$ rpki-client -vvf rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft File: snbxWm1Kl8SBkekr0WYfNovvIeQ.mft (raw, json) Hash identifier: QfpuoGnl8cTsx0JxSDQhylX4zW8MAl+mkfiVfD+w8T4= Subject key identifier: E7:FE:70:6A:0E:B5:FC:DC:8D:2A:20:7C:DE:65:4F:C0:60:2D:13:A1 Authority key identifier: B2:76:F1:5A:6D:4A:97:C4:81:91:E9:2B:D1:66:1F:36:8B:EF:21:E4 Certificate issuer: /CN=A91B37C4/serialNumber=B276F15A6D4A97C48191E92BD1661F368BEF21E4 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft Manifest number: 81 Signing time: Fri 13 Jun 2025 05:37:34 +0000 Manifest this update: Fri 13 Jun 2025 05:37:34 +0000 Manifest next update: Fri 20 Jun 2025 05:37:34 +0000 Files and hashes: 1: snbxWm1Kl8SBkekr0WYfNovvIeQ.crl (hash: 7Ozk7rFu0RTTBcbpwRliTnIm7U1W9IekasGoHvyEGeY=) 2: 3E4B01008BDA11EFA4A11684C4F9AE02.roa (hash: m+cTvWrh74cJIwtxb5YNKAjFtv2dZKfs+BjQs+Q2hMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.crl rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:37:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B37C4, serialNumber=B276F15A6D4A97C48191E92BD1661F368BEF21E4 Validity Not Before: Jun 13 05:37:34 2025 GMT Not After : Jun 20 05:37:34 2025 GMT Subject: CN=684bb91e-2e36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:cc:b8:5c:df:d8:84:b1:92:3a:4a:70:d9:ba: 33:00:a1:52:60:5a:7a:5d:c7:0b:cb:3d:df:f9:3f: e9:77:b8:4d:a0:2f:aa:20:4d:b6:98:6a:f0:d7:f6: 3b:50:27:fd:f6:f6:95:d1:06:c2:b0:91:a7:dc:26: ad:da:13:53:5d:18:31:d7:17:47:8b:56:0b:85:9c: f7:9a:40:64:99:af:74:94:7f:c6:e2:ce:bf:27:1f: 27:ff:a4:fb:3a:c4:e8:65:60:60:08:b7:3d:0d:bf: f8:f0:e9:09:0c:73:84:68:37:1c:c2:d9:3b:34:a0: f3:ee:89:a8:00:75:d7:23:8e:a1:73:00:c2:ee:20: 3d:5c:f3:38:d2:47:0a:de:74:f1:c7:18:31:5a:55: 6d:bf:b9:be:8f:49:a3:60:bd:21:13:9f:36:95:3c: 0f:1f:a8:67:bc:b2:97:a9:c5:8d:0b:97:d4:d5:6a: 2d:f6:85:83:ae:e3:bf:69:e6:ec:d4:99:01:f3:20: 97:b5:1d:40:69:1b:70:f0:b7:b0:38:1e:50:ac:c4: 6f:db:0e:0b:30:cb:a9:7e:fe:c5:9b:13:f4:f5:91: c0:60:e6:8d:ee:5d:54:a8:25:13:49:30:0d:d0:ef: 48:69:d2:d0:20:a2:94:b5:18:40:53:49:fc:20:98: 85:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:FE:70:6A:0E:B5:FC:DC:8D:2A:20:7C:DE:65:4F:C0:60:2D:13:A1 X509v3 Authority Key Identifier: keyid:B2:76:F1:5A:6D:4A:97:C4:81:91:E9:2B:D1:66:1F:36:8B:EF:21:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:41:32:e6:07:58:13:0e:56:16:5d:09:66:5e:17:02:c0:8b: f6:e7:e3:43:b0:23:f7:b7:d3:62:48:7c:70:20:d1:7b:da:0f: 0c:30:e0:85:d7:70:19:93:1f:0a:f7:f6:27:f9:53:52:c6:26: e0:e7:a7:29:c1:07:13:97:7f:10:21:66:87:94:b4:09:5b:f5: c4:8e:43:b5:5c:44:ac:b4:99:c0:c9:28:d1:30:11:75:2e:84: bc:92:05:7c:77:ea:a8:7e:6a:d1:2e:6f:ca:cc:a2:83:09:0a: 7e:a5:5d:48:45:1e:ed:10:bd:b8:fa:1d:ba:e7:88:2e:89:5a: 1b:89:6d:ec:77:a3:71:da:1d:c6:ea:a7:cc:29:b7:a5:e8:39: 50:64:80:94:dc:f8:25:5b:b9:34:ba:88:02:30:e9:b8:4f:c9: 6b:b2:38:1f:7c:43:03:1b:c9:5e:6d:3b:4c:f5:5d:c9:d0:be: c6:78:9c:68:dd:c7:cc:b1:3c:2f:cc:69:43:87:67:8c:6c:11: 73:96:3f:40:c5:08:2a:68:42:ec:14:a7:2e:29:8d:f8:ac:10: 04:98:8d:9e:8e:ae:b1:a1:cd:aa:c2:d6:0e:91:8a:ef:f0:91: b2:a0:28:07:b9:8e:f1:9a:e8:24:81:64:0a:ed:de:9a:35:a3: a1:33:84:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM3QzQxMTAvBgNVBAUTKEIyNzZGMTVBNkQ0QTk3QzQ4MTkxRTkyQkQxNjYxRjM2 OEJFRjIxRTQwHhcNMjUwNjEzMDUzNzM0WhcNMjUwNjIwMDUzNzM0WjAYMRYwFAYD VQQDEw02ODRiYjkxZS0yZTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMy4XN/YhLGSOkpw2bozAKFSYFp6XccLyz3f+T/pd7hNoC+qIE22mGrw1/Y7 UCf99vaV0QbCsJGn3Cat2hNTXRgx1xdHi1YLhZz3mkBkma90lH/G4s6/Jx8n/6T7 OsToZWBgCLc9Db/48OkJDHOEaDccwtk7NKDz7omoAHXXI46hcwDC7iA9XPM40kcK 3nTxxxgxWlVtv7m+j0mjYL0hE582lTwPH6hnvLKXqcWNC5fU1Wot9oWDruO/aebs 1JkB8yCXtR1AaRtw8LewOB5QrMRv2w4LMMupfv7FmxP09ZHAYOaN7l1UqCUTSTAN 0O9IadLQIKKUtRhAU0n8IJiFFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOf+cGoO tfzcjSogfN5lT8BgLROhMB8GA1UdIwQYMBaAFLJ28VptSpfEgZHpK9FmHzaL7yHk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzdDNC9BMkFCQTcyQzhC RDkxMUVGOUY5NkJBNEVDNEY5QUUwMi9zbmJ4V20xS2w4U0JrZWtyMFdZZk5vdnZJ ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NuYnhXbTFLbDhTQmtla3IwV1lmTm92dkllUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzdDNC9BMkFCQTcyQzhCRDkxMUVGOUY5NkJBNEVDNEY5QUUwMi9zbmJ4V20xS2w4 U0JrZWtyMFdZZk5vdnZJZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3QTLmB1gTDlYWXQlmXhcCwIv25+NDsCP3t9NiSHxwINF72g8MMOCF 13AZkx8K9/Yn+VNSxibg56cpwQcTl38QIWaHlLQJW/XEjkO1XESstJnAySjRMBF1 LoS8kgV8d+qofmrRLm/KzKKDCQp+pV1IRR7tEL24+h2654guiVobiW3sd6Nx2h3G 6qfMKbel6DlQZICU3PglW7k0uogCMOm4T8lrsjgffEMDG8lebTtM9V3J0L7GeJxo 3cfMsTwvzGlDh2eMbBFzlj9AxQgqaELsFKcuKY34rBAEmI2ejq6xoc2qwtYOkYrv 8JGyoCgHuY7xmugkgWQK7d6aNaOhM4Q8 -----END CERTIFICATE-----Generated at Sat Jun 14 19:10:48 2025 by rpki-client