$ rpki-client -vvf rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft File: BQIPvxAg_WO-V9oblwSwqoEDREo.mft (raw, json) Hash identifier: 0b/FvHgj3bqyd3k7Rtw3gjxtWXgSRXNup8EJ56JXkOU= Subject key identifier: 19:E2:14:31:4A:1A:F9:47:93:26:24:24:FB:10:43:E4:7A:69:45:11 Authority key identifier: 05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A Certificate issuer: /CN=A914A140/serialNumber=05020FBF1020FD63BE57DA1B9704B0AA8103444A Certificate serial: 1CE9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft Manifest number: 1CD9 Signing time: Sat 14 Jun 2025 16:07:57 +0000 Manifest this update: Sat 14 Jun 2025 16:07:56 +0000 Manifest next update: Sat 21 Jun 2025 16:07:56 +0000 Files and hashes: 1: BQIPvxAg_WO-V9oblwSwqoEDREo.crl (hash: snXy9YCL9iCbnv/NpvGkxQmBUeLBprdJK0NNOUUj2/M=) 2: 8E652A7AC77611E68B1CDE6AC4F9AE02.roa (hash: nQvCGi6jeXRQddJ1rEuK0BsRcyU/PM81aNvBcFuVAoE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.crl rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:07:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7401 (0x1ce9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A140, serialNumber=05020FBF1020FD63BE57DA1B9704B0AA8103444A Validity Not Before: Jun 14 16:07:56 2025 GMT Not After : Jun 21 16:07:56 2025 GMT Subject: CN=684d9e5d-d86c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:6d:4d:ee:79:18:86:bc:54:ce:81:25:9e:44: da:f6:61:64:cc:7d:d0:78:3d:c7:f7:8f:1f:df:ee: f7:7d:94:24:bb:bc:0a:bf:e3:ec:36:40:7d:61:14: 2b:1b:ce:41:e8:0a:fa:58:44:4d:c8:98:c6:cb:3a: 8f:ea:f3:62:33:6b:31:45:2b:d7:20:db:ad:ad:4f: 7c:52:50:4c:d8:56:cd:d7:15:a7:82:3e:08:8e:f5: ec:57:8b:8d:40:ee:33:79:5d:4f:65:4b:b1:ec:2d: db:c6:dc:52:ff:ca:78:74:ca:b4:0e:0f:3f:b3:53: 3b:b3:b8:bb:5e:a1:ba:4f:3a:3b:44:8a:43:7f:ab: e3:e8:af:74:b4:6d:11:35:4b:6d:c1:5f:e4:1f:a6: 3c:2c:54:02:3d:45:75:fb:56:35:df:22:4f:c5:3d: f3:1b:58:55:33:ab:9f:fc:c6:dc:bc:f7:e8:de:a7: df:1c:2c:cc:c6:2d:79:b1:82:46:5d:bb:6e:a8:b8: 5c:a3:e9:8b:85:80:c2:87:e3:fa:dd:bf:d4:4d:56: 57:b0:8e:56:95:fe:a5:33:e3:0c:15:5b:86:05:d2: c0:d4:0c:bc:8c:f2:49:2a:67:df:dc:eb:a5:c6:75: ac:1e:bb:13:2a:44:b2:2a:3e:d1:de:5b:ea:c7:1b: a2:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:E2:14:31:4A:1A:F9:47:93:26:24:24:FB:10:43:E4:7A:69:45:11 X509v3 Authority Key Identifier: keyid:05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:a2:71:3f:53:19:27:5c:15:32:64:e9:63:82:01:bf:c5:5f: 8c:49:51:c2:11:d4:80:1e:f8:c5:3b:be:a7:75:5c:3a:f2:c2: 9c:7d:ab:05:e5:d9:45:38:be:6d:e5:4c:e5:54:48:05:30:a2: b2:7e:0c:08:48:6e:10:ca:34:00:0f:11:c4:ba:79:25:a8:55: ef:71:70:e8:51:e5:7f:2f:8f:7a:f3:ed:4c:93:f1:ac:66:1d: 21:42:75:9e:34:74:03:30:ff:d3:4f:85:52:f2:07:d2:11:87: c2:ae:30:9e:ee:8b:72:8c:a8:ea:d7:fe:4d:7a:ba:29:9a:45: 1e:43:82:dd:57:d0:44:a0:0d:84:0e:5c:dd:2a:09:f2:23:64: 22:2c:05:76:d0:4e:71:53:0e:d6:e1:d3:1a:d5:f3:da:60:9d: fd:72:4e:85:3d:f0:31:fa:e5:b2:25:ef:74:62:50:ac:f1:b7: 43:28:30:5b:72:44:32:8a:c0:c1:2b:67:bd:85:4a:6d:bb:70: 78:4f:7f:a6:ce:36:b5:8e:19:9f:ca:90:2d:ff:8d:e8:e3:92: 62:71:95:4e:2f:6b:ea:b5:62:39:c4:95:e9:18:48:dc:ff:65: 8c:b3:5c:6b:5f:b7:a7:f2:8d:37:d4:a3:7e:5c:cd:91:29:45: 4d:9a:4c:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEExNDAxMTAvBgNVBAUTKDA1MDIwRkJGMTAyMEZENjNCRTU3REExQjk3MDRCMEFB ODEwMzQ0NEEwHhcNMjUwNjE0MTYwNzU2WhcNMjUwNjIxMTYwNzU2WjAYMRYwFAYD VQQDEw02ODRkOWU1ZC1kODZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA221N7nkYhrxUzoElnkTa9mFkzH3QeD3H948f3+73fZQku7wKv+PsNkB9YRQr G85B6Ar6WERNyJjGyzqP6vNiM2sxRSvXINutrU98UlBM2FbN1xWngj4IjvXsV4uN QO4zeV1PZUux7C3bxtxS/8p4dMq0Dg8/s1M7s7i7XqG6Tzo7RIpDf6vj6K90tG0R NUttwV/kH6Y8LFQCPUV1+1Y13yJPxT3zG1hVM6uf/MbcvPfo3qffHCzMxi15sYJG XbtuqLhco+mLhYDCh+P63b/UTVZXsI5Wlf6lM+MMFVuGBdLA1Ay8jPJJKmff3Oul xnWsHrsTKkSyKj7R3lvqxxuiSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBniFDFK GvlHkyYkJPsQQ+R6aUURMB8GA1UdIwQYMBaAFAUCD78QIP1jvlfaG5cEsKqBA0RK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTE0MC9DQzFEQ0NFOEM3 NzQxMUU2OTgxNkIwNjhDNEY5QUUwMi9CUUlQdnhBZ19XTy1WOW9ibHdTd3FvRURS RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRSVB2eEFnX1dPLVY5b2Jsd1N3cW9FRFJFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTE0MC9DQzFEQ0NFOEM3NzQxMUU2OTgxNkIwNjhDNEY5QUUwMi9CUUlQdnhBZ19X Ty1WOW9ibHdTd3FvRURSRW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWonE/UxknXBUyZOljggG/xV+MSVHCEdSAHvjFO76ndVw68sKcfasF 5dlFOL5t5UzlVEgFMKKyfgwISG4QyjQADxHEunklqFXvcXDoUeV/L4968+1Mk/Gs Zh0hQnWeNHQDMP/TT4VS8gfSEYfCrjCe7otyjKjq1/5NeropmkUeQ4LdV9BEoA2E DlzdKgnyI2QiLAV20E5xUw7W4dMa1fPaYJ39ck6FPfAx+uWyJe90YlCs8bdDKDBb ckQyisDBK2e9hUptu3B4T3+mzja1jhmfypAt/43o45JicZVOL2vqtWI5xJXpGEjc /2WMs1xrX7en8o031KN+XM2RKUVNmkya -----END CERTIFICATE-----Generated at Sat Jun 14 18:55:50 2025 by rpki-client