$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft File: sgd9XTkKxy472IWxHzrm0qUmqe0.mft (raw, json) Hash identifier: +RNH6eoJvammR6BmWSoeR4AAOjzdd6E5GDRIzJUsVZ8= Subject key identifier: 93:94:9B:0A:61:56:CE:2E:79:03:87:22:45:AE:69:BC:E1:96:E9:8F Authority key identifier: B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED Certificate issuer: /CN=A91C9B85/serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Certificate serial: 0783 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft Manifest number: 077A Signing time: Wed 14 May 2025 21:32:48 +0000 Manifest this update: Wed 14 May 2025 21:32:48 +0000 Manifest next update: Wed 21 May 2025 21:32:48 +0000 Files and hashes: 1: sgd9XTkKxy472IWxHzrm0qUmqe0.crl (hash: udCYXTm02wFq4W7c94C394bdTdNHonzf6JO7wRk4FrM=) 2: 53B6E5D212CF11EBA8D2C037C4F9AE02.roa (hash: SqNXqLNgkpLICxW/LBSYL1V/21ZqqGqKzf6yPi47f5c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 21:32:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1923 (0x783) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B85, serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Validity Not Before: May 14 21:32:48 2025 GMT Not After : May 21 21:32:48 2025 GMT Subject: CN=68250c00-9630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b0:db:9d:49:e1:9c:21:da:43:b1:df:10:4c: 91:3a:2c:9b:17:fc:9b:77:79:eb:38:54:05:2d:2a: db:b7:2d:e8:69:1e:07:16:8e:5b:48:b0:a5:b2:89: a9:c2:52:ab:bb:d1:59:6c:96:eb:a3:b0:e1:46:42: 80:9f:4f:9c:26:5f:e4:45:73:49:e8:28:db:6a:c8: 6e:b5:ee:97:38:d5:d6:92:cc:ea:36:35:a5:00:13: c1:69:88:44:c8:09:49:26:f0:b9:75:4d:a5:e3:d7: cf:61:1b:45:ca:d5:cd:e5:d0:5f:f4:7f:3c:2f:1a: d9:03:6a:89:b9:65:70:60:4e:02:dd:91:ce:b2:8b: 89:d7:7b:0e:ce:29:04:b6:a3:60:89:53:4d:db:8c: bc:89:99:52:04:20:0e:c6:1f:f6:b0:e7:e3:70:f9: bc:38:4f:a9:23:eb:55:c0:94:ab:6f:36:23:ae:35: b5:5e:a3:87:80:16:57:6d:49:2a:3d:c3:38:f7:24: 51:10:8a:64:23:a4:b0:1d:4f:11:a5:cc:16:de:06: 9d:3f:0e:fd:0b:e7:f2:ee:e6:7f:1f:5e:cd:df:f6: 0a:47:2c:ac:43:3e:18:23:67:1b:fe:a1:93:a3:95: da:98:0a:e1:37:f7:46:d4:6f:d1:ba:61:7e:da:ff: eb:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:94:9B:0A:61:56:CE:2E:79:03:87:22:45:AE:69:BC:E1:96:E9:8F X509v3 Authority Key Identifier: keyid:B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:de:1e:4a:75:78:e4:e0:d0:96:53:45:0a:b5:b9:3a:38:6f: 62:cb:4b:01:ce:ea:56:98:65:9f:a1:42:65:6c:44:2a:c7:9b: a8:76:3e:38:91:76:26:ee:31:56:0c:3d:46:bc:52:2d:86:ee: 58:5f:45:ee:d9:6e:50:32:86:0f:1c:96:c1:a0:22:67:5b:3d: ba:61:fc:b8:7c:dd:f6:aa:04:42:d0:93:91:8a:e0:bc:23:21: b9:a2:42:1d:df:27:dc:13:e3:3c:e3:c7:89:bc:e1:d8:76:0e: f0:4f:e0:94:da:6f:01:c1:7f:36:33:2b:e0:a6:88:2e:e1:9b: ef:b5:e7:c4:7b:ac:aa:d5:46:b6:ee:25:0c:c9:cd:04:7b:2e: c9:30:c4:e1:91:3f:15:30:ab:d5:5c:25:8d:28:35:21:fc:e4: 51:6f:ac:db:3d:de:85:e7:9e:7f:26:2e:f1:9a:d5:2d:02:49: 94:40:57:e5:a5:6c:eb:13:2c:9d:b8:46:45:63:d3:c7:c7:ec: 6e:a0:4d:34:79:99:4d:47:dc:06:01:cf:ee:10:9f:72:34:bf: 4d:6e:5b:90:bc:33:ae:c0:c5:8d:c9:90:37:66:43:2e:e9:7c: 71:9d:cb:95:6c:9b:aa:d5:86:af:5f:64:3e:25:35:38:72:18: d5:b8:73:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCODUxMTAvBgNVBAUTKEIyMDc3RDVEMzkwQUM3MkUzQkQ4ODVCMTFGM0FFNkQy QTUyNkE5RUQwHhcNMjUwNTE0MjEzMjQ4WhcNMjUwNTIxMjEzMjQ4WjAYMRYwFAYD VQQDEw02ODI1MGMwMC05NjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAprDbnUnhnCHaQ7HfEEyROiybF/ybd3nrOFQFLSrbty3oaR4HFo5bSLClsomp wlKru9FZbJbro7DhRkKAn0+cJl/kRXNJ6Cjbashute6XONXWkszqNjWlABPBaYhE yAlJJvC5dU2l49fPYRtFytXN5dBf9H88LxrZA2qJuWVwYE4C3ZHOsouJ13sOzikE tqNgiVNN24y8iZlSBCAOxh/2sOfjcPm8OE+pI+tVwJSrbzYjrjW1XqOHgBZXbUkq PcM49yRREIpkI6SwHU8RpcwW3gadPw79C+fy7uZ/H17N3/YKRyysQz4YI2cb/qGT o5XamArhN/dG1G/RumF+2v/rBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOUmwph Vs4ueQOHIkWuabzhlumPMB8GA1UdIwQYMBaAFLIHfV05CscuO9iFsR865tKlJqnt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUI4NS80MkQ3QzAwQzEy Q0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5NDcySVd4SHpybTBxVW1x ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnZDlYVGtLeHk0NzJJV3hIenJtMHFVbXFlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUI4NS80MkQ3QzAwQzEyQ0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5 NDcySVd4SHpybTBxVW1xZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCL3h5KdXjk4NCWU0UKtbk6OG9iy0sBzupWmGWfoUJlbEQqx5uodj44 kXYm7jFWDD1GvFIthu5YX0Xu2W5QMoYPHJbBoCJnWz26Yfy4fN32qgRC0JORiuC8 IyG5okId3yfcE+M848eJvOHYdg7wT+CU2m8BwX82Myvgpogu4ZvvtefEe6yq1Ua2 7iUMyc0Eey7JMMThkT8VMKvVXCWNKDUh/ORRb6zbPd6F555/Ji7xmtUtAkmUQFfl pWzrEyyduEZFY9PHx+xuoE00eZlNR9wGAc/uEJ9yNL9NbluQvDOuwMWNyZA3ZkMu 6XxxncuVbJuq1YavX2Q+JTU4chjVuHN3 -----END CERTIFICATE-----Generated at Thu May 15 18:57:40 2025 by rpki-client