$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json) Hash identifier: I1noepEC7KpSP9RqiMEPgKAUycdluW5wzaS1GqgDbZ4= Subject key identifier: FD:6D:4F:D8:93:42:B1:3E:62:12:7B:2D:3C:C5:FA:6E:EE:22:01:87 Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 057E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft Manifest number: 0576 Signing time: Sat 10 May 2025 22:54:56 +0000 Manifest this update: Sat 10 May 2025 22:54:56 +0000 Manifest next update: Sat 17 May 2025 22:54:56 +0000 Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: EcXNHc43fhGqOkYGcJeeVeOleiMM04GvpNDW1tABkiU=) 2: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: tBjtbPJkQLSdN5Mupxr4RXelnuicO0p7Kp/u349fbi0=) 3: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: 5yL82AjNiBtE4vdmcnCW/8glBDbdrO2x3U6tcVWP0Uk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1406 (0x57e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: May 10 22:54:56 2025 GMT Not After : May 17 22:54:56 2025 GMT Subject: CN=681fd940-b724 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:c3:28:b5:94:ed:7f:c8:84:fc:fc:39:a0:22: da:10:68:b9:9e:8b:11:a5:a8:8c:11:ff:ed:94:bb: 26:fe:87:1d:b6:d4:6d:f1:00:f1:c6:73:83:5b:63: 01:5f:46:4f:63:7b:dd:d3:8b:96:95:f3:ba:78:19: 96:05:39:c0:49:f2:1c:ab:a7:0a:a0:f0:b3:7a:03: 40:71:eb:7a:8c:ee:d8:a2:48:24:a0:e5:a4:67:3b: 74:c9:02:af:20:0b:86:43:cd:44:46:59:03:87:85: 6e:4d:d8:28:f2:d3:a4:ef:34:4d:1d:08:05:a1:27: 8b:b7:0f:67:30:83:7f:71:67:da:d6:98:70:06:cc: 59:7b:f9:6f:e5:b6:22:ef:39:bf:68:6d:1f:80:1a: 40:09:dc:b5:00:68:ff:25:b2:92:09:b2:8b:4f:6b: 09:14:4b:b1:63:73:61:8f:0f:52:72:9f:d6:6a:76: 1f:02:9f:3d:60:a6:5c:76:d1:23:63:9f:b6:f2:04: 1b:0d:46:cf:dd:19:c2:0b:7f:8d:4b:ce:e0:df:e2: 37:cf:51:8c:fe:87:19:be:9d:35:e9:02:26:a2:93: 58:0d:d5:fb:e3:0f:b7:99:19:87:46:c2:bf:bc:c2: 21:53:62:57:d4:a4:17:f0:be:64:76:55:c3:08:e3: 76:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:6D:4F:D8:93:42:B1:3E:62:12:7B:2D:3C:C5:FA:6E:EE:22:01:87 X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:71:77:40:72:94:dd:71:68:e9:ba:5c:2c:80:62:95:68:da: 67:af:4d:f1:5c:e8:29:75:1c:66:fe:88:e8:35:de:0b:fc:93: 9c:3e:15:d3:ef:ca:c6:10:5a:f3:12:b5:6d:4f:ea:84:b8:82: 78:56:d7:a1:3a:cb:ce:30:50:e8:40:fc:47:0c:57:74:0f:bd: 92:4c:e9:e1:5c:5d:a8:a5:7a:5f:8b:61:ce:fa:04:3e:f1:0c: aa:e7:1f:23:e2:72:4f:54:b0:68:e7:20:3a:7b:56:7b:b6:69: 92:1c:2f:dd:6c:c3:e0:9b:8d:5a:48:ef:e4:d6:5d:77:36:ca: 96:b8:df:5d:f2:db:90:4d:5c:d2:eb:80:38:6c:5b:99:8e:d0: 88:e1:d9:f8:95:c6:ab:b6:17:40:b3:28:29:14:f3:c3:31:b3: dd:34:0d:5c:8f:bd:51:99:7b:15:8e:e6:3a:74:41:24:13:c1: 9e:04:05:49:88:b4:b1:79:8f:ea:0a:ff:51:b5:4c:50:87:29: 6f:c7:43:26:87:62:0c:b1:c0:08:0f:51:58:34:b7:41:e8:0c: 0f:c2:dc:9c:64:72:b5:1b:1d:61:fc:4f:ef:d8:e6:de:6a:38: b1:96:e4:18:0c:b9:b7:10:bf:09:75:18:f8:82:e5:8d:fc:1f: 26:97:cf:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjUwNTEwMjI1NDU2WhcNMjUwNTE3MjI1NDU2WjAYMRYwFAYD VQQDEw02ODFmZDk0MC1iNzI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl8MotZTtf8iE/Pw5oCLaEGi5nosRpaiMEf/tlLsm/ocdttRt8QDxxnODW2MB X0ZPY3vd04uWlfO6eBmWBTnASfIcq6cKoPCzegNAcet6jO7YokgkoOWkZzt0yQKv IAuGQ81ERlkDh4VuTdgo8tOk7zRNHQgFoSeLtw9nMIN/cWfa1phwBsxZe/lv5bYi 7zm/aG0fgBpACdy1AGj/JbKSCbKLT2sJFEuxY3Nhjw9Scp/WanYfAp89YKZcdtEj Y5+28gQbDUbP3RnCC3+NS87g3+I3z1GM/ocZvp016QImopNYDdX74w+3mRmHRsK/ vMIhU2JX1KQX8L5kdlXDCON2AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP1tT9iT QrE+YhJ7LTzF+m7uIgGHMB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkI2Ni81M0U4RkJFQURBNUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3Bh MmZhaFlyODdYSFQ1TThIZ1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7cXdAcpTdcWjpulwsgGKVaNpnr03xXOgpdRxm/ojoNd4L/JOcPhXT 78rGEFrzErVtT+qEuIJ4VtehOsvOMFDoQPxHDFd0D72STOnhXF2opXpfi2HO+gQ+ 8Qyq5x8j4nJPVLBo5yA6e1Z7tmmSHC/dbMPgm41aSO/k1l13NsqWuN9d8tuQTVzS 64A4bFuZjtCI4dn4lcarthdAsygpFPPDMbPdNA1cj71RmXsVjuY6dEEkE8GeBAVJ iLSxeY/qCv9RtUxQhylvx0Mmh2IMscAID1FYNLdB6AwPwtycZHK1Gx1h/E/v2Obe ajixluQYDLm3EL8JdRj4guWN/B8ml89C -----END CERTIFICATE-----Generated at Sun May 11 13:54:16 2025 by rpki-client