$ rpki-client -vvf rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft File: BXtTd0A4JnigePW_KExyZ5S50TQ.mft (raw, json) Hash identifier: boM/iXQ9gcvY/RwrYnHO5zKtF0RhRQx7Nv7Gu+vxLqw= Subject key identifier: CB:10:E5:28:B8:0F:94:10:6B:B8:A3:2E:D8:28:56:49:29:3C:41:F2 Authority key identifier: 05:7B:53:77:40:38:26:78:A0:78:F5:BF:28:4C:72:67:94:B9:D1:34 Certificate issuer: /CN=A91992FA/serialNumber=057B537740382678A078F5BF284C726794B9D134 Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXtTd0A4JnigePW_KExyZ5S50TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft Manifest number: 69 Signing time: Sun 07 Sep 2025 07:29:23 +0000 Manifest this update: Sun 07 Sep 2025 07:29:23 +0000 Manifest next update: Sun 14 Sep 2025 07:29:23 +0000 Files and hashes: 1: BXtTd0A4JnigePW_KExyZ5S50TQ.crl (hash: dVqqqd9v7HMbF4f8VgJCqwn2EumJl6W+JdWvni3w9JM=) 2: CF5EEDA6894411F0BE628977C4F9AE02.roa (hash: 17QpSjP3T4fN2iFoeGDXqVvnkQ3k4lIOqR9Kwrs2UKY=) 3: 44A28FACEFEC11EF80EC123DC4F9AE02.roa (hash: kIHtM5yk/7E77z9qFDfBUJpQm2RMukSPxAc1zKCnuxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.crl rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXtTd0A4JnigePW_KExyZ5S50TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 07:29:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91992FA, serialNumber=057B537740382678A078F5BF284C726794B9D134 Validity Not Before: Sep 7 07:29:23 2025 GMT Not After : Sep 14 07:29:23 2025 GMT Subject: CN=68bd3453-6665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d7:e6:98:e1:7b:7b:97:fd:ed:e8:26:41:05: e0:d8:1f:e2:2b:6e:e2:9d:e9:b5:97:13:84:2c:ee: b0:9b:0a:1b:57:8e:42:f0:6c:4a:24:30:01:41:0b: e3:95:f5:a6:6b:2d:34:7b:32:31:a5:1b:cc:78:f6: 29:06:75:fa:dc:cc:0c:66:65:43:f2:82:27:fa:22: 50:38:36:1b:5c:e2:42:24:dd:51:5a:fc:6e:38:c2: 2d:16:b8:79:0a:12:f4:c4:0d:2a:a4:71:17:5f:aa: 71:a9:6a:8f:36:e1:0e:89:e0:93:38:fd:ac:6a:44: 03:ab:3f:fd:d1:d5:d8:d7:97:6a:c6:b8:93:63:ee: 94:de:82:38:37:9b:9e:1c:9c:46:b3:b7:4e:5c:d3: f5:56:77:b8:6b:ae:06:29:04:42:64:79:95:20:75: 41:66:7e:d7:14:f4:1a:0a:40:d8:bf:64:61:a9:24: 11:71:93:b4:09:0a:1e:3c:58:86:42:77:ca:9a:36: 88:40:82:dd:58:c4:32:43:99:12:e7:80:4b:7c:b9: 6b:e5:60:2e:16:50:63:39:a6:8c:24:25:41:67:39: 17:7f:a2:ec:70:ea:74:7c:c8:61:2b:20:fa:69:9c: 67:6f:fd:1f:b6:df:ad:71:ce:56:12:73:bb:46:37: 17:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:10:E5:28:B8:0F:94:10:6B:B8:A3:2E:D8:28:56:49:29:3C:41:F2 X509v3 Authority Key Identifier: keyid:05:7B:53:77:40:38:26:78:A0:78:F5:BF:28:4C:72:67:94:B9:D1:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXtTd0A4JnigePW_KExyZ5S50TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:0b:d8:03:18:79:ec:22:5c:07:f3:74:1c:d6:8c:b3:4d:cd: 7e:09:01:94:68:1d:5e:87:8b:80:f2:db:45:df:32:64:3b:db: 54:1c:9f:d6:93:ae:30:7f:52:5f:57:d9:85:4d:ad:a8:ee:38: 5c:8d:13:91:9d:c6:3f:25:06:5b:e0:87:87:93:90:26:18:7c: ba:44:6f:dd:cd:45:f9:cd:66:41:f1:d1:48:c2:eb:b6:4f:57: f9:5d:5b:dc:de:0a:da:e2:90:29:8e:86:83:ef:d7:3e:42:0c: 62:22:fe:57:0d:f3:d0:c8:45:fd:bb:0a:26:6d:a3:c2:9a:7a: 71:fd:7e:38:7e:ad:29:6f:20:c6:0c:66:bf:69:b5:12:d2:cd: 5d:d2:a3:eb:34:74:d1:46:e7:df:91:92:51:fe:43:9f:84:45: cc:d3:2b:e0:a9:78:d1:04:83:6e:6c:44:0c:0e:b1:c0:e2:28: 2a:ed:2a:9b:9e:05:bd:f1:5e:c1:44:1b:9b:ed:93:55:36:2d: 22:85:cd:8a:d6:2e:b2:4e:16:13:a8:1e:c2:0b:19:00:74:ae: 90:8f:c6:8f:1b:5d:2b:5c:a2:ac:5c:7e:bc:66:99:5d:58:8e: a1:7b:46:8f:c2:28:59:34:68:74:33:2e:97:8b:a4:10:88:db: af:cd:ee:99 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 OTJGQTExMC8GA1UEBRMoMDU3QjUzNzc0MDM4MjY3OEEwNzhGNUJGMjg0QzcyNjc5 NEI5RDEzNDAeFw0yNTA5MDcwNzI5MjNaFw0yNTA5MTQwNzI5MjNaMBgxFjAUBgNV BAMTDTY4YmQzNDUzLTY2NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZ1+aY4Xt7l/3t6CZBBeDYH+IrbuKd6bWXE4Qs7rCbChtXjkLwbEokMAFBC+OV 9aZrLTR7MjGlG8x49ikGdfrczAxmZUPygif6IlA4Nhtc4kIk3VFa/G44wi0WuHkK EvTEDSqkcRdfqnGpao824Q6J4JM4/axqRAOrP/3R1djXl2rGuJNj7pTegjg3m54c nEazt05c0/VWd7hrrgYpBEJkeZUgdUFmftcU9BoKQNi/ZGGpJBFxk7QJCh48WIZC d8qaNohAgt1YxDJDmRLngEt8uWvlYC4WUGM5powkJUFnORd/ouxw6nR8yGErIPpp nGdv/R+2361xzlYSc7tGNxd9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyxDlKLgP lBBruKMu2ChWSSk8QfIwHwYDVR0jBBgwFoAUBXtTd0A4JnigePW/KExyZ5S50TQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5MkZBL0ZBNDZFMEQyRUUw MzExRUY5QzJCOEE0OUM0RjlBRTAyL0JYdFRkMEE0Sm5pZ2VQV19LRXh5WjVTNTBU US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQlh0VGQwQTRKbmlnZVBXX0tFeHlaNVM1MFRRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5 MkZBL0ZBNDZFMEQyRUUwMzExRUY5QzJCOEE0OUM0RjlBRTAyL0JYdFRkMEE0Sm5p Z2VQV19LRXh5WjVTNTBUUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKQL2AMYeewiXAfzdBzWjLNNzX4JAZRoHV6Hi4Dy20XfMmQ721Qcn9aT rjB/Ul9X2YVNrajuOFyNE5Gdxj8lBlvgh4eTkCYYfLpEb93NRfnNZkHx0UjC67ZP V/ldW9zeCtrikCmOhoPv1z5CDGIi/lcN89DIRf27CiZto8KaenH9fjh+rSlvIMYM Zr9ptRLSzV3So+s0dNFG59+RklH+Q5+ERczTK+CpeNEEg25sRAwOscDiKCrtKpue Bb3xXsFEG5vtk1U2LSKFzYrWLrJOFhOoHsILGQB0rpCPxo8bXStcoqxcfrxmmV1Y jqF7Ro/CKFk0aHQzLpeLpBCI26/N7pk= -----END CERTIFICATE-----Generated at Sun Sep 7 14:30:57 2025 by rpki-client