$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft File: SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft (raw, json) Hash identifier: RikdbMSR6bIb6rlO+huQgBf7Qfyy4kPaguCcR/lgLTo= Subject key identifier: E1:8E:66:07:26:80:39:18:18:0D:AE:C8:36:83:96:04:C8:04:8C:98 Authority key identifier: 4A:73:B1:6D:2E:E9:E9:CD:4C:3F:C0:BD:61:09:1C:48:90:53:D4:36 Certificate issuer: /CN=A91CF364/serialNumber=4A73B16D2EE9E9CD4C3FC0BD61091C489053D436 Certificate serial: 0937 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft Manifest number: 0931 Signing time: Thu 12 Jun 2025 20:01:34 +0000 Manifest this update: Thu 12 Jun 2025 20:01:34 +0000 Manifest next update: Thu 19 Jun 2025 20:01:34 +0000 Files and hashes: 1: SnOxbS7p6c1MP8C9YQkcSJBT1DY.crl (hash: P9Mui0ngCvztJzP/VkFBB8wVqs01NoVoZGGVdoqMhIQ=) 2: 1DEAACDA9F8511EABAA10F3BC4F9AE02.roa (hash: kT9n+KoUVrMxTcDdDdchHMpGKJgB1YHqyxZ9/EDRDrw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.crl rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2359 (0x937) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF364, serialNumber=4A73B16D2EE9E9CD4C3FC0BD61091C489053D436 Validity Not Before: Jun 12 20:01:34 2025 GMT Not After : Jun 19 20:01:34 2025 GMT Subject: CN=684b321e-9bce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:19:dd:43:b8:05:31:4a:f9:55:2d:ae:3f:ef: 10:c5:a8:42:6d:8c:9c:cb:04:45:a7:aa:7b:49:a0: 01:8d:9e:32:4d:54:e4:04:cb:0e:f6:40:f3:a0:92: 3a:f4:8f:09:34:2a:d1:f8:c8:0f:4f:9b:61:71:d3: 43:64:39:e6:39:2f:ae:45:94:30:72:b1:86:b1:f0: 7b:85:21:86:52:17:96:a5:74:61:15:7d:a8:90:59: c8:a1:bb:ba:64:43:4d:a7:1a:6a:da:58:c3:0b:5c: 55:f0:55:25:95:a0:1e:3a:8c:b2:b1:b2:84:da:8f: f5:99:62:70:e2:1b:f0:bc:f3:29:49:9c:e8:b0:d0: c4:71:d6:ac:21:d4:38:83:1d:21:41:e2:84:67:22: d3:e3:50:a2:f1:0f:67:34:1b:6b:98:3e:31:f2:41: 78:8a:a5:7a:18:23:e9:49:fb:14:59:a5:8c:8b:09: 27:cc:58:35:c4:60:53:c4:10:55:6a:04:70:18:56: e8:ff:41:0c:aa:06:a8:ad:35:68:7e:20:8c:a3:e8: bc:61:73:91:78:fb:d3:2b:81:f1:23:91:95:04:48: c7:5a:e7:24:38:86:ee:65:f2:3c:b2:18:7a:0a:40: 9e:d4:08:84:9b:4a:00:32:82:a3:81:cf:f6:2e:f8: bd:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:8E:66:07:26:80:39:18:18:0D:AE:C8:36:83:96:04:C8:04:8C:98 X509v3 Authority Key Identifier: keyid:4A:73:B1:6D:2E:E9:E9:CD:4C:3F:C0:BD:61:09:1C:48:90:53:D4:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:f7:32:29:7a:88:98:f0:35:1b:d4:5b:0d:04:0a:b1:54:fe: 95:78:64:f1:2b:6d:8e:9e:77:36:5c:6b:48:c1:45:87:85:e4: 56:e8:39:09:b6:14:c8:fa:37:70:45:2a:ce:85:3a:54:be:7f: 84:84:f1:3d:23:72:5d:fb:74:d6:b1:26:d3:ba:35:54:ca:84: 5d:05:1b:4e:d8:d2:bd:90:7b:c9:59:72:ae:49:b8:b5:c4:55: 69:02:42:9e:8c:aa:fa:5d:51:08:ea:7b:6b:ae:fd:fb:0c:9b: 68:c0:30:c1:4f:bc:ea:0a:7e:0e:30:c8:33:34:11:d6:40:17: 7e:02:c8:82:22:59:d2:7d:48:0e:3c:92:54:76:2f:fd:be:99: 54:70:ab:af:9d:65:13:65:57:1f:bc:99:8e:c1:c8:57:2f:55: d9:75:f3:79:f4:ac:8b:9b:6a:20:ef:50:5f:90:a2:ec:66:c3: e3:d2:43:67:d0:1c:22:b1:b5:72:56:94:50:50:14:97:5a:7a: 97:49:3d:bc:96:03:29:a1:1e:be:12:d4:07:d5:74:ed:79:7b: 21:97:72:6e:0e:38:a9:13:d6:53:03:68:cb:90:b1:9a:59:95: b6:4a:fc:45:f5:db:54:b9:65:0c:f1:8e:2a:95:ba:fd:6d:b1: fb:28:a1:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YzNjQxMTAvBgNVBAUTKDRBNzNCMTZEMkVFOUU5Q0Q0QzNGQzBCRDYxMDkxQzQ4 OTA1M0Q0MzYwHhcNMjUwNjEyMjAwMTM0WhcNMjUwNjE5MjAwMTM0WjAYMRYwFAYD VQQDEw02ODRiMzIxZS05YmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRndQ7gFMUr5VS2uP+8QxahCbYycywRFp6p7SaABjZ4yTVTkBMsO9kDzoJI6 9I8JNCrR+MgPT5thcdNDZDnmOS+uRZQwcrGGsfB7hSGGUheWpXRhFX2okFnIobu6 ZENNpxpq2ljDC1xV8FUllaAeOoyysbKE2o/1mWJw4hvwvPMpSZzosNDEcdasIdQ4 gx0hQeKEZyLT41Ci8Q9nNBtrmD4x8kF4iqV6GCPpSfsUWaWMiwknzFg1xGBTxBBV agRwGFbo/0EMqgaorTVofiCMo+i8YXORePvTK4HxI5GVBEjHWuckOIbuZfI8shh6 CkCe1AiEm0oAMoKjgc/2Lvi9PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOGOZgcm gDkYGA2uyDaDlgTIBIyYMB8GA1UdIwQYMBaAFEpzsW0u6enNTD/AvWEJHEiQU9Q2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjM2NC83MTZBNTlBQzlG ODMxMUVBOTMxNDkxMzVDNEY5QUUwMi9Tbk94YlM3cDZjMU1QOEM5WVFrY1NKQlQx RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NuT3hiUzdwNmMxTVA4QzlZUWtjU0pCVDFEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjM2NC83MTZBNTlBQzlGODMxMUVBOTMxNDkxMzVDNEY5QUUwMi9Tbk94YlM3cDZj MU1QOEM5WVFrY1NKQlQxRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBz9zIpeoiY8DUb1FsNBAqxVP6VeGTxK22Onnc2XGtIwUWHheRW6DkJ thTI+jdwRSrOhTpUvn+EhPE9I3Jd+3TWsSbTujVUyoRdBRtO2NK9kHvJWXKuSbi1 xFVpAkKejKr6XVEI6ntrrv37DJtowDDBT7zqCn4OMMgzNBHWQBd+AsiCIlnSfUgO PJJUdi/9vplUcKuvnWUTZVcfvJmOwchXL1XZdfN59KyLm2og71BfkKLsZsPj0kNn 0BwisbVyVpRQUBSXWnqXST28lgMpoR6+EtQH1XTteXshl3JuDjipE9ZTA2jLkLGa WZW2SvxF9dtUuWUM8Y4qlbr9bbH7KKF3 -----END CERTIFICATE-----Generated at Sat Jun 14 07:31:40 2025 by rpki-client