$ rpki-client -vvf rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft File: BtehAtOMEJaAT42lLiz3jYkaxyE.mft (raw, json) Hash identifier: AlvT2PC+B6kKZKh8/o9k6eKUK5X7hZtInxyYdJL0+gc= Subject key identifier: 25:3C:D9:CE:21:4E:68:88:BE:C0:21:16:B2:0C:FE:47:1D:7C:41:19 Authority key identifier: 06:D7:A1:02:D3:8C:10:96:80:4F:8D:A5:2E:2C:F7:8D:89:1A:C7:21 Certificate issuer: /CN=A916B2C1/serialNumber=06D7A102D38C1096804F8DA52E2CF78D891AC721 Certificate serial: 04CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft Manifest number: 04CA Signing time: Wed 14 May 2025 23:51:19 +0000 Manifest this update: Wed 14 May 2025 23:51:18 +0000 Manifest next update: Wed 21 May 2025 23:51:18 +0000 Files and hashes: 1: BtehAtOMEJaAT42lLiz3jYkaxyE.crl (hash: 4VV4j7c0fdz58Ss2ZkCMWvDO8vogfKXPDtSg5dWhUeU=) 2: 551FA6B620DE11EC8CA3EC74C4F9AE02.roa (hash: sy0Mbt4ke59HBbem5DYUNkJ8NfZs0P/CrbYjmapjxqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.crl rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 23:51:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1231 (0x4cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B2C1, serialNumber=06D7A102D38C1096804F8DA52E2CF78D891AC721 Validity Not Before: May 14 23:51:18 2025 GMT Not After : May 21 23:51:18 2025 GMT Subject: CN=68252c77-6be3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:48:7f:83:da:f6:8b:3d:2f:d2:e3:d7:73:97: 31:c3:f0:1d:f9:bf:75:bb:ca:d8:ac:b1:69:f7:7e: 4e:d7:7e:e9:cb:14:77:0f:69:2d:7d:37:c9:2f:b9: 26:ad:8a:0e:1e:80:d2:a0:d2:b6:3c:81:7b:95:fc: 2d:a2:49:57:51:fe:fc:e1:fc:f3:34:72:15:2e:5d: 3a:19:6f:4d:c5:60:39:f3:a2:3c:07:32:0c:7b:aa: d7:68:a0:39:b3:06:90:99:10:67:2c:bf:7a:33:0c: 0a:2b:21:8a:81:c9:08:ed:a7:74:d0:17:18:80:c0: 94:4a:8c:c7:55:24:74:95:da:8f:07:16:b6:dc:fc: 5b:4c:cb:7c:81:d7:f3:0c:56:65:bf:c2:f2:f8:81: 62:b5:f9:ec:7d:08:9f:7f:3b:e9:ea:4a:5b:62:e3: 49:68:d7:c9:af:3d:ff:f1:95:de:35:18:d9:77:62: c3:cd:40:12:54:ed:66:4d:3c:44:24:de:16:8f:84: b3:49:01:99:17:de:7a:7e:a2:27:0c:f0:66:16:e7: 83:ea:2b:34:b8:1a:37:86:e6:b6:7c:b1:26:c5:d6: 34:c4:29:e5:64:90:f5:69:7d:e0:df:13:9c:d3:16: 13:c1:87:5f:10:f8:b4:a2:7e:66:27:a0:ed:a5:9b: 0d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:3C:D9:CE:21:4E:68:88:BE:C0:21:16:B2:0C:FE:47:1D:7C:41:19 X509v3 Authority Key Identifier: keyid:06:D7:A1:02:D3:8C:10:96:80:4F:8D:A5:2E:2C:F7:8D:89:1A:C7:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:aa:65:a6:cb:c4:53:7d:12:fc:af:e8:00:e5:54:04:64:cc: d4:54:a0:85:86:bd:4e:61:b0:91:dc:74:9f:1b:4f:a3:7b:ab: 9b:2a:9f:ce:7a:20:19:42:12:7f:ca:b0:03:3d:41:29:76:08: 63:68:44:ac:28:9c:d6:33:e8:51:e2:58:31:03:c3:b0:c2:cf: f9:11:38:09:05:70:1b:fb:77:81:1b:82:d8:94:4c:ea:fa:af: 4a:18:9c:5e:ec:e2:c3:c2:ed:34:24:07:9a:83:db:ef:6b:4b: 87:d2:d2:ca:f6:3e:71:07:58:9c:cd:70:bd:97:cf:e1:ee:17: 30:6c:7a:52:ea:be:5a:fe:6d:73:eb:23:09:53:17:9c:52:8d: b9:25:05:bb:9a:ae:77:8a:47:a2:e6:86:d4:0c:62:f1:c8:55: f2:f1:2c:13:3d:87:f9:41:ac:3b:7b:f0:49:3c:f6:bf:a7:66: 94:2f:18:3b:fa:ff:86:bf:52:15:14:dd:73:70:e1:95:0b:ef: b9:f4:cd:83:b5:85:3e:c3:db:c0:18:3c:d8:86:ed:48:60:dd: 75:20:8f:61:fc:b8:2e:d6:ea:0b:17:f4:2f:25:15:f6:12:f2: 65:4c:51:64:bc:ac:2a:c1:35:56:7b:bf:d2:cc:29:dd:c9:f4: 31:68:70:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIyQzExMTAvBgNVBAUTKDA2RDdBMTAyRDM4QzEwOTY4MDRGOERBNTJFMkNGNzhE ODkxQUM3MjEwHhcNMjUwNTE0MjM1MTE4WhcNMjUwNTIxMjM1MTE4WjAYMRYwFAYD VQQDEw02ODI1MmM3Ny02YmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUh/g9r2iz0v0uPXc5cxw/Ad+b91u8rYrLFp935O137pyxR3D2ktfTfJL7km rYoOHoDSoNK2PIF7lfwtoklXUf784fzzNHIVLl06GW9NxWA586I8BzIMe6rXaKA5 swaQmRBnLL96MwwKKyGKgckI7ad00BcYgMCUSozHVSR0ldqPBxa23PxbTMt8gdfz DFZlv8Ly+IFitfnsfQiffzvp6kpbYuNJaNfJrz3/8ZXeNRjZd2LDzUASVO1mTTxE JN4Wj4SzSQGZF956fqInDPBmFueD6is0uBo3hua2fLEmxdY0xCnlZJD1aX3g3xOc 0xYTwYdfEPi0on5mJ6DtpZsN1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCU82c4h TmiIvsAhFrIM/kcdfEEZMB8GA1UdIwQYMBaAFAbXoQLTjBCWgE+NpS4s942JGsch MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjJDMS8yRUE1MUQ1NjIw REMxMUVDOUIzQ0U5NzNDNEY5QUUwMi9CdGVoQXRPTUVKYUFUNDJsTGl6M2pZa2F4 eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J0ZWhBdE9NRUphQVQ0MmxMaXozallrYXh5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjJDMS8yRUE1MUQ1NjIwREMxMUVDOUIzQ0U5NzNDNEY5QUUwMi9CdGVoQXRPTUVK YUFUNDJsTGl6M2pZa2F4eUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhqmWmy8RTfRL8r+gA5VQEZMzUVKCFhr1OYbCR3HSfG0+je6ubKp/O eiAZQhJ/yrADPUEpdghjaESsKJzWM+hR4lgxA8Owws/5ETgJBXAb+3eBG4LYlEzq +q9KGJxe7OLDwu00JAeag9vva0uH0tLK9j5xB1iczXC9l8/h7hcwbHpS6r5a/m1z 6yMJUxecUo25JQW7mq53ikei5obUDGLxyFXy8SwTPYf5Qaw7e/BJPPa/p2aULxg7 +v+Gv1IVFN1zcOGVC++59M2DtYU+w9vAGDzYhu1IYN11II9h/Lgu1uoLF/QvJRX2 EvJlTFFkvKwqwTVWe7/SzCndyfQxaHAv -----END CERTIFICATE-----Generated at Thu May 15 19:35:57 2025 by rpki-client