$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft File: SBcgosjubOySR3dhkymcEP63ykQ.mft (raw, json) Hash identifier: mKvmHFoeURVab5GOsdBv1xNTbYHx0qoVLpOKST7TVe4= Subject key identifier: 20:1F:28:78:03:4A:C1:82:01:50:A4:D2:28:77:0B:F4:3E:EA:63:C6 Authority key identifier: 48:17:20:A2:C8:EE:6C:EC:92:47:77:61:93:29:9C:10:FE:B7:CA:44 Certificate issuer: /CN=A91FD2E3/serialNumber=481720A2C8EE6CEC9247776193299C10FEB7CA44 Certificate serial: 013F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft Manifest number: 013C Signing time: Tue 01 Jul 2025 04:54:37 +0000 Manifest this update: Tue 01 Jul 2025 04:54:36 +0000 Manifest next update: Tue 08 Jul 2025 04:54:36 +0000 Files and hashes: 1: SBcgosjubOySR3dhkymcEP63ykQ.crl (hash: NRnHRsJ17phzwi5zaVeOhgEWDRZAgE+C+dwc3e5KyWg=) 2: A38F041873C011EEB1A68245C4F9AE02.roa (hash: 1J6SBhKfyTeug2CS1rB/AAJ6IDeL/Dzh4xQR/iFRSiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.crl rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:54:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD2E3, serialNumber=481720A2C8EE6CEC9247776193299C10FEB7CA44 Validity Not Before: Jul 1 04:54:36 2025 GMT Not After : Jul 8 04:54:36 2025 GMT Subject: CN=68636a0c-31e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:57:89:d7:d5:80:0e:c6:5a:b9:83:57:75:de: f1:2b:c0:2c:87:88:79:49:cc:97:5b:82:90:c4:f2: c5:bd:58:c5:b7:fc:f3:99:b1:08:de:5d:c1:4e:fe: c3:0f:5d:e7:b6:32:03:d3:fa:c9:20:2f:66:12:a5: 1b:9b:78:8d:97:80:09:63:22:dc:80:07:b5:fd:b5: 71:ab:c6:5d:b6:17:09:e4:a0:55:ea:e9:b2:7c:31: 6f:4d:7e:b4:87:0d:14:dc:66:6e:59:2a:0b:9f:ce: f2:7c:06:9c:56:f4:8b:fb:c0:e3:83:7c:4c:4d:b9: d7:91:e1:e5:66:17:e2:fc:a0:f0:ac:57:ed:14:20: 78:9a:38:28:2e:27:ac:d6:4e:ad:40:2e:d1:25:14: ea:1f:2a:81:9f:94:a3:95:f6:df:ce:46:e2:89:f8: d8:c9:0e:20:8c:3f:9f:41:d5:a8:5e:c9:a1:c8:be: c1:fb:a1:2f:c7:3a:b3:83:fa:e8:73:8f:d3:ef:ab: d1:2c:ec:2d:3c:46:16:2e:ad:a4:83:8c:ea:3c:b2: 90:3a:b1:ca:41:18:88:6c:16:cb:e2:98:62:37:ae: be:0e:0e:c1:b3:64:f5:52:4e:fb:40:69:35:ad:63: d8:b9:05:5a:ca:64:36:a8:90:bd:74:9d:06:97:7d: 17:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:1F:28:78:03:4A:C1:82:01:50:A4:D2:28:77:0B:F4:3E:EA:63:C6 X509v3 Authority Key Identifier: keyid:48:17:20:A2:C8:EE:6C:EC:92:47:77:61:93:29:9C:10:FE:B7:CA:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:44:98:ff:45:ff:9a:19:e1:4a:b3:60:bc:fa:71:09:56:eb: b7:df:2e:6f:1d:8a:05:a6:75:d8:c7:fe:67:37:66:8c:fd:18: 72:ef:8c:d2:46:74:50:70:f9:94:e3:3d:33:cb:38:f0:e2:20: 59:1f:24:4d:27:dc:aa:8f:25:f1:1d:f9:fe:ca:d9:07:ab:ec: a4:a3:bb:d7:f8:de:0e:f0:db:bc:0e:94:69:e2:bb:f6:3d:dd: 34:47:61:22:5f:a8:7b:e6:73:12:75:37:63:23:d2:e5:88:cb: b1:68:5d:05:07:44:a0:36:08:5f:a6:fb:f4:1c:a1:46:b4:1b: 3e:55:0e:09:8a:85:29:61:e4:9d:cc:5a:45:67:5e:f0:19:fc: 1f:e0:aa:6a:75:c0:65:45:13:86:19:80:c3:56:14:ec:0a:16: 0b:0a:de:15:a2:d1:a5:bd:66:0f:fa:d5:30:fb:50:30:15:56: 7a:7b:a6:dc:28:86:b2:01:93:13:fd:f0:ab:6a:1e:80:e6:29: be:82:58:a0:b5:6e:2e:0a:8d:ca:25:27:14:6f:d0:6b:1d:cd: 60:c6:89:0c:3a:c6:78:ae:c6:a8:10:04:43:31:d5:5d:4c:f2: ed:9b:23:0b:11:2b:8e:2b:57:1d:21:b1:14:c8:25:8c:d1:e1: 98:c0:7c:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQyRTMxMTAvBgNVBAUTKDQ4MTcyMEEyQzhFRTZDRUM5MjQ3Nzc2MTkzMjk5QzEw RkVCN0NBNDQwHhcNMjUwNzAxMDQ1NDM2WhcNMjUwNzA4MDQ1NDM2WjAYMRYwFAYD VQQDEw02ODYzNmEwYy0zMWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0FeJ19WADsZauYNXdd7xK8Ash4h5ScyXW4KQxPLFvVjFt/zzmbEI3l3BTv7D D13ntjID0/rJIC9mEqUbm3iNl4AJYyLcgAe1/bVxq8ZdthcJ5KBV6umyfDFvTX60 hw0U3GZuWSoLn87yfAacVvSL+8Djg3xMTbnXkeHlZhfi/KDwrFftFCB4mjgoLies 1k6tQC7RJRTqHyqBn5SjlfbfzkbiifjYyQ4gjD+fQdWoXsmhyL7B+6Evxzqzg/ro c4/T76vRLOwtPEYWLq2kg4zqPLKQOrHKQRiIbBbL4phiN66+Dg7Bs2T1Uk77QGk1 rWPYuQVaymQ2qJC9dJ0Gl30XHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCAfKHgD SsGCAVCk0ih3C/Q+6mPGMB8GA1UdIwQYMBaAFEgXIKLI7mzskkd3YZMpnBD+t8pE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDJFMy80RjQxNzlBNDcz QzAxMUVFQjgyN0Y0NDRDNEY5QUUwMi9TQmNnb3NqdWJPeVNSM2Roa3ltY0VQNjN5 a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NCY2dvc2p1Yk95U1IzZGhreW1jRVA2M3lrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDJFMy80RjQxNzlBNDczQzAxMUVFQjgyN0Y0NDRDNEY5QUUwMi9TQmNnb3NqdWJP eVNSM2Roa3ltY0VQNjN5a1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXRJj/Rf+aGeFKs2C8+nEJVuu33y5vHYoFpnXYx/5nN2aM/Rhy74zS RnRQcPmU4z0zyzjw4iBZHyRNJ9yqjyXxHfn+ytkHq+yko7vX+N4O8Nu8DpRp4rv2 Pd00R2EiX6h75nMSdTdjI9LliMuxaF0FB0SgNghfpvv0HKFGtBs+VQ4JioUpYeSd zFpFZ17wGfwf4KpqdcBlRROGGYDDVhTsChYLCt4VotGlvWYP+tUw+1AwFVZ6e6bc KIayAZMT/fCrah6A5im+gligtW4uCo3KJScUb9BrHc1gxokMOsZ4rsaoEARDMdVd TPLtmyMLESuOK1cdIbEUyCWM0eGYwHzN -----END CERTIFICATE-----Generated at Tue Jul 1 19:51:39 2025 by rpki-client