$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft File: BQ5HmwmNZLazhlsr5GiFdeotTVE.mft (raw, json) Hash identifier: 4vm4fVqQMFYdXR4TagdFWnCF3sgGDjDdjmTP4/8mUQY= Subject key identifier: 98:96:AF:FA:0E:C7:C3:11:83:3B:0F:67:AA:FB:32:94:71:28:E1:1D Authority key identifier: 05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 Certificate issuer: /CN=A91AB457/serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Certificate serial: 0BD2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft Manifest number: 0BD2 Signing time: Mon 30 Jun 2025 19:00:38 +0000 Manifest this update: Mon 30 Jun 2025 19:00:38 +0000 Manifest next update: Mon 07 Jul 2025 19:00:38 +0000 Files and hashes: 1: BQ5HmwmNZLazhlsr5GiFdeotTVE.crl (hash: wAz77R+5srptk1p0+n+hgGRJPOCGJ7p3Oj+qH57nhZg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3026 (0xbd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB457, serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Validity Not Before: Jun 30 19:00:38 2025 GMT Not After : Jul 7 19:00:38 2025 GMT Subject: CN=6862ded6-f619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:87:a6:6b:08:ab:8f:5b:ad:44:85:de:a7:0e: 9f:fc:7b:42:e6:2c:cf:5d:a2:4d:e9:c4:5c:e5:41: 0b:6b:1c:51:a2:b6:2a:a7:dd:aa:45:4e:7c:7e:82: cd:7b:5a:52:55:80:ba:c9:f2:c3:00:bc:49:44:c4: fe:cc:56:03:8f:b5:76:2d:8f:af:da:eb:09:26:fe: 3c:81:c4:88:78:74:72:29:8e:7d:34:fd:79:1a:7b: c6:39:0a:9c:ac:8c:13:c9:92:cd:19:63:67:e4:c6: 4c:41:4e:dc:8b:70:5f:31:0c:e2:28:70:e5:ed:b3: c6:48:6c:1d:0b:b7:c4:85:5b:a8:1f:b3:bb:49:e8: ae:bb:27:35:f6:d8:d2:fc:f8:c9:b0:0a:fb:99:df: 99:e2:a7:a9:c8:29:24:b3:18:7e:b3:ab:86:95:92: 30:db:bb:30:8f:15:80:98:06:6f:ab:a8:bc:23:b1: 66:fb:45:d0:7e:94:d1:38:28:bc:09:8f:5a:59:30: 37:12:c1:3c:ab:60:62:e1:db:51:34:aa:cb:1e:ca: 90:22:5b:35:e3:45:c0:db:ef:25:98:36:82:84:89: 97:33:95:4a:fb:5a:bc:32:2c:ce:07:ca:9a:bc:c2: 3a:a8:7a:02:3c:60:6a:71:15:55:7d:e5:0e:bf:f8: dd:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:96:AF:FA:0E:C7:C3:11:83:3B:0F:67:AA:FB:32:94:71:28:E1:1D X509v3 Authority Key Identifier: keyid:05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:53:8d:83:5e:ab:e5:d5:ef:f4:6c:ff:50:bc:73:f9:1a:ce: 43:40:0e:85:04:fd:ba:d6:b0:8e:7a:a2:2c:c1:1c:31:42:72: 88:d5:0c:bc:9c:e2:b3:c0:fb:d8:0e:b7:80:6e:fe:68:ec:4d: a9:a3:85:87:81:a9:ed:24:6a:47:01:f6:eb:8d:26:d1:89:3d: 72:4b:dd:9e:d2:04:01:0a:80:5d:56:c5:bf:00:12:f8:b8:d0: 52:8e:b3:5a:cd:69:41:27:4a:53:d4:41:f9:3e:c4:ac:96:42: 06:4b:2b:a0:22:69:d8:82:01:ad:21:1f:08:af:8d:c1:38:2f: af:f9:bc:0f:bd:f5:b9:2b:04:7e:4b:bb:0a:82:68:47:ac:33: aa:68:e8:ac:d6:7e:2f:99:15:30:cc:2b:0a:27:80:34:a9:1c: 52:db:9a:60:29:6c:5a:9b:26:6a:bb:e0:e9:94:51:d9:16:5f: 2a:3c:3b:fa:ef:aa:c9:a9:f1:60:55:e1:06:21:68:a7:e6:1f: 7f:58:9e:57:99:c4:f4:c6:e9:50:d2:c0:21:0b:33:66:a9:da: 4d:b5:b3:32:16:7d:ce:22:24:8f:13:d0:d7:89:bb:91:79:e5: bd:ac:e9:5c:2d:99:21:77:a2:46:4d:3d:5b:ed:41:6a:06:76: 6c:6a:1e:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0NTcxMTAvBgNVBAUTKDA1MEU0NzlCMDk4RDY0QjZCMzg2NUIyQkU0Njg4NTc1 RUEyRDRENTEwHhcNMjUwNjMwMTkwMDM4WhcNMjUwNzA3MTkwMDM4WjAYMRYwFAYD VQQDEw02ODYyZGVkNi1mNjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYemawirj1utRIXepw6f/HtC5izPXaJN6cRc5UELaxxRorYqp92qRU58foLN e1pSVYC6yfLDALxJRMT+zFYDj7V2LY+v2usJJv48gcSIeHRyKY59NP15GnvGOQqc rIwTyZLNGWNn5MZMQU7ci3BfMQziKHDl7bPGSGwdC7fEhVuoH7O7Seiuuyc19tjS /PjJsAr7md+Z4qepyCkksxh+s6uGlZIw27swjxWAmAZvq6i8I7Fm+0XQfpTROCi8 CY9aWTA3EsE8q2Bi4dtRNKrLHsqQIls140XA2+8lmDaChImXM5VK+1q8MizOB8qa vMI6qHoCPGBqcRVVfeUOv/jdCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJiWr/oO x8MRgzsPZ6r7MpRxKOEdMB8GA1UdIwQYMBaAFAUOR5sJjWS2s4ZbK+RohXXqLU1R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjQ1Ny81QUY2NjEwMjFD OTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpMYXpobHNyNUdpRmRlb3RU VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRNUhtd21OWkxhemhsc3I1R2lGZGVvdFRWRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjQ1Ny81QUY2NjEwMjFDOTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpM YXpobHNyNUdpRmRlb3RUVkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+U42DXqvl1e/0bP9QvHP5Gs5DQA6FBP261rCOeqIswRwxQnKI1Qy8 nOKzwPvYDreAbv5o7E2po4WHgantJGpHAfbrjSbRiT1yS92e0gQBCoBdVsW/ABL4 uNBSjrNazWlBJ0pT1EH5PsSslkIGSyugImnYggGtIR8Ir43BOC+v+bwPvfW5KwR+ S7sKgmhHrDOqaOis1n4vmRUwzCsKJ4A0qRxS25pgKWxamyZqu+DplFHZFl8qPDv6 76rJqfFgVeEGIWin5h9/WJ5XmcT0xulQ0sAhCzNmqdpNtbMyFn3OIiSPE9DXibuR eeW9rOlcLZkhd6JGTT1b7UFqBnZsah5I -----END CERTIFICATE-----Generated at Tue Jul 1 18:02:09 2025 by rpki-client