$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft File: BstI9X1UOpeC2KfJbaTh3tvDwws.mft (raw, json) Hash identifier: 9hwL3bDXleSuqnKPnlCHQVGRnDQow/411dz+ZyMUIEU= Subject key identifier: 13:9D:F2:67:55:85:C0:C7:D2:EF:54:4D:46:4B:99:96:B9:20:64:71 Authority key identifier: 06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B Certificate issuer: /CN=A91E2EFF/serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft Manifest number: 26 Signing time: Sat 23 Aug 2025 08:01:49 +0000 Manifest this update: Sat 23 Aug 2025 08:01:48 +0000 Manifest next update: Sat 30 Aug 2025 08:01:48 +0000 Files and hashes: 1: BstI9X1UOpeC2KfJbaTh3tvDwws.crl (hash: UNwLPBd6V0E9phgXzYsWciTC6r3nrloNIbNldh5bqIM=) 2: 3698C9BA484A11F0B96B9D10C4F9AE02.roa (hash: 3/VlviI5lXmsXT9HHGTTjCEqy33hQJaRKWakW7gYvqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EFF, serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Validity Not Before: Aug 23 08:01:48 2025 GMT Not After : Aug 30 08:01:48 2025 GMT Subject: CN=68a9756d-3338 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:11:38:01:69:fe:02:74:35:56:97:10:28:fb: eb:f6:70:c4:99:a5:9e:0f:45:89:5b:cd:17:ff:81: 64:a4:95:23:fe:b3:79:d2:d5:78:64:18:3f:59:02: ac:85:e8:96:09:b4:ed:b3:e2:9a:15:a6:74:ce:51: 56:2a:ce:c6:c1:df:aa:e3:9c:8b:6f:4c:1c:cd:e7: 96:40:3c:dd:52:be:57:9f:d6:a9:16:93:68:8b:35: 95:53:58:74:dc:94:a5:52:0f:0a:91:0c:6d:d6:26: 43:8c:c8:ea:a5:2d:e2:35:5a:47:af:c8:4d:9b:61: 00:34:38:66:a0:07:c6:db:9d:a9:8a:6a:05:96:60: 28:26:c2:e9:69:4a:ce:df:09:75:e5:03:e4:bb:ce: 86:28:b6:44:fb:91:43:50:fe:8a:c4:31:54:d1:a4: d3:47:b9:4d:97:9c:ef:ef:13:97:c5:b1:02:59:5a: 96:d4:59:ff:e6:4b:5f:7a:d3:9c:63:78:49:86:19: 7d:bd:91:12:ec:98:20:da:98:9a:2d:f0:1a:21:48: 91:e0:f8:7a:58:60:3c:6c:99:de:87:55:43:3e:79: 88:30:0e:06:74:6a:df:d8:00:e9:2f:41:c2:d7:81: eb:d7:83:e9:b7:d4:b3:d2:0e:de:e0:b5:64:4c:19: 6a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:9D:F2:67:55:85:C0:C7:D2:EF:54:4D:46:4B:99:96:B9:20:64:71 X509v3 Authority Key Identifier: keyid:06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:08:43:a7:d6:76:28:c0:a1:01:3f:ef:d8:0f:90:83:4b:97: f3:52:a5:79:40:ad:dd:54:be:95:46:8c:9d:44:61:90:18:68: c3:1e:2a:59:8e:0c:21:2b:6f:97:2c:39:e1:17:f5:04:f8:66: 5d:fc:fb:10:76:c2:69:14:15:a0:2a:2d:7b:29:c1:13:b7:9d: a0:34:cb:9d:82:c0:82:30:f2:34:c3:24:4d:cb:58:0a:da:f4: 95:28:ac:0d:b5:73:7d:3c:a4:1d:0b:8f:82:9f:3f:a2:fd:c5: f4:0b:75:0f:b5:42:53:83:c9:6e:55:65:9f:a8:12:a6:48:71: 85:a5:92:0f:3d:b8:a6:2e:2f:70:12:ff:7f:85:b6:ee:aa:44: f8:32:15:38:ff:bf:e2:2e:1e:8d:fb:28:ff:69:22:0e:90:dc: 7c:4a:cb:67:e2:80:18:f9:2e:50:7b:ce:14:b0:9e:3c:98:1b: 82:e0:84:e5:47:e2:4d:88:32:50:d6:16:4f:65:6f:fd:00:2d: de:7b:b9:31:83:9c:7c:c6:6c:19:d1:99:11:14:19:49:e4:e7: 87:d0:24:16:2b:a7:af:66:e9:bf:4c:a5:91:86:74:bd:f8:5c: be:6a:0a:1a:62:e9:10:a4:e3:c8:98:b5:f3:e4:d7:99:6f:c3: 2a:59:d0:38 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkVGRjExMC8GA1UEBRMoMDZDQjQ4RjU3RDU0M0E5NzgyRDhBN0M5NkRBNEUxREVE QkMzQzMwQjAeFw0yNTA4MjMwODAxNDhaFw0yNTA4MzAwODAxNDhaMBgxFjAUBgNV BAMTDTY4YTk3NTZkLTMzMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhETgBaf4CdDVWlxAo++v2cMSZpZ4PRYlbzRf/gWSklSP+s3nS1XhkGD9ZAqyF 6JYJtO2z4poVpnTOUVYqzsbB36rjnItvTBzN55ZAPN1Svlef1qkWk2iLNZVTWHTc lKVSDwqRDG3WJkOMyOqlLeI1WkevyE2bYQA0OGagB8bbnamKagWWYCgmwulpSs7f CXXlA+S7zoYotkT7kUNQ/orEMVTRpNNHuU2XnO/vE5fFsQJZWpbUWf/mS19605xj eEmGGX29kRLsmCDamJot8BohSJHg+HpYYDxsmd6HVUM+eYgwDgZ0at/YAOkvQcLX gevXg+m31LPSDt7gtWRMGWqPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUE53yZ1WF wMfS71RNRkuZlrkgZHEwHwYDVR0jBBgwFoAUBstI9X1UOpeC2KfJbaTh3tvDwwsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRUZGL0EzMTQ4NDdDNDg0 OTExRjBCRjA3MDM3MEM0RjlBRTAyL0JzdEk5WDFVT3BlQzJLZkpiYVRoM3R2RHd3 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQnN0STlYMVVPcGVDMktmSmJhVGgzdHZEd3dzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUy RUZGL0EzMTQ4NDdDNDg0OTExRjBCRjA3MDM3MEM0RjlBRTAyL0JzdEk5WDFVT3Bl QzJLZkpiYVRoM3R2RHd3cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALgIQ6fWdijAoQE/79gPkINLl/NSpXlArd1UvpVGjJ1EYZAYaMMeKlmO DCErb5csOeEX9QT4Zl38+xB2wmkUFaAqLXspwRO3naA0y52CwIIw8jTDJE3LWAra 9JUorA21c308pB0Lj4KfP6L9xfQLdQ+1QlODyW5VZZ+oEqZIcYWlkg89uKYuL3AS /3+Ftu6qRPgyFTj/v+IuHo37KP9pIg6Q3HxKy2figBj5LlB7zhSwnjyYG4LghOVH 4k2IMlDWFk9lb/0ALd57uTGDnHzGbBnRmREUGUnk54fQJBYrp69m6b9MpZGGdL34 XL5qChpi6RCk48iYtfPk15lvwypZ0Dg= -----END CERTIFICATE-----Generated at Sat Aug 23 10:40:18 2025 by rpki-client