$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json) Hash identifier: ALRPYwoBZhpdd+PJ6YErJGc0141umO8SnRHncNQEIMc= Subject key identifier: A6:5D:16:1F:82:0E:2E:2E:1A:CC:88:7A:29:BC:1D:24:0A:4D:BA:7F Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 05AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft Manifest number: 05A4 Signing time: Wed 06 Aug 2025 23:36:34 +0000 Manifest this update: Wed 06 Aug 2025 23:36:33 +0000 Manifest next update: Wed 13 Aug 2025 23:36:33 +0000 Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: aMS5skbZULsyyv/cnA7viiOaaAE9bFGbD71CGHVXjw0=) 2: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: grIWyyq0MDFCb7a6KfrpTu3LAH64VdoYs4KvoLwKfQg=) 3: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: /1rRME/YWECCYt6toeN715tq9fDj34iC1+mJGA+LM6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 23:36:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1454 (0x5ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: Aug 6 23:36:33 2025 GMT Not After : Aug 13 23:36:33 2025 GMT Subject: CN=6893e702-3ba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:74:6e:2f:e7:d1:22:0f:d4:2f:42:8b:b4:0b: 75:3b:a0:19:77:e4:d8:40:cb:f1:00:b2:ea:04:63: 00:1b:c9:3d:84:e8:58:f1:6d:eb:a0:5f:56:83:88: 53:41:5b:66:8b:5b:eb:3c:52:c5:59:4a:c2:1b:bc: a8:b1:4a:7f:e0:9b:60:4a:92:91:ab:55:89:dc:59: bc:47:65:d7:ef:f4:5d:9c:d0:e4:4b:6d:91:7b:52: 3c:85:ab:ce:3a:52:06:59:64:7f:4c:a1:6f:00:af: 96:ff:ea:6b:30:10:d8:2f:77:3f:e5:2f:7c:a3:11: da:ff:7c:96:c5:87:8c:f3:a4:e1:f1:95:e3:3f:bd: fd:c2:b0:0f:8c:ed:36:47:27:63:2f:fd:c0:79:b4: 73:d5:47:88:dc:b7:32:2f:22:65:da:91:a6:6e:7f: f1:af:de:bf:fe:b2:74:0f:77:79:14:3b:af:c2:64: 38:ff:49:d7:62:9c:4f:72:60:43:76:44:08:86:79: 3f:b6:0d:18:01:6a:6b:56:03:df:35:50:34:a7:f8: 32:a0:b9:a7:01:43:d6:6e:0a:e1:75:52:5d:07:1b: 26:c0:35:a6:bd:74:33:83:79:12:97:cc:8c:5b:c3: a9:6a:27:f3:15:0a:ab:3b:02:68:bb:00:57:a7:47: 39:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:5D:16:1F:82:0E:2E:2E:1A:CC:88:7A:29:BC:1D:24:0A:4D:BA:7F X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:f7:1c:5c:62:74:c0:e0:26:26:d2:9b:06:5f:0b:b7:c3:90: d2:da:26:cb:a9:d3:d0:38:8b:22:db:9f:56:26:ff:a0:b1:1a: dd:07:58:49:c1:f1:e4:1c:fd:42:cf:19:e3:b6:b0:11:aa:84: 9f:ae:e3:c9:08:08:fe:3e:3a:06:74:97:8b:d4:bd:15:db:6b: 4b:5c:a0:64:5c:9f:d2:8e:9e:95:66:6c:44:44:3e:90:79:95: 80:d7:44:11:9b:f4:ce:bd:2f:c2:c4:71:6f:e6:4c:f7:31:88: 98:62:83:00:13:20:6e:99:08:02:6a:07:d6:7e:5f:df:0c:6e: 17:3e:e4:9a:4c:69:ac:1e:fa:e3:38:d7:38:bf:ea:69:c8:87: d0:49:d5:5f:ec:de:be:4a:ac:69:54:60:50:e6:15:15:f9:fd: 7c:01:95:11:a0:b3:fe:af:40:b2:40:40:4f:68:10:09:6c:d3: 8d:1a:9d:2e:b8:59:d3:bc:08:f4:ef:4a:94:d8:e1:63:de:c5: 6a:78:60:30:4f:09:ef:65:34:4d:0d:a4:87:51:d4:a1:95:7e: 29:9b:7d:72:63:e0:01:59:d0:8e:05:3b:48:8a:68:76:85:81: 9c:53:83:cb:cd:15:b5:44:96:65:b3:4f:c0:bb:93:28:80:55: 06:36:8a:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjUwODA2MjMzNjMzWhcNMjUwODEzMjMzNjMzWjAYMRYwFAYD VQQDEw02ODkzZTcwMi0zYmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6HRuL+fRIg/UL0KLtAt1O6AZd+TYQMvxALLqBGMAG8k9hOhY8W3roF9Wg4hT QVtmi1vrPFLFWUrCG7yosUp/4JtgSpKRq1WJ3Fm8R2XX7/RdnNDkS22Re1I8havO OlIGWWR/TKFvAK+W/+prMBDYL3c/5S98oxHa/3yWxYeM86Th8ZXjP739wrAPjO02 RydjL/3AebRz1UeI3LcyLyJl2pGmbn/xr96//rJ0D3d5FDuvwmQ4/0nXYpxPcmBD dkQIhnk/tg0YAWprVgPfNVA0p/gyoLmnAUPWbgrhdVJdBxsmwDWmvXQzg3kSl8yM W8OpaifzFQqrOwJouwBXp0c52QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKZdFh+C Di4uGsyIeim8HSQKTbp/MB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkI2Ni81M0U4RkJFQURBNUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3Bh MmZhaFlyODdYSFQ1TThIZ1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJ9xxcYnTA4CYm0psGXwu3w5DS2ibLqdPQOIsi259WJv+gsRrdB1hJ wfHkHP1CzxnjtrARqoSfruPJCAj+PjoGdJeL1L0V22tLXKBkXJ/Sjp6VZmxERD6Q eZWA10QRm/TOvS/CxHFv5kz3MYiYYoMAEyBumQgCagfWfl/fDG4XPuSaTGmsHvrj ONc4v+ppyIfQSdVf7N6+SqxpVGBQ5hUV+f18AZURoLP+r0CyQEBPaBAJbNONGp0u uFnTvAj070qU2OFj3sVqeGAwTwnvZTRNDaSHUdShlX4pm31yY+ABWdCOBTtIimh2 hYGcU4PLzRW1RJZls0/Au5MogFUGNop5 -----END CERTIFICATE-----Generated at Fri Aug 8 19:37:07 2025 by rpki-client