$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft File: bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft (raw, json) Hash identifier: VBQ+5J0iFXIs3yaD3nMkV0yzI5YNXRe/wr4tqAwsI1g= Subject key identifier: BB:AB:A0:11:2B:B2:B1:45:B0:B2:CA:52:65:EA:E5:9B:E6:47:DA:1C Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3607 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft Manifest number: 355C Signing time: Mon 12 May 2025 14:17:47 +0000 Manifest this update: Mon 12 May 2025 14:17:46 +0000 Manifest next update: Mon 19 May 2025 14:17:46 +0000 Files and hashes: 1: bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl (hash: NT05BHOc1Q1Ns3HbULhirL/LKa0wLrxovae3Djtexoo=) 2: 119B023E80A111EFAC559545C4F9AE02.roa (hash: UcLab4fcVSxFTCKz9jwV2FcIwBHm9AwWLQOJArqJHjI=) 3: D06D852C0E8411EFB653657DC4F9AE02.roa (hash: SywI770ENl7TLzZPS+7Qd4FzLZZohYfrrDDPXPl1a7g=) 4: 4703352E2BC311EEA3EEFA66C4F9AE02.roa (hash: GhMpIsuZe6UWSXVhxx0gZ7LGDFuMOBfOpEr3szGlSIw=) 5: 5E05FB54A8FE11E990A7E27FC4F9AE02.roa (hash: mkS8yistQSPi7NMH1JehepWmWxUa6l17roNRXFEiwqI=) 6: FCBF1666677C11EBB2A3F00CC4F9AE02.roa (hash: MXTujm5bxVtwRR2qRhwfBiQo+U60HZqoc/46+Q9rCqg=) 7: 88978730772311EBB972032EC4F9AE02.roa (hash: nz3/6k7N3mPNzs0DFxh1VvDXVpDIjk6/7OQf5UZ/EgA=) 8: 331F345A383611E6B2282B5DC4F9AE02.roa (hash: WuXzJGatSIhxLLVFJYnAc7zb2/GN+pIVoHOaMyICWzI=) 9: 318FB51A383611E6B2282B5DC4F9AE02.roa (hash: 4Q3os1Mfu8xIUdVQK6hTBnRWzUONxabmo1fE2pyLLXE=) 10: 328EDB76383611E6B2282B5DC4F9AE02.roa (hash: ch1wPAb/c25q+6cdmEAHM5pjXCNPqiccski5eE5WXDs=) 11: 3204348A383611E6B2282B5DC4F9AE02.roa (hash: mPli45HHzDhlWzD7+vX8/tUBtrWHY58J4/XZrbS0zeo=) 12: 89A73D46772311EBB972032EC4F9AE02.roa (hash: 9hXnGMU3WUCKM3WK6+9iFLRQ6N17p8pM/kmtF91qcvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 14:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13831 (0x3607) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: May 12 14:17:46 2025 GMT Not After : May 19 14:17:46 2025 GMT Subject: CN=6822030b-56c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:41:b1:46:2e:38:14:c4:e5:35:92:c1:46:08: 1e:8c:a4:8a:99:15:bd:c6:38:03:66:02:6a:b3:2c: 90:8c:db:58:ac:fe:aa:b6:97:22:09:c1:f4:d8:98: 4d:30:3f:f2:c2:85:da:d2:b1:3f:03:04:90:ab:af: 81:52:9d:47:40:73:52:53:96:c8:86:05:ec:50:75: 4d:81:b1:7e:2a:86:e6:0c:da:aa:82:ee:5a:e6:d6: ab:5c:c1:57:30:43:d0:20:df:83:c4:6b:c7:92:8c: dc:0b:34:e4:60:00:d5:7e:85:5c:53:fc:3f:01:e3: 6d:14:ab:b7:69:3f:8b:10:8e:4e:80:d3:65:21:b1: 59:f7:85:0a:37:43:60:fe:97:fd:e0:01:0a:3a:4a: 96:07:ec:97:a1:bb:96:c5:6e:4d:21:47:16:53:87: 9a:21:e2:87:b5:1c:fd:04:9f:9e:d2:95:10:da:33: e4:0d:91:59:9f:76:c9:93:3a:62:32:89:49:ee:f6: 12:d6:77:39:df:cc:c6:2c:59:82:f8:8e:64:9b:41: 5b:34:39:90:42:4c:9b:e2:0c:68:a8:98:38:f6:11: 74:88:13:fb:07:19:ba:be:7e:ed:24:02:39:2f:7c: d6:f8:83:3f:14:96:33:b6:ad:74:77:5f:bf:3b:f9: b4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:AB:A0:11:2B:B2:B1:45:B0:B2:CA:52:65:EA:E5:9B:E6:47:DA:1C X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:d0:bd:8d:32:59:9b:cc:aa:18:08:6e:a0:96:45:06:bb:4b: d9:b7:a7:32:40:a6:90:2b:02:4f:be:59:53:4f:8c:f5:13:f5: dc:29:cb:69:33:09:89:98:23:4a:c2:00:f5:36:a4:a3:0b:bf: 49:f7:a7:d2:16:f5:e7:63:a2:d0:92:0b:95:c5:64:b2:3d:0f: a9:f0:dc:d2:d2:51:a3:40:77:3a:8a:a9:0c:84:cb:d6:2c:bd: d7:be:b1:97:d0:ac:39:ed:4b:74:34:65:74:46:29:b5:7c:b0: 45:83:dd:c0:44:56:0b:84:b2:68:8e:8f:ea:44:9c:9a:99:8d: d3:6d:2f:a1:47:60:45:73:3d:28:4f:a3:35:30:78:a4:2b:5a: d2:88:d9:03:22:69:f2:9a:a8:ad:e5:29:33:9e:22:ed:08:0c: c8:5a:66:b2:e7:c1:2e:66:b1:0d:20:c0:55:99:7c:04:71:f2: 91:e6:71:bc:b5:4e:5c:c5:68:68:bc:38:82:60:b9:d1:30:d4: a3:51:79:36:04:5b:58:e0:c9:59:51:0d:e0:af:c9:52:1f:f6: 96:66:a0:50:57:66:ec:ee:17:f0:6d:a3:c5:10:35:09:62:71: 6a:fb:2c:71:00:8e:5e:98:66:39:68:c0:c2:a6:c5:e6:32:b5: db:6f:c4:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwNTEyMTQxNzQ2WhcNMjUwNTE5MTQxNzQ2WjAYMRYwFAYD VQQDEw02ODIyMDMwYi01NmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA00GxRi44FMTlNZLBRggejKSKmRW9xjgDZgJqsyyQjNtYrP6qtpciCcH02JhN MD/ywoXa0rE/AwSQq6+BUp1HQHNSU5bIhgXsUHVNgbF+KobmDNqqgu5a5tarXMFX MEPQIN+DxGvHkozcCzTkYADVfoVcU/w/AeNtFKu3aT+LEI5OgNNlIbFZ94UKN0Ng /pf94AEKOkqWB+yXobuWxW5NIUcWU4eaIeKHtRz9BJ+e0pUQ2jPkDZFZn3bJkzpi MolJ7vYS1nc538zGLFmC+I5km0FbNDmQQkyb4gxoqJg49hF0iBP7Bxm6vn7tJAI5 L3zW+IM/FJYztq10d1+/O/m0awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLuroBEr srFFsLLKUmXq5ZvmR9ocMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTcwQi85N0FGNkRGMDFENkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJU MllTSEduTWhxZEZwWUw0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBr0L2NMlmbzKoYCG6glkUGu0vZt6cyQKaQKwJPvllTT4z1E/XcKctp MwmJmCNKwgD1NqSjC79J96fSFvXnY6LQkguVxWSyPQ+p8NzS0lGjQHc6iqkMhMvW LL3XvrGX0Kw57Ut0NGV0Rim1fLBFg93ARFYLhLJojo/qRJyamY3TbS+hR2BFcz0o T6M1MHikK1rSiNkDImnymqit5SkzniLtCAzIWmay58EuZrENIMBVmXwEcfKR5nG8 tU5cxWhovDiCYLnRMNSjUXk2BFtY4MlZUQ3gr8lSH/aWZqBQV2bs7hfwbaPFEDUJ YnFq+yxxAI5emGY5aMDCpsXmMrXbb8Rb -----END CERTIFICATE-----Generated at Mon May 12 19:58:24 2025 by rpki-client