$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft File: bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft (raw, json) Hash identifier: IJmBrAHUV20VFn7lPUY0DQ8EjGxcCvoIz7eBQPl6NfI= Subject key identifier: F7:69:24:2C:75:5D:E0:11:C6:C7:82:11:6B:85:A8:D6:6A:5E:34:60 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 362E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft Manifest number: 3578 Signing time: Wed 02 Jul 2025 14:17:55 +0000 Manifest this update: Wed 02 Jul 2025 14:17:54 +0000 Manifest next update: Wed 09 Jul 2025 14:17:54 +0000 Files and hashes: 1: bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl (hash: Y5J5ABTLJ1y9lcIkVESlMlNeQSmDjQg1bNuZxOvJ+00=) 2: 119B023E80A111EFAC559545C4F9AE02.roa (hash: 9LqedBh/T1Pn2Gl1dZnlyMno6hLUqevpcEI4W+No+WM=) 3: D06D852C0E8411EFB653657DC4F9AE02.roa (hash: YwwNNBiRN8WbU6nMfOYGjf/BEh8X+MeiEpmtw+179nA=) 4: 4703352E2BC311EEA3EEFA66C4F9AE02.roa (hash: vGmHulSbJNNSRKDRkCSlexuZ8gppAxWgoNUfgpqDDQo=) 5: 5E05FB54A8FE11E990A7E27FC4F9AE02.roa (hash: zMFCeCXoKrPrwTq+A2LXxPGmSZJf7zHnpagMrcSo0Pw=) 6: FCBF1666677C11EBB2A3F00CC4F9AE02.roa (hash: 8Dc8gjY40rl5/6Sh0h3/EDNd7vs6rm1lJULYeNiLj34=) 7: 88978730772311EBB972032EC4F9AE02.roa (hash: 9XGtZh3U+oKF1G7lH8KZbGLBHCLusn+PwSpTkwD9Utg=) 8: 331F345A383611E6B2282B5DC4F9AE02.roa (hash: ONbBKi5oc2lvv+jkklAdH08GL4vyG52+/DptD9K/oRU=) 9: 318FB51A383611E6B2282B5DC4F9AE02.roa (hash: TSVCxvcc+Sayf1kDVk4KAdOPfT663XPtMJq+qgnVb4Y=) 10: 328EDB76383611E6B2282B5DC4F9AE02.roa (hash: GzXfr4YWUVHSzpZQvdoC1TFhpGmAGgBOPMRMQ/ex3H4=) 11: 3204348A383611E6B2282B5DC4F9AE02.roa (hash: ls3D3B0qMoaDuK9w5uGgZ5eY+SJvp9CyLR4mx4nye6A=) 12: 89A73D46772311EBB972032EC4F9AE02.roa (hash: r21OVByQYNcBYjJc0J53OAidjOhKnEhsIuFLOBFbEzY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:17:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13870 (0x362e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Jul 2 14:17:54 2025 GMT Not After : Jul 9 14:17:54 2025 GMT Subject: CN=68653f93-28b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0b:ee:c0:01:d5:b1:d7:bc:9a:b7:48:6e:01: c5:93:2e:8c:67:b2:5a:0b:d1:e8:f9:f7:19:b5:c9: e0:25:4b:29:d6:26:2a:db:95:75:ca:68:d8:43:92: a0:74:f4:15:02:07:77:ec:45:59:e9:71:27:8a:bf: 23:31:00:ad:d9:88:2f:92:f9:2a:15:78:69:8f:b3: 5a:cc:ed:e0:88:04:29:ee:f3:77:ee:be:ff:bf:1a: 89:55:ad:59:74:6a:a8:6f:d1:a9:72:c1:73:7f:bd: 8a:ad:8c:b0:ba:9e:17:65:a1:bf:07:8b:57:2a:6a: 78:09:73:5d:71:2a:da:a2:3b:ea:ba:e7:4b:eb:ff: 98:2c:37:be:88:72:d4:57:eb:7b:e6:51:6e:28:7d: f1:d8:15:86:97:2e:99:65:17:b5:a1:52:ac:08:5b: 30:45:02:fd:50:a1:66:f6:82:bf:2a:b3:6b:5a:aa: b4:4a:20:c2:98:ec:cc:86:b5:27:32:ee:d0:e0:f9: fa:3c:ad:61:02:81:cd:7c:a2:73:56:e1:c9:b7:18: e6:5d:3f:35:ec:f1:27:4e:25:f8:d6:7e:d5:2c:f9: e3:b6:e9:da:bd:cf:f5:59:de:bc:63:eb:5f:91:e5: ff:5f:c9:5e:59:4f:1e:e0:f1:8e:68:02:bf:8e:63: 2a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:69:24:2C:75:5D:E0:11:C6:C7:82:11:6B:85:A8:D6:6A:5E:34:60 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:96:ed:db:e4:54:de:08:ca:ac:d8:de:52:84:69:5e:70:d6: ea:f5:51:9e:04:e9:dc:55:63:a4:68:c3:c3:15:98:2a:db:cc: 96:11:f1:60:fe:e0:a5:61:fb:18:3f:58:99:e9:ec:67:e7:67: ff:7a:db:e3:80:33:fd:66:37:f4:e8:c2:e2:be:18:f0:f8:3c: 76:e4:44:b5:ca:14:3e:46:9e:09:1a:2a:3d:97:d2:f1:54:ad: b9:89:15:f5:e6:b6:4e:e0:32:13:b1:f1:c3:5d:db:04:50:0b: a6:b2:ed:93:d6:9f:8a:42:b6:ac:ce:16:9d:5f:c2:0d:9b:e5: 4e:de:26:f8:77:ee:47:69:b5:e8:8c:53:16:ef:cb:4b:21:62: 8e:7d:d2:8c:ef:90:4c:ad:41:33:8c:da:48:8f:f1:f0:5d:02: 60:61:b4:25:98:88:62:77:74:10:c5:b7:a4:24:33:1d:be:b1: f3:e9:b2:e6:9f:85:6b:0a:0c:01:7b:2d:c0:76:73:79:97:2a: 6a:2d:04:cc:24:27:5d:55:52:ec:81:55:85:33:2f:dd:3e:dc: c1:d4:e1:10:32:33:d3:3b:39:cb:b7:06:6a:47:14:2f:33:6c: a0:b6:cf:8e:51:2f:35:13:f7:d4:60:97:5b:82:f1:94:ca:4e: c1:b2:23:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwNzAyMTQxNzU0WhcNMjUwNzA5MTQxNzU0WjAYMRYwFAYD VQQDEw02ODY1M2Y5My0yOGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgvuwAHVsde8mrdIbgHFky6MZ7JaC9Ho+fcZtcngJUsp1iYq25V1ymjYQ5Kg dPQVAgd37EVZ6XEnir8jMQCt2YgvkvkqFXhpj7NazO3giAQp7vN37r7/vxqJVa1Z dGqob9GpcsFzf72KrYywup4XZaG/B4tXKmp4CXNdcSraojvquudL6/+YLDe+iHLU V+t75lFuKH3x2BWGly6ZZRe1oVKsCFswRQL9UKFm9oK/KrNrWqq0SiDCmOzMhrUn Mu7Q4Pn6PK1hAoHNfKJzVuHJtxjmXT817PEnTiX41n7VLPnjtunavc/1Wd68Y+tf keX/X8leWU8e4PGOaAK/jmMqawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdpJCx1 XeARxseCEWuFqNZqXjRgMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTcwQi85N0FGNkRGMDFENkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJU MllTSEduTWhxZEZwWUw0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPlu3b5FTeCMqs2N5ShGlecNbq9VGeBOncVWOkaMPDFZgq28yWEfFg /uClYfsYP1iZ6exn52f/etvjgDP9Zjf06MLivhjw+Dx25ES1yhQ+Rp4JGio9l9Lx VK25iRX15rZO4DITsfHDXdsEUAumsu2T1p+KQraszhadX8INm+VO3ib4d+5HabXo jFMW78tLIWKOfdKM75BMrUEzjNpIj/HwXQJgYbQlmIhid3QQxbekJDMdvrHz6bLm n4VrCgwBey3AdnN5lypqLQTMJCddVVLsgVWFMy/dPtzB1OEQMjPTOznLtwZqRxQv M2ygts+OUS81E/fUYJdbgvGUyk7BsiMK -----END CERTIFICATE-----Generated at Thu Jul 3 07:07:06 2025 by rpki-client