$ rpki-client -vvf rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft File: sgBZBkA-medoWaqrsdy92uRCBvY.mft (raw, json) Hash identifier: AHY5W47b9uGpE0xUbo0/zmwvhDBHC+P0IrY2PpCkrvQ= Subject key identifier: F5:CC:65:EB:F1:4A:C6:3D:75:43:F1:DA:D5:55:64:C6:0E:50:25:D2 Authority key identifier: B2:00:59:06:40:3E:99:E7:68:59:AA:AB:B1:DC:BD:DA:E4:42:06:F6 Certificate issuer: /CN=A913A748/serialNumber=B2005906403E99E76859AAABB1DCBDDAE44206F6 Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft Manifest number: D0 Signing time: Sat 23 Aug 2025 05:48:28 +0000 Manifest this update: Sat 23 Aug 2025 05:48:28 +0000 Manifest next update: Sat 30 Aug 2025 05:48:28 +0000 Files and hashes: 1: sgBZBkA-medoWaqrsdy92uRCBvY.crl (hash: Zd6gXTDoeqxEYGNPzJuv9fzNbnASkGw1t6Wnt9X+X/0=) 2: 0B7CF64642B211EF82734679C4F9AE02.roa (hash: 27rK3Z1qcHlOppUZILp7xoMUwx1rozG0ZQxJ/OJVU4k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.crl rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:48:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A748, serialNumber=B2005906403E99E76859AAABB1DCBDDAE44206F6 Validity Not Before: Aug 23 05:48:28 2025 GMT Not After : Aug 30 05:48:28 2025 GMT Subject: CN=68a9562c-8d96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:49:b6:94:3b:bb:8d:37:30:6b:65:80:36:4a: 2b:28:ab:1a:07:dd:25:87:d5:be:04:d1:aa:37:bd: 85:21:25:18:e4:7b:b3:d4:44:ac:97:d5:d9:1a:54: 75:f1:18:5e:b0:92:03:35:2b:96:7f:a6:1e:0f:f1: ec:d1:30:05:76:58:c4:85:0d:6b:cc:dc:15:2e:c3: 88:7e:c8:5c:e8:13:ed:51:69:db:ee:25:34:03:e8: 3a:75:31:4e:fe:b9:84:c1:42:28:2e:f2:7d:fb:d7: 9a:5d:ac:f7:3f:e9:d2:d4:48:7b:57:ef:a1:bc:5d: 13:01:7a:d2:74:e5:80:26:bc:c6:cf:c9:09:ab:85: b9:7c:03:79:d1:b5:ee:34:55:73:6f:e4:7b:f3:d3: 14:c8:5f:68:f6:5f:99:10:13:01:dd:c2:c0:f1:c7: 3d:3b:d9:71:38:1c:ba:0a:b0:e7:c8:90:57:99:b6: 40:9a:d4:04:67:c9:b1:2f:03:8e:f7:91:b8:7e:82: 8b:b4:66:c6:0c:33:35:ae:71:3e:7a:57:bf:b3:b7: 80:a7:18:e4:61:4b:a2:2a:9a:d3:bd:ea:94:8c:fe: 73:65:c4:2a:16:03:d6:c7:e1:26:9d:bf:5f:d4:3d: 99:53:3d:04:d3:03:14:e6:4f:fd:13:15:a2:48:34: b6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:CC:65:EB:F1:4A:C6:3D:75:43:F1:DA:D5:55:64:C6:0E:50:25:D2 X509v3 Authority Key Identifier: keyid:B2:00:59:06:40:3E:99:E7:68:59:AA:AB:B1:DC:BD:DA:E4:42:06:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:ff:b0:d9:bf:5b:32:8a:fd:8b:96:4f:cb:c9:b7:79:07:9c: 06:69:b6:62:af:1d:40:87:39:7f:9d:95:40:e3:57:1d:d4:71: e4:9d:bf:61:b8:ee:1b:40:1c:76:6a:87:1b:58:fc:e3:54:31: a1:4f:7d:81:f3:d8:ca:32:04:d2:81:61:e7:2b:93:b0:c8:4f: 83:19:0e:36:a0:4f:59:0f:8a:4f:9b:7d:48:2a:a8:ae:e6:96: 15:bc:01:66:e2:d0:1c:37:4e:1d:ce:f9:ae:62:2d:32:9a:14: c8:47:df:12:e7:80:8b:16:e1:6e:dc:95:96:21:ba:ed:2c:df: 1b:eb:79:6e:eb:f9:48:6d:0e:59:8a:64:fa:bc:f4:2e:69:4e: ad:2c:9a:76:ad:56:5a:48:81:75:8d:9b:37:c2:b3:79:33:0f: fb:6c:4c:64:7b:eb:0c:dc:9c:8c:04:b5:17:c3:65:ce:77:1d: a4:32:5e:63:cf:85:4c:3f:1e:eb:0e:c6:83:8a:3d:4a:a8:05: 89:26:fa:56:57:ce:f7:f4:61:70:75:f2:09:d2:01:2c:14:85: e1:98:43:62:82:32:6e:8e:e8:fe:57:30:1f:ce:38:95:67:6b: 31:34:24:9d:8e:4e:ca:85:c5:89:b0:c7:82:29:36:c6:62:0e: 7c:d0:fc:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3NDgxMTAvBgNVBAUTKEIyMDA1OTA2NDAzRTk5RTc2ODU5QUFBQkIxRENCRERB RTQ0MjA2RjYwHhcNMjUwODIzMDU0ODI4WhcNMjUwODMwMDU0ODI4WjAYMRYwFAYD VQQDEw02OGE5NTYyYy04ZDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0m2lDu7jTcwa2WANkorKKsaB90lh9W+BNGqN72FISUY5Huz1ESsl9XZGlR1 8RhesJIDNSuWf6YeD/Hs0TAFdljEhQ1rzNwVLsOIfshc6BPtUWnb7iU0A+g6dTFO /rmEwUIoLvJ9+9eaXaz3P+nS1Eh7V++hvF0TAXrSdOWAJrzGz8kJq4W5fAN50bXu NFVzb+R789MUyF9o9l+ZEBMB3cLA8cc9O9lxOBy6CrDnyJBXmbZAmtQEZ8mxLwOO 95G4foKLtGbGDDM1rnE+ele/s7eApxjkYUuiKprTveqUjP5zZcQqFgPWx+Emnb9f 1D2ZUz0E0wMU5k/9ExWiSDS2mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPXMZevx SsY9dUPx2tVVZMYOUCXSMB8GA1UdIwQYMBaAFLIAWQZAPpnnaFmqq7HcvdrkQgb2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTc0OC9BQUNEMTNBODQy QjExMUVGOTJFNTY1NzhDNEY5QUUwMi9zZ0JaQmtBLW1lZG9XYXFyc2R5OTJ1UkNC dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnQlpCa0EtbWVkb1dhcXJzZHk5MnVSQ0J2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTc0OC9BQUNEMTNBODQyQjExMUVGOTJFNTY1NzhDNEY5QUUwMi9zZ0JaQmtBLW1l ZG9XYXFyc2R5OTJ1UkNCdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz/7DZv1syiv2Llk/Lybd5B5wGabZirx1Ahzl/nZVA41cd1HHknb9h uO4bQBx2aocbWPzjVDGhT32B89jKMgTSgWHnK5OwyE+DGQ42oE9ZD4pPm31IKqiu 5pYVvAFm4tAcN04dzvmuYi0ymhTIR98S54CLFuFu3JWWIbrtLN8b63lu6/lIbQ5Z imT6vPQuaU6tLJp2rVZaSIF1jZs3wrN5Mw/7bExke+sM3JyMBLUXw2XOdx2kMl5j z4VMPx7rDsaDij1KqAWJJvpWV8739GFwdfIJ0gEsFIXhmENigjJujuj+VzAfzjiV Z2sxNCSdjk7KhcWJsMeCKTbGYg580PyV -----END CERTIFICATE-----Generated at Sat Aug 23 17:19:42 2025 by rpki-client