$ rpki-client -vvf rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft File: sgBZBkA-medoWaqrsdy92uRCBvY.mft (raw, json) Hash identifier: gfRzVEkuMlaaXAF2hQ4zMK3Ily5GqFTtEP1SvogJuhs= Subject key identifier: FC:76:00:B5:6D:D5:CB:72:20:70:19:0D:1F:B0:B0:C7:E7:EC:AF:46 Authority key identifier: B2:00:59:06:40:3E:99:E7:68:59:AA:AB:B1:DC:BD:DA:E4:42:06:F6 Certificate issuer: /CN=A913A748/serialNumber=B2005906403E99E76859AAABB1DCBDDAE44206F6 Certificate serial: 9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft Manifest number: 9B Signing time: Tue 13 May 2025 05:27:15 +0000 Manifest this update: Tue 13 May 2025 05:27:15 +0000 Manifest next update: Tue 20 May 2025 05:27:15 +0000 Files and hashes: 1: sgBZBkA-medoWaqrsdy92uRCBvY.crl (hash: 2BDwJfdT5FvMiW7+TH12gLlZ0kpBFGLxRhFFfuYvAUM=) 2: 0B7CF64642B211EF82734679C4F9AE02.roa (hash: SLWE2DPVkEquMfz8hHroSU4zXY18AR0tkk1tXcWxdMg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.crl rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:27:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A748, serialNumber=B2005906403E99E76859AAABB1DCBDDAE44206F6 Validity Not Before: May 13 05:27:15 2025 GMT Not After : May 20 05:27:15 2025 GMT Subject: CN=6822d833-0046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:04:3a:91:ac:af:ef:21:2f:97:f6:e8:0a:67: e1:b2:c9:5b:d6:2b:db:15:48:39:d2:d4:5e:c4:03: ae:fa:d8:3b:e3:8f:02:5c:50:92:50:9a:9b:45:ce: ff:d0:f1:7e:89:e0:6a:2b:3f:14:31:ad:4b:13:a7: 5c:72:4b:9c:37:51:4b:95:b6:34:75:06:4d:ea:30: 66:42:0b:22:d0:1a:53:a2:d6:53:c6:c9:2a:2d:f5: 59:8b:ae:4e:b7:de:d5:19:21:1a:bc:91:3f:0a:93: 0b:f2:3f:67:51:22:82:72:55:05:56:50:57:73:b4: 43:11:df:92:17:00:7b:3e:fc:1e:5f:71:5e:b6:00: db:8a:93:65:9b:51:cc:8f:3b:a9:7b:37:c6:55:a5: d0:12:10:74:5a:aa:46:cf:25:06:58:db:af:6a:1d: fc:5f:8e:63:3f:83:fc:e9:5f:67:5f:4c:b6:23:cf: e2:89:42:ff:82:52:e1:25:52:b7:94:e7:f2:01:b5: 22:c0:30:ca:33:07:a1:99:e9:42:74:fa:cb:f3:76: ca:fb:5e:65:01:d6:a3:0b:5a:3a:b3:6c:e4:11:6e: 2d:c9:a8:79:1f:1d:75:7a:a9:65:08:48:77:92:be: 38:41:ab:2c:f7:98:34:41:25:72:32:03:1f:7e:4f: 1a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:76:00:B5:6D:D5:CB:72:20:70:19:0D:1F:B0:B0:C7:E7:EC:AF:46 X509v3 Authority Key Identifier: keyid:B2:00:59:06:40:3E:99:E7:68:59:AA:AB:B1:DC:BD:DA:E4:42:06:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:90:73:ed:85:2d:eb:2d:93:20:1d:ec:df:09:7f:0a:a4:02: ac:b7:c2:72:aa:40:76:e1:bd:be:c7:ab:c4:aa:24:07:d3:37: fe:47:83:fb:3d:69:ee:09:b3:2d:6f:b1:a7:7b:07:37:e2:64: 48:2a:8e:d8:56:a5:37:fe:ab:7a:f7:ee:44:a2:98:39:8d:33: fd:1d:ec:b0:d4:96:a0:17:f4:86:20:ba:b7:dc:0a:2f:5f:a4: 5e:b0:05:8d:48:6d:0e:ff:be:1c:89:c7:3a:3c:fd:4d:38:42: 8e:02:aa:49:36:c1:fa:6f:2d:03:19:fd:d0:42:ff:a0:61:92: f2:4b:3e:51:a5:05:62:72:6e:d7:df:1d:28:82:48:22:32:2e: 35:d9:f8:43:bb:c4:fb:89:2a:ec:19:fd:20:bf:b2:9a:79:be: bc:81:09:bf:22:29:ce:19:48:14:ed:fc:63:63:a3:ca:13:7c: ea:ad:51:18:e1:5b:f8:d0:49:2c:36:80:38:3d:86:d7:aa:ae: e2:f4:6b:e5:68:84:26:2e:44:00:21:9c:a3:3f:e9:e8:0b:0e: 54:08:21:f6:51:ac:7e:2c:3e:e4:ea:cd:ed:38:aa:38:38:04: b2:62:88:de:a4:c6:a0:6a:20:98:ea:ef:a9:f4:0c:1b:f4:d3: ba:7e:83:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3NDgxMTAvBgNVBAUTKEIyMDA1OTA2NDAzRTk5RTc2ODU5QUFBQkIxRENCRERB RTQ0MjA2RjYwHhcNMjUwNTEzMDUyNzE1WhcNMjUwNTIwMDUyNzE1WjAYMRYwFAYD VQQDEw02ODIyZDgzMy0wMDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAQ6kayv7yEvl/boCmfhsslb1ivbFUg50tRexAOu+tg7448CXFCSUJqbRc7/ 0PF+ieBqKz8UMa1LE6dcckucN1FLlbY0dQZN6jBmQgsi0BpTotZTxskqLfVZi65O t97VGSEavJE/CpML8j9nUSKCclUFVlBXc7RDEd+SFwB7PvweX3FetgDbipNlm1HM jzupezfGVaXQEhB0WqpGzyUGWNuvah38X45jP4P86V9nX0y2I8/iiUL/glLhJVK3 lOfyAbUiwDDKMwehmelCdPrL83bK+15lAdajC1o6s2zkEW4tyah5Hx11eqllCEh3 kr44Qass95g0QSVyMgMffk8a6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPx2ALVt 1ctyIHAZDR+wsMfn7K9GMB8GA1UdIwQYMBaAFLIAWQZAPpnnaFmqq7HcvdrkQgb2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTc0OC9BQUNEMTNBODQy QjExMUVGOTJFNTY1NzhDNEY5QUUwMi9zZ0JaQmtBLW1lZG9XYXFyc2R5OTJ1UkNC dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnQlpCa0EtbWVkb1dhcXJzZHk5MnVSQ0J2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTc0OC9BQUNEMTNBODQyQjExMUVGOTJFNTY1NzhDNEY5QUUwMi9zZ0JaQmtBLW1l ZG9XYXFyc2R5OTJ1UkNCdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATkHPthS3rLZMgHezfCX8KpAKst8JyqkB24b2+x6vEqiQH0zf+R4P7 PWnuCbMtb7Gnewc34mRIKo7YVqU3/qt69+5Eopg5jTP9Heyw1JagF/SGILq33Aov X6ResAWNSG0O/74cicc6PP1NOEKOAqpJNsH6by0DGf3QQv+gYZLySz5RpQVicm7X 3x0ogkgiMi412fhDu8T7iSrsGf0gv7Kaeb68gQm/IinOGUgU7fxjY6PKE3zqrVEY 4Vv40EksNoA4PYbXqq7i9GvlaIQmLkQAIZyjP+noCw5UCCH2Uax+LD7k6s3tOKo4 OASyYojepMagaiCY6u+p9Awb9NO6foM9 -----END CERTIFICATE-----Generated at Wed May 14 06:21:12 2025 by rpki-client