$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft File: SBcgosjubOySR3dhkymcEP63ykQ.mft (raw, json) Hash identifier: zwgHM+0t4p/fGSHpEU5Npk/1UhuEB3bVXKJVHshpcYk= Subject key identifier: A3:35:4F:2E:D1:84:D2:63:B4:56:60:50:27:4F:B5:18:49:26:2A:87 Authority key identifier: 48:17:20:A2:C8:EE:6C:EC:92:47:77:61:93:29:9C:10:FE:B7:CA:44 Certificate issuer: /CN=A91FD2E3/serialNumber=481720A2C8EE6CEC9247776193299C10FEB7CA44 Certificate serial: 0182 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft Manifest number: 017E Signing time: Wed 05 Nov 2025 03:53:07 +0000 Manifest this update: Wed 05 Nov 2025 03:53:07 +0000 Manifest next update: Wed 12 Nov 2025 03:53:07 +0000 Files and hashes: 1: SBcgosjubOySR3dhkymcEP63ykQ.crl (hash: 1nQiWxtb1fHg1jgbt0JdtonfoXHM4Ue4d4TYEVzWtC0=) 2: A38F041873C011EEB1A68245C4F9AE02.roa (hash: 3QT9VgasquPbgXpBTFff0Gu2hJL8xTVrH9a//E9hWWo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.crl rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:53:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 386 (0x182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD2E3, serialNumber=481720A2C8EE6CEC9247776193299C10FEB7CA44 Validity Not Before: Nov 5 03:53:07 2025 GMT Not After : Nov 12 03:53:07 2025 GMT Subject: CN=690aca23-55b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:87:db:6b:0b:b7:c9:53:61:c1:2c:d9:58:0e: ff:f4:6c:60:99:fc:e9:98:cc:f8:8d:10:df:a8:c1: 7e:4d:b6:f9:d3:f7:91:f6:af:8c:2a:b4:39:56:4f: 70:78:c2:1f:47:a2:63:27:24:63:52:91:4b:1f:c6: 2f:51:5e:72:52:50:9d:d1:e1:61:a2:d2:44:e3:84: 22:f1:74:63:a1:cf:3e:ad:22:83:d0:ae:4c:d4:56: 08:ee:9e:a4:5c:25:15:f2:10:99:f6:b3:db:c3:92: b2:22:af:21:df:12:94:ba:2a:af:04:c8:fa:2d:31: eb:64:d0:d7:de:d6:b1:19:4a:67:6d:ee:01:a6:c1: ef:f0:3d:07:df:b9:31:7a:13:01:4f:d7:86:2e:12: 6d:60:eb:a6:10:50:23:39:db:10:1a:e8:6e:b1:14: 3e:41:d3:84:cf:ab:59:15:27:57:78:22:cd:5c:7b: e7:4d:ad:56:d2:c9:85:0b:f1:81:c3:b9:2d:0e:1a: d4:92:d2:25:8f:0b:55:90:45:c2:2c:ac:b5:28:09: a6:95:70:e9:0d:c0:8f:56:ba:9b:5c:1a:a7:dc:4f: 9f:2f:17:09:46:e7:6d:93:d4:05:86:ab:5a:3f:25: 05:12:9b:7d:70:67:33:73:15:e1:0f:62:17:ce:9d: 86:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:35:4F:2E:D1:84:D2:63:B4:56:60:50:27:4F:B5:18:49:26:2A:87 X509v3 Authority Key Identifier: keyid:48:17:20:A2:C8:EE:6C:EC:92:47:77:61:93:29:9C:10:FE:B7:CA:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:c4:19:43:23:6a:67:2d:8c:bc:95:da:d5:a2:a6:6c:9a:21: 7a:94:63:4d:14:ed:ee:69:d9:2b:5b:1a:a7:54:00:c3:49:7b: 6d:d7:45:9d:28:70:85:ef:b3:3b:56:f9:91:19:ee:e0:63:cb: cf:67:6c:61:cd:4c:fe:5f:02:d6:30:98:6d:34:69:40:8b:21: 68:b2:da:6c:28:1b:67:5f:2c:f0:42:8a:c9:ed:8f:a8:a9:14: 57:76:9e:65:46:e7:82:b6:e7:8a:06:2b:3d:40:e3:ca:f4:58: 57:96:3a:ef:5f:b4:47:b8:49:4e:1a:9f:8e:84:c2:f6:ac:1a: 8b:0f:2e:fd:b3:7e:26:12:70:bb:9a:44:0b:8a:95:99:35:33: 4e:aa:a2:5d:b5:1d:a1:72:17:62:26:ff:20:23:b5:69:0c:72: 4a:c5:f0:6a:a5:57:f4:35:49:4f:42:85:38:c1:b6:0c:6f:70: 6b:67:4b:62:4a:6d:3e:b8:70:e8:69:df:58:f3:ab:a6:19:b7: 8a:57:3a:b4:82:2d:35:38:72:94:61:45:17:cd:3d:88:c7:0e: 2c:20:e9:14:16:fa:5a:15:29:f3:33:23:61:f2:c5:09:00:10: c5:25:a1:3c:6e:55:ad:76:43:6c:3d:09:ef:cd:dd:d6:77:3e: 94:c9:e9:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQyRTMxMTAvBgNVBAUTKDQ4MTcyMEEyQzhFRTZDRUM5MjQ3Nzc2MTkzMjk5QzEw RkVCN0NBNDQwHhcNMjUxMTA1MDM1MzA3WhcNMjUxMTEyMDM1MzA3WjAYMRYwFAYD VQQDEw02OTBhY2EyMy01NWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Yfbawu3yVNhwSzZWA7/9GxgmfzpmMz4jRDfqMF+Tbb50/eR9q+MKrQ5Vk9w eMIfR6JjJyRjUpFLH8YvUV5yUlCd0eFhotJE44Qi8XRjoc8+rSKD0K5M1FYI7p6k XCUV8hCZ9rPbw5KyIq8h3xKUuiqvBMj6LTHrZNDX3taxGUpnbe4BpsHv8D0H37kx ehMBT9eGLhJtYOumEFAjOdsQGuhusRQ+QdOEz6tZFSdXeCLNXHvnTa1W0smFC/GB w7ktDhrUktIljwtVkEXCLKy1KAmmlXDpDcCPVrqbXBqn3E+fLxcJRudtk9QFhqta PyUFEpt9cGczcxXhD2IXzp2G0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKM1Ty7R hNJjtFZgUCdPtRhJJiqHMB8GA1UdIwQYMBaAFEgXIKLI7mzskkd3YZMpnBD+t8pE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDJFMy80RjQxNzlBNDcz QzAxMUVFQjgyN0Y0NDRDNEY5QUUwMi9TQmNnb3NqdWJPeVNSM2Roa3ltY0VQNjN5 a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NCY2dvc2p1Yk95U1IzZGhreW1jRVA2M3lrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDJFMy80RjQxNzlBNDczQzAxMUVFQjgyN0Y0NDRDNEY5QUUwMi9TQmNnb3NqdWJP eVNSM2Roa3ltY0VQNjN5a1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6xBlDI2pnLYy8ldrVoqZsmiF6lGNNFO3uadkrWxqnVADDSXtt10Wd KHCF77M7VvmRGe7gY8vPZ2xhzUz+XwLWMJhtNGlAiyFostpsKBtnXyzwQorJ7Y+o qRRXdp5lRueCtueKBis9QOPK9FhXljrvX7RHuElOGp+OhML2rBqLDy79s34mEnC7 mkQLipWZNTNOqqJdtR2hchdiJv8gI7VpDHJKxfBqpVf0NUlPQoU4wbYMb3BrZ0ti Sm0+uHDoad9Y86umGbeKVzq0gi01OHKUYUUXzT2Ixw4sIOkUFvpaFSnzMyNh8sUJ ABDFJaE8blWtdkNsPQnvzd3Wdz6UyelL -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:04 2025 by rpki-client