$ rpki-client -vvf rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft File: sgBZBkA-medoWaqrsdy92uRCBvY.mft (raw, json) Hash identifier: 8NluVz6MghTmgnsIm/XFpr97Plwl5uJveHs+Jgix3TM= Subject key identifier: 4F:99:BB:BA:F7:96:EB:31:E9:0C:BD:A0:BD:EF:FC:CB:4C:16:8C:35 Authority key identifier: B2:00:59:06:40:3E:99:E7:68:59:AA:AB:B1:DC:BD:DA:E4:42:06:F6 Certificate issuer: /CN=A913A748/serialNumber=B2005906403E99E76859AAABB1DCBDDAE44206F6 Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft Manifest number: ED Signing time: Sun 19 Oct 2025 08:16:40 +0000 Manifest this update: Sun 19 Oct 2025 08:16:40 +0000 Manifest next update: Sun 26 Oct 2025 08:16:40 +0000 Files and hashes: 1: sgBZBkA-medoWaqrsdy92uRCBvY.crl (hash: P+OA2xPYEhoF9cEqsWQyjEQ04mXOfsh1JXpVhkKnigg=) 2: 0B7CF64642B211EF82734679C4F9AE02.roa (hash: 27rK3Z1qcHlOppUZILp7xoMUwx1rozG0ZQxJ/OJVU4k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.crl rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:16:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A748, serialNumber=B2005906403E99E76859AAABB1DCBDDAE44206F6 Validity Not Before: Oct 19 08:16:40 2025 GMT Not After : Oct 26 08:16:40 2025 GMT Subject: CN=68f49e68-9a87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:a5:5d:de:70:1b:ae:3c:70:43:9d:17:be:8e: 5a:a1:86:45:84:23:5d:60:11:91:2d:9a:09:a1:1b: 23:b9:10:f0:98:3b:7d:78:07:fe:70:16:ba:88:40: c8:1a:c9:75:69:9d:0f:23:96:5d:41:a2:ed:0d:c5: 3f:40:09:c0:d1:e8:ab:64:35:ed:07:a8:b2:cf:4c: 24:b2:6d:43:81:43:8b:2c:f6:f2:60:fc:22:da:5d: 9e:6d:73:a9:74:5c:61:ad:e5:d7:a9:f0:b7:85:d4: d7:39:86:5b:77:1d:9c:35:d6:c3:2d:ec:1a:79:c4: c5:7b:97:43:46:e4:8b:13:56:88:4a:7a:d9:15:37: 33:d1:52:ad:7b:b2:19:a5:b6:aa:36:f9:32:07:82: 39:12:b2:76:56:77:e4:be:01:6e:0f:55:52:60:9b: 0a:71:db:1c:87:07:5d:0c:0c:f7:ef:0f:c5:6b:ca: c9:56:57:a8:75:56:33:53:eb:ec:2b:14:2c:8d:5e: 1b:c6:3c:73:d1:08:eb:b0:a5:ad:50:b7:60:98:01: e7:df:42:1f:92:59:b0:0a:f8:5e:a0:fb:39:96:33: fa:7e:12:c2:6f:e7:b0:6d:ed:26:f5:65:12:27:8f: cf:9c:73:24:e2:9a:55:59:dc:43:80:dc:61:6e:54: a6:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:99:BB:BA:F7:96:EB:31:E9:0C:BD:A0:BD:EF:FC:CB:4C:16:8C:35 X509v3 Authority Key Identifier: keyid:B2:00:59:06:40:3E:99:E7:68:59:AA:AB:B1:DC:BD:DA:E4:42:06:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:dc:1c:fe:f4:0a:91:64:75:65:bf:09:c3:d3:df:8e:1a:61: d8:60:c0:bb:03:24:4c:95:44:0d:05:d3:f4:c5:ed:7d:69:ba: c1:99:bb:0c:19:08:4a:bc:9d:15:10:fc:bf:2d:40:36:ee:0a: fe:0c:3b:aa:85:a5:1f:71:ea:c1:d4:8c:c9:0a:92:57:e0:79: d1:a4:10:e1:03:05:a3:c3:7c:96:ef:b2:eb:a1:2f:e8:dd:46: ed:8f:89:bf:0a:45:2a:23:b5:90:a1:fc:de:90:b1:cd:9e:1e: 19:8e:73:89:50:08:8b:f4:81:34:92:75:e0:39:68:c3:09:8f: d0:06:ba:2a:a6:ee:97:3e:19:0d:14:01:1b:03:12:7b:b8:f9: 90:92:d4:ad:1c:84:b5:d8:db:11:2a:1b:b8:ee:96:35:2c:dc: 08:32:ca:57:48:54:1d:e0:bd:b4:50:fb:bd:2f:db:2d:0b:fa: e3:31:93:00:78:f0:55:79:ed:f5:fb:45:0e:9f:96:36:09:5c: 6d:79:bf:9b:16:39:f6:03:ca:89:9f:86:9a:ee:7f:0f:d4:93: 94:19:7d:00:9a:40:82:0f:a9:fb:c7:b0:48:76:50:79:12:1e: e5:ba:90:81:cb:f6:c1:20:ea:f6:a3:86:9e:c3:90:0a:ad:1c: be:20:08:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3NDgxMTAvBgNVBAUTKEIyMDA1OTA2NDAzRTk5RTc2ODU5QUFBQkIxRENCRERB RTQ0MjA2RjYwHhcNMjUxMDE5MDgxNjQwWhcNMjUxMDI2MDgxNjQwWjAYMRYwFAYD VQQDEw02OGY0OWU2OC05YTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA86Vd3nAbrjxwQ50Xvo5aoYZFhCNdYBGRLZoJoRsjuRDwmDt9eAf+cBa6iEDI Gsl1aZ0PI5ZdQaLtDcU/QAnA0eirZDXtB6iyz0wksm1DgUOLLPbyYPwi2l2ebXOp dFxhreXXqfC3hdTXOYZbdx2cNdbDLewaecTFe5dDRuSLE1aISnrZFTcz0VKte7IZ pbaqNvkyB4I5ErJ2VnfkvgFuD1VSYJsKcdschwddDAz37w/Fa8rJVleodVYzU+vs KxQsjV4bxjxz0QjrsKWtULdgmAHn30IfklmwCvheoPs5ljP6fhLCb+ewbe0m9WUS J4/PnHMk4ppVWdxDgNxhblSmnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+Zu7r3 lusx6Qy9oL3v/MtMFow1MB8GA1UdIwQYMBaAFLIAWQZAPpnnaFmqq7HcvdrkQgb2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTc0OC9BQUNEMTNBODQy QjExMUVGOTJFNTY1NzhDNEY5QUUwMi9zZ0JaQmtBLW1lZG9XYXFyc2R5OTJ1UkNC dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnQlpCa0EtbWVkb1dhcXJzZHk5MnVSQ0J2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTc0OC9BQUNEMTNBODQyQjExMUVGOTJFNTY1NzhDNEY5QUUwMi9zZ0JaQmtBLW1l ZG9XYXFyc2R5OTJ1UkNCdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv3Bz+9AqRZHVlvwnD09+OGmHYYMC7AyRMlUQNBdP0xe19abrBmbsM GQhKvJ0VEPy/LUA27gr+DDuqhaUfcerB1IzJCpJX4HnRpBDhAwWjw3yW77LroS/o 3Ubtj4m/CkUqI7WQofzekLHNnh4ZjnOJUAiL9IE0knXgOWjDCY/QBroqpu6XPhkN FAEbAxJ7uPmQktStHIS12NsRKhu47pY1LNwIMspXSFQd4L20UPu9L9stC/rjMZMA ePBVee31+0UOn5Y2CVxteb+bFjn2A8qJn4aa7n8P1JOUGX0AmkCCD6n7x7BIdlB5 Eh7lupCBy/bBIOr2o4aew5AKrRy+IAjs -----END CERTIFICATE-----Generated at Mon Oct 20 14:01:45 2025 by rpki-client