$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft File: bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft (raw, json) Hash identifier: sl/TXmhJ2U4yneOzAokPq4PnjEDAZ9kzdG5LWS8vwJ0= Subject key identifier: 8F:3E:B1:87:8B:0D:39:F4:4F:BD:05:5C:A6:94:91:3D:A7:51:FB:B3 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 361A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft Manifest number: 356F Signing time: Wed 18 Jun 2025 14:17:42 +0000 Manifest this update: Wed 18 Jun 2025 14:17:41 +0000 Manifest next update: Wed 25 Jun 2025 14:17:41 +0000 Files and hashes: 1: bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl (hash: Uc+SWvRLppUnLHR3vEnTllXzrIRnC28NnjQPJDXbuiA=) 2: 119B023E80A111EFAC559545C4F9AE02.roa (hash: UcLab4fcVSxFTCKz9jwV2FcIwBHm9AwWLQOJArqJHjI=) 3: D06D852C0E8411EFB653657DC4F9AE02.roa (hash: SywI770ENl7TLzZPS+7Qd4FzLZZohYfrrDDPXPl1a7g=) 4: 4703352E2BC311EEA3EEFA66C4F9AE02.roa (hash: GhMpIsuZe6UWSXVhxx0gZ7LGDFuMOBfOpEr3szGlSIw=) 5: 5E05FB54A8FE11E990A7E27FC4F9AE02.roa (hash: mkS8yistQSPi7NMH1JehepWmWxUa6l17roNRXFEiwqI=) 6: FCBF1666677C11EBB2A3F00CC4F9AE02.roa (hash: MXTujm5bxVtwRR2qRhwfBiQo+U60HZqoc/46+Q9rCqg=) 7: 88978730772311EBB972032EC4F9AE02.roa (hash: nz3/6k7N3mPNzs0DFxh1VvDXVpDIjk6/7OQf5UZ/EgA=) 8: 331F345A383611E6B2282B5DC4F9AE02.roa (hash: WuXzJGatSIhxLLVFJYnAc7zb2/GN+pIVoHOaMyICWzI=) 9: 318FB51A383611E6B2282B5DC4F9AE02.roa (hash: 4Q3os1Mfu8xIUdVQK6hTBnRWzUONxabmo1fE2pyLLXE=) 10: 328EDB76383611E6B2282B5DC4F9AE02.roa (hash: ch1wPAb/c25q+6cdmEAHM5pjXCNPqiccski5eE5WXDs=) 11: 3204348A383611E6B2282B5DC4F9AE02.roa (hash: mPli45HHzDhlWzD7+vX8/tUBtrWHY58J4/XZrbS0zeo=) 12: 89A73D46772311EBB972032EC4F9AE02.roa (hash: 9hXnGMU3WUCKM3WK6+9iFLRQ6N17p8pM/kmtF91qcvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 14:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13850 (0x361a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Jun 18 14:17:41 2025 GMT Not After : Jun 25 14:17:41 2025 GMT Subject: CN=6852ca86-46fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:01:4d:7b:29:08:4e:8f:a6:35:ed:d1:66:16: 4d:3c:49:7b:17:b9:04:db:e8:ef:6f:d4:7e:59:42: 5c:fb:10:ef:19:be:bf:7f:90:7a:7a:77:d5:e6:14: bd:68:47:2b:4f:b3:a0:34:fd:a9:ad:92:89:20:af: c5:dd:32:45:ca:f5:6a:3c:d4:be:e9:f3:3d:3d:72: e5:d8:03:4a:c2:85:f6:d2:88:e4:9d:da:72:27:d2: 1c:9e:fc:d4:7a:f6:cc:d3:a2:50:54:0d:be:e9:81: de:7c:ce:2e:a9:9a:57:c9:87:b2:23:69:bd:a2:fb: 42:0b:ea:e6:64:fe:7d:bf:aa:cd:e5:30:bb:29:5e: e1:80:21:ef:51:5e:04:01:81:78:6b:87:f7:a9:78: a9:fb:6b:e1:e9:7a:b7:ce:d7:1a:26:f6:e5:f7:ac: ff:1e:26:a3:2a:7f:0d:d3:5b:77:8d:9e:a4:c8:fb: 5c:59:5c:75:23:eb:0f:03:29:88:52:da:62:5d:6d: e5:e0:f5:3a:34:7e:c0:61:c0:5f:51:f7:9e:b9:4c: 5e:13:a3:29:a5:c0:13:83:92:40:9c:c2:9b:c6:a3: c9:01:a7:33:9e:b3:bd:3e:9d:ea:ef:63:3b:78:24: 88:9f:ef:f2:9a:76:bc:2e:ae:47:7a:57:d9:1c:b1: 17:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:3E:B1:87:8B:0D:39:F4:4F:BD:05:5C:A6:94:91:3D:A7:51:FB:B3 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:f9:c9:29:09:af:14:e2:7c:da:bb:37:57:e6:46:ad:90:3b: 1a:1f:5b:ce:7f:ae:8a:b6:8d:2e:5a:96:8f:81:9c:a0:52:16: 4f:49:d4:16:17:2c:d6:c5:16:f5:3f:92:f2:57:09:a7:89:9b: 59:f7:64:d2:1d:a4:f6:82:d6:45:52:de:74:52:dd:ed:e2:cb: 91:9e:34:3c:cd:81:0d:1c:2f:6c:e2:cd:7c:a7:41:a7:b8:90: 85:2a:c9:ad:bf:0a:b9:c3:4a:44:aa:d6:dc:5f:44:71:4f:3d: 01:7c:1b:1d:61:03:b4:76:46:b6:b2:b2:2a:37:71:c4:a0:5d: 9b:d7:c5:d8:37:52:a2:ca:7c:6d:20:dd:64:52:21:98:14:cf: cb:a1:87:bf:99:22:73:d3:6e:e8:42:ad:6b:bd:ab:46:fc:3c: ef:2f:90:63:a4:27:11:82:c4:ba:6e:f3:82:22:5f:71:d2:6f: ae:5d:4a:ba:83:e3:8a:65:8f:a5:d7:34:0a:1e:4e:fe:ba:ef: 5d:bb:af:46:b4:9d:cc:70:68:b5:09:e8:ae:e6:c9:8f:f8:66: 3d:3e:f1:6a:5f:04:4b:3b:19:be:e8:27:92:c0:a6:45:68:fb: 9d:8f:6e:e3:b7:08:f7:0d:43:79:d3:47:f3:5b:79:34:4b:2b: 04:fd:84:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwNjE4MTQxNzQxWhcNMjUwNjI1MTQxNzQxWjAYMRYwFAYD VQQDEw02ODUyY2E4Ni00NmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5QFNeykITo+mNe3RZhZNPEl7F7kE2+jvb9R+WUJc+xDvGb6/f5B6enfV5hS9 aEcrT7OgNP2prZKJIK/F3TJFyvVqPNS+6fM9PXLl2ANKwoX20ojkndpyJ9IcnvzU evbM06JQVA2+6YHefM4uqZpXyYeyI2m9ovtCC+rmZP59v6rN5TC7KV7hgCHvUV4E AYF4a4f3qXip+2vh6Xq3ztcaJvbl96z/HiajKn8N01t3jZ6kyPtcWVx1I+sPAymI UtpiXW3l4PU6NH7AYcBfUfeeuUxeE6MppcATg5JAnMKbxqPJAacznrO9Pp3q72M7 eCSIn+/ymna8Lq5HelfZHLEX4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI8+sYeL DTn0T70FXKaUkT2nUfuzMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTcwQi85N0FGNkRGMDFENkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJU MllTSEduTWhxZEZwWUw0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO+ckpCa8U4nzauzdX5katkDsaH1vOf66Kto0uWpaPgZygUhZPSdQW FyzWxRb1P5LyVwmniZtZ92TSHaT2gtZFUt50Ut3t4suRnjQ8zYENHC9s4s18p0Gn uJCFKsmtvwq5w0pEqtbcX0RxTz0BfBsdYQO0dka2srIqN3HEoF2b18XYN1Kiynxt IN1kUiGYFM/LoYe/mSJz027oQq1rvatG/DzvL5BjpCcRgsS6bvOCIl9x0m+uXUq6 g+OKZY+l1zQKHk7+uu9du69GtJ3McGi1Ceiu5smP+GY9PvFqXwRLOxm+6CeSwKZF aPudj27jtwj3DUN500fzW3k0SysE/YTW -----END CERTIFICATE-----Generated at Wed Jun 18 16:38:50 2025 by rpki-client