$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft File: sgd9XTkKxy472IWxHzrm0qUmqe0.mft (raw, json) Hash identifier: fsE7C8bikVg3RXdShFGHZE54DWNrMJg3ZFeMJyASq5Y= Subject key identifier: BD:AE:C3:BD:93:20:81:FE:1C:C4:CF:8E:E6:EE:08:8C:4C:F5:F7:C2 Authority key identifier: B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED Certificate issuer: /CN=A91C9B85/serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Certificate serial: 07B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft Manifest number: 07AC Signing time: Fri 22 Aug 2025 21:27:47 +0000 Manifest this update: Fri 22 Aug 2025 21:27:47 +0000 Manifest next update: Fri 29 Aug 2025 21:27:47 +0000 Files and hashes: 1: sgd9XTkKxy472IWxHzrm0qUmqe0.crl (hash: 6I3KDXFb5O0ht8cTwFB4tQxqOvdf+1J6jS8UNJd9l+s=) 2: 53B6E5D212CF11EBA8D2C037C4F9AE02.roa (hash: SqNXqLNgkpLICxW/LBSYL1V/21ZqqGqKzf6yPi47f5c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1973 (0x7b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B85, serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Validity Not Before: Aug 22 21:27:47 2025 GMT Not After : Aug 29 21:27:47 2025 GMT Subject: CN=68a8e0d3-a88f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:14:c8:4c:bf:3a:63:5c:36:3e:78:32:59:8d: a0:bc:5d:28:cf:da:51:cd:23:1b:2f:fa:7b:f6:df: 31:9c:e4:4d:f3:a6:f2:61:8d:01:1c:c3:7a:c5:d3: 60:cc:66:18:fc:c5:f5:df:03:f0:19:24:55:a3:6d: fa:6c:93:a8:23:af:f8:07:2c:ee:bb:32:9d:ee:42: 29:a0:56:21:81:6f:4e:8d:eb:df:4a:f4:eb:c6:60: a9:cd:55:71:c2:30:45:bc:8a:16:47:9a:eb:57:73: aa:28:9b:06:5f:07:75:87:7a:bf:f2:db:ce:bf:e1: 3f:64:4f:58:37:3c:b2:39:92:6b:8e:6d:38:27:6a: 56:b5:9c:14:e9:18:9b:84:19:af:3a:e7:11:16:ff: 6f:b2:52:60:a5:be:5e:65:0f:22:ed:61:fc:4a:f4: 3c:22:7c:9b:10:ec:a9:ef:c5:a6:56:db:78:6a:57: d0:7e:2d:af:a3:05:eb:7a:2e:30:5d:6b:d9:57:ef: ff:03:41:a3:8f:8b:c8:03:2a:13:fb:a6:b2:50:5a: 15:23:7c:74:42:c5:e0:3e:8d:1a:22:de:1c:f1:72: 1c:e1:0b:59:b3:ad:06:82:52:71:00:da:f3:bb:18: 5b:9b:79:7b:2c:d0:a3:14:c6:ea:f6:09:39:79:50: 68:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:AE:C3:BD:93:20:81:FE:1C:C4:CF:8E:E6:EE:08:8C:4C:F5:F7:C2 X509v3 Authority Key Identifier: keyid:B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:f7:cb:46:db:0d:2d:6d:39:b2:a9:b5:02:f0:0c:99:f6:17: d6:8b:ec:ea:73:b4:cb:27:bc:c0:1f:1a:5c:55:52:ef:9f:6b: 91:26:72:44:ae:60:7e:50:ff:18:8d:be:34:e5:4c:99:3a:5b: b9:80:b8:21:13:8c:98:4a:28:47:b4:e8:9d:be:1b:5d:22:c1: 09:b1:8c:36:cf:a4:e2:38:94:61:0f:a5:70:d0:42:ec:f7:3b: c2:a8:32:dc:b5:6c:7d:40:e9:6b:77:19:9e:0e:18:57:af:d2: cb:d6:8c:c9:5c:82:02:0d:ef:9e:7b:11:59:23:d9:6a:ae:4d: 64:ab:0a:8e:2e:fc:f3:d7:3a:32:29:45:2f:b9:e0:a6:0c:ea: 0a:5c:bb:f6:d9:25:c2:e0:de:32:cb:38:5f:4a:fb:e6:62:38: 0d:e0:46:c8:05:a3:d8:a3:11:5e:af:c5:bf:64:9f:79:6e:62: dc:cf:c1:2e:d8:b5:75:a2:2d:9e:84:0c:ef:cc:b3:7c:dc:f5: 3b:f0:aa:9b:54:08:14:a4:47:f3:d6:c7:a2:71:f9:b3:cb:60: cb:7f:8a:32:7d:a0:4b:aa:c1:38:25:67:9b:41:dd:99:99:94: 1c:02:b4:97:8d:20:ca:67:da:b5:e5:74:c6:0c:69:7a:bc:b5: e2:f3:1c:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCODUxMTAvBgNVBAUTKEIyMDc3RDVEMzkwQUM3MkUzQkQ4ODVCMTFGM0FFNkQy QTUyNkE5RUQwHhcNMjUwODIyMjEyNzQ3WhcNMjUwODI5MjEyNzQ3WjAYMRYwFAYD VQQDEw02OGE4ZTBkMy1hODhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2xTITL86Y1w2PngyWY2gvF0oz9pRzSMbL/p79t8xnORN86byYY0BHMN6xdNg zGYY/MX13wPwGSRVo236bJOoI6/4ByzuuzKd7kIpoFYhgW9OjevfSvTrxmCpzVVx wjBFvIoWR5rrV3OqKJsGXwd1h3q/8tvOv+E/ZE9YNzyyOZJrjm04J2pWtZwU6Rib hBmvOucRFv9vslJgpb5eZQ8i7WH8SvQ8InybEOyp78WmVtt4alfQfi2vowXrei4w XWvZV+//A0Gjj4vIAyoT+6ayUFoVI3x0QsXgPo0aIt4c8XIc4QtZs60GglJxANrz uxhbm3l7LNCjFMbq9gk5eVBozQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL2uw72T IIH+HMTPjubuCIxM9ffCMB8GA1UdIwQYMBaAFLIHfV05CscuO9iFsR865tKlJqnt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUI4NS80MkQ3QzAwQzEy Q0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5NDcySVd4SHpybTBxVW1x ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnZDlYVGtLeHk0NzJJV3hIenJtMHFVbXFlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUI4NS80MkQ3QzAwQzEyQ0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5 NDcySVd4SHpybTBxVW1xZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC098tG2w0tbTmyqbUC8AyZ9hfWi+zqc7TLJ7zAHxpcVVLvn2uRJnJE rmB+UP8Yjb405UyZOlu5gLghE4yYSihHtOidvhtdIsEJsYw2z6TiOJRhD6Vw0ELs 9zvCqDLctWx9QOlrdxmeDhhXr9LL1ozJXIICDe+eexFZI9lqrk1kqwqOLvzz1zoy KUUvueCmDOoKXLv22SXC4N4yyzhfSvvmYjgN4EbIBaPYoxFer8W/ZJ95bmLcz8Eu 2LV1oi2ehAzvzLN83PU78KqbVAgUpEfz1seicfmzy2DLf4oyfaBLqsE4JWebQd2Z mZQcArSXjSDKZ9q15XTGDGl6vLXi8xzm -----END CERTIFICATE-----Generated at Sun Aug 24 09:02:52 2025 by rpki-client