$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft File: BstI9X1UOpeC2KfJbaTh3tvDwws.mft (raw, json) Hash identifier: dYYgNr29fBV7lR3WDIZpEu7YB61BjxQimvunOx12u9I= Subject key identifier: ED:37:6A:5F:4A:2C:A4:22:AB:7D:7D:ED:AC:0E:9C:2F:72:E5:7A:75 Authority key identifier: 06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B Certificate issuer: /CN=A91E2EFF/serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Certificate serial: 2E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft Manifest number: 2D Signing time: Fri 05 Sep 2025 08:12:56 +0000 Manifest this update: Fri 05 Sep 2025 08:12:56 +0000 Manifest next update: Fri 12 Sep 2025 08:12:56 +0000 Files and hashes: 1: BstI9X1UOpeC2KfJbaTh3tvDwws.crl (hash: e3yBFDzj0dsPBVwWOoKDgM0NgBIjZblW5ZC+NjOiNM0=) 2: 3698C9BA484A11F0B96B9D10C4F9AE02.roa (hash: 3/VlviI5lXmsXT9HHGTTjCEqy33hQJaRKWakW7gYvqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 08:12:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EFF, serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Validity Not Before: Sep 5 08:12:56 2025 GMT Not After : Sep 12 08:12:56 2025 GMT Subject: CN=68ba9b88-2aca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:46:d2:1b:2c:8e:8b:09:a2:f6:41:da:9e:3a: bb:64:46:11:60:b0:79:ad:76:10:d4:8c:ff:00:7a: 2f:84:5b:ca:a7:70:8d:60:47:45:ef:fd:e7:90:35: 9c:e7:d7:4f:fe:6c:50:cd:d0:5c:02:5a:76:64:74: fb:45:2c:8b:97:7f:c0:a5:cd:6b:b5:b2:17:d0:88: d6:39:f3:e4:fa:ac:16:a5:0b:ce:21:91:12:0d:ec: 2b:bb:de:82:5a:f8:78:33:07:35:40:42:09:c2:03: 61:31:d4:d7:76:31:34:1a:90:28:9d:a8:a2:db:5f: a8:66:27:7b:32:1e:34:4c:e6:6d:2c:cc:d8:45:48: 05:ad:3f:95:ee:bd:ff:36:fc:f4:54:51:29:29:22: da:77:ac:c4:e7:2d:84:68:d2:a4:a9:0c:6b:7f:8f: 54:cf:43:64:1a:70:29:0a:97:83:fb:76:df:39:58: 3b:2a:4e:5f:34:0c:38:17:a4:a7:a5:0f:a5:a8:e2: d7:3d:b6:7e:e9:d3:72:86:82:f9:0a:c7:1c:f7:5f: b2:7e:20:42:38:fa:26:9a:cf:8f:c0:c8:50:02:54: 3e:55:b0:a3:d2:c8:fe:75:07:1c:c2:71:89:2d:8b: 6e:98:f3:2b:6f:af:05:3b:e6:03:46:eb:55:61:ef: e6:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:37:6A:5F:4A:2C:A4:22:AB:7D:7D:ED:AC:0E:9C:2F:72:E5:7A:75 X509v3 Authority Key Identifier: keyid:06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:85:e6:2f:0f:89:52:8b:09:db:2e:9c:65:48:fe:bc:dc:48: f4:3e:9c:66:e9:81:07:3f:d6:7e:c0:c3:20:2d:5c:d0:a3:8d: 27:d3:ed:c3:30:0c:62:64:fe:dd:77:1c:96:39:3b:55:dc:01: 22:e3:31:40:ce:2d:9f:b4:ee:1d:aa:6e:f5:e0:58:d6:3d:59: 41:78:c2:2e:5d:0e:e6:f0:5a:15:77:ea:1b:1a:5d:5c:f9:b6: 6c:25:5f:dc:eb:91:9d:b6:88:ef:7f:d7:44:e9:5e:bb:c1:aa: b0:9d:f7:0d:ec:f1:93:5a:4b:c5:9e:fe:6b:6c:58:7d:8b:8f: cd:8c:b8:c9:1b:59:2c:2d:0b:53:29:34:6b:3e:41:4e:46:8c: 21:10:82:c4:4d:bc:7a:0d:fa:3c:d5:da:a4:ff:97:7d:a4:0f: 23:47:e6:89:8d:84:d9:b9:46:8f:67:90:13:7d:f4:62:ba:bc: a3:b0:3b:f1:5f:4d:e2:8f:da:9b:6c:4d:72:f9:c9:e7:15:d7: d2:6b:99:ce:1c:5e:15:21:c6:00:3f:2c:86:b7:cf:75:b1:aa: 77:3d:4a:b7:5e:ce:8a:3e:5a:4e:29:e0:ab:ea:dc:0c:d3:f4: b7:85:d9:a9:aa:2c:90:4d:cc:4e:0f:e8:f3:8e:9c:64:89:26: 1c:c0:ce:66 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkVGRjExMC8GA1UEBRMoMDZDQjQ4RjU3RDU0M0E5NzgyRDhBN0M5NkRBNEUxREVE QkMzQzMwQjAeFw0yNTA5MDUwODEyNTZaFw0yNTA5MTIwODEyNTZaMBgxFjAUBgNV BAMTDTY4YmE5Yjg4LTJhY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwRtIbLI6LCaL2QdqeOrtkRhFgsHmtdhDUjP8Aei+EW8qncI1gR0Xv/eeQNZzn 10/+bFDN0FwCWnZkdPtFLIuXf8ClzWu1shfQiNY58+T6rBalC84hkRIN7Cu73oJa +HgzBzVAQgnCA2Ex1Nd2MTQakCidqKLbX6hmJ3syHjRM5m0szNhFSAWtP5Xuvf82 /PRUUSkpItp3rMTnLYRo0qSpDGt/j1TPQ2QacCkKl4P7dt85WDsqTl80DDgXpKel D6Wo4tc9tn7p03KGgvkKxxz3X7J+IEI4+iaaz4/AyFACVD5VsKPSyP51BxzCcYkt i26Y8ytvrwU75gNG61Vh7+bfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7TdqX0os pCKrfX3trA6cL3LlenUwHwYDVR0jBBgwFoAUBstI9X1UOpeC2KfJbaTh3tvDwwsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRUZGL0EzMTQ4NDdDNDg0 OTExRjBCRjA3MDM3MEM0RjlBRTAyL0JzdEk5WDFVT3BlQzJLZkpiYVRoM3R2RHd3 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQnN0STlYMVVPcGVDMktmSmJhVGgzdHZEd3dzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUy RUZGL0EzMTQ4NDdDNDg0OTExRjBCRjA3MDM3MEM0RjlBRTAyL0JzdEk5WDFVT3Bl QzJLZkpiYVRoM3R2RHd3cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAByF5i8PiVKLCdsunGVI/rzcSPQ+nGbpgQc/1n7AwyAtXNCjjSfT7cMw DGJk/t13HJY5O1XcASLjMUDOLZ+07h2qbvXgWNY9WUF4wi5dDubwWhV36hsaXVz5 tmwlX9zrkZ22iO9/10TpXrvBqrCd9w3s8ZNaS8We/mtsWH2Lj82MuMkbWSwtC1Mp NGs+QU5GjCEQgsRNvHoN+jzV2qT/l32kDyNH5omNhNm5Ro9nkBN99GK6vKOwO/Ff TeKP2ptsTXL5yecV19Jrmc4cXhUhxgA/LIa3z3Wxqnc9Srdezoo+Wk4p4Kvq3AzT 9LeF2amqLJBNzE4P6POOnGSJJhzAzmY= -----END CERTIFICATE-----Generated at Sat Sep 6 21:05:06 2025 by rpki-client