$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json) Hash identifier: CqnQZEteSwB9NxpI2g1cUNAWuHNQYD4DknTwjL42TnQ= Subject key identifier: 26:7C:F6:CA:51:35:18:26:88:1E:85:80:AE:F2:CF:FB:54:89:4D:81 Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Certificate serial: 020C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft Manifest number: 0208 Signing time: Sun 19 Oct 2025 04:43:50 +0000 Manifest this update: Sun 19 Oct 2025 04:43:50 +0000 Manifest next update: Sun 26 Oct 2025 04:43:50 +0000 Files and hashes: 1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: UBiqSS1Nmdr8NCRG+6bk7sixThn4j9ZPDPKQRtQJuqk=) 2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: uh86cXyNLUaa3Xl47qiV2uyaXTpPI55uWsM8f80qnzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 524 (0x20c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB8D7, serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Validity Not Before: Oct 19 04:43:50 2025 GMT Not After : Oct 26 04:43:50 2025 GMT Subject: CN=68f46c86-9eb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:0f:7e:e3:3a:a6:c4:a3:ec:57:5a:8f:c7:a3: c3:be:be:0e:32:5d:b0:41:81:98:82:9b:43:38:e8: eb:b4:dd:e4:28:db:c2:b8:c3:4a:32:d8:0e:8f:d2: cb:d6:7e:13:88:c0:47:40:f3:26:25:d6:06:fd:d5: a7:cb:c6:35:0a:76:44:de:c3:f6:66:f8:cd:0f:dc: f2:97:cb:fb:42:9a:ec:ed:dc:12:e0:77:98:01:c3: bf:29:05:32:6e:c1:40:22:1c:06:b8:09:ad:2c:eb: 79:6c:84:fb:d9:0d:d0:61:6a:81:dd:70:40:30:6a: 11:71:44:db:12:cc:93:21:15:72:55:e1:65:9d:c8: 0d:bf:cb:78:2c:f0:47:88:d6:81:eb:f5:3b:aa:62: e1:a0:a0:88:c0:48:5f:5a:27:10:12:d5:17:d6:28: 6f:47:4b:b0:d6:19:1e:d9:55:9d:33:22:b6:a3:c2: 6e:c6:21:d2:03:11:a3:de:2d:3e:e3:15:d9:45:30: db:35:bc:cc:2e:1d:f2:19:33:68:6a:8d:a8:08:38: de:80:19:26:e9:43:bf:51:33:1b:f9:be:f6:bf:4c: d7:6d:0a:5c:11:f9:01:c8:59:6b:45:a7:7a:5e:c2: 39:d1:5d:18:8b:c6:a8:00:4c:79:2b:2d:56:67:04: 2a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:7C:F6:CA:51:35:18:26:88:1E:85:80:AE:F2:CF:FB:54:89:4D:81 X509v3 Authority Key Identifier: keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:77:e1:c3:e3:37:68:ce:00:8c:8d:b4:a7:7b:1c:6a:13:16: 3f:d7:6c:ec:02:b2:31:91:fd:8c:93:a9:2b:3f:2f:c2:70:b2: 3b:ec:c4:5b:c3:4e:96:f7:56:30:a3:e2:d6:32:8d:22:83:9c: 22:05:27:69:1b:f5:82:ec:6e:e8:08:9e:71:b0:2e:f6:76:4e: f1:e9:19:3d:b6:58:b6:7a:11:76:c7:12:4a:85:7a:24:85:fb: 04:46:b4:e4:bd:a4:57:c5:dc:9e:0a:c7:e8:8c:4d:8d:df:2a: d6:3e:39:bd:85:e0:a6:69:f6:23:75:38:bc:c5:48:7c:99:11: 78:03:f5:69:45:bd:11:43:28:c2:8b:5e:77:e2:44:6d:03:03: 06:09:f3:93:f2:f4:9e:93:43:e5:96:99:fe:d7:8c:65:68:05: 8c:b9:00:02:6d:a2:88:fe:6b:72:2e:cc:53:41:56:91:7d:68: ee:ae:5f:d4:2c:1a:9a:7d:ac:37:45:ff:82:62:73:b9:b1:2f: c5:5b:17:a1:d8:3a:3c:5a:20:9e:de:4e:e2:56:49:08:fa:40: 37:88:f4:55:eb:14:57:62:29:30:b8:35:9c:a7:58:51:dc:86: 3b:18:60:23:27:66:ef:b8:0c:de:2e:16:5d:ba:28:62:41:92: 9b:bb:43:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4RDcxMTAvBgNVBAUTKDA1MERDMDNCNUQ1OTQ1QTMzRUFCOTUxODE3RjE2NzlC RDkxMEM2QUMwHhcNMjUxMDE5MDQ0MzUwWhcNMjUxMDI2MDQ0MzUwWjAYMRYwFAYD VQQDEw02OGY0NmM4Ni05ZWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7A9+4zqmxKPsV1qPx6PDvr4OMl2wQYGYgptDOOjrtN3kKNvCuMNKMtgOj9LL 1n4TiMBHQPMmJdYG/dWny8Y1CnZE3sP2ZvjND9zyl8v7Qprs7dwS4HeYAcO/KQUy bsFAIhwGuAmtLOt5bIT72Q3QYWqB3XBAMGoRcUTbEsyTIRVyVeFlncgNv8t4LPBH iNaB6/U7qmLhoKCIwEhfWicQEtUX1ihvR0uw1hke2VWdMyK2o8JuxiHSAxGj3i0+ 4xXZRTDbNbzMLh3yGTNoao2oCDjegBkm6UO/UTMb+b72v0zXbQpcEfkByFlrRad6 XsI50V0Yi8aoAEx5Ky1WZwQq7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZ89spR NRgmiB6FgK7yz/tUiU2BMB8GA1UdIwQYMBaAFAUNwDtdWUWjPquVGBfxZ5vZEMas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjhENy9CNjdGMzAxQTk4 OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJhTS1xNVVZRl9Gbm05a1F4 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRM0FPMTFaUmFNLXE1VVlGX0ZubTlrUXhxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjhENy9CNjdGMzAxQTk4OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJh TS1xNVVZRl9Gbm05a1F4cXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqd+HD4zdozgCMjbSnexxqExY/12zsArIxkf2Mk6krPy/CcLI77MRb w06W91Ywo+LWMo0ig5wiBSdpG/WC7G7oCJ5xsC72dk7x6Rk9tli2ehF2xxJKhXok hfsERrTkvaRXxdyeCsfojE2N3yrWPjm9heCmafYjdTi8xUh8mRF4A/VpRb0RQyjC i1534kRtAwMGCfOT8vSek0Pllpn+14xlaAWMuQACbaKI/mtyLsxTQVaRfWjurl/U LBqafaw3Rf+CYnO5sS/FWxeh2Do8WiCe3k7iVkkI+kA3iPRV6xRXYikwuDWcp1hR 3IY7GGAjJ2bvuAzeLhZduihiQZKbu0MB -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:10 2025 by rpki-client