$ rpki-client -vvf rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft File: BHT0BqF40ixU1e9yTGssLJo7a5g.mft (raw, json) Hash identifier: tfIuwiITuWXiRyF3wF/BLrkC3soHmvfgnTRyB09vBZU= Subject key identifier: 2C:97:29:BE:B8:39:59:62:D7:49:20:FD:FF:85:DD:BB:6C:4D:ED:9B Authority key identifier: 04:74:F4:06:A1:78:D2:2C:54:D5:EF:72:4C:6B:2C:2C:9A:3B:6B:98 Certificate issuer: /CN=A91D60CF/serialNumber=0474F406A178D22C54D5EF724C6B2C2C9A3B6B98 Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft Manifest number: EB Signing time: Fri 05 Sep 2025 05:46:28 +0000 Manifest this update: Fri 05 Sep 2025 05:46:27 +0000 Manifest next update: Fri 12 Sep 2025 05:46:27 +0000 Files and hashes: 1: BHT0BqF40ixU1e9yTGssLJo7a5g.crl (hash: 0KhvNmY60Xx3iIelDZYHy+ba0JquXq2utM2Uv/wev0c=) 2: B56F40DEE9DB11EFBDD8BD26C4F9AE02.roa (hash: 7PT1hzEu8yFfZFQXURAd4+p59Mps1ow7oAQ1a2yeyaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.crl rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:46:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D60CF, serialNumber=0474F406A178D22C54D5EF724C6B2C2C9A3B6B98 Validity Not Before: Sep 5 05:46:27 2025 GMT Not After : Sep 12 05:46:27 2025 GMT Subject: CN=68ba7934-6053 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:14:f2:c7:b5:63:09:5e:e2:42:58:68:24:af: 7e:5b:7c:96:00:96:fe:e2:3b:4a:4a:e6:3b:62:ef: 31:1d:ac:a5:bb:e5:38:67:b9:5e:61:68:7c:19:92: 6b:cd:54:da:04:76:39:e7:85:8c:b4:e4:47:65:3c: 7a:cd:09:1d:68:3d:54:ad:8d:92:ae:eb:3b:83:59: bd:45:fc:ef:79:48:c7:d0:26:0d:52:b7:63:0a:18: d2:d3:36:1a:c0:b2:2b:cd:04:e1:84:c9:96:a1:19: ea:e9:0d:73:38:a0:37:7d:ba:3b:25:37:fb:63:4e: ec:49:e2:c4:32:e3:73:5f:c7:68:df:87:a4:9a:a6: 93:03:27:bc:03:59:b3:dd:6b:56:50:fc:7f:30:9c: 70:36:62:cc:d4:d6:a6:72:2d:21:09:8b:2c:c4:16: fb:94:20:c8:77:a4:d0:93:ac:f1:d0:19:5e:4f:af: 70:ed:e7:0b:64:77:85:da:37:7c:7b:aa:49:4f:92: 9b:83:32:35:30:9c:ab:db:9b:e6:cc:3b:83:1e:e2: 28:33:48:15:4c:fc:a1:f0:35:e1:81:53:8d:0f:fa: a4:83:42:f4:9f:be:70:89:b2:4f:c3:df:88:b3:a3: b9:a6:a5:0d:8c:8a:9d:f1:7b:e1:21:85:6d:a6:88: 39:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:97:29:BE:B8:39:59:62:D7:49:20:FD:FF:85:DD:BB:6C:4D:ED:9B X509v3 Authority Key Identifier: keyid:04:74:F4:06:A1:78:D2:2C:54:D5:EF:72:4C:6B:2C:2C:9A:3B:6B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:9e:91:d4:a7:05:c0:fe:bd:49:fe:5b:8c:5d:c5:b1:45:e3: 97:0f:a0:77:c7:d7:cd:d5:9e:4c:5f:5e:f1:7f:b0:67:81:15: 04:f9:b7:80:01:46:d9:cc:2d:57:17:4f:42:f9:2c:b5:9c:35: 6e:5f:47:16:cd:cc:bc:6d:f0:67:6a:b3:24:19:75:9f:05:a2: 34:df:7f:36:b8:54:c4:c2:82:0e:b2:20:85:e6:b8:95:c0:73: 91:ba:89:f9:1f:38:8d:f5:84:02:43:28:8b:b6:74:1e:25:b3: e8:43:80:35:60:71:60:b7:d1:28:5b:c0:16:5c:9b:75:98:4d: 8c:76:6b:10:c1:73:44:40:a4:d3:b3:40:f0:b5:a8:1d:44:43: 45:ff:11:3a:30:d4:7c:cc:10:94:f3:e2:e2:61:61:e7:da:57: 90:79:15:77:82:fb:d1:46:66:fa:e8:bd:11:a5:7e:e0:de:7f: 0c:9d:d9:61:2a:cb:23:70:d5:9b:e1:01:09:20:c0:d9:77:ba: 75:e7:f5:5f:69:7e:03:5d:c8:04:2a:dd:c2:c9:29:9c:01:c8: 2b:c2:68:d7:50:18:33:b0:5e:61:41:4c:6e:b2:b0:61:3d:6b: 5c:a2:69:cb:20:d1:ba:8b:14:37:12:08:98:5e:2d:90:2c:9e: 19:5f:ec:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYwQ0YxMTAvBgNVBAUTKDA0NzRGNDA2QTE3OEQyMkM1NEQ1RUY3MjRDNkIyQzJD OUEzQjZCOTgwHhcNMjUwOTA1MDU0NjI3WhcNMjUwOTEyMDU0NjI3WjAYMRYwFAYD VQQDEw02OGJhNzkzNC02MDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5BTyx7VjCV7iQlhoJK9+W3yWAJb+4jtKSuY7Yu8xHaylu+U4Z7leYWh8GZJr zVTaBHY554WMtORHZTx6zQkdaD1UrY2Srus7g1m9RfzveUjH0CYNUrdjChjS0zYa wLIrzQThhMmWoRnq6Q1zOKA3fbo7JTf7Y07sSeLEMuNzX8do34ekmqaTAye8A1mz 3WtWUPx/MJxwNmLM1Namci0hCYssxBb7lCDId6TQk6zx0BleT69w7ecLZHeF2jd8 e6pJT5KbgzI1MJyr25vmzDuDHuIoM0gVTPyh8DXhgVOND/qkg0L0n75wibJPw9+I s6O5pqUNjIqd8XvhIYVtpog5sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCyXKb64 OVli10kg/f+F3btsTe2bMB8GA1UdIwQYMBaAFAR09AaheNIsVNXvckxrLCyaO2uY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjBDRi9FNTM2MDhGMDJB RkMxMUVGQTAyNDNDNEFDNEY5QUUwMi9CSFQwQnFGNDBpeFUxZTl5VEdzc0xKbzdh NWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JIVDBCcUY0MGl4VTFlOXlUR3NzTEpvN2E1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjBDRi9FNTM2MDhGMDJBRkMxMUVGQTAyNDNDNEFDNEY5QUUwMi9CSFQwQnFGNDBp eFUxZTl5VEdzc0xKbzdhNWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBnpHUpwXA/r1J/luMXcWxReOXD6B3x9fN1Z5MX17xf7BngRUE+beA AUbZzC1XF09C+Sy1nDVuX0cWzcy8bfBnarMkGXWfBaI03382uFTEwoIOsiCF5riV wHORuon5HziN9YQCQyiLtnQeJbPoQ4A1YHFgt9EoW8AWXJt1mE2MdmsQwXNEQKTT s0DwtagdRENF/xE6MNR8zBCU8+LiYWHn2leQeRV3gvvRRmb66L0RpX7g3n8Mndlh KssjcNWb4QEJIMDZd7p15/VfaX4DXcgEKt3CySmcAcgrwmjXUBgzsF5hQUxusrBh PWtcomnLING6ixQ3EgiYXi2QLJ4ZX+yM -----END CERTIFICATE-----Generated at Sat Sep 6 17:24:00 2025 by rpki-client