$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft File: SBcgosjubOySR3dhkymcEP63ykQ.mft (raw, json) Hash identifier: 9rRR/0U0MWueNCqZwp7q390DtvvUqAMUoj3ZY/sr4EI= Subject key identifier: 2C:3F:19:F4:50:CF:53:DE:91:3B:54:E1:F0:45:00:A4:2A:23:24:AC Authority key identifier: 48:17:20:A2:C8:EE:6C:EC:92:47:77:61:93:29:9C:10:FE:B7:CA:44 Certificate issuer: /CN=A91FD2E3/serialNumber=481720A2C8EE6CEC9247776193299C10FEB7CA44 Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft Manifest number: 0156 Signing time: Thu 21 Aug 2025 04:17:01 +0000 Manifest this update: Thu 21 Aug 2025 04:17:01 +0000 Manifest next update: Thu 28 Aug 2025 04:17:01 +0000 Files and hashes: 1: SBcgosjubOySR3dhkymcEP63ykQ.crl (hash: aoc+Ico0JrYgJBwCNxBglK/S9qPg4BHTpWQzeobkoZk=) 2: A38F041873C011EEB1A68245C4F9AE02.roa (hash: 1J6SBhKfyTeug2CS1rB/AAJ6IDeL/Dzh4xQR/iFRSiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.crl rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 04:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD2E3, serialNumber=481720A2C8EE6CEC9247776193299C10FEB7CA44 Validity Not Before: Aug 21 04:17:01 2025 GMT Not After : Aug 28 04:17:01 2025 GMT Subject: CN=68a69dbd-810d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:97:94:6d:4f:79:4b:ba:28:ca:9a:bd:da:2b: 83:dd:87:97:54:0c:7f:7a:3a:eb:01:e1:21:a2:92: f5:7f:9c:59:4c:7b:fc:16:06:da:82:88:6c:d9:9b: a3:57:88:e0:98:c3:6c:11:a2:58:60:cb:c3:53:b1: 39:68:95:54:28:59:0e:52:ba:b9:12:49:bf:65:6e: 06:9c:29:3d:81:14:02:04:90:27:49:8e:50:24:fd: 09:49:54:dc:f8:91:4c:24:1e:b3:34:eb:06:06:f0: 23:20:8d:46:a1:79:22:9b:d2:ce:52:64:f9:80:10: 90:bf:b2:75:8f:32:f5:cc:1d:1f:92:77:05:21:ed: 17:75:48:e5:d4:ba:df:29:0d:4a:fd:c3:7e:10:67: 7a:1c:dd:08:b5:7e:71:26:14:f0:22:11:6b:53:b9: a4:42:63:36:12:c3:e0:39:d0:0b:0c:2d:df:7a:6b: 7b:2e:44:c1:ce:25:b5:b5:31:bf:f2:0e:9e:2c:e5: 9b:68:3b:41:5b:a7:56:25:57:dd:fe:13:f4:47:40: 8e:f0:4d:4e:3a:00:0a:83:58:ae:b7:60:e8:5f:a3: 5e:15:d8:65:52:40:e8:ad:7b:3f:52:b1:21:82:3f: ad:83:a0:36:9f:7b:bc:a1:fc:0a:26:74:fc:0e:55: 88:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:3F:19:F4:50:CF:53:DE:91:3B:54:E1:F0:45:00:A4:2A:23:24:AC X509v3 Authority Key Identifier: keyid:48:17:20:A2:C8:EE:6C:EC:92:47:77:61:93:29:9C:10:FE:B7:CA:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:ff:e8:3a:a5:65:3d:13:49:1c:94:42:89:6b:37:07:2a:1e: 99:d3:44:36:1f:d6:8b:03:8e:58:b4:b0:e9:ea:fb:4f:0f:b2: de:1d:e1:8c:8f:17:ef:bc:bb:4b:a8:95:f1:4e:33:02:38:32: 72:ae:a4:4b:1c:a4:80:89:b2:8c:f2:80:b6:a8:19:ca:ec:50: ae:89:b5:5b:f8:12:f3:29:da:e9:3d:a8:ef:e6:6a:d2:0a:37: 13:5e:c6:f3:c9:4d:a2:ad:ec:42:5c:06:6e:43:5e:27:f6:6d: 00:fd:4b:20:a2:3c:53:09:48:51:b3:30:c9:b5:be:a7:99:aa: a4:51:9a:6e:8c:a6:47:50:7e:f1:76:4a:0a:f6:03:17:9b:e8: c7:92:42:91:34:3a:e2:d3:f2:78:a9:16:02:6d:8e:1d:5d:e6: 76:ae:c6:a6:74:a6:20:b2:bf:ce:d9:09:b7:e4:d2:9c:c4:b0: cd:e5:6c:41:72:09:9a:e9:db:cb:89:c7:d7:4d:3a:20:ac:d3: a5:42:f9:57:be:72:33:8b:ca:e5:b1:e2:0b:34:a4:96:07:5e: f8:8f:8c:5e:fc:c9:89:32:c0:cb:87:d9:f2:35:69:9a:ea:99: 54:48:f2:fd:20:73:00:43:67:89:fb:49:b6:74:4c:b8:ce:22: 51:da:09:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQyRTMxMTAvBgNVBAUTKDQ4MTcyMEEyQzhFRTZDRUM5MjQ3Nzc2MTkzMjk5QzEw RkVCN0NBNDQwHhcNMjUwODIxMDQxNzAxWhcNMjUwODI4MDQxNzAxWjAYMRYwFAYD VQQDEw02OGE2OWRiZC04MTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpeUbU95S7ooypq92iuD3YeXVAx/ejrrAeEhopL1f5xZTHv8Fgbagohs2Zuj V4jgmMNsEaJYYMvDU7E5aJVUKFkOUrq5Ekm/ZW4GnCk9gRQCBJAnSY5QJP0JSVTc +JFMJB6zNOsGBvAjII1GoXkim9LOUmT5gBCQv7J1jzL1zB0fkncFIe0XdUjl1Lrf KQ1K/cN+EGd6HN0ItX5xJhTwIhFrU7mkQmM2EsPgOdALDC3femt7LkTBziW1tTG/ 8g6eLOWbaDtBW6dWJVfd/hP0R0CO8E1OOgAKg1iut2DoX6NeFdhlUkDorXs/UrEh gj+tg6A2n3u8ofwKJnT8DlWIiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCw/GfRQ z1PekTtU4fBFAKQqIySsMB8GA1UdIwQYMBaAFEgXIKLI7mzskkd3YZMpnBD+t8pE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDJFMy80RjQxNzlBNDcz QzAxMUVFQjgyN0Y0NDRDNEY5QUUwMi9TQmNnb3NqdWJPeVNSM2Roa3ltY0VQNjN5 a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NCY2dvc2p1Yk95U1IzZGhreW1jRVA2M3lrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDJFMy80RjQxNzlBNDczQzAxMUVFQjgyN0Y0NDRDNEY5QUUwMi9TQmNnb3NqdWJP eVNSM2Roa3ltY0VQNjN5a1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj/+g6pWU9E0kclEKJazcHKh6Z00Q2H9aLA45YtLDp6vtPD7LeHeGM jxfvvLtLqJXxTjMCODJyrqRLHKSAibKM8oC2qBnK7FCuibVb+BLzKdrpPajv5mrS CjcTXsbzyU2irexCXAZuQ14n9m0A/UsgojxTCUhRszDJtb6nmaqkUZpujKZHUH7x dkoK9gMXm+jHkkKRNDri0/J4qRYCbY4dXeZ2rsamdKYgsr/O2Qm35NKcxLDN5WxB cgma6dvLicfXTTogrNOlQvlXvnIzi8rlseILNKSWB174j4xe/MmJMsDLh9nyNWma 6plUSPL9IHMAQ2eJ+0m2dEy4ziJR2gkP -----END CERTIFICATE-----Generated at Fri Aug 22 16:32:14 2025 by rpki-client