$ rpki-client -vvf rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft File: BtehAtOMEJaAT42lLiz3jYkaxyE.mft (raw, json) Hash identifier: x92EEyk6GPQrgWH9Gd66OdnueY3dIZN+3D3TZQS+4bw= Subject key identifier: 3D:04:E5:B7:16:74:35:A9:90:67:71:8B:55:7E:BA:CD:A3:B4:78:7A Authority key identifier: 06:D7:A1:02:D3:8C:10:96:80:4F:8D:A5:2E:2C:F7:8D:89:1A:C7:21 Certificate issuer: /CN=A916B2C1/serialNumber=06D7A102D38C1096804F8DA52E2CF78D891AC721 Certificate serial: 0501 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft Manifest number: 04FC Signing time: Fri 22 Aug 2025 23:51:48 +0000 Manifest this update: Fri 22 Aug 2025 23:51:48 +0000 Manifest next update: Fri 29 Aug 2025 23:51:48 +0000 Files and hashes: 1: BtehAtOMEJaAT42lLiz3jYkaxyE.crl (hash: Og2M6kVxRzrle6rnXslTtge9j5c737lHicXAZlrvJoc=) 2: 551FA6B620DE11EC8CA3EC74C4F9AE02.roa (hash: sy0Mbt4ke59HBbem5DYUNkJ8NfZs0P/CrbYjmapjxqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.crl rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:51:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1281 (0x501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B2C1, serialNumber=06D7A102D38C1096804F8DA52E2CF78D891AC721 Validity Not Before: Aug 22 23:51:48 2025 GMT Not After : Aug 29 23:51:48 2025 GMT Subject: CN=68a90294-885b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:13:83:0f:d8:9e:51:24:98:b5:a9:ce:0d:bc: f9:19:f0:88:69:0c:dd:40:54:bb:00:ac:cc:b5:f8: 79:45:59:dc:d4:5e:0a:ba:a0:c4:28:19:c9:5f:ac: 79:8a:cc:84:ab:fc:a0:7f:3d:fa:40:96:ea:73:2f: b0:d1:b1:24:d0:fb:62:8f:cb:1d:30:ca:1e:aa:3f: 4d:e8:78:5e:87:7c:71:a2:33:9d:b6:55:79:98:d0: d3:41:b1:4a:14:7d:c3:3c:6c:07:14:c5:10:69:b2: 46:7d:ed:e3:66:16:5c:e5:a9:c8:0f:b0:da:f8:38: 6b:6f:19:f7:f9:3d:88:ed:f9:dc:fd:0a:08:97:5b: ae:16:5f:db:22:f7:71:98:7d:82:00:0f:82:d0:ba: 4f:38:78:09:0a:37:d2:b2:ff:d9:7d:a6:b2:d4:f6: ca:ee:02:cc:52:3a:7a:2c:82:f3:48:49:04:4a:56: b4:2b:a5:a9:42:35:3d:ac:f6:65:ea:cb:61:88:c9: d9:69:8a:a0:50:d7:34:23:a1:93:dd:fc:e7:68:48: 67:45:83:29:de:db:06:f4:ae:73:84:6c:e8:90:d7: de:3c:9d:a9:47:51:a9:34:b5:69:cc:90:2f:b0:9d: 61:6d:59:8a:e4:23:ee:9b:29:0e:7d:c9:06:b7:97: 86:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:04:E5:B7:16:74:35:A9:90:67:71:8B:55:7E:BA:CD:A3:B4:78:7A X509v3 Authority Key Identifier: keyid:06:D7:A1:02:D3:8C:10:96:80:4F:8D:A5:2E:2C:F7:8D:89:1A:C7:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:39:71:c3:36:c9:54:36:de:11:1f:35:4f:9e:78:c3:d9:19: e3:29:3e:b1:2a:2d:24:15:ce:73:cf:81:a3:eb:6a:86:19:e2: 90:d4:38:17:ce:66:5e:4b:80:d6:3c:5c:3c:5e:c9:c5:bd:f1: 93:a7:8a:8b:2c:ce:ef:42:d3:5b:18:74:e3:4b:40:e6:6e:c2: e2:c4:7a:5e:39:83:a5:91:f8:cc:7b:04:91:e7:9d:e7:35:15: 7c:0e:a3:34:9f:29:3a:9f:31:31:37:d1:70:16:95:fa:a1:a0: 90:c7:3c:b1:7f:cb:1e:2e:91:47:2f:17:6f:d5:87:33:30:4c: 8f:e0:c3:89:f7:7e:11:02:c7:d9:73:a6:e4:f2:ef:21:26:da: d6:c7:dc:d8:fe:08:9f:07:89:63:75:a2:8e:d4:43:9e:82:7a: 78:1b:48:b5:38:66:79:bb:18:4d:08:3b:8f:d5:62:23:3a:5d: bf:f1:e7:93:60:aa:34:f6:28:1b:03:0d:12:d7:f9:62:82:4e: 86:77:72:f5:cd:8d:3d:e8:68:be:55:45:a9:84:62:c6:ec:04: 56:c4:de:c3:e1:32:78:95:5b:c0:c7:a2:e6:0d:69:b0:57:10: dc:30:b3:e4:72:8c:65:26:08:e7:45:62:45:65:9d:72:98:fd: 66:be:17:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIyQzExMTAvBgNVBAUTKDA2RDdBMTAyRDM4QzEwOTY4MDRGOERBNTJFMkNGNzhE ODkxQUM3MjEwHhcNMjUwODIyMjM1MTQ4WhcNMjUwODI5MjM1MTQ4WjAYMRYwFAYD VQQDEw02OGE5MDI5NC04ODViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArRODD9ieUSSYtanODbz5GfCIaQzdQFS7AKzMtfh5RVnc1F4KuqDEKBnJX6x5 isyEq/ygfz36QJbqcy+w0bEk0Ptij8sdMMoeqj9N6Hheh3xxojOdtlV5mNDTQbFK FH3DPGwHFMUQabJGfe3jZhZc5anID7Da+Dhrbxn3+T2I7fnc/QoIl1uuFl/bIvdx mH2CAA+C0LpPOHgJCjfSsv/Zfaay1PbK7gLMUjp6LILzSEkESla0K6WpQjU9rPZl 6sthiMnZaYqgUNc0I6GT3fznaEhnRYMp3tsG9K5zhGzokNfePJ2pR1GpNLVpzJAv sJ1hbVmK5CPumykOfckGt5eGqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD0E5bcW dDWpkGdxi1V+us2jtHh6MB8GA1UdIwQYMBaAFAbXoQLTjBCWgE+NpS4s942JGsch MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjJDMS8yRUE1MUQ1NjIw REMxMUVDOUIzQ0U5NzNDNEY5QUUwMi9CdGVoQXRPTUVKYUFUNDJsTGl6M2pZa2F4 eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J0ZWhBdE9NRUphQVQ0MmxMaXozallrYXh5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjJDMS8yRUE1MUQ1NjIwREMxMUVDOUIzQ0U5NzNDNEY5QUUwMi9CdGVoQXRPTUVK YUFUNDJsTGl6M2pZa2F4eUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuOXHDNslUNt4RHzVPnnjD2RnjKT6xKi0kFc5zz4Gj62qGGeKQ1DgX zmZeS4DWPFw8XsnFvfGTp4qLLM7vQtNbGHTjS0DmbsLixHpeOYOlkfjMewSR553n NRV8DqM0nyk6nzExN9FwFpX6oaCQxzyxf8seLpFHLxdv1YczMEyP4MOJ934RAsfZ c6bk8u8hJtrWx9zY/gifB4ljdaKO1EOegnp4G0i1OGZ5uxhNCDuP1WIjOl2/8eeT YKo09igbAw0S1/ligk6Gd3L1zY096Gi+VUWphGLG7ARWxN7D4TJ4lVvAx6LmDWmw VxDcMLPkcoxlJgjnRWJFZZ1ymP1mvhfr -----END CERTIFICATE-----Generated at Sun Aug 24 03:37:33 2025 by rpki-client