$ rpki-client -vvf rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft File: BQIPvxAg_WO-V9oblwSwqoEDREo.mft (raw, json) Hash identifier: Mmh4CRw5N677/++k6gpZDaY9DnCMS6V2L1h2BLFEb1Y= Subject key identifier: 4C:AA:00:AE:A1:02:A3:3D:E9:3C:08:91:60:AC:66:B7:B7:C3:4F:A9 Authority key identifier: 05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A Certificate issuer: /CN=A914A140/serialNumber=05020FBF1020FD63BE57DA1B9704B0AA8103444A Certificate serial: 1CCF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft Manifest number: 1CBF Signing time: Thu 24 Apr 2025 16:11:10 +0000 Manifest this update: Thu 24 Apr 2025 16:11:10 +0000 Manifest next update: Thu 01 May 2025 16:11:10 +0000 Files and hashes: 1: BQIPvxAg_WO-V9oblwSwqoEDREo.crl (hash: Mg+Wi3PQdBDtb0l7pfmbFFSIX18wTCuM0ACrEXSo+98=) 2: 8E652A7AC77611E68B1CDE6AC4F9AE02.roa (hash: nQvCGi6jeXRQddJ1rEuK0BsRcyU/PM81aNvBcFuVAoE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.crl rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:11:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7375 (0x1ccf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A140, serialNumber=05020FBF1020FD63BE57DA1B9704B0AA8103444A Validity Not Before: Apr 24 16:11:10 2025 GMT Not After : May 1 16:11:10 2025 GMT Subject: CN=680a629e-4b5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:bb:87:e9:97:9a:95:ee:15:f5:0b:d7:f0:d4: ea:e8:19:11:de:7a:fc:3d:0d:cd:4d:85:39:55:a5: 54:5f:6c:73:a9:d5:f4:b6:bd:34:a5:60:74:30:55: b8:fe:41:6c:b5:6d:73:9d:1a:1c:58:b1:d9:62:c1: 1b:8a:42:af:4f:a3:4b:0d:bd:11:7a:63:3b:bb:5c: 30:bb:cc:16:fa:37:ad:a3:55:1b:38:57:72:17:3e: 37:4a:c1:20:17:e7:ee:87:da:f1:9e:2b:87:b6:96: b2:5d:3f:30:4e:d1:5f:0b:14:a9:7e:39:12:3e:d9: d1:28:fe:25:e3:82:c6:6f:e9:a0:fc:39:79:74:06: 27:3d:f3:67:b2:cc:97:a4:7e:92:6d:c3:fa:fd:83: f8:d9:9f:f5:09:ff:dd:58:69:cf:ed:93:d9:df:72: 54:7b:59:a9:3e:01:c6:8a:2e:93:63:35:a8:18:06: 40:9c:eb:49:63:2b:94:97:5b:4e:4d:49:02:73:42: b6:c9:b1:7f:18:a8:5e:23:1c:ed:5b:57:58:0a:78: a3:bb:0d:0f:75:c0:20:12:a8:1a:9e:b3:1c:da:61: 8a:e2:f6:b6:fb:dd:5b:8a:39:11:4d:57:12:5b:70: cb:80:b9:03:86:3e:49:df:7e:1e:03:3b:18:87:92: 41:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:AA:00:AE:A1:02:A3:3D:E9:3C:08:91:60:AC:66:B7:B7:C3:4F:A9 X509v3 Authority Key Identifier: keyid:05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:32:1e:47:38:cb:2a:3e:1f:90:43:c3:9f:fe:59:2f:ae:d6: 00:32:eb:e6:8c:c2:cb:78:e9:56:8b:f1:4c:6f:42:85:3e:d2: 66:75:21:39:61:2b:e3:54:77:2f:82:61:8a:b5:7f:46:05:35: f5:fb:14:23:a0:99:34:2b:8f:86:60:7b:fe:fb:af:9f:a3:2a: 77:29:24:96:b5:18:d7:7c:d1:db:de:d2:35:c6:0c:b7:21:30: 42:03:6b:d9:7f:a7:a4:a2:4e:21:6b:da:75:7d:b8:6d:d6:b1: 2e:c4:c0:17:6b:3a:91:38:07:f4:e3:c3:ad:c0:ae:aa:a3:f5: ab:d3:fd:ef:89:6c:04:67:3b:84:84:ff:dd:7f:29:66:d9:48: 07:b3:39:9c:97:7e:ef:a2:34:c7:83:a0:da:b1:66:52:b5:17: f8:1e:be:53:3f:b8:61:50:2d:7c:c0:50:5f:1f:4d:7e:74:12: 6b:58:93:86:68:00:ee:37:06:bb:28:60:7d:ab:18:d1:74:f7: 6d:9c:c7:18:68:1f:1f:71:f1:21:e1:d1:3a:0e:8a:d6:1f:2f: 90:c0:22:6d:35:84:7c:c5:01:0e:7e:7d:e0:17:ac:37:6e:70: dd:48:2d:2e:1e:69:fa:34:cf:00:f1:b9:bb:9d:c6:d7:b2:3d: 72:0f:a8:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEExNDAxMTAvBgNVBAUTKDA1MDIwRkJGMTAyMEZENjNCRTU3REExQjk3MDRCMEFB ODEwMzQ0NEEwHhcNMjUwNDI0MTYxMTEwWhcNMjUwNTAxMTYxMTEwWjAYMRYwFAYD VQQDEw02ODBhNjI5ZS00YjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtLuH6Zeale4V9QvX8NTq6BkR3nr8PQ3NTYU5VaVUX2xzqdX0tr00pWB0MFW4 /kFstW1znRocWLHZYsEbikKvT6NLDb0RemM7u1wwu8wW+jeto1UbOFdyFz43SsEg F+fuh9rxniuHtpayXT8wTtFfCxSpfjkSPtnRKP4l44LGb+mg/Dl5dAYnPfNnssyX pH6SbcP6/YP42Z/1Cf/dWGnP7ZPZ33JUe1mpPgHGii6TYzWoGAZAnOtJYyuUl1tO TUkCc0K2ybF/GKheIxztW1dYCnijuw0PdcAgEqganrMc2mGK4va2+91bijkRTVcS W3DLgLkDhj5J334eAzsYh5JBcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEyqAK6h AqM96TwIkWCsZre3w0+pMB8GA1UdIwQYMBaAFAUCD78QIP1jvlfaG5cEsKqBA0RK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTE0MC9DQzFEQ0NFOEM3 NzQxMUU2OTgxNkIwNjhDNEY5QUUwMi9CUUlQdnhBZ19XTy1WOW9ibHdTd3FvRURS RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRSVB2eEFnX1dPLVY5b2Jsd1N3cW9FRFJFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTE0MC9DQzFEQ0NFOEM3NzQxMUU2OTgxNkIwNjhDNEY5QUUwMi9CUUlQdnhBZ19X Ty1WOW9ibHdTd3FvRURSRW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfMh5HOMsqPh+QQ8Of/lkvrtYAMuvmjMLLeOlWi/FMb0KFPtJmdSE5 YSvjVHcvgmGKtX9GBTX1+xQjoJk0K4+GYHv++6+foyp3KSSWtRjXfNHb3tI1xgy3 ITBCA2vZf6ekok4ha9p1fbht1rEuxMAXazqROAf048OtwK6qo/Wr0/3viWwEZzuE hP/dfylm2UgHszmcl37vojTHg6DasWZStRf4Hr5TP7hhUC18wFBfH01+dBJrWJOG aADuNwa7KGB9qxjRdPdtnMcYaB8fcfEh4dE6DorWHy+QwCJtNYR8xQEOfn3gF6w3 bnDdSC0uHmn6NM8A8bm7ncbXsj1yD6hf -----END CERTIFICATE-----Generated at Sat Apr 26 05:47:26 2025 by rpki-client