$ rpki-client -vvf rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft File: BQFHuU3J1svowLDxrQwBg6YHfDQ.mft (raw, json) Hash identifier: /sym10Jy9DSh95iPZrGohqFHK3X9szrHHFEqLqNA9vU= Subject key identifier: 33:A3:20:3D:DF:06:09:58:19:52:03:74:14:16:12:15:7C:81:59:E9 Authority key identifier: 05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 Certificate issuer: /CN=A91629AA/serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft Manifest number: F1 Signing time: Thu 03 Jul 2025 05:28:40 +0000 Manifest this update: Thu 03 Jul 2025 05:28:40 +0000 Manifest next update: Thu 10 Jul 2025 05:28:40 +0000 Files and hashes: 1: BQFHuU3J1svowLDxrQwBg6YHfDQ.crl (hash: GvL4x1uEzG0p4F6+jBSWzmPVkvCZzRq5IRYNi0+sjRM=) 2: 1E347CDCE74A11EE8602742BC4F9AE02.roa (hash: RDRsbI0QCe3WCyYIAxbPkTT+7Ici1TKwxRZtpP0NFiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91629AA, serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Validity Not Before: Jul 3 05:28:40 2025 GMT Not After : Jul 10 05:28:40 2025 GMT Subject: CN=68661508-ae97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:0f:40:39:25:9c:f6:75:f1:46:24:59:9a:b5: c3:6c:88:23:5c:28:e2:73:45:49:60:1c:a2:b8:a5: b4:9d:59:8b:6d:83:f8:1b:cb:31:54:4d:ed:11:e1: 6e:34:05:3d:22:78:e6:5c:6a:b5:71:96:cf:97:e5: 6c:8d:f1:6f:b5:6c:2d:4b:32:ee:12:8f:59:46:15: 93:05:54:e1:84:92:23:4f:49:28:f6:83:a7:dc:54: af:2f:ad:7a:ab:71:c5:c7:fd:8c:d4:3c:d5:d4:8b: f7:86:16:49:3a:c0:ed:fb:19:7c:47:24:9c:ce:92: 7e:df:aa:56:be:df:57:f2:5d:00:78:88:38:91:22: 58:9c:a4:32:8a:01:04:af:13:40:b1:d6:9a:6f:2e: 6e:1c:a9:a6:6c:df:a4:eb:1b:50:3e:f5:dc:03:98: f5:0e:af:b7:28:0b:79:21:1b:9a:62:e0:bc:94:50: b4:21:bf:06:62:bd:ad:15:69:4c:33:89:7a:65:7b: 93:df:a7:a7:db:1e:52:ab:d8:c0:e2:29:70:d3:88: c1:7c:1d:e6:ec:5d:cc:0e:a6:51:ac:a4:da:31:a6: c3:83:34:9d:df:70:fc:67:44:b9:04:1d:0d:25:07: 38:27:b9:0f:00:ad:10:f3:b2:aa:2c:1a:2f:59:28: d6:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:A3:20:3D:DF:06:09:58:19:52:03:74:14:16:12:15:7C:81:59:E9 X509v3 Authority Key Identifier: keyid:05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:90:aa:06:b6:ea:0a:3f:10:e7:f5:5f:96:6c:07:03:20:f7: f0:24:a6:6d:b4:94:c9:33:54:f8:23:88:ee:2f:e1:dd:53:36: 68:18:33:b9:da:17:f4:2e:f7:3a:22:c3:fb:03:98:c5:e9:16: 29:f8:75:59:af:37:a6:ce:2d:62:df:a1:98:11:6d:5a:b5:55: 91:09:ce:75:a6:4b:55:c6:6e:09:a0:b9:fc:d9:ec:4a:75:dc: 9c:a2:75:2e:d1:e3:4e:b9:12:4f:7b:75:82:4f:bf:64:61:54: 1f:6d:46:c4:da:b1:27:08:98:00:c4:e3:5d:59:1d:b4:38:60: 7b:07:1f:73:18:01:a2:a2:5b:16:d1:26:1d:a5:d9:21:92:fa: de:de:2e:9e:3e:3a:22:97:0e:a3:24:3f:18:62:1e:0d:4f:9a: bd:6f:47:8f:2e:60:9d:9b:a7:77:7d:c8:5c:d0:31:2d:97:9a: 45:92:a0:54:78:e0:b6:b3:f3:ac:c8:18:ef:ad:7f:52:42:db: a9:9f:94:c6:59:41:05:7d:7c:6b:e4:f1:71:ef:a1:3b:1a:6c: 09:6e:59:c1:60:c5:7e:10:f8:34:f1:f6:99:6c:0d:0f:fa:44: 65:c8:3f:29:53:02:b0:d9:e9:01:d4:c1:af:be:12:a8:d3:e5: 2d:30:21:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI5QUExMTAvBgNVBAUTKDA1MDE0N0I5NERDOUQ2Q0JFOEMwQjBGMUFEMEMwMTgz QTYwNzdDMzQwHhcNMjUwNzAzMDUyODQwWhcNMjUwNzEwMDUyODQwWjAYMRYwFAYD VQQDEw02ODY2MTUwOC1hZTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Q9AOSWc9nXxRiRZmrXDbIgjXCjic0VJYByiuKW0nVmLbYP4G8sxVE3tEeFu NAU9InjmXGq1cZbPl+VsjfFvtWwtSzLuEo9ZRhWTBVThhJIjT0ko9oOn3FSvL616 q3HFx/2M1DzV1Iv3hhZJOsDt+xl8RySczpJ+36pWvt9X8l0AeIg4kSJYnKQyigEE rxNAsdaaby5uHKmmbN+k6xtQPvXcA5j1Dq+3KAt5IRuaYuC8lFC0Ib8GYr2tFWlM M4l6ZXuT36en2x5Sq9jA4ilw04jBfB3m7F3MDqZRrKTaMabDgzSd33D8Z0S5BB0N JQc4J7kPAK0Q87KqLBovWSjWQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDOjID3f BglYGVIDdBQWEhV8gVnpMB8GA1UdIwQYMBaAFAUBR7lNydbL6MCw8a0MAYOmB3w0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjlBQS81RjA2OTNGNEU3 NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFzdm93TER4clF3Qmc2WUhm RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRRkh1VTNKMXN2b3dMRHhyUXdCZzZZSGZEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjlBQS81RjA2OTNGNEU3NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFz dm93TER4clF3Qmc2WUhmRFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWkKoGtuoKPxDn9V+WbAcDIPfwJKZttJTJM1T4I4juL+HdUzZoGDO5 2hf0Lvc6IsP7A5jF6RYp+HVZrzemzi1i36GYEW1atVWRCc51pktVxm4JoLn82exK ddyconUu0eNOuRJPe3WCT79kYVQfbUbE2rEnCJgAxONdWR20OGB7Bx9zGAGiolsW 0SYdpdkhkvre3i6ePjoilw6jJD8YYh4NT5q9b0ePLmCdm6d3fchc0DEtl5pFkqBU eOC2s/OsyBjvrX9SQtupn5TGWUEFfXxr5PFx76E7GmwJblnBYMV+EPg08faZbA0P +kRlyD8pUwKw2ekB1MGvvhKo0+UtMCFE -----END CERTIFICATE-----Generated at Thu Jul 3 10:35:15 2025 by rpki-client