$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft File: BQ5HmwmNZLazhlsr5GiFdeotTVE.mft (raw, json) Hash identifier: Ct/I6r5RdfcpylVS1pbPp6CxsPZr6EB8fU9vJJi39AM= Subject key identifier: AB:E4:F0:A6:D3:36:19:9E:51:24:33:92:BD:E5:43:9A:78:BE:59:49 Authority key identifier: 05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 Certificate issuer: /CN=A91AB457/serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Certificate serial: 0C0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft Manifest number: 0C0A Signing time: Sat 18 Oct 2025 19:34:10 +0000 Manifest this update: Sat 18 Oct 2025 19:34:09 +0000 Manifest next update: Sat 25 Oct 2025 19:34:09 +0000 Files and hashes: 1: BQ5HmwmNZLazhlsr5GiFdeotTVE.crl (hash: f0tiIZ+LzifL/pXjUAQHg+H5x1XupjaqyRZj6PWKG1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:34:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3082 (0xc0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB457, serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Validity Not Before: Oct 18 19:34:09 2025 GMT Not After : Oct 25 19:34:09 2025 GMT Subject: CN=68f3ebb2-72b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:1b:0e:71:ce:49:19:6a:bd:89:dd:29:3f:01: 62:88:b3:1c:b5:19:aa:09:be:da:99:f2:1b:dd:e4: df:41:99:9b:46:8e:fe:65:db:c3:ab:d5:b4:15:b9: 0d:69:15:bc:4f:8b:55:a1:f4:b6:56:1d:0e:8e:5a: 47:d0:ba:ca:ab:0d:6d:21:09:f9:09:f2:94:2d:5c: 00:bb:62:96:97:37:a6:7d:f2:e2:84:26:a3:81:e7: e9:19:04:22:eb:41:7a:29:01:e1:75:e9:8f:f7:5a: be:64:a1:03:35:b8:74:c6:df:b4:2a:ae:59:47:4e: 09:f3:c1:3c:a4:a7:af:d0:91:e7:98:ca:e3:c5:3d: 9c:fa:1c:d6:7e:96:bc:7e:57:ed:56:16:23:08:23: b6:ef:88:97:fb:b8:d6:67:ca:6a:d1:73:42:d9:9d: ec:8d:8c:94:b4:d3:33:64:1b:04:50:98:23:1f:ae: a1:db:ca:99:01:14:d3:ee:cd:5e:c0:13:f3:7f:ac: bc:b4:c1:82:96:c9:b1:da:5c:64:bf:2b:6f:c7:02: 72:4a:ba:85:5d:db:a3:ff:e3:09:91:74:42:58:8b: 87:a9:cb:30:de:b7:d8:cd:ec:48:b9:7c:d4:f7:d7: 63:5b:2d:52:45:fb:a8:6b:70:56:1d:d6:d7:38:83: 8d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:E4:F0:A6:D3:36:19:9E:51:24:33:92:BD:E5:43:9A:78:BE:59:49 X509v3 Authority Key Identifier: keyid:05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:17:c8:b9:af:6b:77:38:58:5c:1d:5c:0d:9d:00:78:be:06: 84:d7:8b:99:59:50:e6:6b:88:fe:e1:63:78:10:08:81:4f:7a: c5:28:68:c6:93:27:b2:02:2d:b3:d2:a8:20:94:39:46:ce:a7: 42:80:73:4f:78:84:cb:0a:63:ed:0f:7b:59:58:14:fc:b3:48: af:62:17:d2:3c:db:f4:4c:a6:26:95:fc:b6:00:59:9c:c7:16: 87:df:7d:9b:f0:90:0d:a8:b0:2b:b9:59:65:43:f7:d5:68:61: e6:b0:2c:8a:22:cd:f4:55:92:01:02:ea:82:6c:06:ef:4a:51: 90:f3:2f:db:d2:56:54:4f:10:9e:65:f7:64:3e:61:ba:90:1b: dd:d7:b6:cb:96:e8:8f:eb:f7:08:22:44:01:15:20:75:e7:b0: 65:58:88:15:9f:57:bf:17:c2:1a:2d:7d:e5:7d:7f:e2:ce:8b: 98:a2:b6:62:ce:ca:51:36:05:d3:89:a0:39:d9:8e:5f:64:8e: 04:d3:77:3f:9b:ba:26:63:7c:b9:5a:df:d5:36:18:68:04:aa: 76:24:f4:6d:f3:19:6e:77:d1:01:a6:fc:7a:13:b7:9e:98:c0: 16:b3:18:8f:2e:57:99:2b:5b:52:85:c3:df:14:39:0d:ef:f5: 39:2c:be:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0NTcxMTAvBgNVBAUTKDA1MEU0NzlCMDk4RDY0QjZCMzg2NUIyQkU0Njg4NTc1 RUEyRDRENTEwHhcNMjUxMDE4MTkzNDA5WhcNMjUxMDI1MTkzNDA5WjAYMRYwFAYD VQQDEw02OGYzZWJiMi03MmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0hsOcc5JGWq9id0pPwFiiLMctRmqCb7amfIb3eTfQZmbRo7+ZdvDq9W0FbkN aRW8T4tVofS2Vh0OjlpH0LrKqw1tIQn5CfKULVwAu2KWlzemffLihCajgefpGQQi 60F6KQHhdemP91q+ZKEDNbh0xt+0Kq5ZR04J88E8pKev0JHnmMrjxT2c+hzWfpa8 flftVhYjCCO274iX+7jWZ8pq0XNC2Z3sjYyUtNMzZBsEUJgjH66h28qZARTT7s1e wBPzf6y8tMGClsmx2lxkvytvxwJySrqFXduj/+MJkXRCWIuHqcsw3rfYzexIuXzU 99djWy1SRfuoa3BWHdbXOIONuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKvk8KbT NhmeUSQzkr3lQ5p4vllJMB8GA1UdIwQYMBaAFAUOR5sJjWS2s4ZbK+RohXXqLU1R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjQ1Ny81QUY2NjEwMjFD OTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpMYXpobHNyNUdpRmRlb3RU VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRNUhtd21OWkxhemhsc3I1R2lGZGVvdFRWRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjQ1Ny81QUY2NjEwMjFDOTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpM YXpobHNyNUdpRmRlb3RUVkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxF8i5r2t3OFhcHVwNnQB4vgaE14uZWVDma4j+4WN4EAiBT3rFKGjG kyeyAi2z0qgglDlGzqdCgHNPeITLCmPtD3tZWBT8s0ivYhfSPNv0TKYmlfy2AFmc xxaH332b8JANqLAruVllQ/fVaGHmsCyKIs30VZIBAuqCbAbvSlGQ8y/b0lZUTxCe ZfdkPmG6kBvd17bLluiP6/cIIkQBFSB157BlWIgVn1e/F8IaLX3lfX/izouYorZi zspRNgXTiaA52Y5fZI4E03c/m7omY3y5Wt/VNhhoBKp2JPRt8xlud9EBpvx6E7ee mMAWsxiPLleZK1tShcPfFDkN7/U5LL41 -----END CERTIFICATE-----Generated at Mon Oct 20 08:04:49 2025 by rpki-client