$ rpki-client -vvf rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft File: sbozBTw5ulhlU3dDESOJ4wDEiAc.mft (raw, json) Hash identifier: YTBDgrYWmzoxZM0ov6kEhWcEy+w7klsLF5mNQ+bZiI0= Subject key identifier: 0C:31:28:4E:11:0A:09:CB:09:E5:36:23:43:1F:92:DB:21:69:7E:66 Authority key identifier: B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 Certificate issuer: /CN=A9150384/serialNumber=B1BA33053C39BA5865537743112389E300C48807 Certificate serial: 0C82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft Manifest number: 0C6F Signing time: Fri 30 May 2025 18:31:15 +0000 Manifest this update: Fri 30 May 2025 18:31:14 +0000 Manifest next update: Fri 06 Jun 2025 18:31:14 +0000 Files and hashes: 1: sbozBTw5ulhlU3dDESOJ4wDEiAc.crl (hash: Pl333y36qqdtK5TYNbgqfz4i8VKfLZU4XRIgRC4tUgM=) 2: 3240ED82D62D11EFB0442B5DC4F9AE02.roa (hash: 4ezgedPR9KopOZYLyZFbtl63GBaLOL0AGy6NscKrMGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3202 (0xc82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150384, serialNumber=B1BA33053C39BA5865537743112389E300C48807 Validity Not Before: May 30 18:31:14 2025 GMT Not After : Jun 6 18:31:14 2025 GMT Subject: CN=6839f972-e1d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:94:a3:be:63:d6:60:5a:ad:de:3d:ce:fb:3a: b1:e4:39:21:f7:32:5d:57:04:20:07:35:1b:37:d4: 16:bd:85:18:b2:27:73:2b:bf:a6:1a:7c:83:9c:af: a2:dc:ee:35:4a:fb:30:c3:54:26:c8:66:38:0d:a2: 85:14:89:e8:31:3f:21:f9:57:cd:99:dd:6a:b8:ff: 85:ec:d4:d9:18:47:e5:ae:bc:9d:e2:04:d3:d4:50: eb:6d:55:4b:b1:3a:1a:e2:ea:c8:d3:0d:94:44:d4: 93:81:af:41:53:67:f3:63:40:9a:4a:91:63:17:7f: d0:fc:c7:26:e3:1c:4b:6d:85:c1:30:9d:cd:bb:24: da:7c:75:0a:d3:a0:42:00:82:c6:74:b5:e2:be:13: de:dd:1c:77:42:09:d5:59:69:f1:ba:d1:a7:d9:e3: 92:6d:66:b8:6c:2b:5f:bd:32:51:41:c7:01:f9:8f: 09:36:ac:96:f6:db:a9:bf:0f:dc:b5:f8:55:cb:95: f7:42:86:03:a9:62:44:46:5a:8d:d8:89:15:c9:d3: 48:76:03:2b:c6:23:a0:88:0f:4a:13:51:b9:5a:7e: c3:72:b1:82:38:0d:77:f5:44:e3:82:34:d1:2d:f8: 16:7f:3f:9c:13:01:63:ab:3b:9e:54:96:c6:45:d9: 32:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:31:28:4E:11:0A:09:CB:09:E5:36:23:43:1F:92:DB:21:69:7E:66 X509v3 Authority Key Identifier: keyid:B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:bb:be:79:7d:47:3d:43:ea:9b:d0:e1:53:cc:3e:7e:9c:e0: d5:72:5f:51:8f:e7:ac:f1:47:8c:a2:34:45:d3:25:39:b6:2b: 02:5e:da:65:12:5a:16:8a:42:3c:3c:1a:42:12:9a:95:dd:8a: 8c:4b:ab:5f:ea:89:4b:36:02:d6:f7:fb:cf:99:4a:8e:2b:26: 9d:ac:bd:e5:32:d8:f4:2c:a5:5c:59:19:0d:8c:5b:47:0c:72: 46:bb:f1:3b:2c:d5:54:9d:9a:3c:99:49:fc:d4:bb:37:73:7f: b5:a1:2b:83:98:68:37:c7:2f:f5:a6:d9:b7:37:54:d2:15:0d: 55:38:bf:fb:bf:36:8f:45:4e:94:f5:1c:7c:34:c9:26:f1:4a: a1:9c:9e:09:c6:ff:a2:55:86:6f:b0:4a:d0:e7:33:80:c6:7e: 39:fe:41:7f:08:93:90:d9:c7:5f:4d:14:d8:06:63:f1:34:c6: 09:1c:6c:84:0f:37:75:19:e5:dd:a1:f2:ed:53:4d:e8:b9:a4: 27:5c:5a:0e:20:62:ef:ab:13:14:98:dd:f5:cd:ab:3f:85:ee: a0:9b:5e:ef:b4:9b:fa:89:b4:f8:bc:c7:5d:80:d0:26:9d:ec: 8b:6c:4c:9c:11:1d:a0:2b:d3:c5:4e:4d:a6:01:ae:a4:ba:9e: 4a:dc:7f:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAzODQxMTAvBgNVBAUTKEIxQkEzMzA1M0MzOUJBNTg2NTUzNzc0MzExMjM4OUUz MDBDNDg4MDcwHhcNMjUwNTMwMTgzMTE0WhcNMjUwNjA2MTgzMTE0WjAYMRYwFAYD VQQDEw02ODM5Zjk3Mi1lMWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ZSjvmPWYFqt3j3O+zqx5Dkh9zJdVwQgBzUbN9QWvYUYsidzK7+mGnyDnK+i 3O41Svsww1QmyGY4DaKFFInoMT8h+VfNmd1quP+F7NTZGEflrryd4gTT1FDrbVVL sToa4urI0w2URNSTga9BU2fzY0CaSpFjF3/Q/Mcm4xxLbYXBMJ3NuyTafHUK06BC AILGdLXivhPe3Rx3QgnVWWnxutGn2eOSbWa4bCtfvTJRQccB+Y8JNqyW9tupvw/c tfhVy5X3QoYDqWJERlqN2IkVydNIdgMrxiOgiA9KE1G5Wn7DcrGCOA139UTjgjTR LfgWfz+cEwFjqzueVJbGRdky/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAwxKE4R CgnLCeU2I0MfktshaX5mMB8GA1UdIwQYMBaAFLG6MwU8ObpYZVN3QxEjieMAxIgH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDM4NC85MzdGMzcyRTAw NUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVsaGxVM2RERVNPSjR3REVp QWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Nib3pCVHc1dWxobFUzZERFU09KNHdERWlBYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDM4NC85MzdGMzcyRTAwNUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVs aGxVM2RERVNPSjR3REVpQWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQu755fUc9Q+qb0OFTzD5+nODVcl9Rj+es8UeMojRF0yU5tisCXtpl EloWikI8PBpCEpqV3YqMS6tf6olLNgLW9/vPmUqOKyadrL3lMtj0LKVcWRkNjFtH DHJGu/E7LNVUnZo8mUn81Ls3c3+1oSuDmGg3xy/1ptm3N1TSFQ1VOL/7vzaPRU6U 9Rx8NMkm8UqhnJ4Jxv+iVYZvsErQ5zOAxn45/kF/CJOQ2cdfTRTYBmPxNMYJHGyE Dzd1GeXdofLtU03ouaQnXFoOIGLvqxMUmN31zas/he6gm17vtJv6ibT4vMddgNAm neyLbEycER2gK9PFTk2mAa6kup5K3H9F -----END CERTIFICATE-----Generated at Sat May 31 17:31:59 2025 by rpki-client