$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json) Hash identifier: n07VL7LrG13o/4Qrv2yu4ZFiU8dKmejGZkvWtYnclF8= Subject key identifier: 33:E0:C6:BF:12:8B:8B:5F:9C:79:97:FE:D2:1B:5A:14:8E:2E:0D:E8 Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 059B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft Manifest number: 0591 Signing time: Mon 30 Jun 2025 23:38:20 +0000 Manifest this update: Mon 30 Jun 2025 23:38:20 +0000 Manifest next update: Mon 07 Jul 2025 23:38:20 +0000 Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: ZasiZ67f+pfk6X7JZl+EwMXvLeeRqCHxoWi+TC/sBQ8=) 2: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: grIWyyq0MDFCb7a6KfrpTu3LAH64VdoYs4KvoLwKfQg=) 3: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: /1rRME/YWECCYt6toeN715tq9fDj34iC1+mJGA+LM6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:38:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1435 (0x59b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: Jun 30 23:38:20 2025 GMT Not After : Jul 7 23:38:20 2025 GMT Subject: CN=68631fec-6c2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:31:ca:a0:28:b5:b8:90:17:40:b2:b5:98:35: 1c:cf:10:c6:ab:50:37:72:ad:45:46:51:66:18:5b: 7d:e4:70:3e:07:d5:ff:56:12:d4:0a:95:53:24:64: b8:4c:57:19:80:66:b3:15:31:34:a1:24:92:30:46: c2:50:28:16:34:73:a4:05:f2:fc:5d:16:a6:42:8e: 0c:ce:85:1b:da:c1:ef:82:b2:43:0d:7e:dc:94:d7: d0:36:3c:ce:d3:bd:bc:d3:dd:68:10:5d:94:1c:fa: 0b:e6:15:89:a6:ff:b2:c0:89:81:b8:73:0d:16:06: 06:19:e8:ff:39:73:4a:57:be:88:7b:b9:db:6d:10: e6:17:4b:f2:8f:f3:8a:8b:9d:c8:d6:ad:4f:84:c5: 9c:95:27:fa:7d:f9:ff:c9:09:4b:11:53:c4:bf:ae: 10:34:02:94:12:e5:27:0a:54:49:76:79:98:f5:03: 13:68:8d:46:3c:3e:82:b8:55:ec:a0:2f:23:d9:7b: 95:cb:cb:64:c9:6b:07:b9:a4:74:e4:19:ee:73:62: 59:5f:85:21:d0:28:04:b1:d1:75:cc:87:10:29:62: 9f:30:53:5d:d3:67:e3:b1:ca:d0:f5:88:52:ac:b8: 5c:ef:19:cd:56:a7:b3:d4:48:22:7e:51:00:66:9e: 1b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:E0:C6:BF:12:8B:8B:5F:9C:79:97:FE:D2:1B:5A:14:8E:2E:0D:E8 X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:ff:ac:6f:f5:e4:e8:00:61:81:7e:0e:36:fa:fe:43:ce:39: 19:7b:37:db:8d:d8:42:7f:38:d6:5c:67:00:b4:dc:e7:51:2b: f2:55:c0:9d:9b:72:d4:48:fe:9e:7a:92:68:cd:bc:47:bc:d4: f2:30:1f:43:d8:5d:29:4b:d7:f0:1b:25:a1:73:d1:4d:97:29: f8:bc:00:50:b0:99:55:31:f7:e0:9c:fa:86:25:fa:44:6f:8b: d1:f5:2d:08:8b:1b:85:5e:15:7c:a3:ca:f5:2c:27:73:13:33: 61:6c:e7:3c:95:9f:c1:81:ba:79:93:da:e5:97:99:f0:1f:12: d3:43:30:95:e9:73:b1:8f:a2:91:c6:7b:f3:af:41:bd:1c:64: 07:ae:1d:d5:d9:9e:e8:12:75:5a:8e:c1:4b:b8:3f:73:e2:7a: dc:b1:17:91:63:64:f9:66:a3:29:3d:e8:e3:89:8f:16:bc:ac: 1d:df:53:c9:eb:80:ac:3d:db:14:e2:81:5a:48:da:c7:9a:19: 66:8a:ac:e7:27:98:d8:c3:73:28:47:e8:5d:42:24:6a:33:5f: 89:d0:a7:f4:70:7e:e5:c7:4a:d7:94:bb:fb:bc:3a:91:27:3d: 27:ac:26:19:00:e9:68:23:aa:3f:8f:d8:85:f3:a8:35:ad:65: e0:12:7a:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjUwNjMwMjMzODIwWhcNMjUwNzA3MjMzODIwWjAYMRYwFAYD VQQDEw02ODYzMWZlYy02YzJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4THKoCi1uJAXQLK1mDUczxDGq1A3cq1FRlFmGFt95HA+B9X/VhLUCpVTJGS4 TFcZgGazFTE0oSSSMEbCUCgWNHOkBfL8XRamQo4MzoUb2sHvgrJDDX7clNfQNjzO 0728091oEF2UHPoL5hWJpv+ywImBuHMNFgYGGej/OXNKV76Ie7nbbRDmF0vyj/OK i53I1q1PhMWclSf6ffn/yQlLEVPEv64QNAKUEuUnClRJdnmY9QMTaI1GPD6CuFXs oC8j2XuVy8tkyWsHuaR05Bnuc2JZX4Uh0CgEsdF1zIcQKWKfMFNd02fjscrQ9YhS rLhc7xnNVqez1EgiflEAZp4bTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDPgxr8S i4tfnHmX/tIbWhSOLg3oMB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkI2Ni81M0U4RkJFQURBNUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3Bh MmZhaFlyODdYSFQ1TThIZ1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl/6xv9eToAGGBfg42+v5DzjkZezfbjdhCfzjWXGcAtNznUSvyVcCd m3LUSP6eepJozbxHvNTyMB9D2F0pS9fwGyWhc9FNlyn4vABQsJlVMffgnPqGJfpE b4vR9S0IixuFXhV8o8r1LCdzEzNhbOc8lZ/Bgbp5k9rll5nwHxLTQzCV6XOxj6KR xnvzr0G9HGQHrh3V2Z7oEnVajsFLuD9z4nrcsReRY2T5ZqMpPejjiY8WvKwd31PJ 64CsPdsU4oFaSNrHmhlmiqznJ5jYw3MoR+hdQiRqM1+J0Kf0cH7lx0rXlLv7vDqR Jz0nrCYZAOloI6o/j9iF86g1rWXgEnrI -----END CERTIFICATE-----Generated at Tue Jul 1 21:51:33 2025 by rpki-client