$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft File: sboYaLp865TN1k8FdBOaAaULkNU.mft (raw, json) Hash identifier: OBIiUnNNxKvIXJR5Eon2WCvGzlZcvMK2GpnLEswkhS0= Subject key identifier: 33:A2:12:87:43:9D:B6:04:E9:B8:D1:59:5F:66:64:94:4A:33:DF:EF Authority key identifier: B1:BA:18:68:BA:7C:EB:94:CD:D6:4F:05:74:13:9A:01:A5:0B:90:D5 Certificate issuer: /CN=A91DF233/serialNumber=B1BA1868BA7CEB94CDD64F0574139A01A50B90D5 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft Manifest number: 86 Signing time: Sat 23 Aug 2025 06:51:42 +0000 Manifest this update: Sat 23 Aug 2025 06:51:42 +0000 Manifest next update: Sat 30 Aug 2025 06:51:42 +0000 Files and hashes: 1: sboYaLp865TN1k8FdBOaAaULkNU.crl (hash: gOpdj5LDvkLzuttCcNJJIurS8cQ0q5TpFlldR8CdGlk=) 2: 386FD4FCB37D11EF8D6EAF63C4F9AE02.roa (hash: aJEyHw65stDKmv/A9AlKIYdtN6qUu7eSq0Nk49wiYVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.crl rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF233, serialNumber=B1BA1868BA7CEB94CDD64F0574139A01A50B90D5 Validity Not Before: Aug 23 06:51:42 2025 GMT Not After : Aug 30 06:51:42 2025 GMT Subject: CN=68a964fe-e621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6e:c9:c0:99:a8:7c:59:3d:cb:cc:1e:07:1f: a8:47:ab:45:ce:0f:53:c0:a9:ae:2a:17:92:df:73: 91:8a:dc:54:e6:09:1c:2c:02:c7:9c:6c:0a:c9:3b: 2e:2c:9f:35:b3:68:b5:76:c0:74:d4:83:b8:b8:0b: 82:72:cb:68:30:33:c4:dd:24:bd:e2:c7:75:43:58: f1:24:2f:f9:71:26:30:48:d4:62:1f:0a:53:8a:e9: bf:99:f6:8b:bc:0f:55:b6:97:22:a3:8a:bd:15:5a: fe:5c:1c:d4:fc:17:24:d8:72:28:fc:12:c7:c4:14: bc:26:c0:47:d0:7b:6e:e8:ea:a4:1a:7c:c2:0c:22: 24:b7:36:4a:7b:05:5b:ae:0a:ec:60:59:ba:06:31: 26:02:76:49:77:93:ec:ca:bd:cf:b9:21:25:9f:a1: 9f:1b:ad:05:8c:e9:36:8b:b4:32:74:3a:35:dd:8b: 59:01:e1:bb:51:8a:12:58:61:e9:f6:9f:07:7f:23: fe:ef:e3:81:fa:ea:1a:0c:a5:20:49:f1:e2:f1:69: cc:3d:df:d7:84:cc:31:de:95:ad:62:54:72:b9:49: e7:f3:ee:43:b7:d9:95:f7:35:ad:f9:c2:1d:6c:3b: 91:6f:a4:54:db:fe:14:94:ce:48:09:26:16:8f:5a: 7a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:A2:12:87:43:9D:B6:04:E9:B8:D1:59:5F:66:64:94:4A:33:DF:EF X509v3 Authority Key Identifier: keyid:B1:BA:18:68:BA:7C:EB:94:CD:D6:4F:05:74:13:9A:01:A5:0B:90:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:e7:8d:c2:c9:5a:31:9a:95:87:62:4d:62:ba:11:a1:63:66: 4c:1c:d8:49:b0:43:93:dc:60:cd:37:d3:a2:ad:29:f8:42:64: dd:b9:ed:06:80:88:e2:a0:9b:f7:a0:52:98:6b:53:70:a1:a5: 36:8e:93:11:c5:f6:f7:d7:5d:d6:09:5b:3c:f7:70:28:f4:50: 09:65:04:11:40:14:8d:78:e4:74:f8:fc:62:da:5c:a3:e4:a0: a4:a9:6c:61:b8:23:3f:27:6f:3d:2f:87:22:b0:a9:b7:31:40: aa:b6:e2:e6:74:6d:4a:9d:71:d9:a6:1e:d7:08:47:61:38:42: e6:24:4f:1c:13:37:b5:97:b0:9d:7d:92:82:cf:fd:53:d5:8a: 93:59:c1:4c:e5:ba:2b:00:cf:f0:18:19:54:c0:9f:56:e6:68: b6:df:df:b0:71:71:05:09:7f:87:00:c7:9b:cc:67:a9:f7:3c: d8:95:33:b1:9a:23:04:30:db:84:96:65:0f:5c:d3:de:d4:bf: b1:b0:9e:b7:a0:3d:98:42:1c:5e:b0:74:d4:ed:ba:ed:6e:f2: 6c:60:f3:2d:1e:c7:a5:83:e7:6e:b1:23:e2:1c:4f:a0:1d:b5: 3b:68:1a:d3:64:ab:e2:b0:08:8f:41:7e:73:89:c4:82:3a:f8: b5:4d:83:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYyMzMxMTAvBgNVBAUTKEIxQkExODY4QkE3Q0VCOTRDREQ2NEYwNTc0MTM5QTAx QTUwQjkwRDUwHhcNMjUwODIzMDY1MTQyWhcNMjUwODMwMDY1MTQyWjAYMRYwFAYD VQQDEw02OGE5NjRmZS1lNjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwW7JwJmofFk9y8weBx+oR6tFzg9TwKmuKheS33ORitxU5gkcLALHnGwKyTsu LJ81s2i1dsB01IO4uAuCcstoMDPE3SS94sd1Q1jxJC/5cSYwSNRiHwpTium/mfaL vA9Vtpcio4q9FVr+XBzU/Bck2HIo/BLHxBS8JsBH0Htu6OqkGnzCDCIktzZKewVb rgrsYFm6BjEmAnZJd5Psyr3PuSEln6GfG60FjOk2i7QydDo13YtZAeG7UYoSWGHp 9p8HfyP+7+OB+uoaDKUgSfHi8WnMPd/XhMwx3pWtYlRyuUnn8+5Dt9mV9zWt+cId bDuRb6RU2/4UlM5ICSYWj1p6+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDOiEodD nbYE6bjRWV9mZJRKM9/vMB8GA1UdIwQYMBaAFLG6GGi6fOuUzdZPBXQTmgGlC5DV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjIzMy8xMTRFN0RCQUIz NzgxMUVGODgzMjJCMEZDNEY5QUUwMi9zYm9ZYUxwODY1VE4xazhGZEJPYUFhVUxr TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Nib1lhTHA4NjVUTjFrOEZkQk9hQWFVTGtOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjIzMy8xMTRFN0RCQUIzNzgxMUVGODgzMjJCMEZDNEY5QUUwMi9zYm9ZYUxwODY1 VE4xazhGZEJPYUFhVUxrTlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo543CyVoxmpWHYk1iuhGhY2ZMHNhJsEOT3GDNN9OirSn4QmTdue0G gIjioJv3oFKYa1NwoaU2jpMRxfb3113WCVs893Ao9FAJZQQRQBSNeOR0+Pxi2lyj 5KCkqWxhuCM/J289L4cisKm3MUCqtuLmdG1KnXHZph7XCEdhOELmJE8cEze1l7Cd fZKCz/1T1YqTWcFM5borAM/wGBlUwJ9W5mi239+wcXEFCX+HAMebzGep9zzYlTOx miMEMNuElmUPXNPe1L+xsJ63oD2YQhxesHTU7brtbvJsYPMtHselg+dusSPiHE+g HbU7aBrTZKvisAiPQX5zicSCOvi1TYOu -----END CERTIFICATE-----Generated at Sat Aug 23 20:18:45 2025 by rpki-client