$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json) Hash identifier: 7CrnrfQvUaS8SFnA34CDmOUDQNN/hFfVQcGYRWP9ZV0= Subject key identifier: 57:DB:0D:70:EE:FB:B8:6A:EF:39:3B:96:56:7F:8A:21:48:25:88:C4 Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Certificate serial: 0214 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft Manifest number: 0210 Signing time: Wed 05 Nov 2025 02:25:38 +0000 Manifest this update: Wed 05 Nov 2025 02:25:38 +0000 Manifest next update: Wed 12 Nov 2025 02:25:38 +0000 Files and hashes: 1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: A5IwR11RnB+NuZea0ZOKzYJwm/ktdaiaikuXPevxJyk=) 2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: uh86cXyNLUaa3Xl47qiV2uyaXTpPI55uWsM8f80qnzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:25:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 532 (0x214) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB8D7, serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Validity Not Before: Nov 5 02:25:38 2025 GMT Not After : Nov 12 02:25:38 2025 GMT Subject: CN=690ab5a2-655d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ef:21:2f:03:65:65:63:b7:61:67:a6:7b:fd: d5:9a:d0:a5:57:03:05:31:7b:ac:95:21:89:d1:71: e5:f2:f3:53:d9:83:28:cc:a1:08:75:87:e8:4f:4f: cb:ea:7d:80:66:6a:5f:8d:d7:9c:ab:a8:0d:f9:d1: b1:94:dc:fb:d8:4d:25:0b:7d:09:16:b8:bf:c0:f4: 9e:69:ca:32:f5:1d:1a:59:d4:64:8f:8e:8f:30:02: f7:a8:bd:07:21:2a:c1:e8:e1:c2:24:37:f7:b5:4d: fb:a5:a6:ab:83:a2:fd:0f:03:fe:dc:a4:4d:e7:c8: 73:d3:dd:a6:c6:33:e7:6b:8e:6e:d4:63:d8:cb:26: a1:6f:95:12:45:58:44:e6:a7:cf:6e:49:17:bb:eb: 71:e9:b1:15:23:12:a1:79:2b:c9:23:16:f2:ec:bd: 5f:18:7c:3a:c0:5f:2b:e9:db:77:9b:08:69:3b:3a: 2b:6d:0f:49:d1:23:fe:0a:d3:9d:25:44:2f:69:2c: 48:37:25:64:b1:8a:c3:1a:a3:ce:dc:67:39:67:8b: 08:d4:57:68:e2:17:77:d2:f4:1d:dd:98:c2:85:c3: 96:65:a2:95:18:57:51:db:da:de:83:c7:4d:d0:b9: eb:ee:ad:60:1f:6a:46:32:04:99:fd:d6:44:b7:39: ad:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:DB:0D:70:EE:FB:B8:6A:EF:39:3B:96:56:7F:8A:21:48:25:88:C4 X509v3 Authority Key Identifier: keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:a4:a7:09:24:ae:6f:d8:60:24:18:67:3f:9e:2b:14:7a:92: dc:3d:58:1f:bc:bd:2d:60:c5:14:0c:94:07:86:32:03:ef:67: 0f:73:e2:33:86:c2:61:cc:e8:4d:f8:73:e7:e2:81:81:15:f1: 8c:a3:dc:d2:11:2c:bf:ce:8a:d2:27:c8:ff:ce:18:6a:f9:f9: 20:10:b0:fc:10:fd:af:4f:0f:5e:c2:b8:8f:cd:e5:ab:3e:7c: a2:74:18:93:55:76:96:07:7c:a0:b2:92:59:44:20:8d:d7:19: 45:6e:f7:32:b8:fb:f2:e9:7a:ef:75:bd:29:96:39:6b:81:ba: 51:de:82:72:f6:0a:ac:f9:08:06:97:e1:0d:42:26:48:f4:34: c6:46:6b:8d:98:ff:9c:24:6b:61:73:e1:2f:6a:b1:93:b2:39: 92:cd:10:d7:37:da:8f:35:02:50:eb:ae:e8:12:f6:89:f1:e7: b7:c6:4d:45:1e:89:cf:f1:f2:6f:2a:75:0c:bc:ff:b2:bf:ea: c7:69:82:3f:29:40:60:c6:26:37:41:aa:7f:ec:2c:8e:41:07: f5:0b:cf:d8:be:5f:2a:5f:b3:09:28:00:b6:3b:03:b9:5a:80: 5a:0f:fc:67:11:83:51:bb:d6:3c:cf:29:90:c6:e6:c4:a6:ef: 77:28:df:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4RDcxMTAvBgNVBAUTKDA1MERDMDNCNUQ1OTQ1QTMzRUFCOTUxODE3RjE2NzlC RDkxMEM2QUMwHhcNMjUxMTA1MDIyNTM4WhcNMjUxMTEyMDIyNTM4WjAYMRYwFAYD VQQDEw02OTBhYjVhMi02NTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3e8hLwNlZWO3YWeme/3VmtClVwMFMXuslSGJ0XHl8vNT2YMozKEIdYfoT0/L 6n2AZmpfjdecq6gN+dGxlNz72E0lC30JFri/wPSeacoy9R0aWdRkj46PMAL3qL0H ISrB6OHCJDf3tU37paarg6L9DwP+3KRN58hz092mxjPna45u1GPYyyahb5USRVhE 5qfPbkkXu+tx6bEVIxKheSvJIxby7L1fGHw6wF8r6dt3mwhpOzorbQ9J0SP+CtOd JUQvaSxINyVksYrDGqPO3Gc5Z4sI1Fdo4hd30vQd3ZjChcOWZaKVGFdR29reg8dN 0Lnr7q1gH2pGMgSZ/dZEtzmtXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfbDXDu +7hq7zk7llZ/iiFIJYjEMB8GA1UdIwQYMBaAFAUNwDtdWUWjPquVGBfxZ5vZEMas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjhENy9CNjdGMzAxQTk4 OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJhTS1xNVVZRl9Gbm05a1F4 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRM0FPMTFaUmFNLXE1VVlGX0ZubTlrUXhxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjhENy9CNjdGMzAxQTk4OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJh TS1xNVVZRl9Gbm05a1F4cXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnpKcJJK5v2GAkGGc/nisUepLcPVgfvL0tYMUUDJQHhjID72cPc+Iz hsJhzOhN+HPn4oGBFfGMo9zSESy/zorSJ8j/zhhq+fkgELD8EP2vTw9ewriPzeWr PnyidBiTVXaWB3ygspJZRCCN1xlFbvcyuPvy6Xrvdb0pljlrgbpR3oJy9gqs+QgG l+ENQiZI9DTGRmuNmP+cJGthc+EvarGTsjmSzRDXN9qPNQJQ667oEvaJ8ee3xk1F HonP8fJvKnUMvP+yv+rHaYI/KUBgxiY3Qap/7CyOQQf1C8/Yvl8qX7MJKAC2OwO5 WoBaD/xnEYNRu9Y8zymQxubEpu93KN/V -----END CERTIFICATE-----Generated at Wed Nov 5 15:33:00 2025 by rpki-client