$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft File: sboYaLp865TN1k8FdBOaAaULkNU.mft (raw, json) Hash identifier: fxtddP3/KXiSQgSySUJZmp/g5DkEvwYVzbds4Lx9kS8= Subject key identifier: F1:D5:26:89:04:BE:18:E3:B3:E2:15:94:4F:34:E2:63:E3:DD:53:C3 Authority key identifier: B1:BA:18:68:BA:7C:EB:94:CD:D6:4F:05:74:13:9A:01:A5:0B:90:D5 Certificate issuer: /CN=A91DF233/serialNumber=B1BA1868BA7CEB94CDD64F0574139A01A50B90D5 Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft Manifest number: 6B Signing time: Tue 01 Jul 2025 07:42:58 +0000 Manifest this update: Tue 01 Jul 2025 07:42:58 +0000 Manifest next update: Tue 08 Jul 2025 07:42:58 +0000 Files and hashes: 1: sboYaLp865TN1k8FdBOaAaULkNU.crl (hash: s/e43rqS2tnHc+/w2gyigyOSHGO1XddXQwZj7GaxXdM=) 2: 386FD4FCB37D11EF8D6EAF63C4F9AE02.roa (hash: aJEyHw65stDKmv/A9AlKIYdtN6qUu7eSq0Nk49wiYVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.crl rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:42:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF233, serialNumber=B1BA1868BA7CEB94CDD64F0574139A01A50B90D5 Validity Not Before: Jul 1 07:42:58 2025 GMT Not After : Jul 8 07:42:58 2025 GMT Subject: CN=68639182-bdba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:9e:57:14:3d:e0:c0:c8:41:23:ef:67:d1:53: 30:0d:11:5a:84:1d:91:30:e3:6e:86:88:e9:a2:2e: 5e:9f:38:1c:fa:cd:0f:12:cd:bb:d4:1a:58:f0:1a: 1d:7b:65:a7:cb:89:14:93:b2:ff:ff:44:0f:64:1c: b4:86:d0:d9:ce:48:33:a7:f1:11:b8:3e:59:98:6d: 0f:9e:47:25:18:61:11:38:72:0c:c7:45:f3:95:4b: 9f:01:71:5e:63:1d:19:6e:88:74:ff:23:f9:e3:da: 2d:d6:6d:ff:1d:09:c9:ce:d0:5d:3e:b2:86:db:8a: 5d:8a:b0:f8:90:fa:11:fb:f0:fb:49:6e:fd:c3:e5: f1:f2:54:17:d2:a1:ca:85:d7:9a:af:3b:f4:b2:2b: 13:e5:47:25:b4:43:bc:31:38:5b:2b:f4:40:69:24: 6a:e2:35:f7:8f:5e:d6:05:c2:e9:b7:94:13:26:98: 77:87:be:b2:2a:cc:c6:58:d4:39:bc:f9:34:3a:01: 50:18:5d:c9:28:bc:4b:c3:8b:2e:a2:02:fe:7e:c8: 6c:28:54:7c:95:99:92:a0:b4:b6:0b:f4:50:6b:41: 40:1b:97:d3:77:17:cc:20:82:d8:71:a4:cf:d3:d9: 5b:30:0d:6e:82:3d:20:fd:5d:4b:87:e9:b4:d5:be: ff:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:D5:26:89:04:BE:18:E3:B3:E2:15:94:4F:34:E2:63:E3:DD:53:C3 X509v3 Authority Key Identifier: keyid:B1:BA:18:68:BA:7C:EB:94:CD:D6:4F:05:74:13:9A:01:A5:0B:90:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:64:83:0b:ee:df:c3:9e:d4:25:7c:55:5a:a3:26:0b:65:57: eb:1c:1e:28:fe:a1:80:27:63:2d:eb:26:94:a5:67:08:32:a8: 06:d9:91:c0:9f:5d:73:30:d8:ba:a0:8d:dc:1a:24:bf:52:72: 77:99:29:9c:15:5f:41:00:38:4e:96:1a:2b:ee:9b:ad:20:f0: 75:29:fb:39:d9:e0:82:f4:28:56:3c:8a:e1:89:41:de:9a:a8: fa:8e:6d:2a:14:e2:f7:95:f5:ce:b9:c9:8f:7f:23:fe:79:d7: 7f:34:68:e2:42:41:7d:9a:86:95:38:30:05:75:ff:52:a2:ea: 1f:8d:79:6f:5c:63:3d:31:9b:c7:03:00:bf:91:a3:0f:32:e5: 53:b7:0f:0a:7a:eb:26:19:49:97:c2:db:22:c9:52:11:61:73: 58:5b:14:0c:34:6f:50:91:e0:a4:36:b4:bf:79:2d:dd:94:01: 96:27:9f:83:3e:cd:13:41:2c:f8:a2:00:1a:eb:f4:f5:01:fe: 79:4c:b3:c0:c3:29:b5:44:a2:0d:0a:13:02:68:fd:e2:96:55: e0:35:48:8e:92:9b:a2:af:47:af:79:ba:a8:46:47:0d:ff:b2: 81:71:a0:b3:80:f1:42:a0:38:14:df:a1:a0:ee:b7:d8:8b:85: cf:98:07:55 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RjIzMzExMC8GA1UEBRMoQjFCQTE4NjhCQTdDRUI5NENERDY0RjA1NzQxMzlBMDFB NTBCOTBENTAeFw0yNTA3MDEwNzQyNThaFw0yNTA3MDgwNzQyNThaMBgxFjAUBgNV BAMTDTY4NjM5MTgyLWJkYmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZnlcUPeDAyEEj72fRUzANEVqEHZEw426GiOmiLl6fOBz6zQ8SzbvUGljwGh17 ZafLiRSTsv//RA9kHLSG0NnOSDOn8RG4PlmYbQ+eRyUYYRE4cgzHRfOVS58BcV5j HRluiHT/I/nj2i3Wbf8dCcnO0F0+sobbil2KsPiQ+hH78PtJbv3D5fHyVBfSocqF 15qvO/SyKxPlRyW0Q7wxOFsr9EBpJGriNfePXtYFwum3lBMmmHeHvrIqzMZY1Dm8 +TQ6AVAYXckovEvDiy6iAv5+yGwoVHyVmZKgtLYL9FBrQUAbl9N3F8wggthxpM/T 2VswDW6CPSD9XUuH6bTVvv8tAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8dUmiQS+ GOOz4hWUTzTiY+PdU8MwHwYDVR0jBBgwFoAUsboYaLp865TN1k8FdBOaAaULkNUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGMjMzLzExNEU3REJBQjM3 ODExRUY4ODMyMkIwRkM0RjlBRTAyL3Nib1lhTHA4NjVUTjFrOEZkQk9hQWFVTGtO VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2JvWWFMcDg2NVROMWs4RmRCT2FBYVVMa05VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURG MjMzLzExNEU3REJBQjM3ODExRUY4ODMyMkIwRkM0RjlBRTAyL3Nib1lhTHA4NjVU TjFrOEZkQk9hQWFVTGtOVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALBkgwvu38Oe1CV8VVqjJgtlV+scHij+oYAnYy3rJpSlZwgyqAbZkcCf XXMw2LqgjdwaJL9ScneZKZwVX0EAOE6WGivum60g8HUp+znZ4IL0KFY8iuGJQd6a qPqObSoU4veV9c65yY9/I/551380aOJCQX2ahpU4MAV1/1Ki6h+NeW9cYz0xm8cD AL+Row8y5VO3Dwp66yYZSZfC2yLJUhFhc1hbFAw0b1CR4KQ2tL95Ld2UAZYnn4M+ zRNBLPiiABrr9PUB/nlMs8DDKbVEog0KEwJo/eKWVeA1SI6Sm6KvR695uqhGRw3/ soFxoLOA8UKgOBTfoaDut9iLhc+YB1U= -----END CERTIFICATE-----Generated at Wed Jul 2 15:06:55 2025 by rpki-client