$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json) Hash identifier: Pc1TyVxnLUsyVSvLlPwnDqWokM54NEsqZVlkJ448J3g= Subject key identifier: DB:99:D0:5D:5D:78:5D:19:60:C9:0A:31:17:FF:84:E6:4E:D0:6C:21 Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 058B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft Manifest number: 0583 Signing time: Fri 06 Jun 2025 23:19:24 +0000 Manifest this update: Fri 06 Jun 2025 23:19:23 +0000 Manifest next update: Fri 13 Jun 2025 23:19:23 +0000 Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: fxB3o4B0FxkTnVWoEN8UCd7KO/YCZDaVqg2fasy4Gtc=) 2: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: tBjtbPJkQLSdN5Mupxr4RXelnuicO0p7Kp/u349fbi0=) 3: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: 5yL82AjNiBtE4vdmcnCW/8glBDbdrO2x3U6tcVWP0Uk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 23:19:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1419 (0x58b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: Jun 6 23:19:23 2025 GMT Not After : Jun 13 23:19:23 2025 GMT Subject: CN=6843777b-192f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d0:14:86:a8:38:08:cc:c4:45:18:1d:3d:fe: e4:e9:a9:21:4f:d6:3b:ce:78:9d:2b:26:54:4f:26: 67:08:0f:17:1e:52:0d:ae:b7:97:b7:bf:2d:d5:31: 74:59:70:53:e3:bb:de:f1:cd:7d:1a:6b:7b:2a:79: 4b:6b:93:82:1d:22:86:2b:21:40:b6:4e:ed:1d:42: 85:c3:44:d9:f5:74:79:c3:e4:ae:c0:42:df:72:58: a6:ea:8e:95:7e:f9:63:f5:2c:23:5b:ea:7c:e1:e8: a2:7e:e2:22:62:2c:d4:0f:14:65:c0:08:a1:4b:e8: 89:2b:1e:ce:21:e8:ce:75:90:88:ea:48:2e:82:a5: 51:62:12:a5:3b:ec:e0:53:7d:a3:f3:22:ec:ce:40: 96:03:d7:a4:90:9e:ed:96:4e:a8:21:8e:2e:c2:51: e8:62:57:e6:4a:23:81:db:7a:a6:26:b3:8f:12:29: 49:38:7f:27:c5:64:71:d3:62:29:af:13:70:84:3d: 97:3f:69:2a:6d:64:a0:14:af:c5:94:01:76:10:90: 88:67:76:42:55:8e:2d:ab:47:b2:9e:ef:05:48:9f: c4:29:6d:dd:be:3f:8b:45:a1:a7:10:fa:fc:79:7a: a3:95:fa:5b:1f:16:19:87:8a:c7:36:18:dd:3e:b1: 39:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:99:D0:5D:5D:78:5D:19:60:C9:0A:31:17:FF:84:E6:4E:D0:6C:21 X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:29:f1:67:e7:d1:38:64:0b:87:ac:26:91:12:c5:01:e2:61: 1c:74:5c:62:b8:93:66:01:0f:00:1c:f2:f0:25:79:8b:2c:a8: ac:39:87:6e:76:8b:6d:c9:f5:d5:48:b4:29:31:da:62:48:74: 35:cd:72:98:3d:c8:15:88:f5:24:0c:d5:74:32:03:9a:8d:5e: 18:cb:cb:db:ce:1f:f3:88:ab:ce:6f:53:b1:fd:05:bb:53:87: 08:f2:ca:93:6b:c1:81:55:2f:91:bb:c7:87:77:aa:71:d2:9c: 58:78:be:08:f4:77:5a:12:a1:07:ce:ed:6d:36:62:1d:e4:61: 26:16:f1:65:57:42:ab:7f:9b:bf:e4:ef:a6:4f:6a:37:68:56: 4f:c0:34:57:3d:16:76:fa:ee:bb:9c:ad:0b:20:9f:58:be:64: 86:d2:22:a0:77:3c:a0:a9:d3:73:ed:b8:08:06:ee:10:98:c0: 1d:62:b6:34:c4:f6:f1:5a:25:b8:3f:51:6a:f0:e4:72:08:33: 33:95:e4:43:c1:1c:c2:1a:85:89:86:cd:dd:fd:13:2c:ae:b3: d5:7c:8d:b9:69:54:ff:9c:8b:3a:21:9d:b3:d3:7f:c9:a1:1c: ca:b2:93:f4:e3:2d:ba:84:87:e2:de:40:2c:96:24:2d:f6:fb: de:b6:b1:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjUwNjA2MjMxOTIzWhcNMjUwNjEzMjMxOTIzWjAYMRYwFAYD VQQDEw02ODQzNzc3Yi0xOTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutAUhqg4CMzERRgdPf7k6akhT9Y7znidKyZUTyZnCA8XHlINrreXt78t1TF0 WXBT47ve8c19Gmt7KnlLa5OCHSKGKyFAtk7tHUKFw0TZ9XR5w+SuwELfclim6o6V fvlj9SwjW+p84eiifuIiYizUDxRlwAihS+iJKx7OIejOdZCI6kgugqVRYhKlO+zg U32j8yLszkCWA9ekkJ7tlk6oIY4uwlHoYlfmSiOB23qmJrOPEilJOH8nxWRx02Ip rxNwhD2XP2kqbWSgFK/FlAF2EJCIZ3ZCVY4tq0eynu8FSJ/EKW3dvj+LRaGnEPr8 eXqjlfpbHxYZh4rHNhjdPrE5uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNuZ0F1d eF0ZYMkKMRf/hOZO0GwhMB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkI2Ni81M0U4RkJFQURBNUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3Bh MmZhaFlyODdYSFQ1TThIZ1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpKfFn59E4ZAuHrCaREsUB4mEcdFxiuJNmAQ8AHPLwJXmLLKisOYdu dottyfXVSLQpMdpiSHQ1zXKYPcgViPUkDNV0MgOajV4Yy8vbzh/ziKvOb1Ox/QW7 U4cI8sqTa8GBVS+Ru8eHd6px0pxYeL4I9HdaEqEHzu1tNmId5GEmFvFlV0Krf5u/ 5O+mT2o3aFZPwDRXPRZ2+u67nK0LIJ9YvmSG0iKgdzygqdNz7bgIBu4QmMAdYrY0 xPbxWiW4P1Fq8ORyCDMzleRDwRzCGoWJhs3d/RMsrrPVfI25aVT/nIs6IZ2z03/J oRzKspP04y26hIfi3kAsliQt9vvetrGh -----END CERTIFICATE-----Generated at Sun Jun 8 16:08:09 2025 by rpki-client