$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft File: BstI9X1UOpeC2KfJbaTh3tvDwws.mft (raw, json) Hash identifier: 6du49APm3+LA8PLGmOSKrDOOI9Uj0pj8y71Z0OYKdyE= Subject key identifier: 8A:C4:A1:C7:23:8B:8D:CD:78:E1:48:2A:05:2D:1D:34:16:01:53:C3 Authority key identifier: 06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B Certificate issuer: /CN=A91E2EFF/serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft Manifest number: 44 Signing time: Thu 23 Oct 2025 09:35:04 +0000 Manifest this update: Thu 23 Oct 2025 09:35:03 +0000 Manifest next update: Thu 30 Oct 2025 09:35:03 +0000 Files and hashes: 1: BstI9X1UOpeC2KfJbaTh3tvDwws.crl (hash: pxYNRHQOhxAvtlAfCocesNCGvTlRfSg1eiTLBjz3EFE=) 2: 3698C9BA484A11F0B96B9D10C4F9AE02.roa (hash: 3/VlviI5lXmsXT9HHGTTjCEqy33hQJaRKWakW7gYvqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 09:35:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EFF, serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Validity Not Before: Oct 23 09:35:03 2025 GMT Not After : Oct 30 09:35:03 2025 GMT Subject: CN=68f9f6c7-6072 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:10:ed:c1:f4:51:e6:4a:04:34:93:d2:46:b8: 3b:e7:e5:9f:41:22:bc:e7:1a:9c:c0:79:dc:ec:d8: d5:2f:ea:c4:2a:2b:30:b2:ff:69:d1:b3:5a:3f:15: 7b:c0:ca:ad:14:57:26:35:90:55:13:7b:ab:b3:72: 28:7a:8e:91:04:ee:99:d1:c7:f3:a0:fe:ee:f1:2f: e1:78:e2:3a:db:68:fe:7f:24:e3:85:f4:26:41:c0: 5f:45:7d:e4:23:22:8c:6c:ca:a0:1f:57:58:bc:00: c5:80:03:f9:21:fa:30:19:02:70:de:8e:2d:ca:61: dd:37:78:2d:eb:1b:c7:26:64:00:98:9f:a4:1e:61: c7:b0:94:c6:a0:73:86:6d:64:72:b8:25:23:f3:81: ef:66:e6:f2:23:e8:e3:ec:ab:08:98:0b:4b:cb:22: ec:66:44:e4:63:7f:97:ee:4c:1b:19:3f:fe:ec:6f: e3:b4:b9:10:12:45:b7:81:c4:93:ee:22:22:1f:65: 51:55:fb:1d:a5:73:43:4f:93:30:98:ad:7b:85:f7: d3:b9:e5:38:0e:92:77:bc:eb:b4:83:43:20:48:4d: 04:a6:29:8d:85:82:e5:e8:2e:43:1c:cd:5c:a6:51: 70:17:03:51:f8:df:35:33:b9:5f:1e:37:68:be:28: f7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:C4:A1:C7:23:8B:8D:CD:78:E1:48:2A:05:2D:1D:34:16:01:53:C3 X509v3 Authority Key Identifier: keyid:06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:72:b7:15:53:f8:a0:02:6c:9c:68:88:f0:91:8d:37:df:6a: d1:49:04:35:7e:c3:f4:1e:62:32:4e:04:ff:ca:70:b3:b7:a2: 3c:23:06:e1:1f:e8:f6:23:a1:87:30:6c:2e:a2:4f:2e:cd:1f: dd:56:ec:f7:63:f6:63:82:16:10:0c:87:f0:dc:13:38:b3:f0: c0:45:2c:54:2f:2d:e9:de:c6:9d:98:73:41:11:2e:aa:19:c8: 7a:d9:3c:a1:76:1a:ef:8c:1c:70:c5:db:37:e3:e0:fc:fc:89: 96:e5:37:9b:d3:93:ef:e5:bd:b8:cd:de:bb:31:30:6c:04:d4: 74:9f:86:09:f4:2a:b1:29:0e:6c:44:c1:94:a1:dd:b2:cc:a4: 74:54:96:66:be:1a:ab:fc:5b:de:8a:2c:bb:ea:08:d9:09:bd: 8b:76:8a:98:a9:ff:a0:7f:f3:d0:18:66:9a:47:d3:15:a8:b4: 8a:5b:f1:59:a0:77:17:1d:94:9f:c4:0b:ca:fc:37:b8:ec:80: 2e:a2:54:a6:8e:53:d2:66:bb:9f:ee:d7:63:1d:25:ee:33:8d: f5:ab:7b:77:20:c9:5a:04:58:8a:ec:29:80:7e:cb:f8:7c:5d: da:9a:9b:c6:c8:e6:42:db:eb:9a:1b:63:13:1a:63:0f:93:eb: b0:cd:fe:1d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkVGRjExMC8GA1UEBRMoMDZDQjQ4RjU3RDU0M0E5NzgyRDhBN0M5NkRBNEUxREVE QkMzQzMwQjAeFw0yNTEwMjMwOTM1MDNaFw0yNTEwMzAwOTM1MDNaMBgxFjAUBgNV BAMTDTY4ZjlmNmM3LTYwNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8EO3B9FHmSgQ0k9JGuDvn5Z9BIrznGpzAedzs2NUv6sQqKzCy/2nRs1o/FXvA yq0UVyY1kFUTe6uzcih6jpEE7pnRx/Og/u7xL+F44jrbaP5/JOOF9CZBwF9FfeQj IoxsyqAfV1i8AMWAA/kh+jAZAnDeji3KYd03eC3rG8cmZACYn6QeYcewlMagc4Zt ZHK4JSPzge9m5vIj6OPsqwiYC0vLIuxmRORjf5fuTBsZP/7sb+O0uRASRbeBxJPu IiIfZVFV+x2lc0NPkzCYrXuF99O55TgOkne867SDQyBITQSmKY2FguXoLkMczVym UXAXA1H43zUzuV8eN2i+KPfFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUisShxyOL jc144UgqBS0dNBYBU8MwHwYDVR0jBBgwFoAUBstI9X1UOpeC2KfJbaTh3tvDwwsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRUZGL0EzMTQ4NDdDNDg0 OTExRjBCRjA3MDM3MEM0RjlBRTAyL0JzdEk5WDFVT3BlQzJLZkpiYVRoM3R2RHd3 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQnN0STlYMVVPcGVDMktmSmJhVGgzdHZEd3dzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUy RUZGL0EzMTQ4NDdDNDg0OTExRjBCRjA3MDM3MEM0RjlBRTAyL0JzdEk5WDFVT3Bl QzJLZkpiYVRoM3R2RHd3cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAM9ytxVT+KACbJxoiPCRjTffatFJBDV+w/QeYjJOBP/KcLO3ojwjBuEf 6PYjoYcwbC6iTy7NH91W7Pdj9mOCFhAMh/DcEziz8MBFLFQvLenexp2Yc0ERLqoZ yHrZPKF2Gu+MHHDF2zfj4Pz8iZblN5vTk+/lvbjN3rsxMGwE1HSfhgn0KrEpDmxE wZSh3bLMpHRUlma+Gqv8W96KLLvqCNkJvYt2ipip/6B/89AYZppH0xWotIpb8Vmg dxcdlJ/EC8r8N7jsgC6iVKaOU9Jmu5/u12MdJe4zjfWre3cgyVoEWIrsKYB+y/h8 Xdqam8bI5kLb65obYxMaYw+T67DN/h0= -----END CERTIFICATE-----Generated at Sat Oct 25 04:21:43 2025 by rpki-client