$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft File: BstI9X1UOpeC2KfJbaTh3tvDwws.mft (raw, json) Hash identifier: KzsnQwGqiyChyxquZyfMFjy6t1+dK9W6yBVaDAgGcgk= Subject key identifier: 9A:63:38:97:9B:66:52:E8:32:21:60:E9:93:6F:4F:DE:FE:C6:E3:9A Authority key identifier: 06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B Certificate issuer: /CN=A91E2EFF/serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Certificate serial: 0C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft Manifest number: 0B Signing time: Tue 01 Jul 2025 08:55:42 +0000 Manifest this update: Tue 01 Jul 2025 08:55:42 +0000 Manifest next update: Tue 08 Jul 2025 08:55:42 +0000 Files and hashes: 1: BstI9X1UOpeC2KfJbaTh3tvDwws.crl (hash: TfUSDd3raDpaS9NtIYATHsUbHz6fziYpyXStlGBZuQo=) 2: 3698C9BA484A11F0B96B9D10C4F9AE02.roa (hash: 3/VlviI5lXmsXT9HHGTTjCEqy33hQJaRKWakW7gYvqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EFF, serialNumber=06CB48F57D543A9782D8A7C96DA4E1DEDBC3C30B Validity Not Before: Jul 1 08:55:42 2025 GMT Not After : Jul 8 08:55:42 2025 GMT Subject: CN=6863a28e-e5e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:44:08:18:78:cf:cf:2b:5b:74:12:ca:d7:33: c9:14:d1:eb:65:b5:51:90:39:ac:7e:74:4c:a2:24: e1:ee:60:7f:54:90:3d:96:60:5b:e1:0f:06:bf:72: d9:23:c8:da:b3:e4:96:42:24:15:d6:ed:a1:1f:62: eb:53:1f:a8:39:c5:4f:6a:0f:16:3c:4d:55:18:a6: fc:12:d7:4f:04:43:36:09:9d:4b:10:46:bb:3e:e6: 02:6d:9b:73:5f:60:34:3b:10:f5:f5:41:80:a3:ef: a0:d6:43:fb:11:41:c8:2b:86:d6:35:0a:95:ab:56: 01:89:9c:85:43:24:d1:e1:b0:9e:2f:87:a2:ad:79: 51:e8:ce:90:78:76:7f:6c:75:f6:a3:83:f1:6d:f1: 71:dd:1f:08:5d:a4:c8:8b:20:12:dc:1a:c4:ec:85: 50:64:42:11:fa:65:71:c0:a0:e5:f9:98:fd:14:91: 6c:f7:8f:27:db:71:f2:66:46:24:54:8b:74:75:09: e0:cb:7c:5e:f7:36:e1:a2:ec:93:33:60:c2:10:d8: bb:c3:b2:ac:ac:a7:c6:7a:0b:9c:54:46:22:d2:0e: 30:eb:47:c9:f7:48:30:20:eb:71:4b:64:d4:ac:5b: c7:f7:c8:26:f3:0c:bc:a7:4b:51:05:a8:be:16:40: f1:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:63:38:97:9B:66:52:E8:32:21:60:E9:93:6F:4F:DE:FE:C6:E3:9A X509v3 Authority Key Identifier: keyid:06:CB:48:F5:7D:54:3A:97:82:D8:A7:C9:6D:A4:E1:DE:DB:C3:C3:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BstI9X1UOpeC2KfJbaTh3tvDwws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/A314847C484911F0BF070370C4F9AE02/BstI9X1UOpeC2KfJbaTh3tvDwws.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:a0:26:a3:bb:5b:c3:be:3c:5e:4d:e6:d7:3c:ed:24:a7:f1: 44:20:77:05:20:88:c9:ff:7d:2b:57:94:b9:52:3e:e0:b5:80: 74:01:40:b0:b9:3a:df:d7:ca:6e:bb:7b:74:91:90:e1:90:3f: 9b:55:52:f7:03:a3:8d:58:26:d3:e0:e6:68:bf:90:ab:cb:fd: 89:3b:cd:ed:1a:60:46:17:e1:5f:ed:c4:d8:a9:04:4d:87:ee: 62:81:b6:fb:23:63:5b:28:34:e6:3d:c5:3c:ec:d8:d4:f5:0d: 19:c2:04:c0:b9:8e:c2:ba:be:5c:6e:00:80:0c:c2:37:82:54: 1a:5e:7c:24:a6:19:46:68:6a:f2:24:d6:31:da:c6:11:44:96: de:4c:3d:80:68:7d:3b:9f:a9:bc:bf:9e:fe:17:f6:bb:9d:65: 4c:d8:96:5a:7c:fb:bf:98:14:85:dc:af:ba:d6:01:d2:61:d2: 60:a2:7a:c9:e0:1b:6c:46:0d:be:7d:55:e5:27:0b:83:9f:6e: 43:6c:7f:fe:0c:c7:d9:53:9d:d3:26:ce:d5:7c:40:a2:52:bc: c9:ea:e7:15:99:fd:46:da:1d:50:9a:a1:53:b7:cb:ef:1c:9a: b6:26:f5:2f:b7:cd:a7:d3:b0:62:57:5c:4a:8b:da:07:65:9d: 04:1e:f6:09 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkVGRjExMC8GA1UEBRMoMDZDQjQ4RjU3RDU0M0E5NzgyRDhBN0M5NkRBNEUxREVE QkMzQzMwQjAeFw0yNTA3MDEwODU1NDJaFw0yNTA3MDgwODU1NDJaMBgxFjAUBgNV BAMTDTY4NjNhMjhlLWU1ZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMRAgYeM/PK1t0EsrXM8kU0etltVGQOax+dEyiJOHuYH9UkD2WYFvhDwa/ctkj yNqz5JZCJBXW7aEfYutTH6g5xU9qDxY8TVUYpvwS108EQzYJnUsQRrs+5gJtm3Nf YDQ7EPX1QYCj76DWQ/sRQcgrhtY1CpWrVgGJnIVDJNHhsJ4vh6KteVHozpB4dn9s dfajg/Ft8XHdHwhdpMiLIBLcGsTshVBkQhH6ZXHAoOX5mP0UkWz3jyfbcfJmRiRU i3R1CeDLfF73NuGi7JMzYMIQ2LvDsqysp8Z6C5xURiLSDjDrR8n3SDAg63FLZNSs W8f3yCbzDLynS1EFqL4WQPEXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmmM4l5tm UugyIWDpk29P3v7G45owHwYDVR0jBBgwFoAUBstI9X1UOpeC2KfJbaTh3tvDwwsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRUZGL0EzMTQ4NDdDNDg0 OTExRjBCRjA3MDM3MEM0RjlBRTAyL0JzdEk5WDFVT3BlQzJLZkpiYVRoM3R2RHd3 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQnN0STlYMVVPcGVDMktmSmJhVGgzdHZEd3dzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUy RUZGL0EzMTQ4NDdDNDg0OTExRjBCRjA3MDM3MEM0RjlBRTAyL0JzdEk5WDFVT3Bl QzJLZkpiYVRoM3R2RHd3cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFWgJqO7W8O+PF5N5tc87SSn8UQgdwUgiMn/fStXlLlSPuC1gHQBQLC5 Ot/Xym67e3SRkOGQP5tVUvcDo41YJtPg5mi/kKvL/Yk7ze0aYEYX4V/txNipBE2H 7mKBtvsjY1soNOY9xTzs2NT1DRnCBMC5jsK6vlxuAIAMwjeCVBpefCSmGUZoavIk 1jHaxhFElt5MPYBofTufqby/nv4X9rudZUzYllp8+7+YFIXcr7rWAdJh0mCiesng G2xGDb59VeUnC4OfbkNsf/4Mx9lTndMmztV8QKJSvMnq5xWZ/UbaHVCaoVO3y+8c mrYm9S+3zafTsGJXXEqL2gdlnQQe9gk= -----END CERTIFICATE-----Generated at Wed Jul 2 13:12:18 2025 by rpki-client