$ rpki-client -vvf rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft File: snbxWm1Kl8SBkekr0WYfNovvIeQ.mft (raw, json) Hash identifier: hmgYzxAj1XRSMAFBfABXtElEpHhZJbzWzx9oaPWGzAQ= Subject key identifier: 48:54:86:2B:ED:2A:EB:B6:F5:5E:7E:1C:38:18:BC:C1:56:57:86:1F Authority key identifier: B2:76:F1:5A:6D:4A:97:C4:81:91:E9:2B:D1:66:1F:36:8B:EF:21:E4 Certificate issuer: /CN=A91B37C4/serialNumber=B276F15A6D4A97C48191E92BD1661F368BEF21E4 Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft Manifest number: A5 Signing time: Sat 23 Aug 2025 06:29:51 +0000 Manifest this update: Sat 23 Aug 2025 06:29:51 +0000 Manifest next update: Sat 30 Aug 2025 06:29:51 +0000 Files and hashes: 1: snbxWm1Kl8SBkekr0WYfNovvIeQ.crl (hash: MiJrvfXMlXq8GLuv1l2Bvi18LW8V6BaODOScGYWAuLo=) 2: 3E4B01008BDA11EFA4A11684C4F9AE02.roa (hash: m+cTvWrh74cJIwtxb5YNKAjFtv2dZKfs+BjQs+Q2hMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.crl rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:29:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B37C4, serialNumber=B276F15A6D4A97C48191E92BD1661F368BEF21E4 Validity Not Before: Aug 23 06:29:51 2025 GMT Not After : Aug 30 06:29:51 2025 GMT Subject: CN=68a95fdf-3e2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:74:fe:94:25:15:d4:f0:69:56:e0:ac:f5:01: 4a:97:df:f3:9a:6d:f1:19:c4:cc:87:b1:f1:35:c7: a1:44:0f:47:50:51:c8:5c:96:11:c3:3e:26:e3:de: 2d:39:7f:2d:1a:0d:d2:07:b3:97:6e:2e:d2:96:52: 08:bb:08:1b:b4:3f:1f:4d:dc:08:e6:ff:d0:e2:b0: e1:ca:83:0d:76:c4:8d:1c:21:1f:0c:72:30:26:9d: 63:ea:a7:ac:bf:55:1c:e7:58:6e:7b:aa:fa:a7:15: c2:40:a6:88:7e:3d:cd:e6:17:dc:e9:f0:46:19:9b: 08:8f:17:36:24:03:a8:80:4b:1d:5e:7e:97:c4:fd: 46:7d:40:00:d6:b4:9b:b8:60:65:65:43:ac:ee:c3: fa:44:be:6c:c1:dd:0f:f2:f2:97:ea:22:7b:f5:ab: a5:0f:36:59:64:1c:31:ee:06:8e:38:f9:e6:74:8f: d6:3f:c4:9f:ec:76:95:8e:49:ad:b1:7a:9d:49:95: 75:48:4a:f9:f2:a7:ac:d8:aa:29:ee:b1:b4:8b:38: 82:8b:bb:7c:5e:09:c4:a0:2e:97:41:d3:8c:72:9b: b9:f9:fa:bf:04:7b:d6:0f:fa:11:9b:16:b4:88:2f: 2e:87:7e:9d:52:b4:84:1c:02:51:a8:58:ad:f7:9f: fe:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:54:86:2B:ED:2A:EB:B6:F5:5E:7E:1C:38:18:BC:C1:56:57:86:1F X509v3 Authority Key Identifier: keyid:B2:76:F1:5A:6D:4A:97:C4:81:91:E9:2B:D1:66:1F:36:8B:EF:21:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:38:fb:e1:fa:44:3b:dc:02:4d:32:d9:81:0f:d8:ca:77:27: 34:d1:9e:a2:e0:89:5b:92:3c:16:d2:52:68:ca:2d:88:22:bc: 58:3a:76:78:78:f5:41:ef:67:b9:e2:cd:6b:cd:d9:84:3a:fc: 86:3f:60:1c:d3:ed:6d:71:4b:17:e0:6a:8b:86:5a:c9:d5:d2: ca:41:5b:14:f7:ad:87:39:91:33:74:a2:3c:73:16:42:a2:88: 7f:b5:48:ff:72:6b:12:35:cf:3b:cd:ea:72:d9:bd:2e:0e:c1: 82:1d:2a:cc:5b:1a:9a:0f:a4:6b:9f:d3:16:fc:a8:8e:a4:00: db:19:99:2b:70:95:2b:76:ab:b8:73:63:4d:62:6a:ec:b8:d9: c8:9c:4e:20:3c:92:c3:df:66:c5:7e:68:2d:a6:38:38:e6:bd: 8f:cd:60:eb:cf:02:83:65:e0:4f:ef:50:13:0d:e6:0f:fe:86: 61:c8:33:65:e0:21:ba:24:91:da:f1:71:7b:43:79:b0:d2:b0: 7d:96:9b:d9:b1:44:f9:3f:92:ce:95:ce:90:63:f7:a9:63:04: e4:2b:01:f9:71:42:60:b4:11:74:ee:89:b7:e0:79:39:d4:17: c6:98:a6:79:f3:05:0a:25:8f:e2:ea:53:79:64:eb:2e:a3:1a: 8b:7a:fe:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM3QzQxMTAvBgNVBAUTKEIyNzZGMTVBNkQ0QTk3QzQ4MTkxRTkyQkQxNjYxRjM2 OEJFRjIxRTQwHhcNMjUwODIzMDYyOTUxWhcNMjUwODMwMDYyOTUxWjAYMRYwFAYD VQQDEw02OGE5NWZkZi0zZTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHT+lCUV1PBpVuCs9QFKl9/zmm3xGcTMh7HxNcehRA9HUFHIXJYRwz4m494t OX8tGg3SB7OXbi7SllIIuwgbtD8fTdwI5v/Q4rDhyoMNdsSNHCEfDHIwJp1j6qes v1Uc51hue6r6pxXCQKaIfj3N5hfc6fBGGZsIjxc2JAOogEsdXn6XxP1GfUAA1rSb uGBlZUOs7sP6RL5swd0P8vKX6iJ79aulDzZZZBwx7gaOOPnmdI/WP8Sf7HaVjkmt sXqdSZV1SEr58qes2Kop7rG0iziCi7t8XgnEoC6XQdOMcpu5+fq/BHvWD/oRmxa0 iC8uh36dUrSEHAJRqFit95/+5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEhUhivt Kuu29V5+HDgYvMFWV4YfMB8GA1UdIwQYMBaAFLJ28VptSpfEgZHpK9FmHzaL7yHk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzdDNC9BMkFCQTcyQzhC RDkxMUVGOUY5NkJBNEVDNEY5QUUwMi9zbmJ4V20xS2w4U0JrZWtyMFdZZk5vdnZJ ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NuYnhXbTFLbDhTQmtla3IwV1lmTm92dkllUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzdDNC9BMkFCQTcyQzhCRDkxMUVGOUY5NkJBNEVDNEY5QUUwMi9zbmJ4V20xS2w4 U0JrZWtyMFdZZk5vdnZJZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxOPvh+kQ73AJNMtmBD9jKdyc00Z6i4IlbkjwW0lJoyi2IIrxYOnZ4 ePVB72e54s1rzdmEOvyGP2Ac0+1tcUsX4GqLhlrJ1dLKQVsU962HOZEzdKI8cxZC ooh/tUj/cmsSNc87zepy2b0uDsGCHSrMWxqaD6Rrn9MW/KiOpADbGZkrcJUrdqu4 c2NNYmrsuNnInE4gPJLD32bFfmgtpjg45r2PzWDrzwKDZeBP71ATDeYP/oZhyDNl 4CG6JJHa8XF7Q3mw0rB9lpvZsUT5P5LOlc6QY/epYwTkKwH5cUJgtBF07om34Hk5 1BfGmKZ58wUKJY/i6lN5ZOsuoxqLev68 -----END CERTIFICATE-----Generated at Sun Aug 24 05:12:56 2025 by rpki-client