$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft File: Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft (raw, json) Hash identifier: SA3YL+eISKNj8uOAC2KG8qcik+2JvyfGGX6zp78lzwU= Subject key identifier: E7:CA:D1:C2:61:32:93:86:95:21:5A:2E:5C:39:6E:45:69:E5:3B:53 Authority key identifier: 06:DF:52:D2:91:50:3D:0E:2B:11:72:D3:85:C2:B1:87:79:4C:79:C7 Certificate issuer: /CN=A91F6E7D/serialNumber=06DF52D291503D0E2B1172D385C2B187794C79C7 Certificate serial: 09D6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bt9S0pFQPQ4rEXLThcKxh3lMecc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft Manifest number: 09CF Signing time: Fri 18 Jul 2025 20:10:43 +0000 Manifest this update: Fri 18 Jul 2025 20:10:43 +0000 Manifest next update: Fri 25 Jul 2025 20:10:43 +0000 Files and hashes: 1: Bt9S0pFQPQ4rEXLThcKxh3lMecc.crl (hash: 1oLSrlO5BHXhXetivWtMkUtzf7bK50W1+pHyGtkIWRk=) 2: 401EA996B5B511EABB640052C4F9AE02.roa (hash: rjAdNfdV9AdfawHfPlvLtufzt08XjVklPQmY9MfBrEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.crl rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bt9S0pFQPQ4rEXLThcKxh3lMecc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:10:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2518 (0x9d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6E7D, serialNumber=06DF52D291503D0E2B1172D385C2B187794C79C7 Validity Not Before: Jul 18 20:10:43 2025 GMT Not After : Jul 25 20:10:43 2025 GMT Subject: CN=687aaa43-69cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:fe:e8:3c:6c:72:8a:cf:eb:b1:a4:8a:b4:59: 81:4f:e7:a0:0b:58:9c:49:78:12:cb:0f:16:22:ee: 4d:c2:be:17:a1:9f:2d:32:80:24:43:6d:c2:f6:42: ce:bd:90:e8:a1:3c:46:f3:48:90:0a:45:4e:ad:6d: 24:f6:9e:d1:9b:f3:80:62:a8:1a:ae:fa:5b:96:5b: 82:3f:68:d0:0f:ac:c4:fe:46:f0:b1:12:ad:b8:4e: 12:27:15:70:34:d1:ed:fe:27:89:2b:8a:67:dc:33: c2:dd:b5:c5:95:17:6b:8e:a4:c1:c7:f7:66:9a:3d: 30:2b:e3:c7:ab:4c:e3:ab:97:76:35:83:3e:66:60: 53:4b:98:2d:28:ec:ca:38:40:2a:18:3d:6e:c5:9d: 1c:81:bc:5c:71:c0:a8:71:59:b8:c2:cb:20:7b:1e: 56:ec:d8:5c:db:ad:a6:ab:2e:87:40:fc:07:62:07: ec:94:8d:bf:02:1a:7f:30:ea:e4:91:56:fb:fb:d6: 44:fd:12:b6:df:30:82:fe:2b:51:1a:ed:13:fb:48: f8:68:f7:73:da:28:5a:2d:32:8b:5a:26:29:1b:17: 44:ef:38:5d:cb:c3:df:61:9d:90:d3:22:ae:29:d6: 06:59:ba:c1:57:4c:95:6f:5c:14:48:d4:2f:37:f4: 09:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:CA:D1:C2:61:32:93:86:95:21:5A:2E:5C:39:6E:45:69:E5:3B:53 X509v3 Authority Key Identifier: keyid:06:DF:52:D2:91:50:3D:0E:2B:11:72:D3:85:C2:B1:87:79:4C:79:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bt9S0pFQPQ4rEXLThcKxh3lMecc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:da:7b:b8:0a:21:32:25:b9:df:94:f9:fa:3d:2a:da:fa:47: 02:a4:20:6a:ef:dd:00:11:56:81:4d:2a:6b:2e:8a:8f:90:9a: 1d:38:07:01:a9:40:33:04:b9:32:aa:c1:ad:0c:8d:49:a3:4b: 8c:39:e5:e6:e3:84:4f:a8:ed:d3:75:1a:78:77:5f:56:20:d3: 9a:cf:f4:52:9d:58:9e:ab:e9:66:d4:4c:f7:2a:b8:d3:22:c0: 47:ca:b6:c0:5a:3a:d0:10:51:7a:2c:8e:76:18:9a:a6:ba:17: a3:e3:5e:dd:45:41:61:2e:21:71:62:d9:22:79:95:91:3a:81: 5c:c0:dd:79:e9:96:14:4a:48:c5:03:73:b8:25:f1:68:af:d1: c5:1b:2c:26:7d:3f:67:5b:cb:50:44:a7:e1:6f:91:35:df:90: 00:48:60:df:c6:05:07:0a:50:7b:19:e5:45:ac:16:b9:6c:18: 23:c8:95:f2:e0:43:9d:30:5c:c6:2b:21:d4:95:4f:1a:02:54: c0:13:10:8d:70:c7:0b:b3:aa:c3:49:73:9a:5e:7a:8c:a3:89: 3b:81:02:66:c1:ef:65:d5:a4:7d:81:22:95:9a:4e:be:17:70: 1f:e7:68:1c:97:f1:7d:07:3b:90:e8:d2:6a:31:05:e2:a0:53: 30:f1:73:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZFN0QxMTAvBgNVBAUTKDA2REY1MkQyOTE1MDNEMEUyQjExNzJEMzg1QzJCMTg3 Nzk0Qzc5QzcwHhcNMjUwNzE4MjAxMDQzWhcNMjUwNzI1MjAxMDQzWjAYMRYwFAYD VQQDEw02ODdhYWE0My02OWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0v7oPGxyis/rsaSKtFmBT+egC1icSXgSyw8WIu5Nwr4XoZ8tMoAkQ23C9kLO vZDooTxG80iQCkVOrW0k9p7Rm/OAYqgarvpblluCP2jQD6zE/kbwsRKtuE4SJxVw NNHt/ieJK4pn3DPC3bXFlRdrjqTBx/dmmj0wK+PHq0zjq5d2NYM+ZmBTS5gtKOzK OEAqGD1uxZ0cgbxcccCocVm4wssgex5W7Nhc262mqy6HQPwHYgfslI2/Ahp/MOrk kVb7+9ZE/RK23zCC/itRGu0T+0j4aPdz2ihaLTKLWiYpGxdE7zhdy8PfYZ2Q0yKu KdYGWbrBV0yVb1wUSNQvN/QJ7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfK0cJh MpOGlSFaLlw5bkVp5TtTMB8GA1UdIwQYMBaAFAbfUtKRUD0OKxFy04XCsYd5THnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkU3RC8xNzU5RTRDODgz ODExMUVBQUNCOUJDMzBDNEY5QUUwMi9CdDlTMHBGUVBRNHJFWExUaGNLeGgzbE1l Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0J0OVMwcEZRUFE0ckVYTFRoY0t4aDNsTWVjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkU3RC8xNzU5RTRDODgzODExMUVBQUNCOUJDMzBDNEY5QUUwMi9CdDlTMHBGUVBR NHJFWExUaGNLeGgzbE1lY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC22nu4CiEyJbnflPn6PSra+kcCpCBq790AEVaBTSprLoqPkJodOAcB qUAzBLkyqsGtDI1Jo0uMOeXm44RPqO3TdRp4d19WINOaz/RSnVieq+lm1Ez3KrjT IsBHyrbAWjrQEFF6LI52GJqmuhej417dRUFhLiFxYtkieZWROoFcwN156ZYUSkjF A3O4JfFor9HFGywmfT9nW8tQRKfhb5E135AASGDfxgUHClB7GeVFrBa5bBgjyJXy 4EOdMFzGKyHUlU8aAlTAExCNcMcLs6rDSXOaXnqMo4k7gQJmwe9l1aR9gSKVmk6+ F3Af52gcl/F9BzuQ6NJqMQXioFMw8XNM -----END CERTIFICATE-----Generated at Sun Jul 20 19:03:28 2025 by rpki-client