$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json) Hash identifier: F8UepEkv2PcF8sy+Eb4oNeudB1hapcE0lZDUvm0W9/k= Subject key identifier: 2A:03:57:FC:B4:11:16:69:A1:B4:C7:1A:0F:7E:8B:C8:DE:A0:B6:25 Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 05B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft Manifest number: 05AA Signing time: Mon 18 Aug 2025 23:29:25 +0000 Manifest this update: Mon 18 Aug 2025 23:29:25 +0000 Manifest next update: Mon 25 Aug 2025 23:29:25 +0000 Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: wkxBE6cEkGPly3iduFHxETuCQmEHP1+WQQG5fiuOxhE=) 2: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: grIWyyq0MDFCb7a6KfrpTu3LAH64VdoYs4KvoLwKfQg=) 3: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: /1rRME/YWECCYt6toeN715tq9fDj34iC1+mJGA+LM6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 23:29:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1460 (0x5b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: Aug 18 23:29:25 2025 GMT Not After : Aug 25 23:29:25 2025 GMT Subject: CN=68a3b755-f7f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d8:62:eb:58:88:49:bc:81:56:e4:63:9d:15: 09:3a:99:21:73:08:b0:89:7a:db:81:25:11:3e:1e: aa:04:6e:e0:60:87:ff:50:2f:1c:6a:00:f7:b5:ec: 2c:d5:19:ff:49:6a:60:3d:71:cc:12:bc:27:5f:0d: 62:8d:8c:ca:9d:98:be:af:f4:47:4a:f8:05:f2:2c: 77:11:e9:80:77:28:80:9e:7e:74:18:6d:68:e4:74: 95:bb:4f:5d:7d:d9:07:47:90:46:6d:13:3a:b7:3f: 5b:4a:9a:01:53:cc:a6:23:de:a2:fc:38:80:85:f6: 91:05:30:f2:c8:d5:f7:50:51:9e:3e:5b:f1:42:68: c4:04:ac:49:b9:c2:6a:19:8e:5d:0e:87:1d:d6:e7: ef:bf:f6:4f:5b:18:64:0b:3e:43:4c:7c:61:9b:20: 9c:e8:a1:77:42:ed:da:67:a5:4e:a3:eb:ed:e5:ae: 35:59:42:89:b8:12:ea:4b:52:d6:c7:59:b5:63:c4: 8b:34:69:2a:d0:c6:6b:05:fd:be:d9:46:e8:d6:77: 2c:33:e2:50:39:47:92:bd:76:32:2b:01:fe:1d:1e: 68:25:c0:28:ca:8e:02:ff:96:b8:58:5c:17:02:b2: 4c:65:2f:05:74:87:44:26:70:12:fd:65:01:bc:85: f2:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:03:57:FC:B4:11:16:69:A1:B4:C7:1A:0F:7E:8B:C8:DE:A0:B6:25 X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:11:8d:98:73:ab:ce:e6:5e:75:3e:3f:ec:aa:83:28:d1:d5: 76:e6:c3:d9:f4:89:33:26:c4:bb:17:00:86:da:fd:8f:29:06: ae:5d:6c:0a:f5:0d:6c:3f:81:bc:f6:a8:b0:1e:87:59:a2:03: 42:d9:ab:51:ef:16:31:71:1c:5d:a0:7c:27:68:cb:55:99:9b: 4b:55:c3:3d:73:6c:7a:e1:98:63:86:a0:fc:42:d8:fc:04:16: 65:3e:31:63:c7:6a:35:76:e5:ec:43:5e:f8:66:78:ec:fa:9b: ee:ec:6d:a0:d2:ae:28:d3:08:62:b0:4f:e7:e9:a6:b3:b9:f8: 6e:5e:47:9c:89:25:2c:64:7f:29:cd:fb:10:66:05:21:43:6b: 72:13:b2:17:ad:0b:ca:5d:9f:2e:62:f8:32:a5:ec:d2:52:29: 9c:45:a9:40:03:19:4b:0f:e1:00:c4:3a:ea:fb:06:58:a3:be: 7e:e4:ce:c6:eb:3f:c6:84:34:f1:fe:25:d3:99:e9:43:b0:1c: 96:ff:d8:4f:c4:dc:f6:6c:cf:a4:d9:63:a4:ce:2e:d9:58:ca: af:87:80:2c:ac:0c:39:0d:08:9e:38:27:73:0d:bf:d5:45:8a: cc:34:48:91:79:9f:21:c9:69:c8:27:b2:5d:3a:c3:43:cc:11: 76:1b:cb:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjUwODE4MjMyOTI1WhcNMjUwODI1MjMyOTI1WjAYMRYwFAYD VQQDEw02OGEzYjc1NS1mN2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAodhi61iISbyBVuRjnRUJOpkhcwiwiXrbgSURPh6qBG7gYIf/UC8cagD3tews 1Rn/SWpgPXHMErwnXw1ijYzKnZi+r/RHSvgF8ix3EemAdyiAnn50GG1o5HSVu09d fdkHR5BGbRM6tz9bSpoBU8ymI96i/DiAhfaRBTDyyNX3UFGePlvxQmjEBKxJucJq GY5dDocd1ufvv/ZPWxhkCz5DTHxhmyCc6KF3Qu3aZ6VOo+vt5a41WUKJuBLqS1LW x1m1Y8SLNGkq0MZrBf2+2Ubo1ncsM+JQOUeSvXYyKwH+HR5oJcAoyo4C/5a4WFwX ArJMZS8FdIdEJnAS/WUBvIXyyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCoDV/y0 ERZpobTHGg9+i8jeoLYlMB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkI2Ni81M0U4RkJFQURBNUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3Bh MmZhaFlyODdYSFQ1TThIZ1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsEY2Yc6vO5l51Pj/sqoMo0dV25sPZ9IkzJsS7FwCG2v2PKQauXWwK 9Q1sP4G89qiwHodZogNC2atR7xYxcRxdoHwnaMtVmZtLVcM9c2x64ZhjhqD8Qtj8 BBZlPjFjx2o1duXsQ174Znjs+pvu7G2g0q4o0whisE/n6aazufhuXkeciSUsZH8p zfsQZgUhQ2tyE7IXrQvKXZ8uYvgypezSUimcRalAAxlLD+EAxDrq+wZYo75+5M7G 6z/GhDTx/iXTmelDsByW/9hPxNz2bM+k2WOkzi7ZWMqvh4AsrAw5DQieOCdzDb/V RYrMNEiReZ8hyWnIJ7JdOsNDzBF2G8tm -----END CERTIFICATE-----Generated at Wed Aug 20 18:26:09 2025 by rpki-client