$ rpki-client -vvf rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft File: sgBZBkA-medoWaqrsdy92uRCBvY.mft (raw, json) Hash identifier: VgJCO5d4W6qr8uH6R0NvsueSd3DuB5hPn4zhGybG4b8= Subject key identifier: 93:CA:74:FC:8D:0C:80:CC:FE:5B:54:20:4E:7D:F4:2F:61:2E:64:21 Authority key identifier: B2:00:59:06:40:3E:99:E7:68:59:AA:AB:B1:DC:BD:DA:E4:42:06:F6 Certificate issuer: /CN=A913A748/serialNumber=B2005906403E99E76859AAABB1DCBDDAE44206F6 Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft Manifest number: B3 Signing time: Tue 01 Jul 2025 06:37:32 +0000 Manifest this update: Tue 01 Jul 2025 06:37:31 +0000 Manifest next update: Tue 08 Jul 2025 06:37:31 +0000 Files and hashes: 1: sgBZBkA-medoWaqrsdy92uRCBvY.crl (hash: 6Nc+lTL7QiV7J8N2595vYrXJfH4dsy42uYrWiXXo/5c=) 2: 0B7CF64642B211EF82734679C4F9AE02.roa (hash: SLWE2DPVkEquMfz8hHroSU4zXY18AR0tkk1tXcWxdMg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.crl rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:37:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A748, serialNumber=B2005906403E99E76859AAABB1DCBDDAE44206F6 Validity Not Before: Jul 1 06:37:31 2025 GMT Not After : Jul 8 06:37:31 2025 GMT Subject: CN=6863822c-8eec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:ee:b8:ee:bf:fc:20:ac:ee:24:07:e5:bc:9f: 3d:6d:75:cb:33:3e:2e:48:02:4e:62:88:c8:25:90: a4:72:e4:fa:fc:cb:5b:44:6e:3f:8f:e7:8f:7b:23: 05:19:db:50:77:22:2c:c1:c0:a9:4c:4d:c7:f7:51: 25:56:63:9d:fb:8a:7b:be:e1:07:df:74:34:23:a5: 4d:5a:a6:98:95:a6:f0:65:93:ec:8c:93:aa:88:0e: e6:1b:c0:a4:a7:42:2b:12:9c:01:6e:c7:39:07:db: bf:96:cb:58:6e:76:d5:fb:87:f4:dd:a5:29:67:31: 66:07:4f:a1:50:cd:e2:0b:e3:20:2a:5f:90:dd:87: 97:67:2c:4a:4a:02:18:b3:65:3a:ec:6d:61:af:69: c6:b2:1b:eb:b4:ce:ff:b5:b3:0c:09:59:9b:ee:ce: 61:54:91:d5:c9:cb:2d:ec:59:55:21:33:2d:c9:e9: 70:6b:cd:38:93:93:65:59:43:c4:ae:75:99:2a:a1: 3c:6c:8a:d4:11:dc:de:2d:03:eb:ff:ee:d1:02:48: 4f:cf:dd:4c:b3:f4:e0:70:dd:45:de:88:fa:ef:a9: 8a:bd:23:5f:8a:3d:c3:33:e4:75:3b:a8:c3:82:ae: f5:78:d8:68:66:ff:99:ea:1b:62:f3:b7:75:c0:a6: a6:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:CA:74:FC:8D:0C:80:CC:FE:5B:54:20:4E:7D:F4:2F:61:2E:64:21 X509v3 Authority Key Identifier: keyid:B2:00:59:06:40:3E:99:E7:68:59:AA:AB:B1:DC:BD:DA:E4:42:06:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:d9:2f:51:5c:ba:c6:e2:c5:b9:d6:d7:bc:4a:04:a2:02:13: c8:77:ba:d2:f1:cd:50:f4:7c:d9:41:82:5b:c9:8a:dd:37:d8: 96:fa:d3:f6:1d:b4:2a:99:f7:6e:27:33:e1:4d:73:8d:d7:55: de:9d:d8:b3:6a:4f:6b:16:d7:db:73:0e:0c:b2:45:e0:00:a1: b7:cf:3a:be:16:46:d1:10:7c:ce:a5:25:2b:e2:51:fd:d8:3d: 32:ff:a2:b9:29:81:2d:72:ca:8f:9f:9b:a2:9a:71:d0:a4:21: 86:5d:51:5f:a7:8b:41:5b:7f:4f:a8:5f:97:33:7f:d4:ba:5a: 8b:81:83:a8:2a:47:b2:b6:1f:c2:d8:3a:23:f2:b7:aa:b4:dc: d4:c6:e1:18:9c:31:7c:89:91:dd:dd:d4:a3:d9:d3:de:3a:cf: 06:8d:bb:c6:9f:35:e4:21:f8:35:81:08:6f:3d:86:67:c9:33: 6b:28:6d:15:d0:d6:9c:92:ba:a4:1a:cc:d1:91:2d:0d:13:42: 34:40:26:15:64:63:58:9c:c2:17:8d:2e:2f:30:e6:e3:fb:16: 1f:8c:d9:a0:9a:8e:6b:b3:8d:ce:f8:8f:3b:5d:e0:98:6b:54: 22:de:a5:2b:42:ff:7a:2a:8a:b1:bd:97:9c:60:ba:27:84:59: c0:81:ea:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3NDgxMTAvBgNVBAUTKEIyMDA1OTA2NDAzRTk5RTc2ODU5QUFBQkIxRENCRERB RTQ0MjA2RjYwHhcNMjUwNzAxMDYzNzMxWhcNMjUwNzA4MDYzNzMxWjAYMRYwFAYD VQQDEw02ODYzODIyYy04ZWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA++647r/8IKzuJAflvJ89bXXLMz4uSAJOYojIJZCkcuT6/MtbRG4/j+ePeyMF GdtQdyIswcCpTE3H91ElVmOd+4p7vuEH33Q0I6VNWqaYlabwZZPsjJOqiA7mG8Ck p0IrEpwBbsc5B9u/lstYbnbV+4f03aUpZzFmB0+hUM3iC+MgKl+Q3YeXZyxKSgIY s2U67G1hr2nGshvrtM7/tbMMCVmb7s5hVJHVycst7FlVITMtyelwa804k5NlWUPE rnWZKqE8bIrUEdzeLQPr/+7RAkhPz91Ms/TgcN1F3oj676mKvSNfij3DM+R1O6jD gq71eNhoZv+Z6hti87d1wKam9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJPKdPyN DIDM/ltUIE599C9hLmQhMB8GA1UdIwQYMBaAFLIAWQZAPpnnaFmqq7HcvdrkQgb2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTc0OC9BQUNEMTNBODQy QjExMUVGOTJFNTY1NzhDNEY5QUUwMi9zZ0JaQmtBLW1lZG9XYXFyc2R5OTJ1UkNC dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnQlpCa0EtbWVkb1dhcXJzZHk5MnVSQ0J2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTc0OC9BQUNEMTNBODQyQjExMUVGOTJFNTY1NzhDNEY5QUUwMi9zZ0JaQmtBLW1l ZG9XYXFyc2R5OTJ1UkNCdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCo2S9RXLrG4sW51te8SgSiAhPId7rS8c1Q9HzZQYJbyYrdN9iW+tP2 HbQqmfduJzPhTXON11Xendizak9rFtfbcw4MskXgAKG3zzq+FkbREHzOpSUr4lH9 2D0y/6K5KYEtcsqPn5uimnHQpCGGXVFfp4tBW39PqF+XM3/UulqLgYOoKkeyth/C 2Doj8reqtNzUxuEYnDF8iZHd3dSj2dPeOs8GjbvGnzXkIfg1gQhvPYZnyTNrKG0V 0NackrqkGszRkS0NE0I0QCYVZGNYnMIXjS4vMObj+xYfjNmgmo5rs43O+I87XeCY a1Qi3qUrQv96KoqxvZecYLonhFnAgera -----END CERTIFICATE-----Generated at Wed Jul 2 20:01:32 2025 by rpki-client