$ rpki-client -vvf rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft File: BQFHuU3J1svowLDxrQwBg6YHfDQ.mft (raw, json) Hash identifier: dbL41yUjP6cx++/JGUUSPvt9vso5Z33vf3OycGB9/Fo= Subject key identifier: FD:4A:53:7D:A8:61:4C:9E:DF:67:71:2C:F0:89:DE:1F:23:95:F8:FF Authority key identifier: 05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 Certificate issuer: /CN=A91629AA/serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft Manifest number: 010D Signing time: Sat 23 Aug 2025 05:09:00 +0000 Manifest this update: Sat 23 Aug 2025 05:08:59 +0000 Manifest next update: Sat 30 Aug 2025 05:08:59 +0000 Files and hashes: 1: BQFHuU3J1svowLDxrQwBg6YHfDQ.crl (hash: PViVrAcmNjpsBOlMA8Q2UgDJpzoOGJRtgapUKMFtvb8=) 2: 1E347CDCE74A11EE8602742BC4F9AE02.roa (hash: 1KFMJqeP1xSunnIgreiULJOt/F6oOyvmT80gXMxgyXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:08:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91629AA, serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Validity Not Before: Aug 23 05:08:59 2025 GMT Not After : Aug 30 05:08:59 2025 GMT Subject: CN=68a94cec-0c16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:98:d7:bf:16:65:13:ca:d9:99:e0:7d:a9:a1: 0c:39:74:47:88:d5:ac:c0:cb:d9:d9:50:f2:d6:40: 0d:a5:b4:a7:6d:45:d6:3f:b7:b7:99:6d:5d:24:35: 1d:6d:2e:2e:8a:8d:bf:e7:cd:59:45:d5:a2:41:17: 35:04:10:74:f4:33:18:f0:b7:57:42:36:58:a9:2f: 9b:9f:f6:1d:4d:3e:9b:be:44:57:ae:a9:c9:ca:a8: a4:bb:4e:0e:28:ce:70:03:60:8f:c1:d3:6d:c1:1d: cb:14:93:5b:81:db:4a:ce:69:7e:32:f6:29:55:11: 61:03:11:a4:16:9c:e6:7c:96:24:4e:ff:45:10:3a: 47:9a:e5:37:5e:96:4e:b4:45:c4:82:be:88:39:51: 1d:2b:87:f2:d3:cd:95:c0:8e:f3:d1:b3:27:82:53: 49:52:40:18:22:be:12:f3:2c:07:4c:2c:fd:04:ee: a6:3d:b8:50:60:4e:97:f0:27:cc:c1:70:19:8f:cd: 8c:97:50:9c:e9:e8:59:b0:2f:55:93:05:79:4a:61: fa:8d:81:d6:01:19:d6:03:72:dd:fe:f2:93:3c:21: cf:4b:6b:13:1d:76:13:75:2c:c3:64:22:a7:e5:22: 59:2a:e9:f7:05:1c:dc:d6:1d:8f:7a:8e:b9:5c:9d: 63:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:4A:53:7D:A8:61:4C:9E:DF:67:71:2C:F0:89:DE:1F:23:95:F8:FF X509v3 Authority Key Identifier: keyid:05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:2b:90:be:5a:6f:8a:7c:54:24:e7:f5:40:16:61:0e:f5:75: f8:60:b5:ac:e7:33:3a:db:20:17:69:b7:ae:a7:f6:2a:aa:a0: 9d:2d:53:5e:1a:f4:af:ae:10:4f:df:e7:3a:be:1f:2e:4e:d0: 79:c1:0b:d5:28:15:68:f4:7e:c8:0b:48:b1:b5:5d:05:23:88: 92:05:27:b4:a5:b4:ef:9f:98:48:67:78:2f:c7:2f:01:8b:32: c1:88:1e:0c:2b:1d:e1:55:b5:7e:55:3f:7b:c6:a6:1b:83:f5: 85:64:6e:23:51:6e:f4:9d:29:d7:6a:57:ea:ca:51:9d:cb:87: 61:41:be:7c:1d:e0:58:8b:d6:0e:b1:83:d8:fd:25:6e:a4:70: b6:95:dd:c4:b5:fe:18:d8:83:d8:64:d4:b5:ec:bd:da:b3:1a: eb:79:00:a7:04:db:b9:eb:18:17:15:21:f4:b5:29:5b:81:01: 7f:3c:63:79:86:14:9e:a2:02:d3:50:f2:1d:0a:ac:25:56:20: 2f:9f:b5:87:8f:21:51:60:dc:14:0b:fb:1b:ad:9a:56:a1:15: 8b:0b:48:e2:42:25:59:84:a5:05:7d:4a:56:4c:16:2f:a5:98: b0:a7:11:b6:95:ab:1a:e8:ae:a9:29:29:91:92:02:34:ae:28: 3b:7e:56:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI5QUExMTAvBgNVBAUTKDA1MDE0N0I5NERDOUQ2Q0JFOEMwQjBGMUFEMEMwMTgz QTYwNzdDMzQwHhcNMjUwODIzMDUwODU5WhcNMjUwODMwMDUwODU5WjAYMRYwFAYD VQQDEw02OGE5NGNlYy0wYzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4pjXvxZlE8rZmeB9qaEMOXRHiNWswMvZ2VDy1kANpbSnbUXWP7e3mW1dJDUd bS4uio2/581ZRdWiQRc1BBB09DMY8LdXQjZYqS+bn/YdTT6bvkRXrqnJyqiku04O KM5wA2CPwdNtwR3LFJNbgdtKzml+MvYpVRFhAxGkFpzmfJYkTv9FEDpHmuU3XpZO tEXEgr6IOVEdK4fy082VwI7z0bMnglNJUkAYIr4S8ywHTCz9BO6mPbhQYE6X8CfM wXAZj82Ml1Cc6ehZsC9VkwV5SmH6jYHWARnWA3Ld/vKTPCHPS2sTHXYTdSzDZCKn 5SJZKun3BRzc1h2Peo65XJ1jewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP1KU32o YUye32dxLPCJ3h8jlfj/MB8GA1UdIwQYMBaAFAUBR7lNydbL6MCw8a0MAYOmB3w0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjlBQS81RjA2OTNGNEU3 NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFzdm93TER4clF3Qmc2WUhm RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRRkh1VTNKMXN2b3dMRHhyUXdCZzZZSGZEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjlBQS81RjA2OTNGNEU3NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFz dm93TER4clF3Qmc2WUhmRFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQK5C+Wm+KfFQk5/VAFmEO9XX4YLWs5zM62yAXabeup/YqqqCdLVNe GvSvrhBP3+c6vh8uTtB5wQvVKBVo9H7IC0ixtV0FI4iSBSe0pbTvn5hIZ3gvxy8B izLBiB4MKx3hVbV+VT97xqYbg/WFZG4jUW70nSnXalfqylGdy4dhQb58HeBYi9YO sYPY/SVupHC2ld3Etf4Y2IPYZNS17L3asxrreQCnBNu56xgXFSH0tSlbgQF/PGN5 hhSeogLTUPIdCqwlViAvn7WHjyFRYNwUC/sbrZpWoRWLC0jiQiVZhKUFfUpWTBYv pZiwpxG2lasa6K6pKSmRkgI0rig7flbp -----END CERTIFICATE-----Generated at Sat Aug 23 19:15:43 2025 by rpki-client