$ rpki-client -vvf rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft File: snbxWm1Kl8SBkekr0WYfNovvIeQ.mft (raw, json) Hash identifier: 44GnXmbgpe9x7R6LIxcoSI4OwynPskzsy0Hx1/L64ps= Subject key identifier: 66:83:0F:CD:51:9D:AA:BA:D1:84:94:5E:9D:1B:79:4A:FE:70:FC:E2 Authority key identifier: B2:76:F1:5A:6D:4A:97:C4:81:91:E9:2B:D1:66:1F:36:8B:EF:21:E4 Certificate issuer: /CN=A91B37C4/serialNumber=B276F15A6D4A97C48191E92BD1661F368BEF21E4 Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft Manifest number: C2 Signing time: Sun 19 Oct 2025 09:02:52 +0000 Manifest this update: Sun 19 Oct 2025 09:02:52 +0000 Manifest next update: Sun 26 Oct 2025 09:02:52 +0000 Files and hashes: 1: snbxWm1Kl8SBkekr0WYfNovvIeQ.crl (hash: zLsY+Agyj5KkPKEoFR3xKDIrxVGUWAATbUobHa3tkhI=) 2: 3E4B01008BDA11EFA4A11684C4F9AE02.roa (hash: m+cTvWrh74cJIwtxb5YNKAjFtv2dZKfs+BjQs+Q2hMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.crl rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:02:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B37C4, serialNumber=B276F15A6D4A97C48191E92BD1661F368BEF21E4 Validity Not Before: Oct 19 09:02:52 2025 GMT Not After : Oct 26 09:02:52 2025 GMT Subject: CN=68f4a93c-1826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:13:dc:49:95:70:33:a9:ec:12:a9:5c:13:48: f7:d5:0b:a2:b7:3c:24:f6:76:78:5d:58:cf:cc:64: 49:2a:a6:2c:1c:ae:ae:d6:13:f6:00:9d:78:c4:fe: 2a:22:18:55:a8:6a:26:1d:fd:c0:fd:58:3e:01:d9: ea:aa:ac:10:65:17:25:56:58:b7:39:57:74:1f:18: 2d:53:7e:6d:62:08:0d:2b:c4:0b:c3:f2:a9:86:36: 62:d2:8a:a3:dc:7a:30:cf:4d:6b:26:73:46:17:7a: f3:9a:63:c6:1f:a7:23:61:25:29:37:59:5d:a5:58: de:df:14:24:98:a9:0a:b8:db:b7:41:9b:97:ce:a9: 04:41:5d:78:17:13:5c:99:fa:b5:6e:24:c5:d1:96: bb:b9:a8:8f:14:76:7f:57:70:cc:59:e6:07:e4:03: 84:80:7d:dc:84:8f:14:7e:77:32:e9:6a:84:77:4b: 7b:17:8a:c4:7b:77:c0:60:87:48:ba:fa:c4:49:c8: 32:b5:62:5b:12:88:2a:22:0d:27:45:4e:3a:9d:03: cf:29:eb:69:81:fd:0f:89:5e:1a:24:44:0e:1c:79: 40:18:12:34:61:20:d8:64:a7:4a:07:6a:33:25:49: e0:6e:e3:5b:70:01:60:8a:49:61:62:1b:99:29:e0: 3e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:83:0F:CD:51:9D:AA:BA:D1:84:94:5E:9D:1B:79:4A:FE:70:FC:E2 X509v3 Authority Key Identifier: keyid:B2:76:F1:5A:6D:4A:97:C4:81:91:E9:2B:D1:66:1F:36:8B:EF:21:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:8f:c2:2a:7e:3d:f2:74:5f:03:7d:11:44:8f:1a:3c:88:c8: 86:24:2a:30:f1:00:c4:e5:cf:69:12:13:a2:6e:c4:89:df:81: 7e:82:09:86:04:fc:0f:77:c6:1d:3f:b3:41:34:9a:75:f7:62: e6:16:c7:9e:3d:82:0f:15:6b:17:c9:6a:9a:27:c4:87:67:83: 4d:da:2f:ac:0e:2e:a8:b4:f1:25:41:06:e1:8c:30:63:1d:6a: 91:4d:95:de:67:e2:9c:ae:1f:90:53:c3:8e:d6:b1:08:dd:a3: 06:02:a7:0e:ce:c6:d1:38:ae:73:1f:bf:dd:9e:86:95:e1:0a: c4:78:4d:f8:ff:db:82:2a:63:33:28:d3:31:2c:a4:29:61:46: fd:40:7f:42:61:05:e5:9a:ac:c9:84:22:22:46:6c:56:5f:14: 51:70:3e:e8:2a:81:ce:ce:fb:21:98:1f:70:52:ad:fc:e6:5f: 54:e5:65:42:02:65:76:0d:06:6b:92:80:3c:5f:10:34:30:57: a0:9e:b4:2a:26:0f:7e:57:8b:f8:77:fe:eb:f1:5d:6f:35:43: 93:bd:29:6a:38:9e:e0:ef:89:e8:d1:e1:94:b2:21:4c:97:4d: 48:4b:bf:f0:6b:b9:ae:05:32:1f:bc:b1:8a:4f:8e:b3:38:7c: eb:18:38:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM3QzQxMTAvBgNVBAUTKEIyNzZGMTVBNkQ0QTk3QzQ4MTkxRTkyQkQxNjYxRjM2 OEJFRjIxRTQwHhcNMjUxMDE5MDkwMjUyWhcNMjUxMDI2MDkwMjUyWjAYMRYwFAYD VQQDEw02OGY0YTkzYy0xODI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBPcSZVwM6nsEqlcE0j31Quitzwk9nZ4XVjPzGRJKqYsHK6u1hP2AJ14xP4q IhhVqGomHf3A/Vg+AdnqqqwQZRclVli3OVd0HxgtU35tYggNK8QLw/KphjZi0oqj 3Howz01rJnNGF3rzmmPGH6cjYSUpN1ldpVje3xQkmKkKuNu3QZuXzqkEQV14FxNc mfq1biTF0Za7uaiPFHZ/V3DMWeYH5AOEgH3chI8Ufncy6WqEd0t7F4rEe3fAYIdI uvrEScgytWJbEogqIg0nRU46nQPPKetpgf0PiV4aJEQOHHlAGBI0YSDYZKdKB2oz JUngbuNbcAFgiklhYhuZKeA+GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGaDD81R naq60YSUXp0beUr+cPziMB8GA1UdIwQYMBaAFLJ28VptSpfEgZHpK9FmHzaL7yHk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzdDNC9BMkFCQTcyQzhC RDkxMUVGOUY5NkJBNEVDNEY5QUUwMi9zbmJ4V20xS2w4U0JrZWtyMFdZZk5vdnZJ ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NuYnhXbTFLbDhTQmtla3IwV1lmTm92dkllUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzdDNC9BMkFCQTcyQzhCRDkxMUVGOUY5NkJBNEVDNEY5QUUwMi9zbmJ4V20xS2w4 U0JrZWtyMFdZZk5vdnZJZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWj8Iqfj3ydF8DfRFEjxo8iMiGJCow8QDE5c9pEhOibsSJ34F+ggmG BPwPd8YdP7NBNJp192LmFseePYIPFWsXyWqaJ8SHZ4NN2i+sDi6otPElQQbhjDBj HWqRTZXeZ+Kcrh+QU8OO1rEI3aMGAqcOzsbROK5zH7/dnoaV4QrEeE34/9uCKmMz KNMxLKQpYUb9QH9CYQXlmqzJhCIiRmxWXxRRcD7oKoHOzvshmB9wUq385l9U5WVC AmV2DQZrkoA8XxA0MFegnrQqJg9+V4v4d/7r8V1vNUOTvSlqOJ7g74no0eGUsiFM l01IS7/wa7muBTIfvLGKT46zOHzrGDhL -----END CERTIFICATE-----Generated at Mon Oct 20 11:37:14 2025 by rpki-client