$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json) Hash identifier: LGtTHPzs9wcassxGguJMo6LYcapkMcQiMpwmuyp+QD4= Subject key identifier: 5C:BD:61:60:23:B0:05:50:86:96:A8:7E:A7:E6:52:45:0C:C7:89:0C Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Certificate serial: 01CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft Manifest number: 01C8 Signing time: Sun 15 Jun 2025 02:16:35 +0000 Manifest this update: Sun 15 Jun 2025 02:16:35 +0000 Manifest next update: Sun 22 Jun 2025 02:16:35 +0000 Files and hashes: 1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: 7a0guV8Py04yexvwGRplD7xJgq4k+vtSdL4gw6WREdQ=) 2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: uh86cXyNLUaa3Xl47qiV2uyaXTpPI55uWsM8f80qnzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:16:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 460 (0x1cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB8D7, serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Validity Not Before: Jun 15 02:16:35 2025 GMT Not After : Jun 22 02:16:35 2025 GMT Subject: CN=684e2d03-1166 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:77:f2:47:d8:61:b4:44:2d:3a:81:9a:a6:bc: 9f:a7:ab:55:2e:37:4e:0a:76:b4:04:d5:c3:a8:b4: 1b:c5:0a:cc:11:4a:40:c8:d4:50:c2:96:b0:93:b1: 16:d4:40:3c:f3:71:56:98:3a:84:92:d9:0b:ba:fe: dd:67:eb:59:d2:6e:37:ed:73:d8:c1:ca:19:d8:45: b9:dc:5c:d9:62:d8:1a:56:83:59:6f:4a:39:9f:c5: 1a:a2:ea:13:05:68:72:fa:93:af:d7:03:e2:ab:a8: 2b:3c:a8:16:a7:44:a2:ba:c8:7a:98:18:4b:25:1f: 8a:aa:c9:8a:c4:cb:06:bf:17:c3:54:4f:8d:fa:57: 05:43:26:dd:88:4f:ab:f0:95:c1:97:2f:88:b9:6d: 8f:37:6e:ea:5c:51:3a:e2:a1:c5:b4:40:05:92:13: 96:0e:73:b6:23:3c:7d:60:d6:80:4c:74:02:92:61: 79:06:00:3d:71:d4:de:d0:80:96:6c:2e:41:85:14: 87:db:22:b6:c8:74:e7:96:93:0b:c9:1c:7d:41:90: 82:3b:bf:0b:a0:a5:5d:d9:a8:e7:5e:96:51:84:73: 7b:d4:fe:7b:f6:30:a3:b5:6f:5d:cc:42:f3:86:1f: 13:fb:ee:6a:24:44:e7:de:a5:fc:62:48:e7:7f:e8: 7c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:BD:61:60:23:B0:05:50:86:96:A8:7E:A7:E6:52:45:0C:C7:89:0C X509v3 Authority Key Identifier: keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:83:62:d7:5b:34:69:eb:d8:dd:65:4b:c2:89:c0:16:bf:35: 1b:c4:00:ee:9a:54:81:26:af:01:68:6c:69:d5:b9:f9:35:90: 6d:92:fe:f9:e9:38:73:dd:70:43:9b:60:f1:bb:d7:04:a4:9f: e8:aa:c7:3e:82:e8:6c:49:63:87:ce:1a:70:59:d9:1e:1d:b7: 7f:33:ea:6a:d2:f2:fc:fa:47:ae:91:1a:77:d8:91:12:da:2a: 39:f0:84:20:9b:85:8c:46:14:1b:aa:ec:6f:f7:86:17:a5:ea: e1:21:aa:1f:49:16:e4:d2:f5:0a:42:b9:87:ce:bd:34:7d:a9: ed:16:15:23:ca:ae:e3:ce:3a:98:93:5b:8a:96:f0:a6:ef:ea: c4:d3:8d:84:db:90:44:da:fd:4c:4e:25:df:9f:7f:0a:ad:c1: e5:2c:87:83:a2:3e:72:e2:cb:3e:83:07:73:07:d3:e4:c7:1d: 60:b6:ed:3c:f3:0a:f1:42:4b:d9:bf:2c:44:c5:8e:3d:6f:86: 0b:b8:17:08:e4:b3:6c:92:da:d4:57:98:67:42:34:dd:0f:50: e3:d8:81:53:c2:41:10:5f:ba:c0:a3:84:08:48:9a:56:c1:74: e3:9f:85:53:40:1d:1b:68:86:1c:6a:4e:37:dd:af:6d:8c:a1: fb:fe:2c:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4RDcxMTAvBgNVBAUTKDA1MERDMDNCNUQ1OTQ1QTMzRUFCOTUxODE3RjE2NzlC RDkxMEM2QUMwHhcNMjUwNjE1MDIxNjM1WhcNMjUwNjIyMDIxNjM1WjAYMRYwFAYD VQQDEw02ODRlMmQwMy0xMTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6nfyR9hhtEQtOoGapryfp6tVLjdOCna0BNXDqLQbxQrMEUpAyNRQwpawk7EW 1EA883FWmDqEktkLuv7dZ+tZ0m437XPYwcoZ2EW53FzZYtgaVoNZb0o5n8UaouoT BWhy+pOv1wPiq6grPKgWp0Siush6mBhLJR+KqsmKxMsGvxfDVE+N+lcFQybdiE+r 8JXBly+IuW2PN27qXFE64qHFtEAFkhOWDnO2Izx9YNaATHQCkmF5BgA9cdTe0ICW bC5BhRSH2yK2yHTnlpMLyRx9QZCCO78LoKVd2ajnXpZRhHN71P579jCjtW9dzELz hh8T++5qJETn3qX8Ykjnf+h8DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFy9YWAj sAVQhpaofqfmUkUMx4kMMB8GA1UdIwQYMBaAFAUNwDtdWUWjPquVGBfxZ5vZEMas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjhENy9CNjdGMzAxQTk4 OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJhTS1xNVVZRl9Gbm05a1F4 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRM0FPMTFaUmFNLXE1VVlGX0ZubTlrUXhxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjhENy9CNjdGMzAxQTk4OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJh TS1xNVVZRl9Gbm05a1F4cXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbg2LXWzRp69jdZUvCicAWvzUbxADumlSBJq8BaGxp1bn5NZBtkv75 6Thz3XBDm2Dxu9cEpJ/oqsc+guhsSWOHzhpwWdkeHbd/M+pq0vL8+keukRp32JES 2io58IQgm4WMRhQbquxv94YXperhIaofSRbk0vUKQrmHzr00fantFhUjyq7jzjqY k1uKlvCm7+rE042E25BE2v1MTiXfn38KrcHlLIeDoj5y4ss+gwdzB9Pkxx1gtu08 8wrxQkvZvyxExY49b4YLuBcI5LNsktrUV5hnQjTdD1Dj2IFTwkEQX7rAo4QISJpW wXTjn4VTQB0baIYcak433a9tjKH7/iy/ -----END CERTIFICATE-----Generated at Sun Jun 15 08:42:08 2025 by rpki-client