$ rpki-client -vvf rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft File: snbxWm1Kl8SBkekr0WYfNovvIeQ.mft (raw, json) Hash identifier: QaaCKzZPJJuhjZJocAQb/SuY0kgS2GkCSN6his3IzWo= Subject key identifier: 02:4E:26:00:8C:A5:4F:2A:50:A0:C1:13:3F:4D:CE:A6:F1:BC:F1:A5 Authority key identifier: B2:76:F1:5A:6D:4A:97:C4:81:91:E9:2B:D1:66:1F:36:8B:EF:21:E4 Certificate issuer: /CN=A91B37C4/serialNumber=B276F15A6D4A97C48191E92BD1661F368BEF21E4 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft Manifest number: 70 Signing time: Tue 13 May 2025 06:05:26 +0000 Manifest this update: Tue 13 May 2025 06:05:26 +0000 Manifest next update: Tue 20 May 2025 06:05:26 +0000 Files and hashes: 1: snbxWm1Kl8SBkekr0WYfNovvIeQ.crl (hash: MUWRLxvQy656TN96/gOCQ48ls6xO40vUeF3wc/Ufr1U=) 2: 3E4B01008BDA11EFA4A11684C4F9AE02.roa (hash: zwx+U9J08Id0maPwN81wQAKGfgxb2cKuo5oynZYPQgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.crl rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:03:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B37C4, serialNumber=B276F15A6D4A97C48191E92BD1661F368BEF21E4 Validity Not Before: May 13 06:05:26 2025 GMT Not After : May 20 06:05:26 2025 GMT Subject: CN=6822e126-a2b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:ec:5d:c3:f5:c7:b9:c3:32:94:ae:57:ad:b4: 71:7f:b9:a4:1c:00:da:77:a5:14:a5:87:c2:ea:ac: ce:c2:c3:34:ed:59:ed:b8:c3:68:cf:49:73:df:d0: ea:b1:8e:fd:bd:2f:85:87:6d:31:d4:7b:25:40:74: d1:96:f0:ad:8f:14:f9:d4:2d:e6:40:35:2e:d0:c3: 26:e7:c3:11:84:cb:e2:25:cf:94:b0:f4:54:9b:5c: 8b:a9:2d:ec:99:0f:b3:cf:ed:d3:d7:0b:4f:63:3c: 4c:be:70:f0:df:65:4c:e0:c9:00:c7:1d:11:fb:17: df:9a:d4:09:86:c9:a2:3d:d0:2f:d1:27:72:cc:19: 29:81:cb:66:dc:6e:66:1f:cc:4e:7e:44:92:6a:88: bc:3b:3e:ba:70:53:65:5b:47:89:74:fc:37:dc:93: d7:37:58:8e:c2:ff:40:39:50:05:6d:47:56:dd:bd: 80:34:21:4f:d2:dd:7a:8b:4f:3f:ee:c3:cd:81:d7: 4e:70:ba:5a:0c:c8:a9:0b:ce:92:bb:c1:65:26:7b: 3e:06:8f:9d:e2:b8:20:6b:dc:61:0a:0a:69:c5:58: a7:61:24:30:33:0e:9e:32:03:ef:e6:f3:ec:78:71: e7:ff:00:da:1a:0b:a5:7e:de:9f:0c:54:5c:8f:9a: 8a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:4E:26:00:8C:A5:4F:2A:50:A0:C1:13:3F:4D:CE:A6:F1:BC:F1:A5 X509v3 Authority Key Identifier: keyid:B2:76:F1:5A:6D:4A:97:C4:81:91:E9:2B:D1:66:1F:36:8B:EF:21:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:ab:33:bd:67:0a:02:59:92:6d:0f:3b:65:7e:45:fe:93:4f: ee:e9:cf:f4:54:73:dd:95:2a:c0:4c:78:bb:e8:01:fb:d3:86: c4:86:59:dc:65:b2:b0:ce:cb:ba:64:da:3d:13:26:e2:06:44: e6:65:5c:f8:17:c9:9f:24:31:67:d0:1c:70:3f:24:35:50:23: 5c:62:8c:73:d6:08:2e:94:63:85:aa:e2:c3:a5:90:46:e5:22: 20:4e:68:37:d5:df:54:9e:c9:cc:4e:53:04:b6:85:da:7d:c7: 4f:29:53:25:46:52:5b:80:f8:8e:b0:a6:ba:d8:52:e5:52:c9: 35:f8:e7:f2:56:0c:6c:28:68:17:e1:7c:a9:0a:73:e1:6d:a1: e2:68:a3:2b:95:9b:f7:c6:f7:3a:d1:7e:2c:06:77:a2:e7:58: ee:50:2c:b6:0a:3d:5f:01:fe:6d:0d:40:c5:1a:76:bf:02:f5: 29:34:55:47:39:c6:f2:97:42:93:e3:1c:53:ff:16:eb:91:2b: e7:7d:00:21:78:6f:88:bf:5d:f8:9f:3e:e1:40:d3:ff:0b:f4: ec:42:29:33:4d:36:9e:2a:c8:bd:6a:45:9b:9c:c2:cb:ff:89: 4c:5d:f9:29:b1:80:15:c6:b7:7d:6c:f4:a4:6e:e3:fe:2e:d7: e3:79:8a:5e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzdDNDExMC8GA1UEBRMoQjI3NkYxNUE2RDRBOTdDNDgxOTFFOTJCRDE2NjFGMzY4 QkVGMjFFNDAeFw0yNTA1MTMwNjA1MjZaFw0yNTA1MjAwNjA1MjZaMBgxFjAUBgNV BAMTDTY4MjJlMTI2LWEyYjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDx7F3D9ce5wzKUrlettHF/uaQcANp3pRSlh8LqrM7CwzTtWe24w2jPSXPf0Oqx jv29L4WHbTHUeyVAdNGW8K2PFPnULeZANS7QwybnwxGEy+Ilz5Sw9FSbXIupLeyZ D7PP7dPXC09jPEy+cPDfZUzgyQDHHRH7F9+a1AmGyaI90C/RJ3LMGSmBy2bcbmYf zE5+RJJqiLw7PrpwU2VbR4l0/Dfck9c3WI7C/0A5UAVtR1bdvYA0IU/S3XqLTz/u w82B105wuloMyKkLzpK7wWUmez4Gj53iuCBr3GEKCmnFWKdhJDAzDp4yA+/m8+x4 cef/ANoaC6V+3p8MVFyPmooVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAk4mAIyl TypQoMETP03OpvG88aUwHwYDVR0jBBgwFoAUsnbxWm1Kl8SBkekr0WYfNovvIeQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzN0M0L0EyQUJBNzJDOEJE OTExRUY5Rjk2QkE0RUM0RjlBRTAyL3NuYnhXbTFLbDhTQmtla3IwV1lmTm92dkll US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc25ieFdtMUtsOFNCa2VrcjBXWWZOb3Z2SWVRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz N0M0L0EyQUJBNzJDOEJEOTExRUY5Rjk2QkE0RUM0RjlBRTAyL3NuYnhXbTFLbDhT Qmtla3IwV1lmTm92dkllUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJWrM71nCgJZkm0PO2V+Rf6TT+7pz/RUc92VKsBMeLvoAfvThsSGWdxl srDOy7pk2j0TJuIGROZlXPgXyZ8kMWfQHHA/JDVQI1xijHPWCC6UY4Wq4sOlkEbl IiBOaDfV31SeycxOUwS2hdp9x08pUyVGUluA+I6wprrYUuVSyTX45/JWDGwoaBfh fKkKc+FtoeJooyuVm/fG9zrRfiwGd6LnWO5QLLYKPV8B/m0NQMUadr8C9Sk0VUc5 xvKXQpPjHFP/FuuRK+d9ACF4b4i/XfifPuFA0/8L9OxCKTNNNp4qyL1qRZucwsv/ iUxd+SmxgBXGt31s9KRu4/4u1+N5il4= -----END CERTIFICATE-----Generated at Tue May 13 08:05:06 2025 by rpki-client