$ rpki-client -vvf rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft File: BtehAtOMEJaAT42lLiz3jYkaxyE.mft (raw, json) Hash identifier: xwXPsTMiDXtMr98Wqszddty6D8EatA279tQkVY+MGwo= Subject key identifier: F9:57:BA:2D:AB:0E:DB:47:1F:AC:91:9D:0E:64:4D:F5:12:C3:D9:3C Authority key identifier: 06:D7:A1:02:D3:8C:10:96:80:4F:8D:A5:2E:2C:F7:8D:89:1A:C7:21 Certificate issuer: /CN=A916B2C1/serialNumber=06D7A102D38C1096804F8DA52E2CF78D891AC721 Certificate serial: 04E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft Manifest number: 04E3 Signing time: Sat 05 Jul 2025 00:11:55 +0000 Manifest this update: Sat 05 Jul 2025 00:11:55 +0000 Manifest next update: Sat 12 Jul 2025 00:11:55 +0000 Files and hashes: 1: BtehAtOMEJaAT42lLiz3jYkaxyE.crl (hash: ikgyC3z6Vs/NCe7GxiYxr9VQ8YgMF3IpoeLWa+JtI7w=) 2: 551FA6B620DE11EC8CA3EC74C4F9AE02.roa (hash: sy0Mbt4ke59HBbem5DYUNkJ8NfZs0P/CrbYjmapjxqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.crl rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1256 (0x4e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B2C1, serialNumber=06D7A102D38C1096804F8DA52E2CF78D891AC721 Validity Not Before: Jul 5 00:11:55 2025 GMT Not After : Jul 12 00:11:55 2025 GMT Subject: CN=68686dcb-8157 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:95:0b:0a:8f:27:18:d3:44:d2:33:45:87:c2: 8e:bc:c1:f0:38:45:83:a4:c9:9b:4b:25:6d:54:9c: 39:c4:b1:f9:0b:15:a9:88:13:81:5b:b0:07:e8:91: 92:c1:e8:80:3b:21:7a:37:61:af:d5:a9:9a:5f:4c: b7:e8:b1:ec:fd:a5:04:22:2b:2f:c8:82:11:78:25: 4a:da:a7:cc:34:22:90:34:3c:fe:dd:4f:a0:a7:5b: f3:7f:a3:f4:9c:d3:d5:51:29:04:cf:2f:3d:26:d1: b1:8a:d6:95:26:cc:0d:33:ec:44:da:68:78:51:4c: 38:35:a0:b4:7a:1c:36:51:e9:a1:8f:e8:08:a9:55: 9e:8f:54:48:0a:7d:35:b8:74:ad:d8:e3:61:fe:1a: f6:7d:30:80:54:6e:e6:35:1e:86:b6:98:ca:bc:56: 10:e9:39:0c:c6:55:ec:58:5d:1d:65:d0:fc:5d:b2: b4:86:a0:2a:ba:c1:b8:6e:9a:a6:ee:44:46:d4:de: 4d:2d:fc:da:20:cb:2b:84:5c:ce:86:35:8a:47:4d: e5:0f:01:31:07:e5:95:0f:df:26:63:0a:08:c7:3c: b4:66:bf:e3:df:6d:53:78:ed:f7:ac:08:ea:64:02: 1b:34:09:c5:7d:23:76:fb:40:a5:d2:f0:5f:af:a5: 21:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:57:BA:2D:AB:0E:DB:47:1F:AC:91:9D:0E:64:4D:F5:12:C3:D9:3C X509v3 Authority Key Identifier: keyid:06:D7:A1:02:D3:8C:10:96:80:4F:8D:A5:2E:2C:F7:8D:89:1A:C7:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:99:37:3d:49:49:2e:66:cb:e2:3f:87:c1:0a:4f:32:be:bd: f8:22:49:4e:4b:82:31:b4:e8:1a:96:e1:2b:bd:7c:c6:d1:dc: 6a:25:90:ad:7c:7d:20:93:9d:9b:8b:a2:64:51:98:04:31:a6: 43:37:e3:ed:07:12:4d:72:b1:d3:3b:4e:87:22:f0:a7:52:d9: a7:45:8b:6d:60:bd:ca:18:43:ea:49:cd:0a:7e:72:eb:c2:8c: 18:89:a0:b0:66:2c:cb:66:82:54:19:1b:d3:20:9a:4c:de:c2: e5:70:6c:1f:fd:24:e0:50:32:f7:98:55:2e:87:43:8f:88:b2: 2d:86:3e:e2:74:ee:bb:ca:19:31:4e:e6:eb:41:cc:b2:4b:c8: 03:fb:aa:aa:59:1b:ce:fb:82:5f:68:d5:7a:8c:48:6d:87:e8: 42:46:bf:25:01:4e:11:0e:e6:7b:ee:d3:c3:cb:04:78:5a:a6: e7:b6:ca:b9:2a:1e:8f:52:ff:16:13:96:1b:35:12:c9:be:70: b1:f5:d8:18:10:4a:9a:bd:02:a7:a1:71:ab:d6:56:db:fa:fd: ba:95:07:2e:b4:c9:2b:32:fb:87:31:e9:d7:d7:29:ae:45:cb: 5d:30:26:3b:4c:14:3b:8b:c5:82:76:bb:9e:bf:c5:39:95:6b: 2e:5a:ec:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIyQzExMTAvBgNVBAUTKDA2RDdBMTAyRDM4QzEwOTY4MDRGOERBNTJFMkNGNzhE ODkxQUM3MjEwHhcNMjUwNzA1MDAxMTU1WhcNMjUwNzEyMDAxMTU1WjAYMRYwFAYD VQQDEw02ODY4NmRjYi04MTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5ULCo8nGNNE0jNFh8KOvMHwOEWDpMmbSyVtVJw5xLH5CxWpiBOBW7AH6JGS weiAOyF6N2Gv1amaX0y36LHs/aUEIisvyIIReCVK2qfMNCKQNDz+3U+gp1vzf6P0 nNPVUSkEzy89JtGxitaVJswNM+xE2mh4UUw4NaC0ehw2Uemhj+gIqVWej1RICn01 uHSt2ONh/hr2fTCAVG7mNR6GtpjKvFYQ6TkMxlXsWF0dZdD8XbK0hqAqusG4bpqm 7kRG1N5NLfzaIMsrhFzOhjWKR03lDwExB+WVD98mYwoIxzy0Zr/j321TeO33rAjq ZAIbNAnFfSN2+0Cl0vBfr6UhtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPlXui2r DttHH6yRnQ5kTfUSw9k8MB8GA1UdIwQYMBaAFAbXoQLTjBCWgE+NpS4s942JGsch MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjJDMS8yRUE1MUQ1NjIw REMxMUVDOUIzQ0U5NzNDNEY5QUUwMi9CdGVoQXRPTUVKYUFUNDJsTGl6M2pZa2F4 eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J0ZWhBdE9NRUphQVQ0MmxMaXozallrYXh5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjJDMS8yRUE1MUQ1NjIwREMxMUVDOUIzQ0U5NzNDNEY5QUUwMi9CdGVoQXRPTUVK YUFUNDJsTGl6M2pZa2F4eUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJmTc9SUkuZsviP4fBCk8yvr34IklOS4IxtOgaluErvXzG0dxqJZCt fH0gk52bi6JkUZgEMaZDN+PtBxJNcrHTO06HIvCnUtmnRYttYL3KGEPqSc0KfnLr wowYiaCwZizLZoJUGRvTIJpM3sLlcGwf/STgUDL3mFUuh0OPiLIthj7idO67yhkx TubrQcyyS8gD+6qqWRvO+4JfaNV6jEhth+hCRr8lAU4RDuZ77tPDywR4Wqbntsq5 Kh6PUv8WE5YbNRLJvnCx9dgYEEqavQKnoXGr1lbb+v26lQcutMkrMvuHMenX1ymu RctdMCY7TBQ7i8WCdruev8U5lWsuWuy/ -----END CERTIFICATE-----Generated at Sat Jul 5 02:34:34 2025 by rpki-client