$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft File: BstI9X1UOpeC2KfJbaTh3tvDwws.mft (raw, json) Hash identifier: 0pDdDt0yegTMB/k5s1f49FBp0+q8ckIX6+g8bvhdGUs= Subject key identifier: 3C:C2:4E:05:B6:81:FC:B7:21:86:86:3C:A1:AB:8A:E7:D3:8D:98:06 Authority key identifier: 06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B Certificate issuer: /CN=A91E2EFF/serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft Manifest number: 4B Signing time: Wed 05 Nov 2025 07:31:12 +0000 Manifest this update: Wed 05 Nov 2025 07:31:12 +0000 Manifest next update: Wed 12 Nov 2025 07:31:12 +0000 Files and hashes: 1: BstI9X1UOpeC2KfJbaTh3tvDwws.crl (hash: IAljhZjP2Z1MaJZNpYaDN0AOcMgz8s+YGpucEwv4uDE=) 2: 3698C9BA484A11F0B96B9D10C4F9AE02.roa (hash: 3/VlviI5lXmsXT9HHGTTjCEqy33hQJaRKWakW7gYvqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:31:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EFF, serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Validity Not Before: Nov 5 07:31:12 2025 GMT Not After : Nov 12 07:31:12 2025 GMT Subject: CN=690afd40-df4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e6:39:dc:4a:97:d9:27:0f:db:05:5c:4c:d0: 5e:73:e5:0f:60:1f:ed:db:e9:a4:27:c6:a4:b7:3e: 23:74:8e:76:68:c8:f7:a6:09:57:60:dc:c4:fb:8d: 38:bc:61:cb:80:8d:c3:07:e5:7c:79:a6:d2:b9:bc: 06:96:7f:a4:24:9b:ae:de:50:74:a5:66:db:ce:07: 6c:19:c4:c2:f8:77:22:7a:73:ac:83:d3:dc:7a:22: 1c:d0:ac:ed:b9:5b:ed:56:cd:79:a0:d1:ee:e9:45: b8:c7:96:68:2f:7a:ac:1f:98:41:99:d8:72:f8:4f: 13:99:b9:61:a5:cb:0a:bd:79:0a:d5:c5:52:5c:4a: 46:12:ea:00:3f:62:03:1f:26:bc:01:09:a6:85:f0: 2b:04:b1:b7:11:d3:2e:ed:64:01:64:6a:19:25:90: 78:db:ce:9a:b0:38:5b:cf:46:e1:cd:50:a3:50:58: a7:c4:d1:7c:57:4f:a2:67:d9:b1:d9:65:9c:3a:05: 3d:dc:39:b4:98:af:3b:11:09:dd:37:f4:61:59:aa: 62:d8:5b:34:f6:79:87:22:48:e3:13:ff:82:c1:6f: f8:e3:89:d4:88:cb:71:dc:2b:ed:44:0d:95:d9:1d: e8:86:f4:a6:93:2f:4a:a2:04:7c:32:4c:26:4d:fc: fb:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:C2:4E:05:B6:81:FC:B7:21:86:86:3C:A1:AB:8A:E7:D3:8D:98:06 X509v3 Authority Key Identifier: keyid:06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:fb:37:aa:00:79:73:93:f5:89:95:29:b0:24:d1:6b:26:90: 8e:0a:0c:b8:4f:ea:02:f3:c4:ee:93:74:c4:9c:f0:50:37:e3: f3:c3:92:e7:4f:ef:14:c0:0b:ac:be:1e:75:7e:f6:3a:8e:af: e4:87:65:37:fc:fb:03:b5:0e:f1:cb:25:33:a5:f7:62:af:0e: fe:47:b3:bc:37:f3:a6:84:04:be:ef:28:a4:70:f7:f3:a1:e2: 44:af:01:16:23:d0:84:1c:44:b0:aa:19:df:16:84:6f:bf:00: 0f:90:7a:41:68:1d:df:02:d2:ee:df:a0:c3:ba:5c:c8:26:b0: 0b:5b:d1:f9:c3:5c:dc:87:5e:99:cc:f4:8f:b4:b5:27:40:04: 76:4c:23:80:d3:2f:28:e9:60:ec:bd:21:13:c1:20:c6:f8:31: ef:f9:81:72:bb:37:64:e1:77:28:91:51:7e:7b:74:02:fc:b5: de:9b:9c:7a:fc:6d:91:4b:34:b9:24:bd:e9:62:1f:dd:54:a1: 86:de:33:a0:21:34:34:02:07:41:91:2b:a5:19:2e:ba:71:a2: 80:10:ba:c0:d9:3a:12:33:80:c0:85:56:83:e4:4a:e4:bd:1c: b2:22:af:49:45:b2:a7:96:c8:1e:bb:e4:28:cd:e3:14:5b:c8: a1:eb:7f:5e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkVGRjExMC8GA1UEBRMoMDZDQjQ4RjU3RDU0M0E5NzgyRDhBN0M5NkRBNEUxREVE QkMzQzMwQjAeFw0yNTExMDUwNzMxMTJaFw0yNTExMTIwNzMxMTJaMBgxFjAUBgNV BAMTDTY5MGFmZDQwLWRmNGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDo5jncSpfZJw/bBVxM0F5z5Q9gH+3b6aQnxqS3PiN0jnZoyPemCVdg3MT7jTi8 YcuAjcMH5Xx5ptK5vAaWf6Qkm67eUHSlZtvOB2wZxML4dyJ6c6yD09x6IhzQrO25 W+1WzXmg0e7pRbjHlmgveqwfmEGZ2HL4TxOZuWGlywq9eQrVxVJcSkYS6gA/YgMf JrwBCaaF8CsEsbcR0y7tZAFkahklkHjbzpqwOFvPRuHNUKNQWKfE0XxXT6Jn2bHZ ZZw6BT3cObSYrzsRCd039GFZqmLYWzT2eYciSOMT/4LBb/jjidSIy3HcK+1EDZXZ HeiG9KaTL0qiBHwyTCZN/PuLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPMJOBbaB /LchhoY8oauK59ONmAYwHwYDVR0jBBgwFoAUBstI9X1UOpeC2KfJbaTh3tvDwwsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRUZGL0EzMTQ4NDdDNDg0 OTExRjBCRjA3MDM3MEM0RjlBRTAyL0JzdEk5WDFVT3BlQzJLZkpiYVRoM3R2RHd3 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQnN0STlYMVVPcGVDMktmSmJhVGgzdHZEd3dzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUy RUZGL0EzMTQ4NDdDNDg0OTExRjBCRjA3MDM3MEM0RjlBRTAyL0JzdEk5WDFVT3Bl QzJLZkpiYVRoM3R2RHd3cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI77N6oAeXOT9YmVKbAk0WsmkI4KDLhP6gLzxO6TdMSc8FA34/PDkudP 7xTAC6y+HnV+9jqOr+SHZTf8+wO1DvHLJTOl92KvDv5Hs7w386aEBL7vKKRw9/Oh 4kSvARYj0IQcRLCqGd8WhG+/AA+QekFoHd8C0u7foMO6XMgmsAtb0fnDXNyHXpnM 9I+0tSdABHZMI4DTLyjpYOy9IRPBIMb4Me/5gXK7N2ThdyiRUX57dAL8td6bnHr8 bZFLNLkkveliH91UoYbeM6AhNDQCB0GRK6UZLrpxooAQusDZOhIzgMCFVoPkSuS9 HLIir0lFsqeWyB675CjN4xRbyKHrf14= -----END CERTIFICATE-----Generated at Wed Nov 5 13:31:31 2025 by rpki-client