$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft File: BstI9X1UOpeC2KfJbaTh3tvDwws.mft (raw, json) Hash identifier: m9SpuTQEqpRsjee2ZUx/IzjbqvPR2Z1EvzynHDQsmPU= Subject key identifier: 39:19:C3:08:84:E1:9C:C9:59:5D:85:95:21:3D:8A:F6:91:AD:C9:55 Authority key identifier: 06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B Certificate issuer: /CN=A91E2EFF/serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Certificate serial: 06 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft Manifest number: 05 Signing time: Thu 19 Jun 2025 07:33:34 +0000 Manifest this update: Thu 19 Jun 2025 07:33:33 +0000 Manifest next update: Thu 26 Jun 2025 07:33:33 +0000 Files and hashes: 1: BstI9X1UOpeC2KfJbaTh3tvDwws.crl (hash: 7atv7gGPn3k0jEqQcg0Msy5tX6yfspkn5yjl0fGo5mE=) 2: 3698C9BA484A11F0B96B9D10C4F9AE02.roa (hash: 3/VlviI5lXmsXT9HHGTTjCEqy33hQJaRKWakW7gYvqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 07:33:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EFF, serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Validity Not Before: Jun 19 07:33:33 2025 GMT Not After : Jun 26 07:33:33 2025 GMT Subject: CN=6853bd4d-c6fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:db:eb:26:fb:32:b8:88:68:bc:5f:10:8f:0d: b5:40:7b:38:31:fd:92:7f:a9:d1:b3:8d:d9:33:7c: 9a:d7:7e:19:26:d8:fb:6e:41:af:e6:8f:7e:16:fe: 3a:a1:57:c1:32:bd:d1:96:55:48:20:80:57:4b:e8: 86:e7:a1:ee:43:87:44:1b:09:f9:e8:73:32:11:da: 92:9e:66:e2:62:17:9b:6e:e4:9c:a1:71:a3:22:87: e3:a9:b5:18:cf:e4:fe:91:06:e9:eb:ab:07:5c:60: fe:72:b9:02:fd:af:e3:77:6f:80:db:5b:05:f5:e4: 7f:64:a6:a0:82:48:f2:1a:f2:bd:37:51:52:96:f7: a0:8f:97:69:43:9f:57:7c:ee:af:29:5c:ef:3b:9e: 62:cc:43:dd:03:20:75:36:36:04:7f:88:74:4f:7e: 05:55:4f:88:b3:d2:c2:69:b3:0f:42:32:b3:9c:e4: df:cf:cd:6e:37:98:58:1a:54:31:f9:8c:a3:ff:c7: fd:fc:eb:af:2a:c2:ca:a5:98:f5:ac:ce:ea:e2:fe: 9a:73:cf:68:71:8d:93:4a:98:a6:aa:b5:c5:6f:53: c7:5f:c0:dd:d4:c2:a5:f1:57:b1:49:4d:34:52:fc: be:11:0a:44:bf:22:95:54:22:b5:90:c8:db:da:ec: 8d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:19:C3:08:84:E1:9C:C9:59:5D:85:95:21:3D:8A:F6:91:AD:C9:55 X509v3 Authority Key Identifier: keyid:06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:44:f4:ee:27:5f:60:5d:1c:b5:f6:ec:9c:34:f0:0d:98:d0: 38:c5:95:df:20:12:ba:31:b7:3b:ac:3a:6a:1a:c7:71:44:80: 45:7b:20:90:11:25:45:3a:86:2d:f9:b3:12:64:03:c4:5b:2c: c4:98:cc:e9:a6:27:6a:18:1e:4e:04:be:26:cc:4d:ad:25:04: c9:c9:08:ab:b4:ad:b7:25:57:d3:cb:d7:0a:50:b6:33:93:c8: 16:52:b8:5e:44:df:86:59:77:02:cb:7b:e4:10:83:24:28:07: 9a:bb:41:59:16:bb:94:a5:ec:43:4e:3f:1d:47:0b:0f:26:a4: 65:f2:56:d2:8a:8b:53:3b:2c:87:19:ab:a4:4e:45:1e:cc:97: ea:20:13:fb:67:a9:de:87:74:b6:02:1a:7b:a9:84:99:45:b5: 62:77:07:da:59:ad:32:0b:ec:b6:e3:6a:b8:b2:5a:be:34:ea: 7f:e3:81:5a:28:e9:b9:25:80:f1:06:08:ce:ea:1f:36:6f:be: 8d:94:8b:a5:11:ce:81:16:25:19:50:ef:d5:47:84:b6:0e:86: 70:c0:01:ca:ca:f3:9e:7e:7a:04:3d:42:0c:a6:b9:02:e9:b8: 20:d2:fc:14:45:23:d2:b6:77:ac:9b:4a:3c:04:e5:9d:e1:88: a1:48:84:13 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkVGRjExMC8GA1UEBRMoMDZDQjQ4RjU3RDU0M0E5NzgyRDhBN0M5NkRBNEUxREVE QkMzQzMwQjAeFw0yNTA2MTkwNzMzMzNaFw0yNTA2MjYwNzMzMzNaMBgxFjAUBgNV BAMTDTY4NTNiZDRkLWM2ZmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC32+sm+zK4iGi8XxCPDbVAezgx/ZJ/qdGzjdkzfJrXfhkm2PtuQa/mj34W/jqh V8EyvdGWVUgggFdL6Ibnoe5Dh0QbCfnoczIR2pKeZuJiF5tu5JyhcaMih+OptRjP 5P6RBunrqwdcYP5yuQL9r+N3b4DbWwX15H9kpqCCSPIa8r03UVKW96CPl2lDn1d8 7q8pXO87nmLMQ90DIHU2NgR/iHRPfgVVT4iz0sJpsw9CMrOc5N/PzW43mFgaVDH5 jKP/x/38668qwsqlmPWszuri/ppzz2hxjZNKmKaqtcVvU8dfwN3UwqXxV7FJTTRS /L4RCkS/IpVUIrWQyNva7I09AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUORnDCITh nMlZXYWVIT2K9pGtyVUwHwYDVR0jBBgwFoAUBstI9X1UOpeC2KfJbaTh3tvDwwsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRUZGL0EzMTQ4NDdDNDg0 OTExRjBCRjA3MDM3MEM0RjlBRTAyL0JzdEk5WDFVT3BlQzJLZkpiYVRoM3R2RHd3 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQnN0STlYMVVPcGVDMktmSmJhVGgzdHZEd3dzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUy RUZGL0EzMTQ4NDdDNDg0OTExRjBCRjA3MDM3MEM0RjlBRTAyL0JzdEk5WDFVT3Bl QzJLZkpiYVRoM3R2RHd3cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACZE9O4nX2BdHLX27Jw08A2Y0DjFld8gEroxtzusOmoax3FEgEV7IJAR JUU6hi35sxJkA8RbLMSYzOmmJ2oYHk4EvibMTa0lBMnJCKu0rbclV9PL1wpQtjOT yBZSuF5E34ZZdwLLe+QQgyQoB5q7QVkWu5Sl7ENOPx1HCw8mpGXyVtKKi1M7LIcZ q6RORR7Ml+ogE/tnqd6HdLYCGnuphJlFtWJ3B9pZrTIL7LbjariyWr406n/jgVoo 6bklgPEGCM7qHzZvvo2Ui6URzoEWJRlQ79VHhLYOhnDAAcrK855+egQ9QgymuQLp uCDS/BRFI9K2d6ybSjwE5Z3hiKFIhBM= -----END CERTIFICATE-----Generated at Thu Jun 19 20:03:21 2025 by rpki-client