$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft File: bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft (raw, json) Hash identifier: XLSTjteZe7w8/cFx6FEgxMS2bC7aYoio7XY7hI/53Zs= Subject key identifier: E3:BA:32:7D:2C:A1:7B:09:11:BB:90:4E:31:D4:EB:52:4E:C9:B8:69 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3643 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft Manifest number: 358D Signing time: Tue 12 Aug 2025 14:17:52 +0000 Manifest this update: Tue 12 Aug 2025 14:17:52 +0000 Manifest next update: Tue 19 Aug 2025 14:17:52 +0000 Files and hashes: 1: bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl (hash: 9sAcKwdEF6ANbWv9TXQVYTBQAT6C8kUdXBFkVu/GVTw=) 2: 119B023E80A111EFAC559545C4F9AE02.roa (hash: 9LqedBh/T1Pn2Gl1dZnlyMno6hLUqevpcEI4W+No+WM=) 3: D06D852C0E8411EFB653657DC4F9AE02.roa (hash: YwwNNBiRN8WbU6nMfOYGjf/BEh8X+MeiEpmtw+179nA=) 4: 4703352E2BC311EEA3EEFA66C4F9AE02.roa (hash: vGmHulSbJNNSRKDRkCSlexuZ8gppAxWgoNUfgpqDDQo=) 5: 5E05FB54A8FE11E990A7E27FC4F9AE02.roa (hash: zMFCeCXoKrPrwTq+A2LXxPGmSZJf7zHnpagMrcSo0Pw=) 6: FCBF1666677C11EBB2A3F00CC4F9AE02.roa (hash: 8Dc8gjY40rl5/6Sh0h3/EDNd7vs6rm1lJULYeNiLj34=) 7: 88978730772311EBB972032EC4F9AE02.roa (hash: 9XGtZh3U+oKF1G7lH8KZbGLBHCLusn+PwSpTkwD9Utg=) 8: 331F345A383611E6B2282B5DC4F9AE02.roa (hash: ONbBKi5oc2lvv+jkklAdH08GL4vyG52+/DptD9K/oRU=) 9: 318FB51A383611E6B2282B5DC4F9AE02.roa (hash: TSVCxvcc+Sayf1kDVk4KAdOPfT663XPtMJq+qgnVb4Y=) 10: 328EDB76383611E6B2282B5DC4F9AE02.roa (hash: GzXfr4YWUVHSzpZQvdoC1TFhpGmAGgBOPMRMQ/ex3H4=) 11: 3204348A383611E6B2282B5DC4F9AE02.roa (hash: ls3D3B0qMoaDuK9w5uGgZ5eY+SJvp9CyLR4mx4nye6A=) 12: 89A73D46772311EBB972032EC4F9AE02.roa (hash: r21OVByQYNcBYjJc0J53OAidjOhKnEhsIuFLOBFbEzY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 14:17:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13891 (0x3643) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Aug 12 14:17:52 2025 GMT Not After : Aug 19 14:17:52 2025 GMT Subject: CN=689b4d10-ce8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9b:3f:04:5a:18:e5:88:49:d0:2b:f8:6b:0a: df:4d:61:f8:a8:23:de:40:a1:b8:0d:f8:15:05:b7: 78:1f:51:bd:7e:90:d5:69:29:84:f1:06:00:b5:dd: 6e:0d:24:6c:4c:4a:d9:8f:0d:45:76:70:8b:ac:81: b9:43:f6:6b:a8:da:be:89:06:20:50:7b:b3:26:4d: 5e:6f:fa:d4:a5:77:20:a9:f9:43:a7:6b:b7:52:ae: b0:96:07:d1:a4:4d:9d:12:9c:59:8d:a5:31:cc:3a: 65:25:cb:47:7e:fd:d5:e9:b0:ff:ec:f9:ba:80:fa: ba:62:7c:ef:2b:b6:c8:82:5d:aa:2e:71:2b:3d:21: 8c:31:df:c7:f8:c6:61:2f:29:72:bf:39:a4:f6:b4: 35:01:5a:e4:63:41:d7:e2:5c:27:12:47:48:cc:50: f6:9b:2e:28:15:83:32:29:3a:e2:7f:82:84:21:76: 55:3a:84:79:48:b1:0e:9e:d0:b0:48:c4:5d:f7:47: 06:7e:3d:73:ce:e3:a3:7e:27:ea:65:05:f5:ab:92: bc:49:84:53:34:39:d9:63:ca:44:7b:bb:ea:df:b6: 73:cf:64:1f:cd:8f:fc:04:c5:41:d3:05:09:a9:59: 47:15:5a:b8:6b:da:85:b0:14:43:00:63:09:c8:94: 78:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:BA:32:7D:2C:A1:7B:09:11:BB:90:4E:31:D4:EB:52:4E:C9:B8:69 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:42:f3:92:45:0b:80:99:a3:73:80:da:55:30:a6:f5:25:9f: cc:f7:85:30:dc:69:91:e6:84:97:97:1c:44:d5:01:b4:f5:b7: 06:ba:af:61:a6:90:b1:fe:10:d2:64:8b:6b:17:aa:6b:83:81: d8:5d:bc:48:c4:00:9d:89:69:f1:b3:b3:6f:d7:eb:91:3a:98: 4b:a2:e3:34:80:15:16:09:12:45:73:24:70:6c:26:4e:38:a8: c5:0e:e8:c7:6f:fc:4c:4e:b0:3a:95:b7:1c:70:fa:e5:09:42: e9:da:59:c2:d2:ab:65:e4:eb:dd:b6:47:2a:11:97:e6:f9:cf: c3:b7:0a:4e:bd:00:6a:30:c9:5d:36:83:31:f0:c2:9f:86:18: 1b:12:99:47:ea:cb:7e:65:25:64:93:05:63:f8:e8:a9:ce:32: 80:67:65:0a:5f:78:87:7d:24:6d:93:78:5e:db:45:0c:29:8a: 28:a1:4f:cf:45:5c:c4:a2:30:a6:ba:c5:63:de:24:b1:e4:7f: eb:17:3d:76:6a:7a:aa:79:77:73:61:ca:18:27:fc:d8:0e:8f: 72:1b:ea:66:43:2d:13:42:e2:7d:ba:97:8b:94:7f:73:00:24: 91:d6:d4:03:c0:d6:54:92:9c:b7:d8:e1:ca:ba:4f:9e:d9:7f: e2:aa:c1:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwODEyMTQxNzUyWhcNMjUwODE5MTQxNzUyWjAYMRYwFAYD VQQDEw02ODliNGQxMC1jZThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJs/BFoY5YhJ0Cv4awrfTWH4qCPeQKG4DfgVBbd4H1G9fpDVaSmE8QYAtd1u DSRsTErZjw1FdnCLrIG5Q/ZrqNq+iQYgUHuzJk1eb/rUpXcgqflDp2u3Uq6wlgfR pE2dEpxZjaUxzDplJctHfv3V6bD/7Pm6gPq6YnzvK7bIgl2qLnErPSGMMd/H+MZh Lylyvzmk9rQ1AVrkY0HX4lwnEkdIzFD2my4oFYMyKTrif4KEIXZVOoR5SLEOntCw SMRd90cGfj1zzuOjfifqZQX1q5K8SYRTNDnZY8pEe7vq37Zzz2QfzY/8BMVB0wUJ qVlHFVq4a9qFsBRDAGMJyJR4hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOO6Mn0s oXsJEbuQTjHU61JOybhpMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTcwQi85N0FGNkRGMDFENkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJU MllTSEduTWhxZEZwWUw0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmQvOSRQuAmaNzgNpVMKb1JZ/M94Uw3GmR5oSXlxxE1QG09bcGuq9h ppCx/hDSZItrF6prg4HYXbxIxACdiWnxs7Nv1+uROphLouM0gBUWCRJFcyRwbCZO OKjFDujHb/xMTrA6lbcccPrlCULp2lnC0qtl5OvdtkcqEZfm+c/DtwpOvQBqMMld NoMx8MKfhhgbEplH6st+ZSVkkwVj+OipzjKAZ2UKX3iHfSRtk3he20UMKYoooU/P RVzEojCmusVj3iSx5H/rFz12anqqeXdzYcoYJ/zYDo9yG+pmQy0TQuJ9upeLlH9z ACSR1tQDwNZUkpy32OHKuk+e2X/iqsEh -----END CERTIFICATE-----Generated at Wed Aug 13 02:42:50 2025 by rpki-client