$ rpki-client -vvf rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft File: sbozBTw5ulhlU3dDESOJ4wDEiAc.mft (raw, json) Hash identifier: hxNDwkDm9MckOyLo8xvkSmfnFjPJWsDriNexcdLkLbQ= Subject key identifier: AF:EE:89:4B:EA:C7:33:31:01:92:84:CF:AE:78:E2:C4:DC:03:A8:5B Authority key identifier: B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 Certificate issuer: /CN=A9150384/serialNumber=B1BA33053C39BA5865537743112389E300C48807 Certificate serial: 0C6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft Manifest number: 0C57 Signing time: Sat 12 Apr 2025 18:12:42 +0000 Manifest this update: Sat 12 Apr 2025 18:12:41 +0000 Manifest next update: Sat 19 Apr 2025 18:12:41 +0000 Files and hashes: 1: sbozBTw5ulhlU3dDESOJ4wDEiAc.crl (hash: UGsTv/Vewk/KJ+LGh3yQafsOJUUe8eCKysVTCzaXWd0=) 2: 3240ED82D62D11EFB0442B5DC4F9AE02.roa (hash: 4ezgedPR9KopOZYLyZFbtl63GBaLOL0AGy6NscKrMGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 18:12:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3178 (0xc6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150384, serialNumber=B1BA33053C39BA5865537743112389E300C48807 Validity Not Before: Apr 12 18:12:41 2025 GMT Not After : Apr 19 18:12:41 2025 GMT Subject: CN=67faad19-1fed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:02:64:3d:9d:bb:c9:08:af:12:25:62:b6:5f: c0:e0:0a:81:c2:f0:16:35:42:36:09:a0:c6:54:65: b0:5f:76:4a:eb:86:d2:35:34:38:52:92:92:e1:fd: 79:34:6a:7b:6f:5b:6a:4b:48:33:c3:d4:b2:3c:48: 39:1f:ac:4a:f5:fa:22:5f:99:f7:1d:ad:cc:9a:26: c3:1d:c7:00:ab:41:21:39:04:32:e8:43:bb:d5:9d: 01:2f:5e:51:2a:59:dd:86:b7:73:69:ff:12:4c:af: 6b:2d:42:42:0c:e6:b8:0c:b8:9b:74:49:fc:b8:64: 37:4d:44:10:b1:7e:9f:1a:56:d0:0a:ce:e1:17:c4: 2d:b1:a2:17:49:da:fc:eb:31:6e:c6:63:0b:79:be: 34:6e:81:bf:a7:64:9c:16:6e:0b:08:f9:08:3b:08: f1:cb:9d:ef:ca:20:f6:31:cd:fd:6f:43:1b:79:96: c7:56:79:ab:f5:d0:08:55:16:20:c9:9b:03:c0:c0: 3d:26:5f:59:ca:a5:68:93:91:98:ee:50:99:aa:81: d6:17:e2:12:44:17:1c:27:4d:af:8a:4a:4d:27:d3: 9f:5b:3a:97:93:de:8a:21:2f:cc:a0:c4:47:df:fd: b1:9d:43:f7:1c:df:3b:01:a3:3a:ea:c0:28:fe:76: fc:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:EE:89:4B:EA:C7:33:31:01:92:84:CF:AE:78:E2:C4:DC:03:A8:5B X509v3 Authority Key Identifier: keyid:B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:7c:73:5b:78:49:f6:bf:ca:19:37:f3:49:51:14:ae:94:26: df:f2:0e:fc:24:01:b3:c6:db:d2:9a:b2:7f:83:9f:e8:61:55: 2c:58:ae:0c:04:81:95:e2:b9:a2:ef:30:4e:7d:07:73:da:07: c9:3b:bf:9d:9b:6b:e6:36:37:26:64:fa:d6:f9:02:44:4f:ca: 87:39:63:0a:a6:1d:9a:90:54:eb:48:55:d8:36:29:e1:ef:d5: 66:4b:83:59:ba:db:a0:74:25:9a:d4:91:22:c9:1f:b3:9d:96: 24:2f:95:51:78:05:2c:74:3d:4c:7c:eb:c5:1c:c2:0f:ad:f2: c8:b6:a1:e8:3f:85:aa:d6:8d:46:9e:7f:d9:73:02:4c:59:f5: 69:88:f7:ea:72:7e:68:8d:0c:2a:ba:e5:13:19:a6:2b:35:07: f1:2b:1c:cb:bd:11:05:7f:89:3f:bf:33:f0:f4:c9:40:28:c1: 7d:57:c0:e9:3c:5d:22:a2:c3:e6:4b:66:c0:42:90:76:ce:fb: 43:69:8e:17:a5:4c:5b:e2:6e:15:79:03:79:d9:bf:c9:7d:71: c6:64:4d:1f:d3:9b:24:76:27:47:a9:06:7f:32:07:46:3b:e5: 0d:40:41:c5:ed:8c:91:95:af:38:bb:9d:0b:ff:a3:e7:17:02: b3:cd:0d:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAzODQxMTAvBgNVBAUTKEIxQkEzMzA1M0MzOUJBNTg2NTUzNzc0MzExMjM4OUUz MDBDNDg4MDcwHhcNMjUwNDEyMTgxMjQxWhcNMjUwNDE5MTgxMjQxWjAYMRYwFAYD VQQDEw02N2ZhYWQxOS0xZmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgJkPZ27yQivEiVitl/A4AqBwvAWNUI2CaDGVGWwX3ZK64bSNTQ4UpKS4f15 NGp7b1tqS0gzw9SyPEg5H6xK9foiX5n3Ha3MmibDHccAq0EhOQQy6EO71Z0BL15R Klndhrdzaf8STK9rLUJCDOa4DLibdEn8uGQ3TUQQsX6fGlbQCs7hF8QtsaIXSdr8 6zFuxmMLeb40boG/p2ScFm4LCPkIOwjxy53vyiD2Mc39b0MbeZbHVnmr9dAIVRYg yZsDwMA9Jl9ZyqVok5GY7lCZqoHWF+ISRBccJ02vikpNJ9OfWzqXk96KIS/MoMRH 3/2xnUP3HN87AaM66sAo/nb8cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/uiUvq xzMxAZKEz6544sTcA6hbMB8GA1UdIwQYMBaAFLG6MwU8ObpYZVN3QxEjieMAxIgH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDM4NC85MzdGMzcyRTAw NUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVsaGxVM2RERVNPSjR3REVp QWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Nib3pCVHc1dWxobFUzZERFU09KNHdERWlBYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDM4NC85MzdGMzcyRTAwNUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVs aGxVM2RERVNPSjR3REVpQWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARfHNbeEn2v8oZN/NJURSulCbf8g78JAGzxtvSmrJ/g5/oYVUsWK4M BIGV4rmi7zBOfQdz2gfJO7+dm2vmNjcmZPrW+QJET8qHOWMKph2akFTrSFXYNinh 79VmS4NZutugdCWa1JEiyR+znZYkL5VReAUsdD1MfOvFHMIPrfLItqHoP4Wq1o1G nn/ZcwJMWfVpiPfqcn5ojQwquuUTGaYrNQfxKxzLvREFf4k/vzPw9MlAKMF9V8Dp PF0iosPmS2bAQpB2zvtDaY4XpUxb4m4VeQN52b/JfXHGZE0f05skdidHqQZ/MgdG O+UNQEHF7YyRla84u50L/6PnFwKzzQ0Z -----END CERTIFICATE-----Generated at Sun Apr 13 02:29:37 2025 by rpki-client