$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json) Hash identifier: lMuHo/XY/Fru4Z4/2xgnUNy4O0zkMu4FQIpQ+Pvu7Ng= Subject key identifier: 63:28:EB:7B:B0:3B:F8:BF:15:DB:82:E8:04:DF:FF:72:0C:52:5E:EB Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Certificate serial: 01E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft Manifest number: 01E4 Signing time: Sat 09 Aug 2025 03:04:31 +0000 Manifest this update: Sat 09 Aug 2025 03:04:30 +0000 Manifest next update: Sat 16 Aug 2025 03:04:30 +0000 Files and hashes: 1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: 5lGEaWl8osufSgUcgyr6xTMFM7/u4AVZiWVK3K3W63Q=) 2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: uh86cXyNLUaa3Xl47qiV2uyaXTpPI55uWsM8f80qnzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB8D7, serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Validity Not Before: Aug 9 03:04:30 2025 GMT Not After : Aug 16 03:04:30 2025 GMT Subject: CN=6896babe-d27c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b7:4b:51:dd:f3:0d:5e:cb:ea:95:cc:da:f9: 0a:bd:af:2d:54:76:06:17:62:72:be:78:66:6f:b4: b6:f2:bb:b4:81:f0:1a:79:53:67:3d:91:d1:8a:94: d1:a0:4b:09:6b:d3:62:51:d1:a9:cc:bb:e1:7b:60: f5:47:db:c2:78:e3:da:23:18:e8:a0:a2:ac:64:42: cf:19:bb:f5:ad:5c:28:a1:c7:a7:bf:7a:d3:72:63: 1b:0c:68:64:b5:69:db:c0:4e:7a:64:a1:b6:9c:db: c9:90:b8:ee:e5:bc:46:69:96:8c:79:ce:95:3f:89: ff:0e:bc:e7:61:26:94:fc:89:26:55:c8:cd:22:c1: e2:c6:de:04:8d:a1:a8:f8:bb:43:da:1b:9d:56:9c: 83:67:58:69:93:70:ac:fe:55:31:4d:89:90:7a:54: a3:8b:cb:8b:89:0a:52:7c:df:29:e5:eb:5d:92:0c: df:40:4f:ee:cf:e6:bb:db:b0:9b:01:24:37:24:9f: d2:3e:38:86:a3:33:0f:4f:ac:b1:69:c7:c4:43:44: c8:2c:48:4e:2d:33:b0:9b:ee:2d:37:73:ed:54:1a: 47:0e:d9:c2:aa:d0:e8:b2:be:0d:27:2d:f3:2e:cc: 78:0e:fe:36:d2:20:7a:cf:74:1a:fa:0c:32:2e:f5: a0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:28:EB:7B:B0:3B:F8:BF:15:DB:82:E8:04:DF:FF:72:0C:52:5E:EB X509v3 Authority Key Identifier: keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:64:df:11:34:28:fb:6d:9c:c2:3b:c5:dd:0e:4f:84:65:e8: 4c:ca:40:74:8e:10:46:73:43:aa:5f:3a:4c:b6:32:14:49:cf: 21:4b:a3:d6:fb:e0:ac:72:0f:29:ce:23:f8:ab:2e:a2:b8:fe: 82:e8:e3:67:98:0e:1d:db:d9:d6:3b:a6:b9:b8:f6:4e:60:22: b7:3c:f0:a8:85:0f:70:bc:ae:97:5f:09:1b:0d:df:3a:6c:eb: 0a:3b:6b:49:98:d8:c3:f8:52:be:bd:50:cd:af:59:55:ca:39: ed:34:68:84:bb:d3:83:61:06:96:f9:a1:75:79:82:57:7d:ee: 66:93:7f:6a:e5:55:62:f8:d9:3f:d7:2b:4c:e2:7b:45:46:d5: 0c:87:62:d9:d9:34:8d:d8:50:a0:3f:4d:9b:93:53:b5:54:a0: 13:ef:0d:f3:e0:74:c6:c9:5a:8b:10:7a:0a:21:1f:53:4e:bc: 4e:2c:1e:03:84:c3:eb:3f:f5:fa:b8:ec:f1:2b:7e:24:80:5a: bc:bc:b8:4c:8e:c9:af:6f:47:da:d0:ec:26:9d:ed:0e:d6:58: fa:9c:ca:b4:4d:a8:e2:f5:a6:a5:a5:1b:3f:2f:a1:96:f8:03: 46:ab:27:91:0f:31:4e:03:85:16:56:85:95:8c:a4:1c:60:18: 2a:49:cb:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4RDcxMTAvBgNVBAUTKDA1MERDMDNCNUQ1OTQ1QTMzRUFCOTUxODE3RjE2NzlC RDkxMEM2QUMwHhcNMjUwODA5MDMwNDMwWhcNMjUwODE2MDMwNDMwWjAYMRYwFAYD VQQDEw02ODk2YmFiZS1kMjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7dLUd3zDV7L6pXM2vkKva8tVHYGF2Jyvnhmb7S28ru0gfAaeVNnPZHRipTR oEsJa9NiUdGpzLvhe2D1R9vCeOPaIxjooKKsZELPGbv1rVwoocenv3rTcmMbDGhk tWnbwE56ZKG2nNvJkLju5bxGaZaMec6VP4n/DrznYSaU/IkmVcjNIsHixt4EjaGo +LtD2hudVpyDZ1hpk3Cs/lUxTYmQelSji8uLiQpSfN8p5etdkgzfQE/uz+a727Cb ASQ3JJ/SPjiGozMPT6yxacfEQ0TILEhOLTOwm+4tN3PtVBpHDtnCqtDosr4NJy3z Lsx4Dv420iB6z3Qa+gwyLvWgnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGMo63uw O/i/FduC6ATf/3IMUl7rMB8GA1UdIwQYMBaAFAUNwDtdWUWjPquVGBfxZ5vZEMas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjhENy9CNjdGMzAxQTk4 OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJhTS1xNVVZRl9Gbm05a1F4 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRM0FPMTFaUmFNLXE1VVlGX0ZubTlrUXhxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjhENy9CNjdGMzAxQTk4OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJh TS1xNVVZRl9Gbm05a1F4cXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvZN8RNCj7bZzCO8XdDk+EZehMykB0jhBGc0OqXzpMtjIUSc8hS6PW ++Cscg8pziP4qy6iuP6C6ONnmA4d29nWO6a5uPZOYCK3PPCohQ9wvK6XXwkbDd86 bOsKO2tJmNjD+FK+vVDNr1lVyjntNGiEu9ODYQaW+aF1eYJXfe5mk39q5VVi+Nk/ 1ytM4ntFRtUMh2LZ2TSN2FCgP02bk1O1VKAT7w3z4HTGyVqLEHoKIR9TTrxOLB4D hMPrP/X6uOzxK34kgFq8vLhMjsmvb0fa0Owmne0O1lj6nMq0Taji9aalpRs/L6GW +ANGqyeRDzFOA4UWVoWVjKQcYBgqScv3 -----END CERTIFICATE-----Generated at Sat Aug 9 23:12:58 2025 by rpki-client