$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft File: SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft (raw, json) Hash identifier: n3Pq5jGbAWWfShkNCWp47HMq6k4JD9hBdZ+3+ORjxYM= Subject key identifier: F2:61:41:9B:66:6D:13:4D:44:44:61:4F:7C:E9:7E:17:FE:9C:44:B7 Authority key identifier: 4A:73:B1:6D:2E:E9:E9:CD:4C:3F:C0:BD:61:09:1C:48:90:53:D4:36 Certificate issuer: /CN=A91CF364/serialNumber=4A73B16D2EE9E9CD4C3FC0BD61091C489053D436 Certificate serial: 095F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft Manifest number: 0958 Signing time: Sun 24 Aug 2025 20:11:23 +0000 Manifest this update: Sun 24 Aug 2025 20:11:22 +0000 Manifest next update: Sun 31 Aug 2025 20:11:22 +0000 Files and hashes: 1: SnOxbS7p6c1MP8C9YQkcSJBT1DY.crl (hash: 5YOuAXKuIuUrBLf4wPIGROPC+jRVhFz+Jloa2dHrh8c=) 2: 1DEAACDA9F8511EABAA10F3BC4F9AE02.roa (hash: SCNejdxnpcaaKKmMwjhiNM0xWAEADnWJttQDspq42Vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.crl rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2399 (0x95f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF364, serialNumber=4A73B16D2EE9E9CD4C3FC0BD61091C489053D436 Validity Not Before: Aug 24 20:11:22 2025 GMT Not After : Aug 31 20:11:22 2025 GMT Subject: CN=68ab71ea-24b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:82:88:04:46:91:2f:05:86:19:c4:a1:82:43: 9e:b0:e7:f7:92:fb:2f:bd:7f:85:cd:1b:a7:7a:f0: bb:44:80:74:0f:6b:fd:c0:62:41:1c:78:5a:ef:56: 24:99:3c:8a:64:c5:5b:af:54:2a:12:f2:d1:d9:0e: 1f:e0:07:a0:c4:2c:dd:9e:11:5e:31:ba:9f:90:43: a1:63:27:f3:44:c4:22:e1:7a:fe:95:4d:7a:3c:72: 21:c0:0b:6e:1c:cd:6b:37:5e:8a:17:ec:f6:ff:d5: 18:22:c9:87:9e:17:18:11:f0:a6:af:88:14:78:b3: 13:70:8c:2e:01:6e:9a:93:2d:11:02:ee:3f:14:ba: 8f:2e:56:60:47:98:80:3e:f7:88:78:44:fa:55:ee: c6:92:4c:b6:3c:58:f3:66:d8:17:a6:b4:76:4e:42: 53:0b:2b:d1:53:01:db:d8:ff:d2:37:e3:a4:53:c5: ec:36:a0:20:f0:5a:f2:b2:b8:b9:2b:81:b4:65:bb: 8c:e7:96:06:dd:6d:78:5e:32:fa:0d:11:f8:62:b8: 6b:7e:7e:0e:f6:e1:42:79:50:92:41:8c:05:39:6b: bf:2d:f2:15:bd:e0:17:22:81:4e:2c:9b:72:b5:c0: 00:12:1e:52:37:23:fb:bd:c2:25:06:32:23:bb:34: 3f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:61:41:9B:66:6D:13:4D:44:44:61:4F:7C:E9:7E:17:FE:9C:44:B7 X509v3 Authority Key Identifier: keyid:4A:73:B1:6D:2E:E9:E9:CD:4C:3F:C0:BD:61:09:1C:48:90:53:D4:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:e4:b6:ec:1d:86:a7:f4:c0:cb:2e:ac:d7:37:94:48:4b:50: 88:48:24:ac:da:d6:8d:43:58:40:9a:9d:bb:ba:1f:a7:0a:ae: cd:4d:c6:62:89:ec:35:7c:fe:79:74:c7:ee:1b:81:11:14:ab: b5:6b:7c:7f:bd:92:5b:dd:0f:3d:cb:16:6c:37:75:3d:63:e0: b2:78:eb:81:91:4f:05:04:71:0f:1a:ff:f1:90:0c:79:d8:e7: 2b:35:22:3c:46:4c:3e:2d:78:82:fe:9c:ee:a1:a1:7f:2f:74: c0:5f:15:21:af:76:c8:5f:76:b3:05:0c:74:5e:4e:5e:80:37: b2:6d:3c:b4:25:65:c5:f9:1f:50:ee:76:64:ff:9a:f3:49:d2: 51:1a:33:17:78:f0:66:99:46:56:ec:be:93:1f:4b:69:ba:ec: 84:f9:db:6f:64:06:39:20:32:07:57:f1:e4:05:bd:3e:9b:74: 30:8d:e4:7b:a1:04:67:8e:f9:6d:fc:ab:d4:14:8e:ff:b0:29: 17:7d:45:c5:b4:41:88:52:e9:24:f2:48:4e:b3:2a:1d:74:87: d7:5f:1c:76:5a:5b:f6:f5:c8:a6:04:40:d5:cf:9e:b7:1e:d8: 3d:fd:58:87:7d:b4:00:a3:b4:dd:e9:6d:ee:ad:7a:26:38:07: 4b:b4:10:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YzNjQxMTAvBgNVBAUTKDRBNzNCMTZEMkVFOUU5Q0Q0QzNGQzBCRDYxMDkxQzQ4 OTA1M0Q0MzYwHhcNMjUwODI0MjAxMTIyWhcNMjUwODMxMjAxMTIyWjAYMRYwFAYD VQQDEw02OGFiNzFlYS0yNGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoKIBEaRLwWGGcShgkOesOf3kvsvvX+FzRunevC7RIB0D2v9wGJBHHha71Yk mTyKZMVbr1QqEvLR2Q4f4AegxCzdnhFeMbqfkEOhYyfzRMQi4Xr+lU16PHIhwAtu HM1rN16KF+z2/9UYIsmHnhcYEfCmr4gUeLMTcIwuAW6aky0RAu4/FLqPLlZgR5iA PveIeET6Ve7Gkky2PFjzZtgXprR2TkJTCyvRUwHb2P/SN+OkU8XsNqAg8Frysri5 K4G0ZbuM55YG3W14XjL6DRH4Yrhrfn4O9uFCeVCSQYwFOWu/LfIVveAXIoFOLJty tcAAEh5SNyP7vcIlBjIjuzQ/jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPJhQZtm bRNNRERhT3zpfhf+nES3MB8GA1UdIwQYMBaAFEpzsW0u6enNTD/AvWEJHEiQU9Q2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjM2NC83MTZBNTlBQzlG ODMxMUVBOTMxNDkxMzVDNEY5QUUwMi9Tbk94YlM3cDZjMU1QOEM5WVFrY1NKQlQx RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NuT3hiUzdwNmMxTVA4QzlZUWtjU0pCVDFEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjM2NC83MTZBNTlBQzlGODMxMUVBOTMxNDkxMzVDNEY5QUUwMi9Tbk94YlM3cDZj MU1QOEM5WVFrY1NKQlQxRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE5LbsHYan9MDLLqzXN5RIS1CISCSs2taNQ1hAmp27uh+nCq7NTcZi iew1fP55dMfuG4ERFKu1a3x/vZJb3Q89yxZsN3U9Y+CyeOuBkU8FBHEPGv/xkAx5 2OcrNSI8Rkw+LXiC/pzuoaF/L3TAXxUhr3bIX3azBQx0Xk5egDeybTy0JWXF+R9Q 7nZk/5rzSdJRGjMXePBmmUZW7L6TH0tpuuyE+dtvZAY5IDIHV/HkBb0+m3QwjeR7 oQRnjvlt/KvUFI7/sCkXfUXFtEGIUukk8khOsyoddIfXXxx2Wlv29cimBEDVz563 Htg9/ViHfbQAo7Td6W3urXomOAdLtBAp -----END CERTIFICATE-----Generated at Sun Aug 24 22:20:59 2025 by rpki-client