$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json) Hash identifier: NNkp55t0dpkHf8W/jQmeqtNYnCR8Ezh5eaO+vhABv2Y= Subject key identifier: 90:31:AE:43:28:37:97:AF:0F:79:9C:A2:3F:3C:0C:DB:68:23:A3:EB Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Certificate serial: 01EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft Manifest number: 01EB Signing time: Sat 23 Aug 2025 02:45:21 +0000 Manifest this update: Sat 23 Aug 2025 02:45:21 +0000 Manifest next update: Sat 30 Aug 2025 02:45:21 +0000 Files and hashes: 1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: HhE1wGnR3EvbwpN9f3NgJyY9eEfyQZe+byZ4y1ZJtKA=) 2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: uh86cXyNLUaa3Xl47qiV2uyaXTpPI55uWsM8f80qnzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:45:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB8D7, serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Validity Not Before: Aug 23 02:45:21 2025 GMT Not After : Aug 30 02:45:21 2025 GMT Subject: CN=68a92b41-f599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:31:c9:f7:8f:49:79:b4:b0:57:da:f9:77:64: d3:90:32:b3:a6:bb:f8:a2:c5:69:e1:59:d2:d5:d4: 33:f5:ba:ac:bc:d4:a4:96:61:99:3e:ee:cc:98:e8: 4e:36:e8:3b:4b:72:88:9c:09:a6:f9:fb:da:75:fe: ca:b0:ce:b7:f9:86:71:ca:d0:29:31:00:7f:1b:29: 0b:cc:99:f6:2d:cf:94:71:12:65:ae:62:5a:24:46: ec:04:64:a1:c6:4d:59:98:7c:09:86:74:13:c9:e5: 82:e3:d9:eb:62:94:d7:f2:4c:89:e7:f2:1a:67:40: 60:16:25:b1:d2:ed:02:00:d3:41:67:5f:21:ed:1c: 58:47:a6:1d:83:7f:a6:67:dc:19:44:6d:69:4f:f9: 6b:cb:65:a9:8d:f0:7d:ce:34:df:75:d7:9c:a3:59: 86:a5:75:2f:d9:a4:51:1b:19:5b:56:ec:9d:2e:2b: c0:b4:d5:2d:0c:02:96:5c:83:75:56:d6:4a:65:f0: 63:b9:34:d5:cd:a5:d7:9b:19:13:bd:93:65:82:93: 2d:23:89:ed:7d:37:ba:65:72:a2:16:4d:73:5e:09: 2c:74:4c:0e:65:91:02:9b:5e:8a:69:a3:73:47:f3: 1a:2e:22:84:d2:f4:ae:dc:5d:40:61:9e:a1:60:70: 8b:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:31:AE:43:28:37:97:AF:0F:79:9C:A2:3F:3C:0C:DB:68:23:A3:EB X509v3 Authority Key Identifier: keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:38:87:c6:4e:7b:5a:4f:0b:61:26:b3:fe:c7:55:eb:6d:94: 8c:6b:d2:ca:df:80:c9:64:7e:a1:9d:48:c5:db:0e:ae:1f:c0: f1:27:1d:96:76:f4:bf:ae:c8:55:53:00:e8:ef:3e:4e:9d:35: 70:13:2f:28:56:fd:a9:24:57:67:2a:66:81:aa:d9:05:66:b4: fd:98:9b:41:75:bc:9b:62:4c:74:af:49:3b:ad:58:ad:27:b2: f0:a3:20:93:c4:24:d5:0a:98:b9:1b:4c:a3:9d:1f:5e:5b:26: 8a:67:05:1e:39:22:b5:10:27:d4:74:aa:0f:fd:0d:1c:99:c1: aa:1c:b6:19:e4:76:ac:ec:1e:fe:d6:4a:0b:74:81:5b:3e:6d: 26:f4:91:15:a6:8e:64:c9:76:d0:b8:76:4b:d4:df:87:1c:4a: d5:06:bd:3c:9e:75:21:85:a5:40:29:ba:24:6d:19:db:1e:e7: 02:c6:e7:00:e5:48:8b:ca:28:3c:f3:19:57:eb:6c:99:34:4e: f6:23:08:eb:b0:2d:06:79:c2:5d:df:3e:8e:89:c7:5b:dd:0e: aa:87:f6:10:f4:ba:e5:22:44:eb:b7:d4:05:5d:6f:47:30:48: b9:9d:52:c9:51:6b:df:67:9a:b4:5e:aa:f9:f4:a7:e1:fb:32: 36:35:2c:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4RDcxMTAvBgNVBAUTKDA1MERDMDNCNUQ1OTQ1QTMzRUFCOTUxODE3RjE2NzlC RDkxMEM2QUMwHhcNMjUwODIzMDI0NTIxWhcNMjUwODMwMDI0NTIxWjAYMRYwFAYD VQQDEw02OGE5MmI0MS1mNTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoDHJ949JebSwV9r5d2TTkDKzprv4osVp4VnS1dQz9bqsvNSklmGZPu7MmOhO Nug7S3KInAmm+fvadf7KsM63+YZxytApMQB/GykLzJn2Lc+UcRJlrmJaJEbsBGSh xk1ZmHwJhnQTyeWC49nrYpTX8kyJ5/IaZ0BgFiWx0u0CANNBZ18h7RxYR6Ydg3+m Z9wZRG1pT/lry2WpjfB9zjTfddeco1mGpXUv2aRRGxlbVuydLivAtNUtDAKWXIN1 VtZKZfBjuTTVzaXXmxkTvZNlgpMtI4ntfTe6ZXKiFk1zXgksdEwOZZECm16KaaNz R/MaLiKE0vSu3F1AYZ6hYHCL0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJAxrkMo N5evD3mcoj88DNtoI6PrMB8GA1UdIwQYMBaAFAUNwDtdWUWjPquVGBfxZ5vZEMas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjhENy9CNjdGMzAxQTk4 OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJhTS1xNVVZRl9Gbm05a1F4 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRM0FPMTFaUmFNLXE1VVlGX0ZubTlrUXhxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjhENy9CNjdGMzAxQTk4OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJh TS1xNVVZRl9Gbm05a1F4cXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOOIfGTntaTwthJrP+x1XrbZSMa9LK34DJZH6hnUjF2w6uH8DxJx2W dvS/rshVUwDo7z5OnTVwEy8oVv2pJFdnKmaBqtkFZrT9mJtBdbybYkx0r0k7rVit J7LwoyCTxCTVCpi5G0yjnR9eWyaKZwUeOSK1ECfUdKoP/Q0cmcGqHLYZ5Has7B7+ 1koLdIFbPm0m9JEVpo5kyXbQuHZL1N+HHErVBr08nnUhhaVAKbokbRnbHucCxucA 5UiLyig88xlX62yZNE72IwjrsC0GecJd3z6Oicdb3Q6qh/YQ9LrlIkTrt9QFXW9H MEi5nVLJUWvfZ5q0Xqr59Kfh+zI2NSyb -----END CERTIFICATE-----Generated at Sat Aug 23 19:08:56 2025 by rpki-client