$ rpki-client -vvf rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft File: snbxWm1Kl8SBkekr0WYfNovvIeQ.mft (raw, json) Hash identifier: jWVtTQ98jZIEPAN40VHDgp4qLkO9xKftYEXBikz5g2Y= Subject key identifier: 84:8A:6C:6D:5F:12:4D:34:90:88:BB:33:A2:C8:E9:B7:97:32:9A:5D Authority key identifier: B2:76:F1:5A:6D:4A:97:C4:81:91:E9:2B:D1:66:1F:36:8B:EF:21:E4 Certificate issuer: /CN=A91B37C4/serialNumber=B276F15A6D4A97C48191E92BD1661F368BEF21E4 Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft Manifest number: 9F Signing time: Mon 11 Aug 2025 06:33:33 +0000 Manifest this update: Mon 11 Aug 2025 06:33:33 +0000 Manifest next update: Mon 18 Aug 2025 06:33:32 +0000 Files and hashes: 1: snbxWm1Kl8SBkekr0WYfNovvIeQ.crl (hash: 4k0pDxWVq9PjMTbjjQunUztU9lTAGDjFmTKIdBMja1c=) 2: 3E4B01008BDA11EFA4A11684C4F9AE02.roa (hash: m+cTvWrh74cJIwtxb5YNKAjFtv2dZKfs+BjQs+Q2hMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.crl rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 06:33:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B37C4, serialNumber=B276F15A6D4A97C48191E92BD1661F368BEF21E4 Validity Not Before: Aug 11 06:33:33 2025 GMT Not After : Aug 18 06:33:32 2025 GMT Subject: CN=68998ebd-82c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:79:ad:b9:e8:b6:65:85:d2:15:b6:58:97:14: c9:ab:76:13:ae:8e:0b:d2:e3:ae:96:eb:e8:32:a9: 7a:45:46:63:78:2a:38:49:1c:ef:2b:6c:a7:02:a6: c5:52:2c:c7:c1:17:e7:ad:f5:66:c0:53:a8:6c:98: aa:6e:f8:d6:ce:67:5c:56:99:e9:26:9c:0b:b0:42: e6:f2:eb:77:16:3c:2d:9d:8a:b4:23:4a:54:af:77: 7c:49:fe:bd:da:f3:01:e5:d4:bd:3b:c5:42:c0:ba: 12:75:a3:7d:2d:be:bf:2e:1a:f9:20:ba:5d:b6:1d: af:92:82:2e:e3:01:6a:11:de:44:21:23:37:2b:fb: cb:3b:10:68:51:5d:f2:33:d0:69:f1:6d:56:61:cb: 26:6b:e7:a3:24:6b:a3:5f:27:82:48:b5:35:63:07: f1:80:77:3f:ca:31:40:d7:ae:fe:1d:32:5b:06:4f: e9:b5:20:9a:81:9c:ae:3d:99:eb:87:1c:07:89:ba: 8e:15:21:27:41:28:85:cf:9f:d8:aa:e8:cc:97:5d: 7a:f5:85:b4:75:2a:11:da:f9:ed:13:81:cc:50:92: 86:7a:d0:6b:22:c3:1c:56:e3:95:f3:ff:dd:44:33: 25:e4:36:26:2b:89:08:77:78:16:7f:bd:08:da:36: b3:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:8A:6C:6D:5F:12:4D:34:90:88:BB:33:A2:C8:E9:B7:97:32:9A:5D X509v3 Authority Key Identifier: keyid:B2:76:F1:5A:6D:4A:97:C4:81:91:E9:2B:D1:66:1F:36:8B:EF:21:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:d0:20:a7:cc:1f:fb:1e:79:ae:62:f7:26:7d:4c:5f:72:eb: 84:9e:b3:6a:4e:dc:eb:31:2f:88:61:5a:87:27:32:85:2c:97: 89:be:1a:92:58:b0:83:5b:d7:4b:c6:35:02:1b:b2:51:4d:74: 20:49:0a:9f:34:95:c9:f9:14:e3:5c:6b:fc:03:83:d6:e1:f6: 07:05:38:14:88:f7:ae:22:d9:19:fb:68:71:22:0b:3a:76:82: d5:55:fa:85:6d:12:6f:f7:e7:08:b1:16:84:b7:64:aa:87:8c: 4f:4d:a2:db:6a:61:a9:e1:12:73:e4:4d:7c:eb:20:4f:b6:8a: 87:db:5b:37:f0:aa:c5:93:cf:e9:af:c5:4e:33:e9:a8:51:c9: d8:86:86:e9:45:c9:6d:bd:c0:d6:3f:30:88:f6:8c:1d:ba:b1: b1:3b:a7:44:e9:d7:78:ef:fb:56:c7:5f:a2:a5:91:4c:11:3e: a7:73:70:7e:17:57:88:5c:d7:53:cb:8b:32:15:6a:99:bb:68: 1b:7f:26:ff:ba:79:3a:c5:e1:f1:42:2f:6e:f5:ab:23:bf:be: 75:75:54:17:50:f9:c5:20:f2:0e:82:42:fe:fc:da:af:f7:af: f1:2f:3e:9f:29:61:2b:54:f1:95:b6:c9:cb:c1:95:f8:d2:33: 13:4f:df:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM3QzQxMTAvBgNVBAUTKEIyNzZGMTVBNkQ0QTk3QzQ4MTkxRTkyQkQxNjYxRjM2 OEJFRjIxRTQwHhcNMjUwODExMDYzMzMzWhcNMjUwODE4MDYzMzMyWjAYMRYwFAYD VQQDEw02ODk5OGViZC04MmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXmtuei2ZYXSFbZYlxTJq3YTro4L0uOuluvoMql6RUZjeCo4SRzvK2ynAqbF UizHwRfnrfVmwFOobJiqbvjWzmdcVpnpJpwLsELm8ut3FjwtnYq0I0pUr3d8Sf69 2vMB5dS9O8VCwLoSdaN9Lb6/Lhr5ILpdth2vkoIu4wFqEd5EISM3K/vLOxBoUV3y M9Bp8W1WYcsma+ejJGujXyeCSLU1YwfxgHc/yjFA167+HTJbBk/ptSCagZyuPZnr hxwHibqOFSEnQSiFz5/YqujMl1169YW0dSoR2vntE4HMUJKGetBrIsMcVuOV8//d RDMl5DYmK4kId3gWf70I2jazTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFISKbG1f Ek00kIi7M6LI6beXMppdMB8GA1UdIwQYMBaAFLJ28VptSpfEgZHpK9FmHzaL7yHk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzdDNC9BMkFCQTcyQzhC RDkxMUVGOUY5NkJBNEVDNEY5QUUwMi9zbmJ4V20xS2w4U0JrZWtyMFdZZk5vdnZJ ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NuYnhXbTFLbDhTQmtla3IwV1lmTm92dkllUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzdDNC9BMkFCQTcyQzhCRDkxMUVGOUY5NkJBNEVDNEY5QUUwMi9zbmJ4V20xS2w4 U0JrZWtyMFdZZk5vdnZJZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCz0CCnzB/7HnmuYvcmfUxfcuuEnrNqTtzrMS+IYVqHJzKFLJeJvhqS WLCDW9dLxjUCG7JRTXQgSQqfNJXJ+RTjXGv8A4PW4fYHBTgUiPeuItkZ+2hxIgs6 doLVVfqFbRJv9+cIsRaEt2Sqh4xPTaLbamGp4RJz5E186yBPtoqH21s38KrFk8/p r8VOM+moUcnYhobpRcltvcDWPzCI9owdurGxO6dE6dd47/tWx1+ipZFMET6nc3B+ F1eIXNdTy4syFWqZu2gbfyb/unk6xeHxQi9u9asjv751dVQXUPnFIPIOgkL+/Nqv 96/xLz6fKWErVPGVtsnLwZX40jMTT9/C -----END CERTIFICATE-----Generated at Wed Aug 13 05:29:14 2025 by rpki-client