$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json) Hash identifier: r32eh2ldND3FOdx11XKuqrNPBwT9SF6XdwC7xXstUr4= Subject key identifier: 02:67:AE:BE:45:BA:5A:B8:FF:60:40:B7:5C:6F:7A:ED:3D:B2:8E:F2 Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 058E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft Manifest number: 0586 Signing time: Thu 12 Jun 2025 22:52:59 +0000 Manifest this update: Thu 12 Jun 2025 22:52:58 +0000 Manifest next update: Thu 19 Jun 2025 22:52:58 +0000 Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: t5ygEoutW9x27UMrYPBxLpl0FHSj9wlqWoQJ8n5X0ho=) 2: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: tBjtbPJkQLSdN5Mupxr4RXelnuicO0p7Kp/u349fbi0=) 3: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: 5yL82AjNiBtE4vdmcnCW/8glBDbdrO2x3U6tcVWP0Uk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1422 (0x58e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: Jun 12 22:52:58 2025 GMT Not After : Jun 19 22:52:58 2025 GMT Subject: CN=684b5a4b-4dac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6a:85:c6:dd:f8:f3:4b:9f:2e:2f:a4:b5:50: 0b:c3:04:bb:cd:63:97:4c:70:f3:0e:7b:1a:dd:e1: a5:3d:4b:4f:b5:47:67:bd:7b:d3:23:7d:82:77:0a: 0b:d5:54:3e:8a:90:78:f5:8f:38:27:b1:14:17:95: c2:4a:e6:da:f0:52:77:b7:22:f9:b3:02:2f:4f:30: 84:7b:86:9a:18:c9:98:ba:2a:86:de:d1:d6:e0:dd: 41:fc:a1:60:88:4d:0d:06:a6:76:95:16:09:6f:0b: 11:07:e6:c0:75:67:4c:af:0b:8f:64:dc:84:a8:05: dc:5c:32:ba:8a:f4:16:01:d8:c4:ee:a6:62:9b:49: a0:52:68:ee:48:e3:79:f7:de:23:11:8c:f8:b2:a4: ff:db:9f:a2:22:54:a0:29:09:70:5d:79:ae:3f:13: c4:7a:a7:ee:43:2e:dc:99:d8:38:5a:8d:0e:1f:2a: dd:c9:a0:da:ff:29:2a:eb:c7:1e:1a:49:da:bc:1a: 0e:0f:88:8c:e2:5b:e1:23:3b:f3:97:ce:57:6e:b3: 72:68:6e:d0:18:b0:9e:59:f4:55:95:28:a4:5d:10: 92:f8:2b:d6:07:a4:2e:3f:df:d1:c5:f5:d4:bd:0f: c1:35:44:d6:cd:36:7f:92:52:5c:b0:d3:bf:49:e8: 00:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:67:AE:BE:45:BA:5A:B8:FF:60:40:B7:5C:6F:7A:ED:3D:B2:8E:F2 X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:12:2b:db:bf:8d:15:96:57:66:91:21:10:6d:7b:47:20:70: 05:2f:26:3d:2b:fc:6b:d7:eb:93:54:a0:91:34:f7:97:99:68: 65:05:2e:15:d2:43:1d:30:ec:b9:c4:ec:74:af:a1:cd:d0:92: b3:fb:de:02:80:3b:94:89:0b:ed:e5:0f:96:ed:60:ef:fe:7b: 5a:d2:f7:d0:93:64:7e:88:8b:77:d0:4f:3d:99:df:23:4b:9c: f2:13:aa:fc:46:9b:0a:8c:ac:a9:7b:4e:18:3d:38:01:55:52: 86:f3:5e:84:d2:ec:65:e0:20:0c:e5:fb:4d:10:e7:5a:cb:d3: c7:0f:73:83:b4:96:7a:f6:0e:07:81:0d:99:3a:eb:a0:44:24: 41:43:d9:32:da:aa:b5:0d:d1:0f:0d:67:ff:ac:27:11:39:47: b1:53:65:e8:c4:0d:55:5d:1a:19:cf:20:dc:25:25:de:f6:be: 20:c1:72:ee:2d:b5:b8:5d:fd:d7:24:3e:c9:2e:3e:ed:e6:64: ab:e5:61:f4:91:3d:09:97:ca:2d:9d:b7:b6:27:fb:2b:45:26: 8d:fa:2f:07:96:c1:69:77:79:ed:ff:d5:2b:1b:14:78:48:a0: 23:e5:ba:c4:c4:c7:9c:be:d5:ee:2c:54:b7:ba:5b:86:cd:71: 56:3c:02:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjUwNjEyMjI1MjU4WhcNMjUwNjE5MjI1MjU4WjAYMRYwFAYD VQQDEw02ODRiNWE0Yi00ZGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArWqFxt3480ufLi+ktVALwwS7zWOXTHDzDnsa3eGlPUtPtUdnvXvTI32CdwoL 1VQ+ipB49Y84J7EUF5XCSuba8FJ3tyL5swIvTzCEe4aaGMmYuiqG3tHW4N1B/KFg iE0NBqZ2lRYJbwsRB+bAdWdMrwuPZNyEqAXcXDK6ivQWAdjE7qZim0mgUmjuSON5 994jEYz4sqT/25+iIlSgKQlwXXmuPxPEeqfuQy7cmdg4Wo0OHyrdyaDa/ykq68ce GknavBoOD4iM4lvhIzvzl85XbrNyaG7QGLCeWfRVlSikXRCS+CvWB6QuP9/RxfXU vQ/BNUTWzTZ/klJcsNO/SegAwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAJnrr5F ulq4/2BAt1xveu09so7yMB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkI2Ni81M0U4RkJFQURBNUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3Bh MmZhaFlyODdYSFQ1TThIZ1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoEivbv40VlldmkSEQbXtHIHAFLyY9K/xr1+uTVKCRNPeXmWhlBS4V 0kMdMOy5xOx0r6HN0JKz+94CgDuUiQvt5Q+W7WDv/nta0vfQk2R+iIt30E89md8j S5zyE6r8RpsKjKype04YPTgBVVKG816E0uxl4CAM5ftNEOday9PHD3ODtJZ69g4H gQ2ZOuugRCRBQ9ky2qq1DdEPDWf/rCcROUexU2XoxA1VXRoZzyDcJSXe9r4gwXLu LbW4Xf3XJD7JLj7t5mSr5WH0kT0Jl8otnbe2J/srRSaN+i8HlsFpd3nt/9UrGxR4 SKAj5brExMecvtXuLFS3uluGzXFWPAJE -----END CERTIFICATE-----Generated at Sat Jun 14 20:51:53 2025 by rpki-client