$ rpki-client -vvf rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft File: BQFHuU3J1svowLDxrQwBg6YHfDQ.mft (raw, json) Hash identifier: fGzr5SGemVK2G4Utm83AZkVs2GWRkSzVbZMHPtb2HiM= Subject key identifier: 80:6F:85:B8:71:CE:F9:0F:96:4D:34:E5:EB:DF:DB:CE:E0:A2:D7:9D Authority key identifier: 05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 Certificate issuer: /CN=A91629AA/serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft Manifest number: E7 Signing time: Fri 13 Jun 2025 04:22:31 +0000 Manifest this update: Fri 13 Jun 2025 04:22:31 +0000 Manifest next update: Fri 20 Jun 2025 04:22:31 +0000 Files and hashes: 1: BQFHuU3J1svowLDxrQwBg6YHfDQ.crl (hash: Z33eE0tu+h2XgXNGkpq16Cd6aKmnpNP1ylk2ab3iZkg=) 2: 1E347CDCE74A11EE8602742BC4F9AE02.roa (hash: RDRsbI0QCe3WCyYIAxbPkTT+7Ici1TKwxRZtpP0NFiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91629AA, serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Validity Not Before: Jun 13 04:22:31 2025 GMT Not After : Jun 20 04:22:31 2025 GMT Subject: CN=684ba787-81bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c2:68:ef:cc:6c:01:ef:ee:42:bf:16:4f:ba: c6:83:3c:1b:82:f4:a7:58:34:a2:96:61:4b:bd:fc: 43:1f:52:3b:a9:48:79:28:66:17:8c:c0:85:c8:39: 0f:6f:99:42:3c:50:94:d3:38:3a:0f:18:15:cf:cb: ee:12:c7:3d:a2:48:a5:ad:41:0e:d3:97:7f:7e:e3: a5:17:f6:98:79:3e:11:c8:30:37:df:03:b6:84:7c: 24:33:a6:80:98:cc:ef:98:4f:2f:7a:22:21:d3:a4: ab:9b:d3:52:ef:c2:ef:36:a4:08:0b:53:cb:0f:2b: 30:e1:69:43:aa:63:b3:49:53:3d:02:c9:c6:79:e8: f2:3a:69:ee:18:89:1b:89:0a:92:6d:b9:17:5e:2d: 21:22:d7:e5:e2:06:dc:80:78:80:e1:f2:bf:c3:06: e9:04:2c:4b:9f:51:7b:19:5a:d8:62:c9:35:18:3d: 6a:d0:27:1d:8c:6a:51:36:be:6b:07:b0:0d:46:cb: 3f:f8:85:be:e2:c9:3d:c2:f4:c8:2a:8a:09:7c:05: 6d:61:4d:07:51:54:ef:23:c1:d1:1e:30:48:3d:c6: ac:58:92:c2:b1:44:e4:5b:12:69:80:10:f2:4d:52: 66:f5:42:de:85:5d:bb:a0:95:b5:58:88:34:ee:40: 5f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:6F:85:B8:71:CE:F9:0F:96:4D:34:E5:EB:DF:DB:CE:E0:A2:D7:9D X509v3 Authority Key Identifier: keyid:05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:8b:50:06:e5:ca:ad:62:55:f9:9c:87:7b:9c:c1:39:6d:ce: c6:ab:de:14:73:2b:d5:a6:d1:52:4d:cb:99:87:46:bb:fe:22: 98:bf:4a:fa:ab:80:f6:7f:84:50:0c:0f:8d:05:93:f1:61:b7: 61:d8:00:d6:b4:0e:3c:0a:b7:4d:7a:d7:a9:f5:af:b6:a1:f9: 49:52:3c:66:38:79:48:c1:b0:a1:d4:af:c3:b8:4c:85:3c:ab: 10:f6:0b:f3:90:4a:7e:da:05:10:06:ae:50:c4:02:a7:92:1c: 17:d0:7e:6e:08:9e:d4:da:00:d4:25:6c:88:4c:74:ef:19:c6: f5:3e:21:40:d5:5d:d9:43:3a:ab:58:ec:5d:48:41:6a:dd:c7: f0:9f:93:f5:7f:ff:d1:86:02:ac:19:27:e6:42:bc:44:a1:b2: b9:69:60:22:f3:28:44:79:47:74:49:45:c0:bc:a0:04:b5:5b: a3:3f:1b:7a:13:70:2f:a3:e0:16:78:83:a4:2a:4b:8f:01:83: 5d:16:f3:d7:a2:08:0f:93:ec:66:02:12:9f:27:6f:c4:a4:3e: c6:de:7c:4e:57:be:d7:0c:ac:f3:a6:30:19:b6:51:11:39:d4: 01:45:a6:e9:f6:6c:c6:6d:ee:a0:92:0e:8d:31:b3:10:61:83: 2b:c7:88:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI5QUExMTAvBgNVBAUTKDA1MDE0N0I5NERDOUQ2Q0JFOEMwQjBGMUFEMEMwMTgz QTYwNzdDMzQwHhcNMjUwNjEzMDQyMjMxWhcNMjUwNjIwMDQyMjMxWjAYMRYwFAYD VQQDEw02ODRiYTc4Ny04MWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcJo78xsAe/uQr8WT7rGgzwbgvSnWDSilmFLvfxDH1I7qUh5KGYXjMCFyDkP b5lCPFCU0zg6DxgVz8vuEsc9okilrUEO05d/fuOlF/aYeT4RyDA33wO2hHwkM6aA mMzvmE8veiIh06Srm9NS78LvNqQIC1PLDysw4WlDqmOzSVM9AsnGeejyOmnuGIkb iQqSbbkXXi0hItfl4gbcgHiA4fK/wwbpBCxLn1F7GVrYYsk1GD1q0CcdjGpRNr5r B7ANRss/+IW+4sk9wvTIKooJfAVtYU0HUVTvI8HRHjBIPcasWJLCsUTkWxJpgBDy TVJm9ULehV27oJW1WIg07kBfywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIBvhbhx zvkPlk005evf287gotedMB8GA1UdIwQYMBaAFAUBR7lNydbL6MCw8a0MAYOmB3w0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjlBQS81RjA2OTNGNEU3 NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFzdm93TER4clF3Qmc2WUhm RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRRkh1VTNKMXN2b3dMRHhyUXdCZzZZSGZEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjlBQS81RjA2OTNGNEU3NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFz dm93TER4clF3Qmc2WUhmRFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxi1AG5cqtYlX5nId7nME5bc7Gq94UcyvVptFSTcuZh0a7/iKYv0r6 q4D2f4RQDA+NBZPxYbdh2ADWtA48CrdNetep9a+2oflJUjxmOHlIwbCh1K/DuEyF PKsQ9gvzkEp+2gUQBq5QxAKnkhwX0H5uCJ7U2gDUJWyITHTvGcb1PiFA1V3ZQzqr WOxdSEFq3cfwn5P1f//RhgKsGSfmQrxEobK5aWAi8yhEeUd0SUXAvKAEtVujPxt6 E3Avo+AWeIOkKkuPAYNdFvPXoggPk+xmAhKfJ2/EpD7G3nxOV77XDKzzpjAZtlER OdQBRabp9mzGbe6gkg6NMbMQYYMrx4jY -----END CERTIFICATE-----Generated at Sat Jun 14 19:18:08 2025 by rpki-client