$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft File: bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft (raw, json) Hash identifier: zepSJ5VQhJViCpwHySQrdPYDSAULdbjepK7timRppZ0= Subject key identifier: FE:C4:C0:0C:A9:D3:DC:13:22:FA:9B:89:4A:82:1B:B5:83:02:3F:46 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 35FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft Manifest number: 3553 Signing time: Thu 24 Apr 2025 14:17:44 +0000 Manifest this update: Thu 24 Apr 2025 14:17:44 +0000 Manifest next update: Thu 01 May 2025 14:17:44 +0000 Files and hashes: 1: bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl (hash: FOUpGXhxruvsrNTmcB0mpcbdUQtmSKjzccVoiXtWCsk=) 2: 119B023E80A111EFAC559545C4F9AE02.roa (hash: UcLab4fcVSxFTCKz9jwV2FcIwBHm9AwWLQOJArqJHjI=) 3: D06D852C0E8411EFB653657DC4F9AE02.roa (hash: SywI770ENl7TLzZPS+7Qd4FzLZZohYfrrDDPXPl1a7g=) 4: 4703352E2BC311EEA3EEFA66C4F9AE02.roa (hash: GhMpIsuZe6UWSXVhxx0gZ7LGDFuMOBfOpEr3szGlSIw=) 5: 5E05FB54A8FE11E990A7E27FC4F9AE02.roa (hash: mkS8yistQSPi7NMH1JehepWmWxUa6l17roNRXFEiwqI=) 6: FCBF1666677C11EBB2A3F00CC4F9AE02.roa (hash: MXTujm5bxVtwRR2qRhwfBiQo+U60HZqoc/46+Q9rCqg=) 7: 88978730772311EBB972032EC4F9AE02.roa (hash: nz3/6k7N3mPNzs0DFxh1VvDXVpDIjk6/7OQf5UZ/EgA=) 8: 331F345A383611E6B2282B5DC4F9AE02.roa (hash: WuXzJGatSIhxLLVFJYnAc7zb2/GN+pIVoHOaMyICWzI=) 9: 318FB51A383611E6B2282B5DC4F9AE02.roa (hash: 4Q3os1Mfu8xIUdVQK6hTBnRWzUONxabmo1fE2pyLLXE=) 10: 328EDB76383611E6B2282B5DC4F9AE02.roa (hash: ch1wPAb/c25q+6cdmEAHM5pjXCNPqiccski5eE5WXDs=) 11: 3204348A383611E6B2282B5DC4F9AE02.roa (hash: mPli45HHzDhlWzD7+vX8/tUBtrWHY58J4/XZrbS0zeo=) 12: 89A73D46772311EBB972032EC4F9AE02.roa (hash: 9hXnGMU3WUCKM3WK6+9iFLRQ6N17p8pM/kmtF91qcvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:17:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13822 (0x35fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Apr 24 14:17:44 2025 GMT Not After : May 1 14:17:44 2025 GMT Subject: CN=680a4808-48e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9b:53:11:aa:80:d7:05:6e:b2:48:d8:2c:de: 11:d8:53:d9:d9:86:01:79:54:bb:54:96:67:2a:40: a1:c6:e0:62:3b:47:33:e8:f4:02:39:98:7f:87:69: 43:a7:22:45:ea:aa:a3:24:a5:7f:bd:68:8f:c1:95: 62:ea:47:18:28:c4:6b:6a:76:d2:66:79:02:00:35: 01:0c:8d:03:0d:e7:eb:24:80:68:13:4f:79:25:f9: 6d:30:37:30:c2:af:09:2c:ee:09:e7:e0:97:dd:b1: 6c:0b:2b:ac:07:7a:4a:68:db:c9:1c:9f:c5:91:85: ca:4e:27:3a:28:c5:05:da:a4:57:14:b8:f1:a3:f0: f7:e4:8e:cc:71:c2:6c:37:e5:e2:69:df:4b:96:77: 1a:33:cb:0c:02:43:38:75:33:9e:71:8d:f7:3c:24: af:cb:8a:2c:8b:09:e3:04:3c:0f:66:39:b2:44:db: 68:1d:3d:ed:4a:47:54:41:cb:5a:ad:09:7c:8f:d3: f8:fd:e3:b9:ad:76:51:c3:f3:2e:43:37:b8:22:ce: 54:0f:b3:6e:7b:e1:c4:c2:13:a5:2d:29:bf:aa:29: 5a:2d:71:2d:6f:21:10:b2:07:f0:4c:c0:b1:bf:4c: be:ff:b8:a8:23:25:3a:25:91:68:18:81:7c:33:36: c6:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:C4:C0:0C:A9:D3:DC:13:22:FA:9B:89:4A:82:1B:B5:83:02:3F:46 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:0e:09:b0:f4:8d:b8:a0:24:9b:65:44:43:f8:9c:cf:b0:1c: 2d:b3:57:1e:a5:75:00:be:4b:50:ce:42:ce:42:b8:05:96:d6: a2:60:10:5b:4a:b5:26:25:aa:56:67:2c:33:b8:30:a9:95:bb: 8f:64:36:90:1c:32:bc:52:db:e5:b6:e7:57:ca:b8:af:36:84: 8c:2f:16:be:38:48:71:0b:c1:d6:6c:23:41:58:7f:c9:e9:0d: 5a:b4:b7:ff:f0:2b:5e:42:0f:88:e1:b8:79:11:f8:14:be:41: a6:70:65:a2:0c:c5:ae:9f:7f:85:c5:e9:db:54:7c:a7:3f:3d: 15:57:4e:4b:00:be:c4:15:30:0a:13:05:25:9b:f2:fd:7d:0c: 5d:38:6c:62:74:b6:c3:af:5e:2f:95:73:f2:45:93:d2:10:e1: 3d:82:67:92:bd:0f:26:e8:cf:70:85:74:98:02:9f:46:a2:f1: 59:f4:81:0c:74:dd:9f:77:2a:ef:37:92:00:29:29:cc:cf:1b: fa:bb:bc:06:4a:2d:f4:2d:65:df:7d:58:c3:ac:0d:6a:b4:f0: ac:75:a1:a2:b2:12:ae:bf:8d:e7:41:78:1a:3b:fa:2c:7c:74: 12:c2:72:6c:33:ba:6b:de:63:bd:54:bc:a8:42:b2:a6:f7:46: 14:20:7f:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwNDI0MTQxNzQ0WhcNMjUwNTAxMTQxNzQ0WjAYMRYwFAYD VQQDEw02ODBhNDgwOC00OGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5tTEaqA1wVuskjYLN4R2FPZ2YYBeVS7VJZnKkChxuBiO0cz6PQCOZh/h2lD pyJF6qqjJKV/vWiPwZVi6kcYKMRranbSZnkCADUBDI0DDefrJIBoE095JfltMDcw wq8JLO4J5+CX3bFsCyusB3pKaNvJHJ/FkYXKTic6KMUF2qRXFLjxo/D35I7MccJs N+Xiad9LlncaM8sMAkM4dTOecY33PCSvy4osiwnjBDwPZjmyRNtoHT3tSkdUQcta rQl8j9P4/eO5rXZRw/MuQze4Is5UD7Nue+HEwhOlLSm/qilaLXEtbyEQsgfwTMCx v0y+/7ioIyU6JZFoGIF8MzbGMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7EwAyp 09wTIvqbiUqCG7WDAj9GMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTcwQi85N0FGNkRGMDFENkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJU MllTSEduTWhxZEZwWUw0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHDgmw9I24oCSbZURD+JzPsBwts1cepXUAvktQzkLOQrgFltaiYBBb SrUmJapWZywzuDCplbuPZDaQHDK8UtvltudXyrivNoSMLxa+OEhxC8HWbCNBWH/J 6Q1atLf/8CteQg+I4bh5EfgUvkGmcGWiDMWun3+FxenbVHynPz0VV05LAL7EFTAK EwUlm/L9fQxdOGxidLbDr14vlXPyRZPSEOE9gmeSvQ8m6M9whXSYAp9GovFZ9IEM dN2fdyrvN5IAKSnMzxv6u7wGSi30LWXffVjDrA1qtPCsdaGishKuv43nQXgaO/os fHQSwnJsM7pr3mO9VLyoQrKm90YUIH+g -----END CERTIFICATE-----Generated at Sat Apr 26 13:41:28 2025 by rpki-client