$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft File: sboYaLp865TN1k8FdBOaAaULkNU.mft (raw, json) Hash identifier: z9y3VcwZF/G2wdSq3hbF8u24NZiJqgTM+Gvq196lqCA= Subject key identifier: A5:24:0B:2A:28:68:E2:61:AB:7B:97:B2:60:D4:AE:1D:10:4A:17:DF Authority key identifier: B1:BA:18:68:BA:7C:EB:94:CD:D6:4F:05:74:13:9A:01:A5:0B:90:D5 Certificate issuer: /CN=A91DF233/serialNumber=B1BA1868BA7CEB94CDD64F0574139A01A50B90D5 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft Manifest number: 52 Signing time: Sun 11 May 2025 06:00:37 +0000 Manifest this update: Sun 11 May 2025 06:00:37 +0000 Manifest next update: Sun 18 May 2025 06:00:37 +0000 Files and hashes: 1: sboYaLp865TN1k8FdBOaAaULkNU.crl (hash: 2+xC+h2je/EuubzTtZOk9Eca9EaWxw4UOagaNMsYuEk=) 2: 386FD4FCB37D11EF8D6EAF63C4F9AE02.roa (hash: aJEyHw65stDKmv/A9AlKIYdtN6qUu7eSq0Nk49wiYVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.crl rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF233, serialNumber=B1BA1868BA7CEB94CDD64F0574139A01A50B90D5 Validity Not Before: May 11 06:00:37 2025 GMT Not After : May 18 06:00:37 2025 GMT Subject: CN=68203d05-7489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:53:7a:f9:ae:7b:4b:3a:f8:98:28:35:ef:1e: 23:3d:c8:cc:00:7a:50:a3:7c:14:ab:38:a8:49:fb: c9:a9:b9:4d:47:6b:f2:be:34:ca:7c:9b:42:98:b4: 3b:92:8b:16:19:bd:df:31:31:ee:a4:55:c0:ea:2b: 1d:57:d2:00:95:34:ab:bf:d4:71:80:4f:30:1a:a8: ac:62:ee:c2:1a:52:1d:6c:b7:ae:91:2e:bb:0c:55: bc:c0:f4:76:e5:e9:1a:96:8c:77:e3:b4:39:a0:5a: cf:18:0b:6c:a7:12:9a:28:fe:08:03:4e:94:e3:87: 8f:5c:42:6e:bb:c2:d3:0c:4b:72:01:29:b3:10:d2: 1a:55:9a:04:ea:26:f0:0f:31:37:79:ce:90:88:82: 7f:72:d9:2c:a9:37:23:ff:f2:0c:79:0d:a8:ac:e3: 95:36:22:33:19:d6:59:31:25:79:bf:24:28:39:9b: c2:a3:04:95:2f:34:df:f5:d2:ac:32:b7:5f:06:46: 88:2a:51:5c:78:ed:2a:fe:63:65:05:0e:96:01:cd: 3b:2d:b0:bb:3a:3d:04:f0:c1:c3:1e:68:5f:b6:ae: 34:41:4b:62:9d:66:d8:0c:c3:b0:c6:7b:74:ca:77: ff:4c:8b:f8:63:6d:a3:7a:65:32:61:d5:58:3f:81: f7:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:24:0B:2A:28:68:E2:61:AB:7B:97:B2:60:D4:AE:1D:10:4A:17:DF X509v3 Authority Key Identifier: keyid:B1:BA:18:68:BA:7C:EB:94:CD:D6:4F:05:74:13:9A:01:A5:0B:90:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:da:e4:30:62:50:35:d8:30:5d:55:a6:19:3d:2e:c6:43:fd: 10:d9:6c:48:93:ee:c9:40:f8:b0:e3:f0:a9:0b:11:f3:b3:72: c2:6f:1a:a0:e4:77:02:67:7a:4b:6d:24:b0:a5:e7:4a:23:3a: 05:4a:ae:46:f1:73:15:61:fa:9e:a0:dc:20:24:e2:40:25:ce: c3:6a:c1:8b:cc:0b:ff:e3:b2:7f:ed:a3:79:0f:e9:15:16:59: e2:39:58:0f:fa:8a:7f:d3:a9:62:64:58:c0:a1:59:ac:b3:ce: a7:d5:8e:96:4d:68:95:50:47:bf:44:f4:21:c1:34:a9:b4:fd: cb:8f:36:23:a4:20:4e:43:e3:8a:01:b7:43:aa:18:4b:b6:0a: 6b:ab:15:b7:ca:c9:62:b3:f7:30:64:2b:3d:13:e8:d5:bb:ec: 85:9b:3f:ae:cd:73:78:5b:a1:16:fd:a0:7a:2d:ee:2c:ed:2b: f7:f6:80:42:21:99:c1:5c:c1:69:11:bf:35:b4:30:d7:20:19: bd:bc:38:56:d9:77:fc:a8:ed:3c:85:b4:c8:06:51:2e:9e:9e: ba:eb:ab:f0:f7:8a:06:5c:3a:07:a3:4f:6c:be:66:d5:40:29: d3:0c:06:4b:5b:43:f7:e2:1a:9d:e9:8e:71:59:d7:ba:ae:a9: 2e:36:7c:27 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RjIzMzExMC8GA1UEBRMoQjFCQTE4NjhCQTdDRUI5NENERDY0RjA1NzQxMzlBMDFB NTBCOTBENTAeFw0yNTA1MTEwNjAwMzdaFw0yNTA1MTgwNjAwMzdaMBgxFjAUBgNV BAMTDTY4MjAzZDA1LTc0ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqU3r5rntLOviYKDXvHiM9yMwAelCjfBSrOKhJ+8mpuU1Ha/K+NMp8m0KYtDuS ixYZvd8xMe6kVcDqKx1X0gCVNKu/1HGATzAaqKxi7sIaUh1st66RLrsMVbzA9Hbl 6RqWjHfjtDmgWs8YC2ynEpoo/ggDTpTjh49cQm67wtMMS3IBKbMQ0hpVmgTqJvAP MTd5zpCIgn9y2SypNyP/8gx5Dais45U2IjMZ1lkxJXm/JCg5m8KjBJUvNN/10qwy t18GRogqUVx47Sr+Y2UFDpYBzTstsLs6PQTwwcMeaF+2rjRBS2KdZtgMw7DGe3TK d/9Mi/hjbaN6ZTJh1Vg/gffdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpSQLKiho 4mGre5eyYNSuHRBKF98wHwYDVR0jBBgwFoAUsboYaLp865TN1k8FdBOaAaULkNUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGMjMzLzExNEU3REJBQjM3 ODExRUY4ODMyMkIwRkM0RjlBRTAyL3Nib1lhTHA4NjVUTjFrOEZkQk9hQWFVTGtO VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2JvWWFMcDg2NVROMWs4RmRCT2FBYVVMa05VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURG MjMzLzExNEU3REJBQjM3ODExRUY4ODMyMkIwRkM0RjlBRTAyL3Nib1lhTHA4NjVU TjFrOEZkQk9hQWFVTGtOVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAETa5DBiUDXYMF1Vphk9LsZD/RDZbEiT7slA+LDj8KkLEfOzcsJvGqDk dwJnekttJLCl50ojOgVKrkbxcxVh+p6g3CAk4kAlzsNqwYvMC//jsn/to3kP6RUW WeI5WA/6in/TqWJkWMChWayzzqfVjpZNaJVQR79E9CHBNKm0/cuPNiOkIE5D44oB t0OqGEu2CmurFbfKyWKz9zBkKz0T6NW77IWbP67Nc3hboRb9oHot7iztK/f2gEIh mcFcwWkRvzW0MNcgGb28OFbZd/yo7TyFtMgGUS6enrrrq/D3igZcOgejT2y+ZtVA KdMMBktbQ/fiGp3pjnFZ17quqS42fCc= -----END CERTIFICATE-----Generated at Sun May 11 22:05:45 2025 by rpki-client