$ rpki-client -vvf rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft File: sbozBTw5ulhlU3dDESOJ4wDEiAc.mft (raw, json) Hash identifier: IAsk7bXZbYZHzK8SX+j9BVYqX6GJxtEHXgOR14CYKHU= Subject key identifier: C8:CD:BA:50:91:66:9A:1D:B6:B0:C9:64:15:AB:40:16:6D:36:E3:43 Authority key identifier: B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 Certificate issuer: /CN=A9150384/serialNumber=B1BA33053C39BA5865537743112389E300C48807 Certificate serial: 0CAC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft Manifest number: 0C99 Signing time: Wed 20 Aug 2025 18:21:09 +0000 Manifest this update: Wed 20 Aug 2025 18:21:08 +0000 Manifest next update: Wed 27 Aug 2025 18:21:08 +0000 Files and hashes: 1: sbozBTw5ulhlU3dDESOJ4wDEiAc.crl (hash: UWvCvJpHiG3h3y6L2Jz+DR62SNpEhvHOlKSHGeLIyXg=) 2: 3240ED82D62D11EFB0442B5DC4F9AE02.roa (hash: 4ezgedPR9KopOZYLyZFbtl63GBaLOL0AGy6NscKrMGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 18:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3244 (0xcac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150384, serialNumber=B1BA33053C39BA5865537743112389E300C48807 Validity Not Before: Aug 20 18:21:08 2025 GMT Not After : Aug 27 18:21:08 2025 GMT Subject: CN=68a61214-497b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:66:ce:13:0b:aa:70:38:8d:5b:a3:02:ce:c1: 7c:b0:ab:26:da:fb:e3:08:e2:c2:bb:90:44:9c:96: ea:3e:ab:68:1d:02:cd:01:2b:86:04:f7:d8:c9:ca: 73:6c:39:86:04:c4:5a:5f:58:1b:78:62:bb:f7:2b: 60:4f:2d:f2:42:cd:e1:c3:9a:c0:9e:fe:3b:8a:11: ee:35:0d:6a:06:b6:ed:fc:04:24:13:84:e3:c4:f7: db:89:89:55:a7:ba:14:75:c4:40:07:50:78:63:80: d4:5e:29:83:56:5c:69:e8:bc:07:ec:e0:6f:36:bf: a0:1c:d2:d6:04:2b:80:75:18:b4:6d:79:fc:91:39: ee:55:61:7d:d0:7b:be:17:9b:af:13:f2:44:51:31: cb:f7:be:5c:42:dd:7f:9b:56:3c:64:fb:70:6e:e7: c4:a1:95:45:72:10:46:50:ba:56:2d:2d:b9:73:ac: a1:58:14:c6:47:0f:45:c0:84:99:15:cd:ff:d3:53: d6:45:c3:ac:53:bc:11:d4:39:33:a2:a0:9c:77:e7: c7:94:69:d5:7e:da:3d:cc:3f:2b:92:48:dd:28:d9: 1c:e4:85:85:f3:58:0a:f3:e6:58:e8:fe:21:32:0f: c2:ee:e3:2f:05:1a:a2:bd:50:92:8a:dd:bd:79:4f: b4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:CD:BA:50:91:66:9A:1D:B6:B0:C9:64:15:AB:40:16:6D:36:E3:43 X509v3 Authority Key Identifier: keyid:B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:17:3e:fa:16:8e:ad:d7:e4:95:6e:bf:78:11:39:40:00:be: 14:9f:1f:56:f8:5c:3e:4a:2f:b8:e1:5e:ef:21:b6:3b:b4:f8: 37:7d:af:f1:d9:ed:c5:b8:93:ea:bc:69:53:a7:b0:d0:c2:34: 33:de:8e:08:7e:1e:5b:ff:37:44:74:f8:69:db:bf:c7:a1:51: 3f:1d:e2:64:c5:5b:b8:9e:69:4a:e7:2a:be:f6:fb:84:09:b6: 11:c4:fc:1f:5a:92:bf:f4:fd:c5:13:0f:a4:29:c6:14:b7:cb: a9:53:6c:f3:98:5c:8e:a3:21:0b:21:c6:27:b3:35:eb:71:b6: 60:17:45:9c:21:c8:7d:b0:0b:99:b9:81:32:e1:f8:de:23:72: 71:b5:83:35:41:c5:e6:79:5b:93:a9:df:e5:78:43:d6:93:39: 0a:a4:45:b6:5d:50:df:4a:d6:bd:a1:53:41:25:9a:9b:35:cb: 27:a5:65:71:7d:2e:74:94:ae:bd:55:e1:80:91:b9:fa:47:0d: 3a:fc:61:f5:28:79:05:b6:bf:c3:d4:cc:7a:ae:4d:8e:36:9b: 01:45:15:d6:8e:17:84:29:1a:a9:76:5c:b0:4b:e9:10:0f:20: 89:4a:b8:20:50:e6:16:f5:15:cb:3a:ff:aa:e0:83:ec:16:5e: 2f:86:1e:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAzODQxMTAvBgNVBAUTKEIxQkEzMzA1M0MzOUJBNTg2NTUzNzc0MzExMjM4OUUz MDBDNDg4MDcwHhcNMjUwODIwMTgyMTA4WhcNMjUwODI3MTgyMTA4WjAYMRYwFAYD VQQDEw02OGE2MTIxNC00OTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnWbOEwuqcDiNW6MCzsF8sKsm2vvjCOLCu5BEnJbqPqtoHQLNASuGBPfYycpz bDmGBMRaX1gbeGK79ytgTy3yQs3hw5rAnv47ihHuNQ1qBrbt/AQkE4TjxPfbiYlV p7oUdcRAB1B4Y4DUXimDVlxp6LwH7OBvNr+gHNLWBCuAdRi0bXn8kTnuVWF90Hu+ F5uvE/JEUTHL975cQt1/m1Y8ZPtwbufEoZVFchBGULpWLS25c6yhWBTGRw9FwISZ Fc3/01PWRcOsU7wR1DkzoqCcd+fHlGnVfto9zD8rkkjdKNkc5IWF81gK8+ZY6P4h Mg/C7uMvBRqivVCSit29eU+0UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMjNulCR ZpodtrDJZBWrQBZtNuNDMB8GA1UdIwQYMBaAFLG6MwU8ObpYZVN3QxEjieMAxIgH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDM4NC85MzdGMzcyRTAw NUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVsaGxVM2RERVNPSjR3REVp QWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Nib3pCVHc1dWxobFUzZERFU09KNHdERWlBYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDM4NC85MzdGMzcyRTAwNUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVs aGxVM2RERVNPSjR3REVpQWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVFz76Fo6t1+SVbr94ETlAAL4Unx9W+Fw+Si+44V7vIbY7tPg3fa/x 2e3FuJPqvGlTp7DQwjQz3o4Ifh5b/zdEdPhp27/HoVE/HeJkxVu4nmlK5yq+9vuE CbYRxPwfWpK/9P3FEw+kKcYUt8upU2zzmFyOoyELIcYnszXrcbZgF0WcIch9sAuZ uYEy4fjeI3JxtYM1QcXmeVuTqd/leEPWkzkKpEW2XVDfSta9oVNBJZqbNcsnpWVx fS50lK69VeGAkbn6Rw06/GH1KHkFtr/D1Mx6rk2ONpsBRRXWjheEKRqpdlywS+kQ DyCJSrggUOYW9RXLOv+q4IPsFl4vhh6i -----END CERTIFICATE-----Generated at Fri Aug 22 16:24:14 2025 by rpki-client