67:a7:2b:19:5b:3b:a2: 1c:06:a0:07:81:ac:4e:47:5e:b3:72:ba:f1:61:51: 0a:94:42:c1:7f:3d:db:ec:e3:66:9b:9d:9c:58:41: 53:90:eb:f4:6b:7a:b9:c4:92:68:66:6b:31:9b:7b: 5a:38:fa:88:91:ea:67:bf:c5:de:7c:e0:9c:ff:1b: 53:75:7f:56:1c:2d:85:9b:14:98:ff:a6:f0:af:96: 28:b0:1a:43:35:ff:ce:c2:0a:b0:fc:24:8f:9d:8e: 7d:14:69:b3:3c:0a:6e:b9:72:36:18:36:a1:86:47: 99:67:88:bd:9a:cd:72:b7:e6:76:84:32:68:82:1a: c3:10:c8:f2:a6:62:f1:6d:ec:65:0e:a6:2b:0d:55: 39:56:21:c9:9b:ae:63:c8:4c:a2:cc:11:9d:8d:e0: df:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:D3:B0:45:71:69:86:0E:99:F3:AB:5D:66:5F:03:5C:12:9C:47:4A X509v3 Authority Key Identifier: keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:be:99:b6:a2:1a:30:c8:42:1f:bb:b9:76:a7:52:26:58:78: 53:a1:14:dc:5b:3a:41:05:24:dd:5f:9b:10:e0:c6:c5:f2:a2: 86:4f:b2:ba:84:38:8c:9a:e1:ec:7f:ef:24:8a:a2:cf:e4:7a: 01:10:46:b6:0c:24:30:40:7b:c3:b1:2f:48:98:14:0a:f8:91: c2:0f:a1:63:b2:f2:64:a9:c9:d9:46:89:07:37:7c:a2:b3:8c: b6:58:5a:54:fb:5f:fc:74:71:3f:10:5d:7f:df:fc:b3:a4:35: 97:c6:38:8c:9d:67:d0:18:dc:9e:4d:a2:ee:b7:7f:b7:58:9e: ff:6c:53:84:e9:16:de:31:42:6b:7f:25:6e:18:71:89:a4:c7: bf:5d:b7:a4:81:97:03:1d:23:46:8c:4d:a6:28:43:2d:9e:4c: 48:4a:28:bb:d3:88:c3:ba:61:00:2e:73:c3:4a:6a:13:ba:70: 13:41:6b:2f:da:69:30:80:6c:a3:74:af:f9:af:0a:3b:82:f8: d7:64:2b:1d:3a:7f:3e:07:86:94:f5:81:11:3c:88:74:1b:55: 2c:16:0e:c6:2d:fa:32:61:e8:99:c0:5e:fa:ff:ea:aa:8c:af: 64:5b:44:4e:05:42:c6:9a:57:1e:97:55:43:64:3a:6a:a4:1c: 43:e6:cb:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4RDcxMTAvBgNVBAUTKDA1MERDMDNCNUQ1OTQ1QTMzRUFCOTUxODE3RjE2NzlC RDkxMEM2QUMwHhcNMjUxMTAzMDIxNzM0WhcNMjUxMTEwMDIxNzM0WjAYMRYwFAYD VQQDEw02OTA4MTBiZS1lMDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHOZQJCkGzR0JBvhyM9Ts5JrG/QnOvcUT4iqqn/dbPaSYBRAH84tKrVf9EBS 6SjA+3J+jmJfYoZaYJc0m69qPKINEs1vmikoBvcK//AcYZUwPQghhSopCvU3e8w7 9dVZ1menKxlbO6IcBqAHgaxOR16zcrrxYVEKlELBfz3b7ONmm52cWEFTkOv0a3q5 xJJoZmsxm3taOPqIkepnv8XefOCc/xtTdX9WHC2FmxSY/6bwr5YosBpDNf/Owgqw /CSPnY59FGmzPApuuXI2GDahhkeZZ4i9ms1yt+Z2hDJoghrDEMjypmLxbexlDqYr DVU5ViHJm65jyEyizBGdjeDfFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCTTsEVx aYYOmfOrXWZfA1wSnEdKMB8GA1UdIwQYMBaAFAUNwDtdWUWjPquVGBfxZ5vZEMas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjhENy9CNjdGMzAxQTk4 OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJhTS1xNVVZRl9Gbm05a1F4 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRM0FPMTFaUmFNLXE1VVlGX0ZubTlrUXhxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjhENy9CNjdGMzAxQTk4OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJh TS1xNVVZRl9Gbm05a1F4cXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsvpm2ohowyEIfu7l2p1ImWHhToRTcWzpBBSTdX5sQ4MbF8qKGT7K6 hDiMmuHsf+8kiqLP5HoBEEa2DCQwQHvDsS9ImBQK+JHCD6FjsvJkqcnZRokHN3yi s4y2WFpU+1/8dHE/EF1/3/yzpDWXxjiMnWfQGNyeTaLut3+3WJ7/bFOE6RbeMUJr fyVuGHGJpMe/XbekgZcDHSNGjE2mKEMtnkxISii704jDumEALnPDSmoTunATQWsv 2mkwgGyjdK/5rwo7gvjXZCsdOn8+B4aU9YERPIh0G1UsFg7GLfoyYeiZwF76/+qq jK9kW0ROBULGmlcel1VDZDpqpBxD5svo -----END CERTIFICATE-----Generated at Tue Nov 4 01:10:14 2025 by rpki-client