$ rpki-client -vvf rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft File: BQFHuU3J1svowLDxrQwBg6YHfDQ.mft (raw, json) Hash identifier: iLcmN6ccdfayhF/iARl2zdqacOYdD5Uxgfa591fbv8M= Subject key identifier: DA:1B:0F:C7:CC:F8:29:0F:76:6B:28:D3:67:08:0D:A9:8B:50:FE:15 Authority key identifier: 05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 Certificate issuer: /CN=A91629AA/serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft Manifest number: 012A Signing time: Sun 19 Oct 2025 07:29:46 +0000 Manifest this update: Sun 19 Oct 2025 07:29:45 +0000 Manifest next update: Sun 26 Oct 2025 07:29:45 +0000 Files and hashes: 1: BQFHuU3J1svowLDxrQwBg6YHfDQ.crl (hash: cVhY4GLLrqd4tnKyKmKpWVdc5JbVC9rW78KPTRjUw5M=) 2: 1E347CDCE74A11EE8602742BC4F9AE02.roa (hash: 1KFMJqeP1xSunnIgreiULJOt/F6oOyvmT80gXMxgyXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:29:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91629AA, serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Validity Not Before: Oct 19 07:29:45 2025 GMT Not After : Oct 26 07:29:45 2025 GMT Subject: CN=68f4936a-6bdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:00:8a:83:b5:76:80:f7:15:d1:4a:60:c1:fe: f3:f0:9c:16:42:72:a6:de:d0:39:de:bf:1d:d9:9e: d6:49:23:82:8c:13:67:dc:f2:68:1f:3a:2d:b9:14: 03:13:dd:f9:48:12:cd:9b:85:2b:5b:dd:d1:1f:f0: 6e:eb:e1:24:c6:3c:8c:48:03:e1:40:d2:e5:ff:fb: 77:18:d3:80:ac:d5:4e:40:15:4c:3b:9d:56:5e:14: ea:bb:a9:c6:0b:89:d2:52:85:90:33:1e:4d:04:24: cc:f9:6f:e5:34:02:17:2f:80:04:9c:2b:0c:ea:0f: a7:a0:c6:74:23:bf:dc:62:85:5f:32:9f:34:68:08: 47:65:9c:ab:5b:d6:65:3d:ae:9b:c8:8a:9c:d1:4f: 1a:86:a3:8c:5e:69:7f:8c:09:63:80:77:10:0c:58: e5:b8:91:88:be:51:9b:18:cc:4f:f9:16:ec:40:80: 8b:f1:a6:35:16:35:f9:62:1a:de:1b:e1:2e:e4:bf: a5:cf:eb:ab:f4:4f:ed:61:78:90:31:d0:19:f7:e5: c4:64:e4:f3:17:61:f9:0d:5e:c2:27:33:53:f8:df: 14:58:d8:ec:32:e5:1b:60:14:db:29:9b:f6:ad:01: 50:fd:8f:32:17:4b:64:32:1e:52:c2:0a:5a:1b:87: 02:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:1B:0F:C7:CC:F8:29:0F:76:6B:28:D3:67:08:0D:A9:8B:50:FE:15 X509v3 Authority Key Identifier: keyid:05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:35:d5:84:a1:68:42:12:4b:12:d6:b5:3b:6b:82:a6:c2:08: 9e:ca:ec:2a:11:d9:a8:23:44:f6:9d:bb:4a:85:41:80:68:a5: 2d:1e:98:e3:94:95:d4:88:6f:23:f1:c2:95:c8:fc:0a:ca:df: 3d:1a:c2:f2:41:c3:42:cf:73:f8:97:52:98:e6:9b:66:bf:cb: 37:8b:35:27:d5:ce:f6:93:1d:40:01:1e:c2:0e:5a:0b:93:4e: 8a:63:e1:23:14:6c:f8:b7:23:3b:3b:c4:85:e2:23:af:19:4f: a0:b8:4f:59:4e:76:70:2e:09:f7:64:8c:18:17:2b:c1:f0:c6: c4:28:4d:f6:22:dc:75:dc:00:e7:f6:b7:82:9d:11:0c:8f:90: 00:04:9c:57:c4:9a:4c:2b:89:b1:23:a9:a6:c0:e1:6d:41:90: e5:1d:26:66:2e:4f:21:85:42:da:64:75:40:08:31:c9:1b:4d: 85:6e:b5:72:f0:60:bc:73:02:66:e4:1a:f3:f0:85:d8:76:e5: dc:f9:f6:0e:b0:72:59:f8:e0:b0:9a:91:4a:29:6a:1c:c3:3c: 26:1c:b9:06:b8:71:75:6f:85:84:b0:ab:a8:ad:37:fd:71:ac: b9:c1:4c:ad:18:47:a3:0a:85:eb:27:d1:cb:53:89:47:21:65: 74:f0:dc:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI5QUExMTAvBgNVBAUTKDA1MDE0N0I5NERDOUQ2Q0JFOEMwQjBGMUFEMEMwMTgz QTYwNzdDMzQwHhcNMjUxMDE5MDcyOTQ1WhcNMjUxMDI2MDcyOTQ1WjAYMRYwFAYD VQQDEw02OGY0OTM2YS02YmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQCKg7V2gPcV0Upgwf7z8JwWQnKm3tA53r8d2Z7WSSOCjBNn3PJoHzotuRQD E935SBLNm4UrW93RH/Bu6+EkxjyMSAPhQNLl//t3GNOArNVOQBVMO51WXhTqu6nG C4nSUoWQMx5NBCTM+W/lNAIXL4AEnCsM6g+noMZ0I7/cYoVfMp80aAhHZZyrW9Zl Pa6byIqc0U8ahqOMXml/jAljgHcQDFjluJGIvlGbGMxP+RbsQICL8aY1FjX5Yhre G+Eu5L+lz+ur9E/tYXiQMdAZ9+XEZOTzF2H5DV7CJzNT+N8UWNjsMuUbYBTbKZv2 rQFQ/Y8yF0tkMh5SwgpaG4cCwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNobD8fM +CkPdmso02cIDamLUP4VMB8GA1UdIwQYMBaAFAUBR7lNydbL6MCw8a0MAYOmB3w0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjlBQS81RjA2OTNGNEU3 NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFzdm93TER4clF3Qmc2WUhm RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRRkh1VTNKMXN2b3dMRHhyUXdCZzZZSGZEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjlBQS81RjA2OTNGNEU3NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFz dm93TER4clF3Qmc2WUhmRFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUNdWEoWhCEksS1rU7a4KmwgieyuwqEdmoI0T2nbtKhUGAaKUtHpjj lJXUiG8j8cKVyPwKyt89GsLyQcNCz3P4l1KY5ptmv8s3izUn1c72kx1AAR7CDloL k06KY+EjFGz4tyM7O8SF4iOvGU+guE9ZTnZwLgn3ZIwYFyvB8MbEKE32Itx13ADn 9reCnREMj5AABJxXxJpMK4mxI6mmwOFtQZDlHSZmLk8hhULaZHVACDHJG02FbrVy 8GC8cwJm5Brz8IXYduXc+fYOsHJZ+OCwmpFKKWocwzwmHLkGuHF1b4WEsKuorTf9 cay5wUytGEejCoXrJ9HLU4lHIWV08Nzi -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:47 2025 by rpki-client