$ rpki-client -vvf rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft File: sgBZBkA-medoWaqrsdy92uRCBvY.mft (raw, json) Hash identifier: 0OFctNKRhVmok+9dIZLRuJ6t4RLKQOE+PuII4ciVzE8= Subject key identifier: 98:60:6E:80:78:61:50:CF:02:20:DC:5C:09:2A:68:66:B9:6C:11:CC Authority key identifier: B2:00:59:06:40:3E:99:E7:68:59:AA:AB:B1:DC:BD:DA:E4:42:06:F6 Certificate issuer: /CN=A913A748/serialNumber=B2005906403E99E76859AAABB1DCBDDAE44206F6 Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft Manifest number: A8 Signing time: Mon 09 Jun 2025 05:05:00 +0000 Manifest this update: Mon 09 Jun 2025 05:04:59 +0000 Manifest next update: Mon 16 Jun 2025 05:04:59 +0000 Files and hashes: 1: sgBZBkA-medoWaqrsdy92uRCBvY.crl (hash: bu1YEFXB+ZfFmF40p+EoBGr4vmcje4Yz3DM3ynOF8mw=) 2: 0B7CF64642B211EF82734679C4F9AE02.roa (hash: SLWE2DPVkEquMfz8hHroSU4zXY18AR0tkk1tXcWxdMg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.crl rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 05:04:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A748, serialNumber=B2005906403E99E76859AAABB1DCBDDAE44206F6 Validity Not Before: Jun 9 05:04:59 2025 GMT Not After : Jun 16 05:04:59 2025 GMT Subject: CN=68466b7c-5b35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:47:75:7b:4f:6f:9e:bf:0f:54:80:fa:79:7a: bc:48:90:f3:29:85:73:3d:4c:b1:9c:b1:d0:aa:18: 56:c9:db:61:95:e7:94:11:9e:f6:f3:4a:02:c2:01: 9e:53:73:9d:40:5c:d9:9b:2c:2e:82:41:56:34:9e: 55:26:d2:f5:f7:b0:1a:a9:1e:de:d9:28:06:0e:06: d6:9e:10:a5:fa:2f:7d:95:5c:5a:3f:1a:5f:3f:ba: 49:7f:15:1d:e4:a2:30:c6:76:49:69:41:cd:35:9a: cb:56:dc:7a:93:8c:e8:ec:16:65:b0:28:35:f1:97: d5:e0:48:af:b3:18:26:c8:cc:8a:4e:d6:eb:5e:db: a2:44:5e:42:1e:35:29:70:43:53:1f:87:ce:3a:d5: 95:43:dc:97:23:dd:ff:ad:7b:2b:91:9c:3d:56:5c: 74:b4:ad:22:ed:79:50:5f:e1:73:cc:74:e6:08:8d: ba:7a:36:9a:0f:b9:74:16:08:c3:09:85:82:ff:e8: a3:54:e5:4c:e4:f4:ed:13:50:e5:1f:35:9f:d1:d8: 90:10:46:d9:c9:b1:9b:64:da:4f:ca:af:11:5d:ee: e9:7e:83:e9:4c:68:a2:f9:b8:46:19:0b:96:68:e6: 7d:72:28:da:d6:e6:89:3c:1c:a5:2f:f3:d8:a0:5a: e3:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:60:6E:80:78:61:50:CF:02:20:DC:5C:09:2A:68:66:B9:6C:11:CC X509v3 Authority Key Identifier: keyid:B2:00:59:06:40:3E:99:E7:68:59:AA:AB:B1:DC:BD:DA:E4:42:06:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:5d:a5:3d:93:37:4e:f4:65:1e:27:3e:54:17:28:6a:b5:6a: 52:8c:a2:d4:0a:6c:b1:c6:83:73:86:5a:6c:42:0f:ee:ad:6f: 16:10:c7:02:9f:68:e6:96:26:2f:2c:57:0f:1d:8e:59:0a:e7: 4c:f1:23:f9:3d:98:47:1e:75:14:b4:23:af:78:0d:ae:95:f3: f3:e6:ec:b6:6d:75:c0:67:ed:32:ae:2f:0d:bf:7c:e1:5f:de: d5:cf:97:92:59:1d:f4:bf:23:32:b4:97:02:3c:8f:e4:bf:29: 2f:46:34:27:c1:d3:32:78:c8:15:3e:1e:88:76:12:be:bb:b8: 97:4c:5d:86:e7:69:e9:13:b2:85:18:af:8f:1f:ee:15:7b:c6: e1:af:69:f2:ab:26:1f:58:86:e4:06:81:87:0a:0d:f6:c1:bd: ea:6d:7e:65:5d:5a:44:cd:3f:4e:e6:7e:05:5e:44:8f:5e:62: b5:6c:6a:ac:50:6d:1c:01:ab:8f:e2:10:bc:47:60:fe:43:b2: c9:5e:ac:c5:6b:57:6f:80:f2:f9:f1:da:35:cd:a4:52:a9:4c: 4b:7c:ad:3f:71:48:d0:31:ac:fb:01:f9:2a:96:10:6e:b8:58: 2a:14:84:06:1e:b3:1a:40:11:e3:13:e8:30:b5:27:14:f7:d9: 28:3f:5b:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3NDgxMTAvBgNVBAUTKEIyMDA1OTA2NDAzRTk5RTc2ODU5QUFBQkIxRENCRERB RTQ0MjA2RjYwHhcNMjUwNjA5MDUwNDU5WhcNMjUwNjE2MDUwNDU5WjAYMRYwFAYD VQQDEw02ODQ2NmI3Yy01YjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0d1e09vnr8PVID6eXq8SJDzKYVzPUyxnLHQqhhWydthleeUEZ7280oCwgGe U3OdQFzZmywugkFWNJ5VJtL197AaqR7e2SgGDgbWnhCl+i99lVxaPxpfP7pJfxUd 5KIwxnZJaUHNNZrLVtx6k4zo7BZlsCg18ZfV4EivsxgmyMyKTtbrXtuiRF5CHjUp cENTH4fOOtWVQ9yXI93/rXsrkZw9Vlx0tK0i7XlQX+FzzHTmCI26ejaaD7l0FgjD CYWC/+ijVOVM5PTtE1DlHzWf0diQEEbZybGbZNpPyq8RXe7pfoPpTGii+bhGGQuW aOZ9cija1uaJPBylL/PYoFrjrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJhgboB4 YVDPAiDcXAkqaGa5bBHMMB8GA1UdIwQYMBaAFLIAWQZAPpnnaFmqq7HcvdrkQgb2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTc0OC9BQUNEMTNBODQy QjExMUVGOTJFNTY1NzhDNEY5QUUwMi9zZ0JaQmtBLW1lZG9XYXFyc2R5OTJ1UkNC dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnQlpCa0EtbWVkb1dhcXJzZHk5MnVSQ0J2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTc0OC9BQUNEMTNBODQyQjExMUVGOTJFNTY1NzhDNEY5QUUwMi9zZ0JaQmtBLW1l ZG9XYXFyc2R5OTJ1UkNCdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIXaU9kzdO9GUeJz5UFyhqtWpSjKLUCmyxxoNzhlpsQg/urW8WEMcC n2jmliYvLFcPHY5ZCudM8SP5PZhHHnUUtCOveA2ulfPz5uy2bXXAZ+0yri8Nv3zh X97Vz5eSWR30vyMytJcCPI/kvykvRjQnwdMyeMgVPh6IdhK+u7iXTF2G52npE7KF GK+PH+4Ve8bhr2nyqyYfWIbkBoGHCg32wb3qbX5lXVpEzT9O5n4FXkSPXmK1bGqs UG0cAauP4hC8R2D+Q7LJXqzFa1dvgPL58do1zaRSqUxLfK0/cUjQMaz7AfkqlhBu uFgqFIQGHrMaQBHjE+gwtScU99koP1sO -----END CERTIFICATE-----Generated at Mon Jun 9 18:51:43 2025 by rpki-client