$ rpki-client -vvf rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft File: snbxWm1Kl8SBkekr0WYfNovvIeQ.mft (raw, json) Hash identifier: 8jo5YjOQlgPeooPOH5NE7W//porMEixSu3E1cm1Cr7o= Subject key identifier: FD:FC:40:B9:DF:FA:99:03:44:A9:AF:15:CB:E7:51:B3:E0:66:44:9E Authority key identifier: B2:76:F1:5A:6D:4A:97:C4:81:91:E9:2B:D1:66:1F:36:8B:EF:21:E4 Certificate issuer: /CN=A91B37C4/serialNumber=B276F15A6D4A97C48191E92BD1661F368BEF21E4 Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft Manifest number: 8B Signing time: Thu 03 Jul 2025 06:47:07 +0000 Manifest this update: Thu 03 Jul 2025 06:47:07 +0000 Manifest next update: Thu 10 Jul 2025 06:47:07 +0000 Files and hashes: 1: snbxWm1Kl8SBkekr0WYfNovvIeQ.crl (hash: B8EoCxuexPFuzgM2qjpJ7PdvrdDvj6J8opTFbf8afMU=) 2: 3E4B01008BDA11EFA4A11684C4F9AE02.roa (hash: m+cTvWrh74cJIwtxb5YNKAjFtv2dZKfs+BjQs+Q2hMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.crl rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B37C4, serialNumber=B276F15A6D4A97C48191E92BD1661F368BEF21E4 Validity Not Before: Jul 3 06:47:07 2025 GMT Not After : Jul 10 06:47:07 2025 GMT Subject: CN=6866276b-36f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3e:d7:2f:3b:68:14:1d:4c:76:08:6d:0d:6a: 8b:16:2c:7c:b0:4f:22:bf:16:4e:6b:d0:27:8f:3a: fc:c6:d8:a2:28:e1:02:0c:8f:9a:0c:a6:e1:28:7f: cb:b5:09:5b:7e:11:3c:09:b3:da:c7:e0:bb:a3:a7: 95:3a:c7:aa:48:ab:9e:7d:e8:bc:2a:c8:11:10:47: 7d:ac:11:59:e0:80:10:e2:58:19:eb:16:80:ec:26: 4c:89:6d:ad:21:f2:72:8b:64:b5:8c:e3:aa:77:8f: e2:b4:82:1e:c5:43:7d:f6:96:b6:56:34:ea:9b:dd: 1c:1b:53:c7:cb:ab:2a:70:a0:30:f6:2f:2c:29:f3: ff:b0:15:41:4b:13:d3:49:9c:0a:3a:ba:28:5a:b5: 7f:0f:9c:83:a9:83:5a:21:bd:84:51:0c:20:f2:ea: 58:02:66:34:6e:7f:f4:c5:bd:28:ec:39:e6:df:d4: 15:ba:c6:37:2c:17:a7:f1:35:b0:f8:a4:3a:72:0a: 98:f1:69:e5:75:05:a3:89:1b:31:f5:9e:07:a8:32: fc:ad:db:c8:7c:3e:04:28:30:7f:9a:d9:53:6f:49: 3b:5b:d6:94:88:22:a9:de:41:63:91:2c:cf:c5:e9: c9:1f:f8:52:cf:1e:c9:b0:c8:a1:b6:e1:67:32:77: 93:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:FC:40:B9:DF:FA:99:03:44:A9:AF:15:CB:E7:51:B3:E0:66:44:9E X509v3 Authority Key Identifier: keyid:B2:76:F1:5A:6D:4A:97:C4:81:91:E9:2B:D1:66:1F:36:8B:EF:21:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:08:26:f5:65:a3:28:5a:15:d6:6d:99:4a:1a:c1:7a:28:94: 45:21:2a:db:9d:98:f9:a9:4a:47:12:65:0a:23:04:08:47:38: f7:91:87:18:75:79:74:de:8b:21:c2:ab:eb:ba:19:78:31:9a: 29:9a:ae:7c:1e:69:d6:3c:e9:f4:fc:4d:7a:e2:48:43:af:a4: d3:74:38:95:0b:a8:ec:da:7a:51:a4:30:d4:6e:d0:54:70:c3: 9e:0f:9c:f8:76:31:ae:56:72:b0:86:06:b6:bd:ae:6a:4f:03: 37:e7:bb:4d:b6:23:a9:47:53:0c:d9:b2:1a:b4:69:92:c2:3a: cb:87:12:c0:a0:b8:58:29:78:e9:b3:fd:af:e5:1f:b7:ff:5d: b3:fe:7e:d2:c7:ca:89:11:2a:37:53:c3:b6:7f:2b:84:82:db: 75:f4:69:46:17:d6:be:2f:88:c7:be:bc:9c:0c:69:32:df:5d: d7:c9:a7:fe:d8:f6:a0:d2:2a:56:0e:68:99:89:05:34:cc:65: 31:0e:c1:db:21:be:2d:a9:6a:07:94:eb:87:35:c0:9a:fd:5b: 87:ea:63:14:c3:a7:53:5a:02:ad:8b:99:c7:41:5d:2b:a7:88: 3b:a8:bf:39:80:5a:6c:e3:61:6b:4b:d8:75:91:72:5f:f0:51: e3:de:fe:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM3QzQxMTAvBgNVBAUTKEIyNzZGMTVBNkQ0QTk3QzQ4MTkxRTkyQkQxNjYxRjM2 OEJFRjIxRTQwHhcNMjUwNzAzMDY0NzA3WhcNMjUwNzEwMDY0NzA3WjAYMRYwFAYD VQQDEw02ODY2Mjc2Yi0zNmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtT7XLztoFB1MdghtDWqLFix8sE8ivxZOa9Anjzr8xtiiKOECDI+aDKbhKH/L tQlbfhE8CbPax+C7o6eVOseqSKuefei8KsgREEd9rBFZ4IAQ4lgZ6xaA7CZMiW2t IfJyi2S1jOOqd4/itIIexUN99pa2VjTqm90cG1PHy6sqcKAw9i8sKfP/sBVBSxPT SZwKOrooWrV/D5yDqYNaIb2EUQwg8upYAmY0bn/0xb0o7Dnm39QVusY3LBen8TWw +KQ6cgqY8WnldQWjiRsx9Z4HqDL8rdvIfD4EKDB/mtlTb0k7W9aUiCKp3kFjkSzP xenJH/hSzx7JsMihtuFnMneTsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP38QLnf +pkDRKmvFcvnUbPgZkSeMB8GA1UdIwQYMBaAFLJ28VptSpfEgZHpK9FmHzaL7yHk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzdDNC9BMkFCQTcyQzhC RDkxMUVGOUY5NkJBNEVDNEY5QUUwMi9zbmJ4V20xS2w4U0JrZWtyMFdZZk5vdnZJ ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NuYnhXbTFLbDhTQmtla3IwV1lmTm92dkllUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzdDNC9BMkFCQTcyQzhCRDkxMUVGOUY5NkJBNEVDNEY5QUUwMi9zbmJ4V20xS2w4 U0JrZWtyMFdZZk5vdnZJZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcCCb1ZaMoWhXWbZlKGsF6KJRFISrbnZj5qUpHEmUKIwQIRzj3kYcY dXl03oshwqvruhl4MZopmq58HmnWPOn0/E164khDr6TTdDiVC6js2npRpDDUbtBU cMOeD5z4djGuVnKwhga2va5qTwM357tNtiOpR1MM2bIatGmSwjrLhxLAoLhYKXjp s/2v5R+3/12z/n7Sx8qJESo3U8O2fyuEgtt19GlGF9a+L4jHvrycDGky313Xyaf+ 2Pag0ipWDmiZiQU0zGUxDsHbIb4tqWoHlOuHNcCa/VuH6mMUw6dTWgKti5nHQV0r p4g7qL85gFps42FrS9h1kXJf8FHj3v4T -----END CERTIFICATE-----Generated at Thu Jul 3 10:05:24 2025 by rpki-client