$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft File: sgd9XTkKxy472IWxHzrm0qUmqe0.mft (raw, json) Hash identifier: zuCL927wgd7AzwWo3I5ZaA5iXtGeBVCt2brxRzlV0vM= Subject key identifier: 01:18:53:BF:3D:A9:5D:9B:9C:8F:EE:0D:0B:36:F8:B3:18:A5:38:5B Authority key identifier: B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED Certificate issuer: /CN=A91C9B85/serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Certificate serial: 079B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft Manifest number: 0792 Signing time: Wed 02 Jul 2025 21:40:15 +0000 Manifest this update: Wed 02 Jul 2025 21:40:14 +0000 Manifest next update: Wed 09 Jul 2025 21:40:14 +0000 Files and hashes: 1: sgd9XTkKxy472IWxHzrm0qUmqe0.crl (hash: bYsa3va9GFqoylKeunWhkgfmDkydB2JL0JJmBsJY7+M=) 2: 53B6E5D212CF11EBA8D2C037C4F9AE02.roa (hash: SqNXqLNgkpLICxW/LBSYL1V/21ZqqGqKzf6yPi47f5c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:40:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1947 (0x79b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B85, serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Validity Not Before: Jul 2 21:40:14 2025 GMT Not After : Jul 9 21:40:14 2025 GMT Subject: CN=6865a73e-4386 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:42:e2:75:1c:4e:e5:b3:89:b6:11:41:ad:74: 03:98:5c:b0:85:0b:e9:3e:46:8e:28:28:fd:a1:e3: ac:60:5a:3e:bf:86:ca:05:69:e8:42:62:d9:05:4a: f5:19:6c:43:2e:ff:da:90:d9:15:c8:96:f4:35:b7: d0:22:92:06:7c:ba:40:2f:ec:61:3a:51:78:3a:16: 65:21:6d:24:52:36:04:c3:ab:46:96:17:82:c8:cb: 79:85:9a:39:5a:63:16:25:77:63:a9:7a:a6:fa:fc: 41:a2:da:44:fd:c4:9a:60:6e:42:8a:13:cc:05:0b: 4e:e0:ae:b7:dd:ab:a8:f4:20:43:ce:98:6d:48:11: 77:12:3e:46:82:89:e8:b0:7f:97:93:fb:6f:a9:21: 37:bd:20:e9:13:23:eb:51:96:4b:39:70:af:d1:bb: c0:27:f0:d7:70:3a:ff:85:2f:3c:e3:b0:87:ad:8e: 95:35:c5:67:ef:b2:66:30:c7:59:e9:00:57:e6:a2: 1f:a7:0e:8f:b9:5a:17:e8:03:d9:0a:3b:b6:3f:3e: af:4e:b8:2a:50:89:c8:3c:60:17:e4:9f:b3:4d:9b: bc:8c:5f:97:60:be:6e:a5:38:55:75:8a:78:05:89: 81:78:0d:31:d4:1e:95:cd:ce:31:32:12:95:8c:d2: 63:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:18:53:BF:3D:A9:5D:9B:9C:8F:EE:0D:0B:36:F8:B3:18:A5:38:5B X509v3 Authority Key Identifier: keyid:B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:d9:63:d5:e9:43:9c:9f:a0:eb:7a:9b:0a:80:f8:a7:28:28: d7:7c:27:4e:e9:0b:5c:b0:49:5d:59:d2:23:ed:e0:77:8b:88: cc:4d:55:b7:f5:4f:7a:8a:00:78:43:4b:53:02:37:1b:c6:83: 31:86:89:53:97:a6:63:f3:0c:52:15:6a:4c:a0:55:35:9a:44: a9:a2:7a:f8:e1:74:0c:19:dd:05:08:3f:a6:d5:fc:b4:3d:3a: 24:b2:48:7d:a5:3d:32:1d:d5:b3:2d:95:9d:49:a2:6e:2e:91: 9f:87:0a:b5:ca:e0:b6:ba:57:86:e3:04:0f:04:30:8a:aa:5c: bc:a1:0a:f1:de:dd:56:3d:cd:c5:76:30:47:5e:e2:1a:ce:3d: dc:a7:1e:0e:86:57:45:a1:fe:dc:ad:95:7d:e7:2e:48:64:00: dd:97:30:7d:19:32:e2:f7:6a:e4:aa:4c:8b:70:04:18:26:00: f2:a9:26:c1:ae:8b:4b:54:69:4d:f0:23:01:bd:0c:f8:e5:89: 94:2f:2f:1d:da:f8:b5:41:37:cd:5e:95:58:6d:f9:12:66:9c: 8c:cc:22:6f:65:ce:a7:e3:da:6a:eb:04:58:cf:38:99:ab:b6: 62:bb:3b:07:34:23:f1:46:9a:99:cc:8d:08:70:9c:74:da:32: 8b:4d:62:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCODUxMTAvBgNVBAUTKEIyMDc3RDVEMzkwQUM3MkUzQkQ4ODVCMTFGM0FFNkQy QTUyNkE5RUQwHhcNMjUwNzAyMjE0MDE0WhcNMjUwNzA5MjE0MDE0WjAYMRYwFAYD VQQDEw02ODY1YTczZS00Mzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0LidRxO5bOJthFBrXQDmFywhQvpPkaOKCj9oeOsYFo+v4bKBWnoQmLZBUr1 GWxDLv/akNkVyJb0NbfQIpIGfLpAL+xhOlF4OhZlIW0kUjYEw6tGlheCyMt5hZo5 WmMWJXdjqXqm+vxBotpE/cSaYG5CihPMBQtO4K633auo9CBDzphtSBF3Ej5Ggono sH+Xk/tvqSE3vSDpEyPrUZZLOXCv0bvAJ/DXcDr/hS8847CHrY6VNcVn77JmMMdZ 6QBX5qIfpw6PuVoX6APZCju2Pz6vTrgqUInIPGAX5J+zTZu8jF+XYL5upThVdYp4 BYmBeA0x1B6Vzc4xMhKVjNJjJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAEYU789 qV2bnI/uDQs2+LMYpThbMB8GA1UdIwQYMBaAFLIHfV05CscuO9iFsR865tKlJqnt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUI4NS80MkQ3QzAwQzEy Q0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5NDcySVd4SHpybTBxVW1x ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnZDlYVGtLeHk0NzJJV3hIenJtMHFVbXFlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUI4NS80MkQ3QzAwQzEyQ0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5 NDcySVd4SHpybTBxVW1xZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW2WPV6UOcn6DrepsKgPinKCjXfCdO6QtcsEldWdIj7eB3i4jMTVW3 9U96igB4Q0tTAjcbxoMxholTl6Zj8wxSFWpMoFU1mkSponr44XQMGd0FCD+m1fy0 PTokskh9pT0yHdWzLZWdSaJuLpGfhwq1yuC2uleG4wQPBDCKqly8oQrx3t1WPc3F djBHXuIazj3cpx4OhldFof7crZV95y5IZADdlzB9GTLi92rkqkyLcAQYJgDyqSbB rotLVGlN8CMBvQz45YmULy8d2vi1QTfNXpVYbfkSZpyMzCJvZc6n49pq6wRYzziZ q7ZiuzsHNCPxRpqZzI0IcJx02jKLTWIs -----END CERTIFICATE-----Generated at Fri Jul 4 00:21:19 2025 by rpki-client