$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft File: bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft (raw, json) Hash identifier: yvltrSv6SI2Wz0ztRXbqSYIsNtu1BjWnJYfp/Zi8O50= Subject key identifier: 38:20:E6:38:68:14:4A:BF:9D:2E:32:EE:04:4F:C7:2D:B3:04:AE:74 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3648 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft Manifest number: 3592 Signing time: Fri 22 Aug 2025 14:17:54 +0000 Manifest this update: Fri 22 Aug 2025 14:17:54 +0000 Manifest next update: Fri 29 Aug 2025 14:17:54 +0000 Files and hashes: 1: bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl (hash: 5Dd9FPLQW/pXhQUqqUP3WfLCyCmWL42wkz/aDX26QEg=) 2: 119B023E80A111EFAC559545C4F9AE02.roa (hash: 9LqedBh/T1Pn2Gl1dZnlyMno6hLUqevpcEI4W+No+WM=) 3: D06D852C0E8411EFB653657DC4F9AE02.roa (hash: YwwNNBiRN8WbU6nMfOYGjf/BEh8X+MeiEpmtw+179nA=) 4: 4703352E2BC311EEA3EEFA66C4F9AE02.roa (hash: vGmHulSbJNNSRKDRkCSlexuZ8gppAxWgoNUfgpqDDQo=) 5: 5E05FB54A8FE11E990A7E27FC4F9AE02.roa (hash: zMFCeCXoKrPrwTq+A2LXxPGmSZJf7zHnpagMrcSo0Pw=) 6: FCBF1666677C11EBB2A3F00CC4F9AE02.roa (hash: 8Dc8gjY40rl5/6Sh0h3/EDNd7vs6rm1lJULYeNiLj34=) 7: 88978730772311EBB972032EC4F9AE02.roa (hash: 9XGtZh3U+oKF1G7lH8KZbGLBHCLusn+PwSpTkwD9Utg=) 8: 331F345A383611E6B2282B5DC4F9AE02.roa (hash: ONbBKi5oc2lvv+jkklAdH08GL4vyG52+/DptD9K/oRU=) 9: 318FB51A383611E6B2282B5DC4F9AE02.roa (hash: TSVCxvcc+Sayf1kDVk4KAdOPfT663XPtMJq+qgnVb4Y=) 10: 328EDB76383611E6B2282B5DC4F9AE02.roa (hash: GzXfr4YWUVHSzpZQvdoC1TFhpGmAGgBOPMRMQ/ex3H4=) 11: 3204348A383611E6B2282B5DC4F9AE02.roa (hash: ls3D3B0qMoaDuK9w5uGgZ5eY+SJvp9CyLR4mx4nye6A=) 12: 89A73D46772311EBB972032EC4F9AE02.roa (hash: r21OVByQYNcBYjJc0J53OAidjOhKnEhsIuFLOBFbEzY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13896 (0x3648) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Aug 22 14:17:54 2025 GMT Not After : Aug 29 14:17:54 2025 GMT Subject: CN=68a87c12-685f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ad:52:5f:cd:bb:aa:9f:70:ab:1a:a0:35:0a: ac:a3:a3:29:61:d7:d6:2c:ef:c8:c5:38:fd:a5:a3: ec:3a:eb:07:cd:17:69:06:5a:0a:05:1c:f6:b6:3e: 98:23:95:62:79:02:57:e5:8c:10:57:59:2c:b8:ef: 9c:93:75:d7:71:b4:80:9d:e3:45:41:b0:de:f6:fd: 68:e2:e3:60:00:19:33:e4:b4:95:f4:1a:94:45:0b: 17:91:e7:96:ed:0d:ac:95:9f:9a:68:fa:3a:6a:78: 3c:1c:32:12:12:c2:3d:62:4c:67:66:c2:9c:10:0d: 77:f0:8a:8d:6e:02:2e:1a:47:23:2e:79:87:1e:8e: 62:4e:6d:59:17:71:67:b4:9a:9c:54:a6:70:ad:16: 75:a9:6f:20:ec:e9:df:06:6d:37:7f:a7:43:cf:e4: 3a:38:75:38:3f:db:2f:a3:34:3b:f0:4a:9c:0a:fb: 27:02:76:df:84:ca:59:24:02:45:5b:f4:de:80:7d: 32:25:d3:0d:7d:5b:23:7b:35:65:79:72:43:16:98: aa:f4:07:30:ff:94:44:89:45:2e:a6:98:dc:23:45: 85:35:99:21:76:1b:d0:b7:48:30:fa:8a:4b:8d:5f: dd:02:a2:f4:83:6f:ee:3b:98:78:52:03:cc:25:2f: 9e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:20:E6:38:68:14:4A:BF:9D:2E:32:EE:04:4F:C7:2D:B3:04:AE:74 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:90:e3:3a:d8:d0:40:8f:e2:d9:bb:5e:37:a8:97:75:56:bd: 58:19:27:bc:40:c7:a4:bd:5c:4d:f0:48:38:42:f2:45:9c:6b: ca:99:74:a6:8f:b1:0a:4a:00:ff:86:63:59:a8:b4:e5:b3:5e: 55:0c:b8:5d:97:b9:bc:48:01:b6:7d:50:3b:cb:d0:c4:f5:57: 63:3d:b8:5c:78:31:52:37:de:f3:10:0f:e1:97:79:e2:cd:3b: 3d:4b:2e:eb:c2:8b:a6:bc:c2:3b:c6:7e:d0:1c:b3:f1:13:86: 87:82:87:26:bf:0c:af:d2:d9:21:51:a9:5c:0e:0c:70:2b:1e: 61:3d:b2:2a:8c:18:62:0a:70:f7:4f:4f:97:c4:66:a4:42:da: a5:7b:3b:ca:99:e1:39:de:4f:38:6a:61:7b:67:33:12:21:09: f0:33:a8:5c:08:85:f7:25:fb:16:ed:55:85:52:06:5a:80:bf: 8b:9d:f2:b6:5f:b0:9d:c9:8a:02:42:98:e4:21:39:b6:09:c6: 0f:70:89:8d:58:1b:05:07:5e:18:36:e2:f3:f1:1b:c6:77:a7: 5f:e8:a0:05:7a:ef:e1:8d:02:bb:f1:0e:01:83:4c:78:38:da: 84:ca:95:f1:05:60:7e:56:95:39:8b:b6:c8:be:82:eb:87:bc: 67:72:3a:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwODIyMTQxNzU0WhcNMjUwODI5MTQxNzU0WjAYMRYwFAYD VQQDEw02OGE4N2MxMi02ODVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1K1SX827qp9wqxqgNQqso6MpYdfWLO/IxTj9paPsOusHzRdpBloKBRz2tj6Y I5VieQJX5YwQV1ksuO+ck3XXcbSAneNFQbDe9v1o4uNgABkz5LSV9BqURQsXkeeW 7Q2slZ+aaPo6ang8HDISEsI9YkxnZsKcEA138IqNbgIuGkcjLnmHHo5iTm1ZF3Fn tJqcVKZwrRZ1qW8g7OnfBm03f6dDz+Q6OHU4P9svozQ78EqcCvsnAnbfhMpZJAJF W/TegH0yJdMNfVsjezVleXJDFpiq9Acw/5REiUUuppjcI0WFNZkhdhvQt0gw+opL jV/dAqL0g2/uO5h4UgPMJS+eQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgg5jho FEq/nS4y7gRPxy2zBK50MB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTcwQi85N0FGNkRGMDFENkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJU MllTSEduTWhxZEZwWUw0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYkOM62NBAj+LZu143qJd1Vr1YGSe8QMekvVxN8Eg4QvJFnGvKmXSm j7EKSgD/hmNZqLTls15VDLhdl7m8SAG2fVA7y9DE9VdjPbhceDFSN97zEA/hl3ni zTs9Sy7rwoumvMI7xn7QHLPxE4aHgocmvwyv0tkhUalcDgxwKx5hPbIqjBhiCnD3 T0+XxGakQtqlezvKmeE53k84amF7ZzMSIQnwM6hcCIX3JfsW7VWFUgZagL+LnfK2 X7CdyYoCQpjkITm2CcYPcImNWBsFB14YNuLz8RvGd6df6KAFeu/hjQK78Q4Bg0x4 ONqEypXxBWB+VpU5i7bIvoLrh7xncjpQ -----END CERTIFICATE-----Generated at Sun Aug 24 03:06:51 2025 by rpki-client