$ rpki-client -vvf rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft File: BHT0BqF40ixU1e9yTGssLJo7a5g.mft (raw, json) Hash identifier: nm3Drum+XjKGkKBqRI1vpuFsEr2R51mCppy9cHGnzuw= Subject key identifier: 5C:96:C8:5B:69:8D:21:52:F8:E6:EF:5E:04:30:8F:BA:CC:CC:EF:8F Authority key identifier: 04:74:F4:06:A1:78:D2:2C:54:D5:EF:72:4C:6B:2C:2C:9A:3B:6B:98 Certificate issuer: /CN=A91D60CF/serialNumber=0474F406A178D22C54D5EF724C6B2C2C9A3B6B98 Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft Manifest number: D2 Signing time: Sat 19 Jul 2025 06:11:48 +0000 Manifest this update: Sat 19 Jul 2025 06:11:47 +0000 Manifest next update: Sat 26 Jul 2025 06:11:47 +0000 Files and hashes: 1: BHT0BqF40ixU1e9yTGssLJo7a5g.crl (hash: iO/oN2wLQPXDYJpwDso2JNiUF0OYFwZy17aWd6EHWJk=) 2: B56F40DEE9DB11EFBDD8BD26C4F9AE02.roa (hash: 7PT1hzEu8yFfZFQXURAd4+p59Mps1ow7oAQ1a2yeyaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.crl rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:11:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D60CF, serialNumber=0474F406A178D22C54D5EF724C6B2C2C9A3B6B98 Validity Not Before: Jul 19 06:11:47 2025 GMT Not After : Jul 26 06:11:47 2025 GMT Subject: CN=687b3724-5c83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a5:46:d1:3f:15:66:ea:1c:92:c6:a0:8f:77: 84:6b:0e:87:d0:3b:75:08:d0:34:04:25:6e:b9:97: 36:d1:c5:ba:3d:56:2d:02:ed:a8:e4:64:c9:0e:cf: fe:f5:ee:6b:17:95:b0:2d:e6:04:c4:e7:4f:1e:00: ca:9f:c4:c2:b6:b7:58:0a:66:37:1f:4d:4e:45:c7: ed:76:f4:79:b4:0d:08:56:dd:c1:69:c4:5d:5b:59: f0:21:62:dc:41:93:0b:ba:0e:62:a0:63:c0:d1:62: 48:54:94:da:45:38:26:d6:7e:4b:5d:ad:97:bd:8e: c1:67:0c:7f:92:91:59:de:8e:1e:80:bc:31:8d:af: d7:fb:1a:3b:a8:91:84:7e:95:f6:93:e6:12:9c:cf: 0c:11:6e:b8:41:8e:ff:d9:7b:df:04:73:9b:f3:cc: de:66:b5:65:06:c9:cd:be:ee:fd:eb:a0:3d:d8:d0: 81:5b:68:1e:d3:8a:93:f1:cb:49:dd:52:92:b8:71: 65:1b:63:fa:84:b5:2a:74:de:a8:fa:05:ad:11:58: e4:ac:cc:f2:bc:8e:df:4a:38:e8:30:da:89:d3:b0: fd:bc:9e:f7:ea:bc:83:01:02:3a:60:b4:41:2e:aa: 31:a7:ee:9d:bd:eb:a8:b0:60:e4:16:7f:5b:48:eb: d6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:96:C8:5B:69:8D:21:52:F8:E6:EF:5E:04:30:8F:BA:CC:CC:EF:8F X509v3 Authority Key Identifier: keyid:04:74:F4:06:A1:78:D2:2C:54:D5:EF:72:4C:6B:2C:2C:9A:3B:6B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:05:22:29:98:10:e7:be:db:1d:a5:29:b1:e7:0d:07:5c:d6: 0e:2b:ce:96:5d:fa:66:e5:b4:55:f6:e4:69:11:26:b2:1a:a4: 7d:d1:ac:4a:7e:9d:ea:ab:1c:63:80:b7:48:1a:80:d6:50:eb: e9:78:a2:18:04:52:d2:c9:18:ac:49:50:cc:78:0b:9c:ce:5b: 4f:d1:97:a7:85:7f:83:49:37:55:ed:6d:7c:de:e4:15:1d:e3: 88:03:5c:d6:19:70:3b:91:37:e8:e6:28:96:f4:a9:82:42:72: 6b:30:6c:10:77:ec:09:8e:5e:ac:e5:c6:74:f0:73:0f:e6:b6: 6d:ad:5d:b1:d2:8d:bd:08:d0:9b:eb:69:6e:17:31:dc:f0:67: e2:4c:5e:52:5e:07:3a:bb:3f:80:a6:d5:26:bc:3a:9c:83:3b: 4a:d8:4b:c6:d7:96:01:c5:0e:34:99:cf:a1:7d:fc:4d:9b:93: a6:95:26:7a:f8:a9:13:0f:3c:45:a3:82:ec:06:0f:46:e8:2b: 5f:f0:1f:d4:c7:a8:3a:5b:7d:88:d9:c1:d0:f6:1b:cc:0c:33: d3:ba:c1:24:9f:9c:cf:1f:5c:b2:ca:40:e0:de:a6:09:25:19: 4f:9e:06:99:e0:63:2a:a7:eb:cd:e7:97:86:c2:61:98:f1:b3: ef:62:43:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYwQ0YxMTAvBgNVBAUTKDA0NzRGNDA2QTE3OEQyMkM1NEQ1RUY3MjRDNkIyQzJD OUEzQjZCOTgwHhcNMjUwNzE5MDYxMTQ3WhcNMjUwNzI2MDYxMTQ3WjAYMRYwFAYD VQQDEw02ODdiMzcyNC01YzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1qVG0T8VZuocksagj3eEaw6H0Dt1CNA0BCVuuZc20cW6PVYtAu2o5GTJDs/+ 9e5rF5WwLeYExOdPHgDKn8TCtrdYCmY3H01ORcftdvR5tA0IVt3BacRdW1nwIWLc QZMLug5ioGPA0WJIVJTaRTgm1n5LXa2XvY7BZwx/kpFZ3o4egLwxja/X+xo7qJGE fpX2k+YSnM8MEW64QY7/2XvfBHOb88zeZrVlBsnNvu7966A92NCBW2ge04qT8ctJ 3VKSuHFlG2P6hLUqdN6o+gWtEVjkrMzyvI7fSjjoMNqJ07D9vJ736ryDAQI6YLRB Lqoxp+6dveuosGDkFn9bSOvWmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFyWyFtp jSFS+ObvXgQwj7rMzO+PMB8GA1UdIwQYMBaAFAR09AaheNIsVNXvckxrLCyaO2uY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjBDRi9FNTM2MDhGMDJB RkMxMUVGQTAyNDNDNEFDNEY5QUUwMi9CSFQwQnFGNDBpeFUxZTl5VEdzc0xKbzdh NWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JIVDBCcUY0MGl4VTFlOXlUR3NzTEpvN2E1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjBDRi9FNTM2MDhGMDJBRkMxMUVGQTAyNDNDNEFDNEY5QUUwMi9CSFQwQnFGNDBp eFUxZTl5VEdzc0xKbzdhNWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJBSIpmBDnvtsdpSmx5w0HXNYOK86WXfpm5bRV9uRpESayGqR90axK fp3qqxxjgLdIGoDWUOvpeKIYBFLSyRisSVDMeAuczltP0ZenhX+DSTdV7W183uQV HeOIA1zWGXA7kTfo5iiW9KmCQnJrMGwQd+wJjl6s5cZ08HMP5rZtrV2x0o29CNCb 62luFzHc8GfiTF5SXgc6uz+AptUmvDqcgztK2EvG15YBxQ40mc+hffxNm5OmlSZ6 +KkTDzxFo4LsBg9G6Ctf8B/Ux6g6W32I2cHQ9hvMDDPTusEkn5zPH1yyykDg3qYJ JRlPngaZ4GMqp+vN55eGwmGY8bPvYkPq -----END CERTIFICATE-----Generated at Sun Jul 20 20:30:26 2025 by rpki-client