$ rpki-client -vvf rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft File: BtehAtOMEJaAT42lLiz3jYkaxyE.mft (raw, json) Hash identifier: 4v6ZmBPzgtLJXxEHX9O9UyldB5GksLM/RBGWWhZ1MNo= Subject key identifier: 39:CE:96:D5:89:DD:91:CD:40:E2:21:BB:45:93:40:89:AD:B0:BC:71 Authority key identifier: 06:D7:A1:02:D3:8C:10:96:80:4F:8D:A5:2E:2C:F7:8D:89:1A:C7:21 Certificate issuer: /CN=A916B2C1/serialNumber=06D7A102D38C1096804F8DA52E2CF78D891AC721 Certificate serial: 04FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft Manifest number: 04F5 Signing time: Sat 09 Aug 2025 00:09:21 +0000 Manifest this update: Sat 09 Aug 2025 00:09:20 +0000 Manifest next update: Sat 16 Aug 2025 00:09:20 +0000 Files and hashes: 1: BtehAtOMEJaAT42lLiz3jYkaxyE.crl (hash: qS1ewfVvFpoPK+lzfbsyWHR/9RiSUR03Fe5fQ0tPvGk=) 2: 551FA6B620DE11EC8CA3EC74C4F9AE02.roa (hash: sy0Mbt4ke59HBbem5DYUNkJ8NfZs0P/CrbYjmapjxqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.crl rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1274 (0x4fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B2C1, serialNumber=06D7A102D38C1096804F8DA52E2CF78D891AC721 Validity Not Before: Aug 9 00:09:20 2025 GMT Not After : Aug 16 00:09:20 2025 GMT Subject: CN=689691b0-3198 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:68:2a:b1:2c:51:f9:9b:98:a1:8e:45:04:98: ed:00:a0:77:4a:3a:7b:b2:d8:0b:8f:e2:b4:11:2a: c0:fb:34:77:18:97:21:a3:f6:e4:91:df:0a:91:eb: 4b:f9:1d:b7:58:26:3f:5c:40:c7:ef:be:50:3c:63: 07:97:a7:e1:1b:b2:a4:12:5e:46:1f:61:c7:09:b4: 2c:86:ce:f1:e9:3c:60:6b:e5:48:52:01:27:bc:49: a7:81:90:7b:28:40:c5:ab:51:f2:6e:61:8e:40:b5: c7:58:26:f1:6a:0e:c5:10:30:aa:c7:12:ca:80:d3: d9:6c:6e:74:be:47:d0:63:04:86:97:79:27:29:90: 23:c9:43:85:0c:8b:ed:9c:df:81:f9:1c:86:d2:81: ae:53:7a:aa:09:14:c1:c0:3e:d7:f5:63:1f:f5:34: f1:10:cb:5e:a9:b8:1e:fb:25:93:bc:72:0c:78:ae: fd:39:cd:cd:02:c1:27:52:94:01:07:91:a2:5f:10: 69:95:ac:41:c7:aa:4a:b6:c3:5f:18:ee:c8:c5:7d: fa:02:65:2c:1c:f7:07:6f:a7:41:0d:7a:d2:99:41: 6a:c9:c5:80:51:ad:77:7e:8f:d5:08:5c:e3:96:d0: e6:76:fc:c8:83:08:b6:52:26:f1:7a:d6:a4:03:76: 8f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:CE:96:D5:89:DD:91:CD:40:E2:21:BB:45:93:40:89:AD:B0:BC:71 X509v3 Authority Key Identifier: keyid:06:D7:A1:02:D3:8C:10:96:80:4F:8D:A5:2E:2C:F7:8D:89:1A:C7:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:0f:ac:3a:6e:ff:ba:19:3e:c2:d5:8a:65:57:4a:66:5e:08: a4:09:cf:d0:9e:af:47:67:3b:4f:7d:af:85:d4:7b:72:73:0d: 45:0a:d4:c2:e8:16:99:03:21:8f:18:44:47:22:5a:74:88:4c: d4:34:aa:e8:4f:c7:3b:1b:7c:6a:e6:13:af:65:52:be:94:41: c1:db:3d:6c:f6:17:8b:ac:9f:51:c6:2c:a9:2d:0e:8a:3b:5c: 0a:4c:af:17:98:52:70:ee:e4:ef:f2:c2:52:61:cf:5e:86:e0: f3:29:4b:b6:8b:9e:e6:15:b1:e6:b8:14:13:74:2f:10:24:48: d1:e8:9b:c6:4a:99:f9:f1:8e:d6:d3:78:df:29:ff:35:d7:39: 11:89:93:38:57:00:24:42:60:bf:c5:77:f7:93:27:63:d2:36: f9:12:07:9a:10:93:69:03:4f:6c:73:b1:48:89:40:97:9c:fd: 20:a3:58:f5:f9:cb:30:da:25:d5:6d:ba:76:c7:ca:25:4c:ba: 53:35:98:9e:8a:94:cb:c9:50:fc:d7:64:41:1f:82:73:81:d3: a6:7e:c6:e9:c5:aa:f6:e3:4c:90:fe:35:a2:f3:9d:de:bf:2b: bf:ea:ac:0d:c7:66:8f:65:dd:f0:73:28:ff:a7:a2:91:76:68: 57:62:cb:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIyQzExMTAvBgNVBAUTKDA2RDdBMTAyRDM4QzEwOTY4MDRGOERBNTJFMkNGNzhE ODkxQUM3MjEwHhcNMjUwODA5MDAwOTIwWhcNMjUwODE2MDAwOTIwWjAYMRYwFAYD VQQDEw02ODk2OTFiMC0zMTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2gqsSxR+ZuYoY5FBJjtAKB3Sjp7stgLj+K0ESrA+zR3GJcho/bkkd8KketL +R23WCY/XEDH775QPGMHl6fhG7KkEl5GH2HHCbQshs7x6Txga+VIUgEnvEmngZB7 KEDFq1HybmGOQLXHWCbxag7FEDCqxxLKgNPZbG50vkfQYwSGl3knKZAjyUOFDIvt nN+B+RyG0oGuU3qqCRTBwD7X9WMf9TTxEMteqbge+yWTvHIMeK79Oc3NAsEnUpQB B5GiXxBplaxBx6pKtsNfGO7IxX36AmUsHPcHb6dBDXrSmUFqycWAUa13fo/VCFzj ltDmdvzIgwi2UibxetakA3aPlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDnOltWJ 3ZHNQOIhu0WTQImtsLxxMB8GA1UdIwQYMBaAFAbXoQLTjBCWgE+NpS4s942JGsch MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjJDMS8yRUE1MUQ1NjIw REMxMUVDOUIzQ0U5NzNDNEY5QUUwMi9CdGVoQXRPTUVKYUFUNDJsTGl6M2pZa2F4 eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J0ZWhBdE9NRUphQVQ0MmxMaXozallrYXh5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjJDMS8yRUE1MUQ1NjIwREMxMUVDOUIzQ0U5NzNDNEY5QUUwMi9CdGVoQXRPTUVK YUFUNDJsTGl6M2pZa2F4eUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9D6w6bv+6GT7C1YplV0pmXgikCc/Qnq9HZztPfa+F1Htycw1FCtTC 6BaZAyGPGERHIlp0iEzUNKroT8c7G3xq5hOvZVK+lEHB2z1s9heLrJ9RxiypLQ6K O1wKTK8XmFJw7uTv8sJSYc9ehuDzKUu2i57mFbHmuBQTdC8QJEjR6JvGSpn58Y7W 03jfKf811zkRiZM4VwAkQmC/xXf3kydj0jb5EgeaEJNpA09sc7FIiUCXnP0go1j1 +csw2iXVbbp2x8olTLpTNZieipTLyVD812RBH4JzgdOmfsbpxar240yQ/jWi853e vyu/6qwNx2aPZd3wcyj/p6KRdmhXYsvP -----END CERTIFICATE-----Generated at Sun Aug 10 18:48:18 2025 by rpki-client