$ rpki-client -vvf rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft File: BQFHuU3J1svowLDxrQwBg6YHfDQ.mft (raw, json) Hash identifier: pIPEPGCICRpVoe2maYY8j/CSfhPC/eKiz21gjdjyGvI= Subject key identifier: 80:32:72:4B:46:EB:E1:E1:C4:20:30:19:A7:B1:83:15:EF:07:B4:ED Authority key identifier: 05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 Certificate issuer: /CN=A91629AA/serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft Manifest number: 0131 Signing time: Mon 03 Nov 2025 04:34:39 +0000 Manifest this update: Mon 03 Nov 2025 04:34:39 +0000 Manifest next update: Mon 10 Nov 2025 04:34:39 +0000 Files and hashes: 1: BQFHuU3J1svowLDxrQwBg6YHfDQ.crl (hash: b7gApHASOIGUAruarU807Zq4Wavdgk9ghi38GYt7bYc=) 2: 1E347CDCE74A11EE8602742BC4F9AE02.roa (hash: 1KFMJqeP1xSunnIgreiULJOt/F6oOyvmT80gXMxgyXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91629AA, serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Validity Not Before: Nov 3 04:34:39 2025 GMT Not After : Nov 10 04:34:39 2025 GMT Subject: CN=690830df-40a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ad:ba:67:31:2c:4c:3a:a1:8e:7d:5d:38:74: e1:1e:84:16:86:1b:3a:2b:31:93:24:ac:7a:65:c1: 11:c1:36:5b:fa:0e:04:b4:c3:2c:93:6d:f7:1e:3f: 40:a8:e4:a3:4d:b0:32:c8:3e:20:d8:ce:88:41:b4: d7:78:e8:55:d0:72:82:a3:38:34:aa:a8:c7:41:be: 1c:36:41:6c:e3:a1:12:be:4b:51:a4:49:48:93:b9: a3:6f:c1:72:f9:f0:24:0d:d5:3e:19:b0:6a:4e:6b: 52:5b:dc:ee:01:17:1a:98:f1:98:f1:d7:70:be:f2: 91:76:53:29:4c:15:3f:1e:d8:d1:f3:82:84:84:0e: 55:db:1e:a1:26:70:46:52:f1:30:d5:8c:9e:ac:9b: 4a:37:3c:fa:00:b9:27:54:98:f6:fd:7a:fb:5a:cb: e9:c1:a0:5f:d3:f2:d5:71:32:ac:86:61:c4:d7:4d: 67:61:48:b2:83:06:ce:a0:01:64:6d:d2:ad:be:10: a6:8f:2b:8a:9d:05:5f:fd:d7:98:64:95:7a:29:09: 15:dc:71:b5:28:d0:aa:66:fd:28:17:dc:62:b9:a6: db:a7:3e:41:57:94:8f:2f:d0:6b:b6:74:d5:f7:77: 5e:5c:1d:6e:8a:8e:15:26:3b:8a:59:1c:6a:07:db: 58:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:32:72:4B:46:EB:E1:E1:C4:20:30:19:A7:B1:83:15:EF:07:B4:ED X509v3 Authority Key Identifier: keyid:05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:a5:78:f2:4c:60:b1:89:6c:4c:8f:88:75:d4:2a:b1:ae:eb: fa:82:f7:49:a6:cf:1f:69:3c:66:fb:f8:4d:cb:2f:87:d0:51: e4:86:32:8e:e1:90:c1:be:6a:5f:77:80:cc:a7:e9:59:aa:46: 5c:dc:5d:7f:6d:08:98:84:78:7f:c2:5e:a3:ce:87:4e:92:e1: 55:cf:08:22:fa:93:d3:77:e9:5a:69:73:7e:2f:e6:68:60:8c: 83:7f:85:da:ad:6f:bc:92:fd:28:4a:3a:82:dc:35:5b:83:1d: fe:98:7f:de:ea:b6:45:75:2b:d1:d0:84:d7:d6:ee:d2:85:c0: b9:89:78:a9:a0:91:82:e5:19:4f:9e:64:f9:ba:33:8e:50:31: 18:ae:db:3d:b4:e2:64:69:fa:db:e3:30:68:38:cf:f8:1b:ca: d0:43:ae:b1:68:94:59:50:4b:c8:0f:64:f0:12:cd:6e:c7:27: 88:74:b7:36:25:d3:03:fa:9e:12:bc:6a:22:19:6c:67:e6:ae: ba:51:8d:7d:cc:a4:89:71:0b:47:4a:60:40:8c:74:1c:1f:9f: a1:06:8c:d9:0a:43:9a:ff:4c:22:95:4b:6b:0f:f3:8a:e3:ac: 60:9f:a2:13:84:77:75:1b:3e:4d:63:1f:2c:30:8b:07:c8:8c: c5:a3:bc:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI5QUExMTAvBgNVBAUTKDA1MDE0N0I5NERDOUQ2Q0JFOEMwQjBGMUFEMEMwMTgz QTYwNzdDMzQwHhcNMjUxMTAzMDQzNDM5WhcNMjUxMTEwMDQzNDM5WjAYMRYwFAYD VQQDEw02OTA4MzBkZi00MGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxa26ZzEsTDqhjn1dOHThHoQWhhs6KzGTJKx6ZcERwTZb+g4EtMMsk233Hj9A qOSjTbAyyD4g2M6IQbTXeOhV0HKCozg0qqjHQb4cNkFs46ESvktRpElIk7mjb8Fy +fAkDdU+GbBqTmtSW9zuARcamPGY8ddwvvKRdlMpTBU/HtjR84KEhA5V2x6hJnBG UvEw1YyerJtKNzz6ALknVJj2/Xr7WsvpwaBf0/LVcTKshmHE101nYUiygwbOoAFk bdKtvhCmjyuKnQVf/deYZJV6KQkV3HG1KNCqZv0oF9xiuabbpz5BV5SPL9BrtnTV 93deXB1uio4VJjuKWRxqB9tYBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIAycktG 6+HhxCAwGaexgxXvB7TtMB8GA1UdIwQYMBaAFAUBR7lNydbL6MCw8a0MAYOmB3w0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjlBQS81RjA2OTNGNEU3 NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFzdm93TER4clF3Qmc2WUhm RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRRkh1VTNKMXN2b3dMRHhyUXdCZzZZSGZEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjlBQS81RjA2OTNGNEU3NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFz dm93TER4clF3Qmc2WUhmRFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUpXjyTGCxiWxMj4h11Cqxruv6gvdJps8faTxm+/hNyy+H0FHkhjKO 4ZDBvmpfd4DMp+lZqkZc3F1/bQiYhHh/wl6jzodOkuFVzwgi+pPTd+laaXN+L+Zo YIyDf4XarW+8kv0oSjqC3DVbgx3+mH/e6rZFdSvR0ITX1u7ShcC5iXipoJGC5RlP nmT5ujOOUDEYrts9tOJkafrb4zBoOM/4G8rQQ66xaJRZUEvID2TwEs1uxyeIdLc2 JdMD+p4SvGoiGWxn5q66UY19zKSJcQtHSmBAjHQcH5+hBozZCkOa/0wilUtrD/OK 46xgn6IThHd1Gz5NYx8sMIsHyIzFo7zA -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:53 2025 by rpki-client