$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json) Hash identifier: 2fUVUMv2R2N1WGQ9CLR9quUczJYUUTbCRriB8pKcJCQ= Subject key identifier: 86:C8:0B:3E:B2:64:D1:44:82:62:D3:A4:FA:9F:0D:5A:A9:25:9A:95 Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft Manifest number: 01D1 Signing time: Thu 03 Jul 2025 03:00:11 +0000 Manifest this update: Thu 03 Jul 2025 03:00:10 +0000 Manifest next update: Thu 10 Jul 2025 03:00:10 +0000 Files and hashes: 1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: 7l13oW5AAeHPdX2x9CBpkLdp6XUeZSa9MEcPnczlizU=) 2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: uh86cXyNLUaa3Xl47qiV2uyaXTpPI55uWsM8f80qnzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB8D7, serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Validity Not Before: Jul 3 03:00:10 2025 GMT Not After : Jul 10 03:00:10 2025 GMT Subject: CN=6865f23a-61c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ed:7a:57:29:55:e7:8c:3f:18:e4:f4:c0:e2: c1:eb:13:b0:f7:3a:5a:5c:05:5f:1e:60:fa:22:1e: 50:63:c7:aa:6d:b2:6f:46:6f:62:5b:ff:44:55:17: 95:05:56:c4:fc:05:f2:30:01:7c:6c:64:df:59:5a: b6:2f:93:d4:9d:66:17:f0:05:02:26:b4:e0:80:31: a3:fc:6b:b7:80:6a:fb:6d:f2:54:8b:4f:b3:0f:8a: 57:f8:f1:5b:39:63:26:19:f0:19:45:01:88:ef:bd: b5:aa:b1:e9:1f:c6:71:b7:4c:f2:cd:aa:83:01:c0: 37:9e:74:c8:ea:a1:66:c3:fa:ac:05:7e:ee:3d:61: cf:7e:ca:a2:54:ae:87:7a:82:4f:90:b3:d3:31:a0: ef:3f:b4:58:b8:40:97:ec:05:ee:2d:21:5b:73:bc: 6f:a3:10:d4:3a:1a:62:39:eb:26:32:db:24:f9:1a: 65:a1:4d:d6:2c:87:ff:3d:ea:ce:eb:d6:d0:d3:de: 03:9d:97:7d:b1:b9:92:a7:46:dd:2b:57:0c:35:39: 5c:32:aa:bf:f1:cf:2d:8e:48:66:c4:91:e3:05:0b: 0c:02:48:69:e2:84:a2:43:73:08:1f:6f:14:7a:3b: 7e:d2:84:bc:08:f1:f3:ae:59:05:e7:e2:3d:87:81: 90:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:C8:0B:3E:B2:64:D1:44:82:62:D3:A4:FA:9F:0D:5A:A9:25:9A:95 X509v3 Authority Key Identifier: keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:38:ca:a8:ef:70:5c:9e:af:e8:56:03:ef:41:4e:4c:43:40: 7e:ce:36:7b:b5:16:d6:f2:5a:ba:a0:17:ae:df:5f:4a:75:69: d2:2c:46:2a:14:7d:98:6a:d1:5d:e3:27:fe:80:08:7e:4b:b1: 14:8b:5d:e6:f7:0a:a8:bd:c4:78:fc:7f:cf:41:73:c8:43:ea: b2:36:45:94:a9:95:a7:89:72:25:a4:43:10:d2:72:50:6d:a8: 15:13:e5:c0:8d:8d:e7:84:a4:43:4e:c6:e2:16:21:b4:5f:1e: 12:f0:93:e0:0c:ae:d8:b0:b6:3f:3e:be:ce:99:c9:1f:99:21: 5b:86:2e:53:62:fa:46:3e:cb:fb:97:3a:74:2c:f5:7f:ad:a4: 29:43:f1:95:61:f9:09:40:96:55:42:2e:8e:2b:f2:ad:92:3f: 7f:5a:cb:27:98:ba:e2:a9:b1:49:e4:bb:06:99:bb:07:2e:9b: b6:23:d0:0d:cc:4e:3f:70:b5:b5:07:05:bf:8a:13:b1:a0:b2: a2:71:7c:b6:5e:8f:d3:7a:03:94:59:d5:bb:dd:b4:e6:3b:08: 0e:16:82:01:e8:2a:57:37:b6:73:e2:de:6c:3f:da:8c:3f:c4: 01:6f:70:bf:f4:9d:71:04:89:3c:a4:a4:b6:39:2d:f2:01:85: 2f:a4:64:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4RDcxMTAvBgNVBAUTKDA1MERDMDNCNUQ1OTQ1QTMzRUFCOTUxODE3RjE2NzlC RDkxMEM2QUMwHhcNMjUwNzAzMDMwMDEwWhcNMjUwNzEwMDMwMDEwWjAYMRYwFAYD VQQDEw02ODY1ZjIzYS02MWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxO16VylV54w/GOT0wOLB6xOw9zpaXAVfHmD6Ih5QY8eqbbJvRm9iW/9EVReV BVbE/AXyMAF8bGTfWVq2L5PUnWYX8AUCJrTggDGj/Gu3gGr7bfJUi0+zD4pX+PFb OWMmGfAZRQGI7721qrHpH8Zxt0zyzaqDAcA3nnTI6qFmw/qsBX7uPWHPfsqiVK6H eoJPkLPTMaDvP7RYuECX7AXuLSFbc7xvoxDUOhpiOesmMtsk+RploU3WLIf/PerO 69bQ094DnZd9sbmSp0bdK1cMNTlcMqq/8c8tjkhmxJHjBQsMAkhp4oSiQ3MIH28U ejt+0oS8CPHzrlkF5+I9h4GQTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbICz6y ZNFEgmLTpPqfDVqpJZqVMB8GA1UdIwQYMBaAFAUNwDtdWUWjPquVGBfxZ5vZEMas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjhENy9CNjdGMzAxQTk4 OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJhTS1xNVVZRl9Gbm05a1F4 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRM0FPMTFaUmFNLXE1VVlGX0ZubTlrUXhxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjhENy9CNjdGMzAxQTk4OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJh TS1xNVVZRl9Gbm05a1F4cXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBOMqo73Bcnq/oVgPvQU5MQ0B+zjZ7tRbW8lq6oBeu319KdWnSLEYq FH2YatFd4yf+gAh+S7EUi13m9wqovcR4/H/PQXPIQ+qyNkWUqZWniXIlpEMQ0nJQ bagVE+XAjY3nhKRDTsbiFiG0Xx4S8JPgDK7YsLY/Pr7OmckfmSFbhi5TYvpGPsv7 lzp0LPV/raQpQ/GVYfkJQJZVQi6OK/Ktkj9/WssnmLriqbFJ5LsGmbsHLpu2I9AN zE4/cLW1BwW/ihOxoLKicXy2Xo/TegOUWdW73bTmOwgOFoIB6CpXN7Zz4t5sP9qM P8QBb3C/9J1xBIk8pKS2OS3yAYUvpGTn -----END CERTIFICATE-----Generated at Thu Jul 3 10:26:54 2025 by rpki-client