$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft File: BstI9X1UOpeC2KfJbaTh3tvDwws.mft (raw, json) Hash identifier: e08HgAbeYgMX5zbFHF0rIxTULS2wI2IllZw8Ep4cc0A= Subject key identifier: DF:1C:75:8A:67:EE:7F:ED:1A:AF:7A:4B:4B:F2:D5:9A:85:90:7E:24 Authority key identifier: 06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B Certificate issuer: /CN=A91E2EFF/serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft Manifest number: 1F Signing time: Sat 09 Aug 2025 08:23:51 +0000 Manifest this update: Sat 09 Aug 2025 08:23:50 +0000 Manifest next update: Sat 16 Aug 2025 08:23:50 +0000 Files and hashes: 1: BstI9X1UOpeC2KfJbaTh3tvDwws.crl (hash: nYtDy3zSHB5wgmOAG6APa5MWy3ZtLnsG02Zrm92yEUw=) 2: 3698C9BA484A11F0B96B9D10C4F9AE02.roa (hash: 3/VlviI5lXmsXT9HHGTTjCEqy33hQJaRKWakW7gYvqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EFF, serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Validity Not Before: Aug 9 08:23:50 2025 GMT Not After : Aug 16 08:23:50 2025 GMT Subject: CN=68970596-d111 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f5:80:83:1b:5e:0c:fe:ab:a4:f4:81:da:f8: b3:3d:e6:af:4e:a1:c7:b3:71:75:f7:3e:fa:04:18: 69:98:2f:cf:21:03:92:71:ec:c2:40:84:92:ed:80: e0:32:62:d8:0d:10:3f:aa:dc:07:e0:2f:ee:ba:23: fb:61:b4:22:78:06:a4:7f:ba:dc:0c:67:a2:79:6a: 15:73:d7:e3:1c:83:b0:95:03:91:cd:a8:74:e1:5d: 87:6a:f9:4f:77:cb:9f:a0:f1:e1:30:6f:2b:97:2d: 3b:2f:b4:53:ee:7e:68:51:a8:0a:ac:01:40:5d:ba: 32:db:db:70:65:1b:a9:e8:b5:0d:f2:25:8f:15:ea: 97:7c:c8:56:e7:2c:50:9e:55:e9:bc:c7:a2:e4:a2: b5:73:84:03:3f:e4:85:5a:b7:cc:50:df:0d:36:0b: 1f:b4:68:76:ea:21:70:7d:17:b4:f2:ec:d7:ef:6f: 75:b7:66:76:6b:72:96:96:e9:a3:fc:d6:18:cc:1a: 44:35:fc:3c:33:b5:fb:42:3f:8b:1c:6a:84:f3:de: f8:55:19:69:4f:69:21:45:48:6a:1a:0f:51:84:13: 13:14:b4:ff:ac:56:d1:42:ee:4b:aa:da:d4:44:0a: 59:e4:f6:d8:a2:d0:76:4e:56:a0:e8:6e:fc:1f:32: 8a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:1C:75:8A:67:EE:7F:ED:1A:AF:7A:4B:4B:F2:D5:9A:85:90:7E:24 X509v3 Authority Key Identifier: keyid:06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:7c:87:49:1d:90:ce:96:c8:7d:28:c4:a0:62:bb:7b:c4:eb: 7b:70:9b:38:1f:be:25:50:5b:68:f2:7b:b3:da:63:57:28:1b: 1e:be:d8:c0:d7:2f:8c:c6:e1:33:f5:30:12:cd:ba:22:e5:37: 70:39:fe:72:45:31:cf:1c:71:3f:33:ed:b7:27:63:4f:e1:fc: 44:10:0b:92:03:29:d4:70:95:f6:75:e3:90:0d:e2:5e:47:b2: 88:92:91:b0:d2:46:62:1e:a3:1e:e4:6f:93:15:09:29:95:7e: 65:c0:3b:2c:55:79:89:96:3d:7a:37:38:d2:2a:48:c3:0b:05: 86:b7:ed:85:bf:45:1b:7c:89:07:97:71:c4:ef:c4:b5:13:b7: 91:ef:74:f2:a6:ff:6f:d4:a3:42:ca:f1:bb:35:f6:47:52:49: d7:b1:52:d7:30:3f:3a:2e:89:3a:fa:5a:7f:e0:b6:7b:c6:69: 73:47:20:11:eb:30:3a:4a:c6:03:36:ea:72:51:6e:f5:34:52: 9f:6b:08:46:e3:29:02:b3:ef:cf:af:ed:c9:95:27:9d:23:2b: 66:3c:1f:95:19:63:d5:17:28:dc:cf:b7:0b:6a:58:dd:0c:f9: ae:f7:0c:9a:91:23:64:dd:02:05:dd:8c:3d:fd:45:37:1c:3f: 8e:ff:83:8f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkVGRjExMC8GA1UEBRMoMDZDQjQ4RjU3RDU0M0E5NzgyRDhBN0M5NkRBNEUxREVE QkMzQzMwQjAeFw0yNTA4MDkwODIzNTBaFw0yNTA4MTYwODIzNTBaMBgxFjAUBgNV BAMTDTY4OTcwNTk2LWQxMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDL9YCDG14M/quk9IHa+LM95q9OocezcXX3PvoEGGmYL88hA5Jx7MJAhJLtgOAy YtgNED+q3AfgL+66I/thtCJ4BqR/utwMZ6J5ahVz1+Mcg7CVA5HNqHThXYdq+U93 y5+g8eEwbyuXLTsvtFPufmhRqAqsAUBdujLb23BlG6notQ3yJY8V6pd8yFbnLFCe Vem8x6LkorVzhAM/5IVat8xQ3w02Cx+0aHbqIXB9F7Ty7Nfvb3W3ZnZrcpaW6aP8 1hjMGkQ1/DwztftCP4scaoTz3vhVGWlPaSFFSGoaD1GEExMUtP+sVtFC7kuq2tRE Clnk9tii0HZOVqDobvwfMoprAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3xx1imfu f+0ar3pLS/LVmoWQfiQwHwYDVR0jBBgwFoAUBstI9X1UOpeC2KfJbaTh3tvDwwsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRUZGL0EzMTQ4NDdDNDg0 OTExRjBCRjA3MDM3MEM0RjlBRTAyL0JzdEk5WDFVT3BlQzJLZkpiYVRoM3R2RHd3 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQnN0STlYMVVPcGVDMktmSmJhVGgzdHZEd3dzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUy RUZGL0EzMTQ4NDdDNDg0OTExRjBCRjA3MDM3MEM0RjlBRTAyL0JzdEk5WDFVT3Bl QzJLZkpiYVRoM3R2RHd3cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIV8h0kdkM6WyH0oxKBiu3vE63twmzgfviVQW2jye7PaY1coGx6+2MDX L4zG4TP1MBLNuiLlN3A5/nJFMc8ccT8z7bcnY0/h/EQQC5IDKdRwlfZ145AN4l5H soiSkbDSRmIeox7kb5MVCSmVfmXAOyxVeYmWPXo3ONIqSMMLBYa37YW/RRt8iQeX ccTvxLUTt5HvdPKm/2/Uo0LK8bs19kdSSdexUtcwPzouiTr6Wn/gtnvGaXNHIBHr MDpKxgM26nJRbvU0Up9rCEbjKQKz78+v7cmVJ50jK2Y8H5UZY9UXKNzPtwtqWN0M +a73DJqRI2TdAgXdjD39RTccP47/g48= -----END CERTIFICATE-----Generated at Sun Aug 10 03:56:09 2025 by rpki-client