$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft File: BQ5HmwmNZLazhlsr5GiFdeotTVE.mft (raw, json) Hash identifier: uTPtbkTLNuUWoD2+IdY0Ty/0dmJnJe9oAloIxqejcu4= Subject key identifier: ED:1A:88:2D:F0:CC:ED:B0:60:84:CC:83:DB:4B:D7:D3:CE:39:FB:C6 Authority key identifier: 05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 Certificate issuer: /CN=A91AB457/serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Certificate serial: 0BED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft Manifest number: 0BED Signing time: Fri 22 Aug 2025 18:55:51 +0000 Manifest this update: Fri 22 Aug 2025 18:55:51 +0000 Manifest next update: Fri 29 Aug 2025 18:55:51 +0000 Files and hashes: 1: BQ5HmwmNZLazhlsr5GiFdeotTVE.crl (hash: J6Sl5+bO6dIlTBnVBKoBSk7DxWdmTMb+p0QdktcC5xg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:55:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3053 (0xbed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB457, serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Validity Not Before: Aug 22 18:55:51 2025 GMT Not After : Aug 29 18:55:51 2025 GMT Subject: CN=68a8bd37-d366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9e:1d:7a:2e:84:c4:77:57:e2:fe:9b:9a:f8: e9:f2:06:9e:f0:1b:9d:08:71:f1:56:55:21:da:7f: 77:7c:16:17:6f:93:66:75:9f:de:6e:ec:09:dc:63: f1:d3:1a:83:cb:d0:2f:61:86:d5:db:03:ab:9c:cf: 64:6f:37:8f:9b:8a:9c:e8:8c:6f:79:c6:70:63:24: 1b:6a:5c:01:dd:00:4e:ca:a3:3f:94:88:f7:65:0d: 41:6e:31:cb:8e:70:e2:4e:3f:db:4d:38:93:cf:4a: 50:99:6a:93:c2:9e:09:1a:f1:a8:c5:36:55:28:7c: 9a:07:7b:57:ac:a8:5c:75:9a:72:a6:89:37:99:9f: 96:0b:05:42:ef:55:0e:e1:c4:45:5b:38:cb:01:6d: 2c:2b:45:d8:89:4b:21:7c:9e:93:49:45:1d:8b:1a: f7:71:a0:1e:8e:9f:fd:28:c4:4c:eb:3e:47:8d:e0: 36:d4:8d:0b:da:54:1f:07:17:f1:66:a1:c5:da:09: 83:99:59:60:f0:26:41:e5:f0:06:14:36:e2:4c:ee: f2:8d:6b:62:37:07:cf:f0:80:5a:33:9c:1f:93:70: 93:7b:e3:81:5a:11:95:88:5a:5e:e5:ce:50:46:a1: ff:1f:2d:28:f5:f5:47:98:c6:1e:18:b2:5e:8a:80: d1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:1A:88:2D:F0:CC:ED:B0:60:84:CC:83:DB:4B:D7:D3:CE:39:FB:C6 X509v3 Authority Key Identifier: keyid:05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:eb:95:50:0a:8e:fe:b9:0b:27:59:e4:9c:a5:b0:30:80:42: ff:eb:32:28:11:da:8f:45:50:8a:5c:3a:71:11:46:e6:f6:d9: 2c:f2:5a:b9:93:8b:c7:8f:f0:ac:b3:b8:b0:e1:a9:c7:c4:6b: ee:4c:bc:a9:4c:be:63:69:5d:91:8e:9f:ff:fd:c8:a3:9e:24: f2:79:05:ff:10:2d:eb:0b:fd:2c:1c:5b:5d:9e:3e:ca:8c:d5: c0:de:31:9b:05:1b:27:08:4a:1d:ab:fb:58:ae:c5:1d:49:fd: 38:48:cb:97:03:56:50:5d:c2:8c:50:12:0e:61:38:83:3e:8f: f8:e9:e6:fe:4f:c9:5a:39:15:e9:f0:86:5f:88:89:a1:92:27: 20:16:79:0b:ea:aa:eb:ca:89:b6:7c:08:ab:b8:c3:f7:cc:12: 58:52:79:25:02:79:62:ac:55:73:87:1b:7d:c5:6a:c8:ab:8c: de:91:da:5a:c9:ee:85:83:9d:ad:15:f9:fa:4e:a9:d2:f8:5d: 7b:aa:8e:b3:3a:6e:49:c3:9d:a4:74:46:2c:fb:ff:97:6f:49: 79:cf:93:34:d5:91:19:06:ca:8f:ca:13:52:8e:78:32:41:88: 16:bb:44:25:53:1e:f7:a7:99:2f:1b:61:de:98:f5:a0:ff:f3: cd:0d:b2:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0NTcxMTAvBgNVBAUTKDA1MEU0NzlCMDk4RDY0QjZCMzg2NUIyQkU0Njg4NTc1 RUEyRDRENTEwHhcNMjUwODIyMTg1NTUxWhcNMjUwODI5MTg1NTUxWjAYMRYwFAYD VQQDEw02OGE4YmQzNy1kMzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZ4dei6ExHdX4v6bmvjp8gae8BudCHHxVlUh2n93fBYXb5NmdZ/ebuwJ3GPx 0xqDy9AvYYbV2wOrnM9kbzePm4qc6IxvecZwYyQbalwB3QBOyqM/lIj3ZQ1BbjHL jnDiTj/bTTiTz0pQmWqTwp4JGvGoxTZVKHyaB3tXrKhcdZpypok3mZ+WCwVC71UO 4cRFWzjLAW0sK0XYiUshfJ6TSUUdixr3caAejp/9KMRM6z5HjeA21I0L2lQfBxfx ZqHF2gmDmVlg8CZB5fAGFDbiTO7yjWtiNwfP8IBaM5wfk3CTe+OBWhGViFpe5c5Q RqH/Hy0o9fVHmMYeGLJeioDR4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO0aiC3w zO2wYITMg9tL19POOfvGMB8GA1UdIwQYMBaAFAUOR5sJjWS2s4ZbK+RohXXqLU1R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjQ1Ny81QUY2NjEwMjFD OTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpMYXpobHNyNUdpRmRlb3RU VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRNUhtd21OWkxhemhsc3I1R2lGZGVvdFRWRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjQ1Ny81QUY2NjEwMjFDOTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpM YXpobHNyNUdpRmRlb3RUVkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp65VQCo7+uQsnWeScpbAwgEL/6zIoEdqPRVCKXDpxEUbm9tks8lq5 k4vHj/Css7iw4anHxGvuTLypTL5jaV2Rjp///cijniTyeQX/EC3rC/0sHFtdnj7K jNXA3jGbBRsnCEodq/tYrsUdSf04SMuXA1ZQXcKMUBIOYTiDPo/46eb+T8laORXp 8IZfiImhkicgFnkL6qrryom2fAiruMP3zBJYUnklAnlirFVzhxt9xWrIq4zekdpa ye6Fg52tFfn6TqnS+F17qo6zOm5Jw52kdEYs+/+Xb0l5z5M01ZEZBsqPyhNSjngy QYgWu0QlUx73p5kvG2HemPWg//PNDbKr -----END CERTIFICATE-----Generated at Sat Aug 23 18:57:21 2025 by rpki-client