$ rpki-client -vvf rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft File: sbozBTw5ulhlU3dDESOJ4wDEiAc.mft (raw, json) Hash identifier: ByOxaXyGA/5OgGmU4/RpL88Y/x3kfJh5d+VqSCr2vwg= Subject key identifier: F1:79:50:AD:07:EC:D9:6D:56:D1:16:63:42:4D:C7:28:61:41:FF:D3 Authority key identifier: B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 Certificate issuer: /CN=A9150384/serialNumber=B1BA33053C39BA5865537743112389E300C48807 Certificate serial: 0C89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft Manifest number: 0C76 Signing time: Thu 12 Jun 2025 18:09:08 +0000 Manifest this update: Thu 12 Jun 2025 18:09:07 +0000 Manifest next update: Thu 19 Jun 2025 18:09:07 +0000 Files and hashes: 1: sbozBTw5ulhlU3dDESOJ4wDEiAc.crl (hash: XBUo5bMZdzRl/xekYcqj6Z8seRUYZDkDPlrvz36acsk=) 2: 3240ED82D62D11EFB0442B5DC4F9AE02.roa (hash: 4ezgedPR9KopOZYLyZFbtl63GBaLOL0AGy6NscKrMGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:09:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3209 (0xc89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150384, serialNumber=B1BA33053C39BA5865537743112389E300C48807 Validity Not Before: Jun 12 18:09:07 2025 GMT Not After : Jun 19 18:09:07 2025 GMT Subject: CN=684b17c3-0020 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:39:dc:ad:44:8c:2a:c9:be:20:1e:e2:7d:91: 7a:67:32:f5:09:78:c8:09:14:45:88:04:cc:3c:2a: 03:31:c6:10:82:10:85:f4:b6:2f:5c:13:3f:4a:a4: 38:a2:15:56:c1:83:16:f9:0e:a2:b2:cb:3a:48:e9: 1a:a5:7e:f2:4c:a2:61:14:1d:94:18:e8:7a:3d:53: c4:df:6f:71:14:54:41:34:64:39:59:3a:d0:bd:5f: 69:9d:81:9c:0f:01:f4:3a:fe:63:c3:23:21:41:40: f6:c5:ae:a9:9f:9b:33:43:74:97:f6:e0:48:e8:f4: f1:15:48:6b:26:96:4a:e1:0d:c9:f2:c5:85:39:70: cb:58:0a:5b:b1:ad:d8:dd:a5:12:96:9b:b1:a1:a5: 26:1a:9f:2c:a4:67:62:eb:c0:67:0c:2b:e5:15:32: f4:fc:c0:3d:df:d2:d1:db:7e:cc:5f:f7:d2:e2:05: 39:06:53:d5:ae:98:2d:86:27:60:54:f2:08:b5:1e: 97:87:bd:43:24:57:1b:35:81:14:b4:d4:cb:1e:4c: 22:28:dc:d8:f1:5e:b0:11:da:a8:da:73:ed:85:0d: d4:2e:b9:8c:cd:39:d0:e6:66:d3:1f:1f:fd:64:a6: fc:bc:bf:80:3d:5f:91:73:c6:ea:0a:04:eb:17:9a: dd:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:79:50:AD:07:EC:D9:6D:56:D1:16:63:42:4D:C7:28:61:41:FF:D3 X509v3 Authority Key Identifier: keyid:B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:f2:3e:12:48:f9:ab:dd:f0:a7:65:2a:aa:e7:61:ed:a3:c8: 28:a5:d8:0e:7b:19:f0:2e:96:4b:bd:53:a4:1b:3e:a6:cf:22: f7:29:74:71:89:01:cb:8b:c0:8c:4a:76:8c:25:1d:30:1a:0e: a7:7c:74:91:31:08:33:9e:7d:e2:3e:33:d1:82:1e:a7:d8:c0: 3a:87:8c:9b:66:be:c1:0d:ef:52:66:24:d6:de:33:1c:09:93: 6a:67:b2:40:19:89:28:8a:98:ca:af:3b:4b:4f:85:6f:73:24: 3a:bd:02:d1:95:73:60:fc:39:31:d7:d1:c5:cf:9b:ee:85:10: 4c:5b:c2:6a:a5:1f:dc:f8:da:30:39:c3:24:f1:ca:c2:26:0e: 71:09:22:63:7a:50:8a:58:5d:c8:2e:63:51:f0:9c:c7:42:80: d3:53:48:03:0d:9a:64:90:47:57:46:2a:1d:64:4a:8a:d3:f8: b2:cd:16:9c:e1:f7:e0:48:d1:44:fa:e0:a7:e3:0c:7f:02:70: e3:4d:11:39:c4:13:ab:99:cd:72:bc:6f:2e:40:a2:0f:b8:b6: a5:81:34:67:43:5d:38:74:6f:84:8d:11:85:fe:a5:a6:94:3e: 91:a4:86:d6:de:18:e1:cf:62:0c:ab:e2:7b:d5:a8:b2:ae:1a: 22:d6:a2:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAzODQxMTAvBgNVBAUTKEIxQkEzMzA1M0MzOUJBNTg2NTUzNzc0MzExMjM4OUUz MDBDNDg4MDcwHhcNMjUwNjEyMTgwOTA3WhcNMjUwNjE5MTgwOTA3WjAYMRYwFAYD VQQDEw02ODRiMTdjMy0wMDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzncrUSMKsm+IB7ifZF6ZzL1CXjICRRFiATMPCoDMcYQghCF9LYvXBM/SqQ4 ohVWwYMW+Q6isss6SOkapX7yTKJhFB2UGOh6PVPE329xFFRBNGQ5WTrQvV9pnYGc DwH0Ov5jwyMhQUD2xa6pn5szQ3SX9uBI6PTxFUhrJpZK4Q3J8sWFOXDLWApbsa3Y 3aUSlpuxoaUmGp8spGdi68BnDCvlFTL0/MA939LR237MX/fS4gU5BlPVrpgthidg VPIItR6Xh71DJFcbNYEUtNTLHkwiKNzY8V6wEdqo2nPthQ3ULrmMzTnQ5mbTHx/9 ZKb8vL+APV+Rc8bqCgTrF5rdlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPF5UK0H 7NltVtEWY0JNxyhhQf/TMB8GA1UdIwQYMBaAFLG6MwU8ObpYZVN3QxEjieMAxIgH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDM4NC85MzdGMzcyRTAw NUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVsaGxVM2RERVNPSjR3REVp QWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Nib3pCVHc1dWxobFUzZERFU09KNHdERWlBYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDM4NC85MzdGMzcyRTAwNUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVs aGxVM2RERVNPSjR3REVpQWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAk8j4SSPmr3fCnZSqq52Hto8gopdgOexnwLpZLvVOkGz6mzyL3KXRx iQHLi8CMSnaMJR0wGg6nfHSRMQgznn3iPjPRgh6n2MA6h4ybZr7BDe9SZiTW3jMc CZNqZ7JAGYkoipjKrztLT4VvcyQ6vQLRlXNg/Dkx19HFz5vuhRBMW8JqpR/c+Now OcMk8crCJg5xCSJjelCKWF3ILmNR8JzHQoDTU0gDDZpkkEdXRiodZEqK0/iyzRac 4ffgSNFE+uCn4wx/AnDjTRE5xBOrmc1yvG8uQKIPuLalgTRnQ104dG+EjRGF/qWm lD6RpIbW3hjhz2IMq+J71aiyrhoi1qIa -----END CERTIFICATE-----Generated at Sat Jun 14 19:26:30 2025 by rpki-client