$ rpki-client -vvf rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft File: BQFHuU3J1svowLDxrQwBg6YHfDQ.mft (raw, json) Hash identifier: crIuAHD6ozcMyfNW7+k7QFywG2w6eFWrHFQvZE6pnLc= Subject key identifier: 05:27:57:41:BD:CE:D9:01:F5:03:4E:07:50:69:56:A6:72:25:17:5A Authority key identifier: 05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 Certificate issuer: /CN=A91629AA/serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Certificate serial: 010A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft Manifest number: 0106 Signing time: Sat 09 Aug 2025 05:29:19 +0000 Manifest this update: Sat 09 Aug 2025 05:29:19 +0000 Manifest next update: Sat 16 Aug 2025 05:29:19 +0000 Files and hashes: 1: BQFHuU3J1svowLDxrQwBg6YHfDQ.crl (hash: 3b7BPkbbNnLOhnNKiEp3OEBPu2R8D8HR2lB7/JqLot4=) 2: 1E347CDCE74A11EE8602742BC4F9AE02.roa (hash: 1KFMJqeP1xSunnIgreiULJOt/F6oOyvmT80gXMxgyXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91629AA, serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Validity Not Before: Aug 9 05:29:19 2025 GMT Not After : Aug 16 05:29:19 2025 GMT Subject: CN=6896dcaf-c4b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:fb:5f:3f:8c:95:d8:13:28:d2:c7:b1:69:c9: 56:01:18:7a:87:59:b5:7b:be:bb:95:92:50:e9:d1: 5e:92:ca:20:d1:90:d2:b5:5e:0b:e4:9e:5d:17:67: 64:95:2e:92:93:d0:e3:8d:c3:e5:28:87:ab:b5:32: cb:a6:4e:ab:4c:47:b0:07:58:fc:ec:9c:70:55:dd: 46:93:45:76:4c:e6:1d:47:41:22:6b:af:cf:9b:ef: bf:fe:03:c2:d3:f7:d8:70:58:eb:21:c6:15:fd:80: 7c:ae:f4:05:b7:0c:6d:f8:2d:98:cb:76:0b:b4:6d: 32:01:6e:0c:29:9e:a5:0c:63:32:da:ee:78:d4:dc: 04:5d:d1:f6:92:82:4d:3a:c6:3d:da:4e:d2:5e:28: c9:a2:b1:34:b0:c1:96:2a:8a:fc:ae:f2:bd:39:1a: d5:8c:a3:f3:ab:1c:aa:64:c9:a6:1e:55:10:0f:60: 22:a9:e1:2a:49:82:39:76:19:31:ae:a3:f3:06:18: 47:ca:a6:61:d1:71:72:8f:8c:cb:46:09:60:8e:a6: 23:4d:ac:98:82:2a:f6:e5:96:c0:f8:ba:0d:ab:d2: 36:e9:63:14:b7:3a:1d:1b:dc:ef:26:2e:9a:f5:60: 61:6c:92:e2:79:4f:f6:64:4f:a2:bf:6b:06:11:d6: 1a:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:27:57:41:BD:CE:D9:01:F5:03:4E:07:50:69:56:A6:72:25:17:5A X509v3 Authority Key Identifier: keyid:05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:83:03:fc:80:9f:fd:a0:8e:7e:eb:72:4d:cf:2c:58:dd:71: c9:f9:b9:1c:e7:3e:c5:51:26:a4:b9:7a:43:c0:5b:0e:d1:fb: 37:34:93:28:ec:76:a7:df:b6:bc:39:35:0d:d3:aa:5a:c2:0a: 03:0c:63:11:ab:06:e9:2b:b6:20:50:a5:4f:22:fb:3b:d9:e8: e7:78:e1:7a:85:bd:2f:f7:f4:20:a6:61:45:8a:db:13:b6:a8: fa:36:d7:da:64:da:0d:cc:8f:2f:2c:e6:14:3a:98:34:f0:82: 4b:a4:25:b4:1c:06:26:89:6c:9c:44:73:b6:4a:ee:2e:fe:ee: 35:4a:9d:49:0e:10:84:3a:1d:bd:96:b4:a1:4e:bd:ac:94:03: 6e:69:fe:49:f3:c2:15:d3:4d:01:02:4b:8e:67:bd:4a:1d:94: 84:44:aa:34:56:bd:a4:e0:9b:31:9a:b2:11:67:a3:0b:f5:47: 11:f1:7e:1e:f4:33:39:e8:18:3d:03:4a:f2:11:65:83:8f:e9: 81:1e:94:9f:40:7e:f8:82:41:89:bc:22:fb:e2:a5:20:cf:a2: e3:f4:5b:5f:ba:0f:7b:85:0a:fa:95:f6:77:28:62:a8:29:52: f3:f8:e7:f5:0f:b4:50:4c:66:36:73:2a:4c:b7:93:a6:00:34: 51:f4:37:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI5QUExMTAvBgNVBAUTKDA1MDE0N0I5NERDOUQ2Q0JFOEMwQjBGMUFEMEMwMTgz QTYwNzdDMzQwHhcNMjUwODA5MDUyOTE5WhcNMjUwODE2MDUyOTE5WjAYMRYwFAYD VQQDEw02ODk2ZGNhZi1jNGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkvtfP4yV2BMo0sexaclWARh6h1m1e767lZJQ6dFeksog0ZDStV4L5J5dF2dk lS6Sk9DjjcPlKIertTLLpk6rTEewB1j87JxwVd1Gk0V2TOYdR0Eia6/Pm++//gPC 0/fYcFjrIcYV/YB8rvQFtwxt+C2Yy3YLtG0yAW4MKZ6lDGMy2u541NwEXdH2koJN OsY92k7SXijJorE0sMGWKor8rvK9ORrVjKPzqxyqZMmmHlUQD2AiqeEqSYI5dhkx rqPzBhhHyqZh0XFyj4zLRglgjqYjTayYgir25ZbA+LoNq9I26WMUtzodG9zvJi6a 9WBhbJLieU/2ZE+iv2sGEdYa+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAUnV0G9 ztkB9QNOB1BpVqZyJRdaMB8GA1UdIwQYMBaAFAUBR7lNydbL6MCw8a0MAYOmB3w0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjlBQS81RjA2OTNGNEU3 NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFzdm93TER4clF3Qmc2WUhm RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRRkh1VTNKMXN2b3dMRHhyUXdCZzZZSGZEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjlBQS81RjA2OTNGNEU3NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFz dm93TER4clF3Qmc2WUhmRFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTgwP8gJ/9oI5+63JNzyxY3XHJ+bkc5z7FUSakuXpDwFsO0fs3NJMo 7Han37a8OTUN06pawgoDDGMRqwbpK7YgUKVPIvs72ejneOF6hb0v9/QgpmFFitsT tqj6NtfaZNoNzI8vLOYUOpg08IJLpCW0HAYmiWycRHO2Su4u/u41Sp1JDhCEOh29 lrShTr2slANuaf5J88IV000BAkuOZ71KHZSERKo0Vr2k4JsxmrIRZ6ML9UcR8X4e 9DM56Bg9A0ryEWWDj+mBHpSfQH74gkGJvCL74qUgz6Lj9Ftfug97hQr6lfZ3KGKo KVLz+Of1D7RQTGY2cypMt5OmADRR9Dft -----END CERTIFICATE-----Generated at Sun Aug 10 10:39:08 2025 by rpki-client