$ rpki-client -vvf rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft File: sbozBTw5ulhlU3dDESOJ4wDEiAc.mft (raw, json) Hash identifier: RrXPID8YBW89OaE3Ri6tdZqtIloifSTGydxMtzo+Hbw= Subject key identifier: FB:3D:F3:A6:A9:E3:39:B5:86:B4:A3:1F:10:26:41:97:08:F3:D3:79 Authority key identifier: B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 Certificate issuer: /CN=A9150384/serialNumber=B1BA33053C39BA5865537743112389E300C48807 Certificate serial: 0CDD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft Manifest number: 0CC6 Signing time: Tue 04 Nov 2025 18:18:51 +0000 Manifest this update: Tue 04 Nov 2025 18:18:50 +0000 Manifest next update: Tue 11 Nov 2025 18:18:50 +0000 Files and hashes: 1: sbozBTw5ulhlU3dDESOJ4wDEiAc.crl (hash: 2mZjknspkk2YlTEtcvN9cGgKfYPf1o7wwAjuWtAtMg4=) 2: 3240ED82D62D11EFB0442B5DC4F9AE02.roa (hash: TMu5hEbfrLw2YdTkxYULJSdYTtAL2nPXUFAhyo3Mq1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:18:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3293 (0xcdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150384, serialNumber=B1BA33053C39BA5865537743112389E300C48807 Validity Not Before: Nov 4 18:18:50 2025 GMT Not After : Nov 11 18:18:50 2025 GMT Subject: CN=690a438b-9c45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:da:be:46:17:77:3b:7c:ef:55:5c:1f:39:af: d6:8b:35:90:30:64:36:ae:e0:66:84:a3:39:56:50: f9:bc:98:44:12:be:19:1d:07:24:23:93:77:f0:c1: 95:6e:26:76:14:80:b1:4d:7a:72:ca:bc:83:5d:13: 96:89:af:26:d9:44:62:f1:3c:d9:f2:79:e7:5b:8e: 6f:b9:dc:2e:00:09:12:46:69:b2:59:77:9c:cd:d8: f5:74:32:d4:b2:f3:2c:cd:bf:13:2a:7f:34:56:f2: a2:b1:51:9b:9e:31:58:6e:d1:6a:58:b0:99:83:ac: 31:e0:87:aa:03:a5:d5:8a:a8:a6:f9:06:6c:2d:4a: fe:4e:ba:34:1f:56:25:dd:9b:f5:9e:1b:24:eb:06: 05:18:33:bc:37:ab:14:28:90:13:75:5f:43:94:45: 14:70:ac:d3:7f:7c:2a:9d:87:c2:ea:a8:f6:ae:85: f2:ae:f3:30:90:c2:49:c2:a6:52:32:4f:66:d7:98: 64:68:f3:3b:43:1a:79:5d:4d:9d:eb:8e:c7:84:fa: 4c:6b:8d:ce:85:b7:25:ae:ca:1a:a7:4e:b2:e6:37: 79:95:89:9e:c4:e1:65:33:d0:8d:c5:89:ee:4e:5b: 76:c4:81:81:88:48:e0:99:fa:e1:6c:c5:4c:7a:d8: 3b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:3D:F3:A6:A9:E3:39:B5:86:B4:A3:1F:10:26:41:97:08:F3:D3:79 X509v3 Authority Key Identifier: keyid:B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:5b:28:4c:44:05:74:23:7d:29:9b:f8:c5:78:fe:9e:41:d8: ea:1d:29:8e:83:a6:d2:0c:4c:70:c3:b7:ce:ec:61:ac:91:9f: 1e:4a:07:2c:eb:c9:d9:02:c4:35:45:02:79:6b:b2:74:b6:12: 7d:ba:bd:5b:9b:b6:85:46:b3:c6:e8:68:d4:f9:15:d5:a7:cf: f7:c3:f3:8f:f4:26:4f:8c:e3:55:db:3f:0f:d7:bd:46:fc:36: 61:58:d9:0d:d8:5e:40:2a:d9:eb:65:41:de:ef:52:c9:9d:3f: fa:f1:98:e1:b3:76:d1:e0:89:10:40:58:43:43:de:91:79:06: 93:5a:b1:82:18:7a:1a:9c:1b:58:6b:d1:fe:57:69:5f:e4:e5: 9f:22:32:c4:31:b8:6e:17:07:4b:63:41:32:6d:45:70:25:8f: 69:01:be:69:bc:ab:c0:08:10:72:8b:bb:02:59:df:f4:36:c4: 13:f9:95:fd:89:2d:68:d9:b3:5d:51:e1:37:91:41:ae:19:47: 3d:ed:f4:6c:71:c0:97:37:48:36:a1:ee:51:bb:f7:7f:09:2f: 31:e3:c0:77:3a:05:ae:ec:52:e9:d6:6f:7e:b3:74:ad:e2:77: 6d:67:ff:58:07:0f:57:71:1c:58:9a:a3:ea:cb:d2:1c:a7:ea: 9f:ad:22:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAzODQxMTAvBgNVBAUTKEIxQkEzMzA1M0MzOUJBNTg2NTUzNzc0MzExMjM4OUUz MDBDNDg4MDcwHhcNMjUxMTA0MTgxODUwWhcNMjUxMTExMTgxODUwWjAYMRYwFAYD VQQDEw02OTBhNDM4Yi05YzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdq+Rhd3O3zvVVwfOa/WizWQMGQ2ruBmhKM5VlD5vJhEEr4ZHQckI5N38MGV biZ2FICxTXpyyryDXROWia8m2URi8TzZ8nnnW45vudwuAAkSRmmyWXeczdj1dDLU svMszb8TKn80VvKisVGbnjFYbtFqWLCZg6wx4IeqA6XViqim+QZsLUr+Tro0H1Yl 3Zv1nhsk6wYFGDO8N6sUKJATdV9DlEUUcKzTf3wqnYfC6qj2roXyrvMwkMJJwqZS Mk9m15hkaPM7Qxp5XU2d647HhPpMa43Ohbclrsoap06y5jd5lYmexOFlM9CNxYnu Tlt2xIGBiEjgmfrhbMVMetg7mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPs986ap 4zm1hrSjHxAmQZcI89N5MB8GA1UdIwQYMBaAFLG6MwU8ObpYZVN3QxEjieMAxIgH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDM4NC85MzdGMzcyRTAw NUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVsaGxVM2RERVNPSjR3REVp QWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Nib3pCVHc1dWxobFUzZERFU09KNHdERWlBYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDM4NC85MzdGMzcyRTAwNUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVs aGxVM2RERVNPSjR3REVpQWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/WyhMRAV0I30pm/jFeP6eQdjqHSmOg6bSDExww7fO7GGskZ8eSgcs 68nZAsQ1RQJ5a7J0thJ9ur1bm7aFRrPG6GjU+RXVp8/3w/OP9CZPjONV2z8P171G /DZhWNkN2F5AKtnrZUHe71LJnT/68Zjhs3bR4IkQQFhDQ96ReQaTWrGCGHoanBtY a9H+V2lf5OWfIjLEMbhuFwdLY0EybUVwJY9pAb5pvKvACBByi7sCWd/0NsQT+ZX9 iS1o2bNdUeE3kUGuGUc97fRsccCXN0g2oe5Ru/d/CS8x48B3OgWu7FLp1m9+s3St 4ndtZ/9YBw9XcRxYmqPqy9Icp+qfrSKx -----END CERTIFICATE-----Generated at Wed Nov 5 20:59:43 2025 by rpki-client