$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft File: sboYaLp865TN1k8FdBOaAaULkNU.mft (raw, json) Hash identifier: Q9L0fpnY2A0JKGqLb/6zLeSDxnZEm2ckusFUirW9nfI= Subject key identifier: 31:3C:FB:A6:B6:BC:C0:1D:DE:6B:B5:4D:72:A5:98:10:DF:13:5F:2B Authority key identifier: B1:BA:18:68:BA:7C:EB:94:CD:D6:4F:05:74:13:9A:01:A5:0B:90:D5 Certificate issuer: /CN=A91DF233/serialNumber=B1BA1868BA7CEB94CDD64F0574139A01A50B90D5 Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft Manifest number: A3 Signing time: Sun 19 Oct 2025 09:29:12 +0000 Manifest this update: Sun 19 Oct 2025 09:29:12 +0000 Manifest next update: Sun 26 Oct 2025 09:29:12 +0000 Files and hashes: 1: sboYaLp865TN1k8FdBOaAaULkNU.crl (hash: RblsMmCiO8q1GB8zKbswnSPTZsXhkcLw8+oI9aOdSY4=) 2: 386FD4FCB37D11EF8D6EAF63C4F9AE02.roa (hash: aJEyHw65stDKmv/A9AlKIYdtN6qUu7eSq0Nk49wiYVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.crl rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:29:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF233, serialNumber=B1BA1868BA7CEB94CDD64F0574139A01A50B90D5 Validity Not Before: Oct 19 09:29:12 2025 GMT Not After : Oct 26 09:29:12 2025 GMT Subject: CN=68f4af68-2884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b4:b2:ad:9f:59:3e:02:83:04:17:98:2a:cb: 67:28:63:96:ad:84:a9:c6:b0:46:47:82:a9:ad:e8: 54:e1:9f:46:b9:ee:85:72:45:8f:73:da:d7:a2:6a: 64:c3:eb:30:3c:cc:37:9a:01:b7:0e:fc:40:41:54: 63:37:59:a3:57:67:53:b5:1f:85:cb:a5:2c:2a:44: 33:77:9e:7e:8a:04:b8:08:0d:c4:72:0b:ae:d9:62: cd:b4:25:5d:ce:af:4e:25:71:45:89:07:a1:15:a1: 4f:4d:41:9a:de:e3:1a:2b:f9:a0:ce:6c:2a:cc:53: 4a:2d:8d:e4:12:f5:07:f1:cd:68:81:de:3e:98:f9: e2:02:27:81:e6:95:a1:0b:12:77:8f:99:6d:ba:89: 33:fb:23:e3:60:0c:65:fd:f9:af:03:53:4d:5c:6e: 2b:b6:29:9e:38:df:0e:0e:33:85:92:64:1f:b9:6f: bf:df:ed:62:bd:78:0f:53:36:3a:33:9e:41:15:56: cd:41:3a:49:d7:d4:53:39:70:f9:c8:db:01:4c:3c: 32:e5:44:28:ee:96:39:e6:1c:19:cc:82:ad:37:e2: 9f:68:2e:18:c3:ef:4f:3c:1b:3f:67:f8:e1:52:8e: 58:c0:7c:eb:77:55:08:97:3b:4f:44:17:4d:0e:71: 1b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:3C:FB:A6:B6:BC:C0:1D:DE:6B:B5:4D:72:A5:98:10:DF:13:5F:2B X509v3 Authority Key Identifier: keyid:B1:BA:18:68:BA:7C:EB:94:CD:D6:4F:05:74:13:9A:01:A5:0B:90:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:6d:7c:3b:b8:b7:cb:c5:64:9b:7e:3d:60:da:d7:e6:7f:24: 9f:7c:0c:53:10:55:cb:39:55:fd:87:35:10:df:15:d1:ef:62: 51:00:1e:00:76:97:68:07:f9:0d:5a:66:f8:20:5c:31:30:fa: c1:63:31:07:db:6b:7b:4a:9d:0d:0c:40:4f:a0:22:69:21:51: 7a:ea:16:1c:9f:d6:e8:b1:ca:90:85:34:b1:87:36:15:26:94: a0:42:6b:e5:0f:70:67:5b:53:ef:b8:4b:6b:92:62:ee:b7:fc: b8:e9:91:94:d7:24:25:dc:d6:08:2c:55:29:fd:1f:66:22:42: 86:d3:8c:6c:26:64:12:5c:00:85:20:5d:0a:fb:fd:a2:87:c8: 26:b0:fc:6a:71:e9:36:b0:e6:4c:fc:2e:31:14:d0:00:c5:1d: d5:f0:0b:05:eb:5e:ee:02:ce:34:3a:c8:1a:7f:1e:3a:da:66: 93:17:a2:81:30:d0:b0:7c:92:a9:b3:d7:0d:40:78:dc:31:44: 5e:5f:28:24:36:da:6b:44:bc:6f:64:91:36:43:1e:6e:c8:0e: e4:5a:49:cd:f9:c4:e9:ab:b0:5a:31:db:0c:e2:c6:f6:0a:e3: cc:4c:89:a8:89:2a:fa:86:57:36:f6:eb:63:db:33:8b:21:de: 7d:cd:83:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYyMzMxMTAvBgNVBAUTKEIxQkExODY4QkE3Q0VCOTRDREQ2NEYwNTc0MTM5QTAx QTUwQjkwRDUwHhcNMjUxMDE5MDkyOTEyWhcNMjUxMDI2MDkyOTEyWjAYMRYwFAYD VQQDEw02OGY0YWY2OC0yODg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnbSyrZ9ZPgKDBBeYKstnKGOWrYSpxrBGR4KprehU4Z9Gue6FckWPc9rXompk w+swPMw3mgG3DvxAQVRjN1mjV2dTtR+Fy6UsKkQzd55+igS4CA3Ecguu2WLNtCVd zq9OJXFFiQehFaFPTUGa3uMaK/mgzmwqzFNKLY3kEvUH8c1ogd4+mPniAieB5pWh CxJ3j5ltuokz+yPjYAxl/fmvA1NNXG4rtimeON8ODjOFkmQfuW+/3+1ivXgPUzY6 M55BFVbNQTpJ19RTOXD5yNsBTDwy5UQo7pY55hwZzIKtN+KfaC4Yw+9PPBs/Z/jh Uo5YwHzrd1UIlztPRBdNDnEbewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDE8+6a2 vMAd3mu1TXKlmBDfE18rMB8GA1UdIwQYMBaAFLG6GGi6fOuUzdZPBXQTmgGlC5DV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjIzMy8xMTRFN0RCQUIz NzgxMUVGODgzMjJCMEZDNEY5QUUwMi9zYm9ZYUxwODY1VE4xazhGZEJPYUFhVUxr TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Nib1lhTHA4NjVUTjFrOEZkQk9hQWFVTGtOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjIzMy8xMTRFN0RCQUIzNzgxMUVGODgzMjJCMEZDNEY5QUUwMi9zYm9ZYUxwODY1 VE4xazhGZEJPYUFhVUxrTlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDbXw7uLfLxWSbfj1g2tfmfySffAxTEFXLOVX9hzUQ3xXR72JRAB4A dpdoB/kNWmb4IFwxMPrBYzEH22t7Sp0NDEBPoCJpIVF66hYcn9boscqQhTSxhzYV JpSgQmvlD3BnW1PvuEtrkmLut/y46ZGU1yQl3NYILFUp/R9mIkKG04xsJmQSXACF IF0K+/2ih8gmsPxqcek2sOZM/C4xFNAAxR3V8AsF617uAs40Osgafx462maTF6KB MNCwfJKps9cNQHjcMUReXygkNtprRLxvZJE2Qx5uyA7kWknN+cTpq7BaMdsM4sb2 CuPMTImoiSr6hlc29utj2zOLId59zYMN -----END CERTIFICATE-----Generated at Mon Oct 20 10:48:00 2025 by rpki-client