$ rpki-client -vvf rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft File: BQIPvxAg_WO-V9oblwSwqoEDREo.mft (raw, json) Hash identifier: /wVNJoCOCRpl9SrVyFcBw8EUNmDgTcq1Xa4+/CHGB/s= Subject key identifier: A1:AA:4E:D7:89:3C:19:66:07:B9:8A:D7:54:2C:B4:DD:C8:8C:9D:9F Authority key identifier: 05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A Certificate issuer: /CN=A914A140/serialNumber=05020FBF1020FD63BE57DA1B9704B0AA8103444A Certificate serial: 1D35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft Manifest number: 1D24 Signing time: Tue 04 Nov 2025 16:14:52 +0000 Manifest this update: Tue 04 Nov 2025 16:14:51 +0000 Manifest next update: Tue 11 Nov 2025 16:14:51 +0000 Files and hashes: 1: BQIPvxAg_WO-V9oblwSwqoEDREo.crl (hash: pBlXWYSXPhR6ym5edrwLvZN+OqxW353x2/xumuaXM/I=) 2: 8E652A7AC77611E68B1CDE6AC4F9AE02.roa (hash: XZLgq4o4I2bTXK3CwsSFqA/5epMchG5aEZim0xVwISs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.crl rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:14:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7477 (0x1d35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A140, serialNumber=05020FBF1020FD63BE57DA1B9704B0AA8103444A Validity Not Before: Nov 4 16:14:51 2025 GMT Not After : Nov 11 16:14:51 2025 GMT Subject: CN=690a267c-c9e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e0:4b:ad:a4:b6:8a:87:8f:9f:05:bf:85:bb: 8a:a2:7c:9e:e9:83:91:90:0b:82:2c:54:a6:28:35: f4:73:a9:36:a2:a1:bc:a7:cb:0a:62:78:6a:4e:7a: b9:44:1b:f8:28:64:b5:e4:14:88:e4:e8:89:ba:52: f7:32:6b:73:88:05:90:0c:84:78:58:81:ef:69:a5: 50:42:24:dd:8c:ee:a1:84:80:bf:a4:91:ed:fd:f5: 5a:20:80:f3:1b:49:ce:e8:e1:fc:49:c4:13:5e:81: 8a:a9:57:dd:0d:c2:cf:bf:2a:ed:72:7c:8e:24:fb: 6d:8d:a2:50:1d:0a:a8:6f:b2:5f:68:d0:41:23:a0: a6:71:95:b5:1d:a6:e5:5c:72:20:25:74:ec:2e:b1: ce:17:a2:be:ac:b1:14:28:47:92:34:1c:3c:b0:2e: e3:01:d7:06:61:9c:f2:fa:33:b4:45:75:c0:c2:ac: 60:e9:da:ef:7d:f3:61:2e:ab:5e:53:03:06:47:38: d3:1f:b0:7a:3b:08:e2:7f:dc:e1:7c:69:ce:c0:96: cb:6e:1b:17:40:37:60:d6:b8:a3:82:bc:c5:bd:93: 05:50:24:bf:51:24:56:13:d6:39:25:77:10:6c:96: 04:23:41:29:d5:f9:b5:7d:76:ce:79:e1:b7:9e:c7: c6:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:AA:4E:D7:89:3C:19:66:07:B9:8A:D7:54:2C:B4:DD:C8:8C:9D:9F X509v3 Authority Key Identifier: keyid:05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:ff:19:8c:3b:47:ba:85:b6:89:b1:af:08:6e:d9:7c:29:38: 00:51:b2:88:63:65:79:b9:ac:84:9d:64:39:19:7e:b7:3d:9b: 81:b0:99:08:f1:5e:9f:e2:b2:e6:18:58:52:65:5a:e0:9f:da: 42:8b:25:20:11:8c:03:f2:ba:e4:a1:8e:fa:75:bf:38:88:a1: 8d:27:b4:ed:39:a5:80:ce:ef:a8:19:ab:62:bc:29:9c:ca:9d: f6:bc:a4:82:5f:ae:6f:ab:4a:25:2b:db:23:7a:5e:51:ec:c9: b4:a7:a6:c7:2a:81:14:fc:3c:e7:39:1f:75:8c:71:5b:34:03: 35:3a:77:30:d7:28:12:c9:4b:21:d1:26:94:88:0f:17:ef:fb: c3:a6:1a:44:61:a7:ce:31:97:05:b2:9c:d1:f2:cd:2d:9c:97: 67:32:11:8f:3e:b6:33:c5:b7:88:fd:86:d5:92:8e:b2:7b:ac: 16:4b:58:b7:e1:cc:61:e7:6f:e9:bc:9c:72:0b:34:ca:bb:72: a6:fc:7b:e0:18:ba:6e:e6:cc:5c:18:25:ea:63:f0:82:1e:11: b9:40:6c:e3:1c:36:ed:a1:b9:ab:56:74:27:4e:24:f0:d9:92: 8a:07:13:38:eb:7a:0a:9f:77:94:88:1f:3a:64:2f:4a:19:13: 22:56:4a:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEExNDAxMTAvBgNVBAUTKDA1MDIwRkJGMTAyMEZENjNCRTU3REExQjk3MDRCMEFB ODEwMzQ0NEEwHhcNMjUxMTA0MTYxNDUxWhcNMjUxMTExMTYxNDUxWjAYMRYwFAYD VQQDEw02OTBhMjY3Yy1jOWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqeBLraS2ioePnwW/hbuKonye6YORkAuCLFSmKDX0c6k2oqG8p8sKYnhqTnq5 RBv4KGS15BSI5OiJulL3MmtziAWQDIR4WIHvaaVQQiTdjO6hhIC/pJHt/fVaIIDz G0nO6OH8ScQTXoGKqVfdDcLPvyrtcnyOJPttjaJQHQqob7JfaNBBI6CmcZW1Habl XHIgJXTsLrHOF6K+rLEUKEeSNBw8sC7jAdcGYZzy+jO0RXXAwqxg6drvffNhLqte UwMGRzjTH7B6Owjif9zhfGnOwJbLbhsXQDdg1rijgrzFvZMFUCS/USRWE9Y5JXcQ bJYEI0Ep1fm1fXbOeeG3nsfG0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKGqTteJ PBlmB7mK11QstN3IjJ2fMB8GA1UdIwQYMBaAFAUCD78QIP1jvlfaG5cEsKqBA0RK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTE0MC9DQzFEQ0NFOEM3 NzQxMUU2OTgxNkIwNjhDNEY5QUUwMi9CUUlQdnhBZ19XTy1WOW9ibHdTd3FvRURS RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRSVB2eEFnX1dPLVY5b2Jsd1N3cW9FRFJFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTE0MC9DQzFEQ0NFOEM3NzQxMUU2OTgxNkIwNjhDNEY5QUUwMi9CUUlQdnhBZ19X Ty1WOW9ibHdTd3FvRURSRW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG/xmMO0e6hbaJsa8Ibtl8KTgAUbKIY2V5uayEnWQ5GX63PZuBsJkI 8V6f4rLmGFhSZVrgn9pCiyUgEYwD8rrkoY76db84iKGNJ7TtOaWAzu+oGativCmc yp32vKSCX65vq0olK9sjel5R7Mm0p6bHKoEU/DznOR91jHFbNAM1Oncw1ygSyUsh 0SaUiA8X7/vDphpEYafOMZcFspzR8s0tnJdnMhGPPrYzxbeI/YbVko6ye6wWS1i3 4cxh52/pvJxyCzTKu3Km/HvgGLpu5sxcGCXqY/CCHhG5QGzjHDbtobmrVnQnTiTw 2ZKKBxM463oKn3eUiB86ZC9KGRMiVkrY -----END CERTIFICATE-----Generated at Wed Nov 5 05:47:45 2025 by rpki-client