$ rpki-client -vvf rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft File: sb1NsCH1THJj88NTX4g2hJui5g4.mft (raw, json) Hash identifier: lldQenqiISplptX8VbwR32k1Pz7sflvrVpLUDK7r670= Subject key identifier: FB:7F:DA:4D:38:BA:9E:59:EB:17:D1:75:E8:C8:D0:03:99:A5:21:D3 Authority key identifier: B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E Certificate issuer: /CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft Manifest number: 8F Signing time: Sat 23 Aug 2025 06:45:19 +0000 Manifest this update: Sat 23 Aug 2025 06:45:19 +0000 Manifest next update: Sat 30 Aug 2025 06:45:19 +0000 Files and hashes: 1: sb1NsCH1THJj88NTX4g2hJui5g4.crl (hash: zy6aEC5FEjygA5oyaxKitKwy2ToyGQqHO1Jyy5r/trM=) 2: A30B17FAA81911EF862F3A56C4F9AE02.roa (hash: 6sFK3IOISiUObcshTaAhJEDmqO5j9CtjdCqW8qlBcT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E520F, serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Validity Not Before: Aug 23 06:45:19 2025 GMT Not After : Aug 30 06:45:19 2025 GMT Subject: CN=68a9637f-b870 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:06:a2:2f:40:69:6c:25:c5:cd:06:c0:dd:aa: 9b:3d:4a:25:ab:bd:de:7f:cf:cc:b5:77:8c:c5:ea: 96:80:67:61:9f:ec:b2:b0:5e:6a:39:af:d7:5b:01: aa:87:5c:3b:8d:a9:46:d4:e9:17:b4:30:96:7a:a1: 71:2c:85:ac:22:9b:67:c8:fc:59:70:cb:b8:df:01: 07:9a:66:4a:60:b8:5b:45:5c:22:e3:20:15:a0:de: ea:2d:44:8c:f6:70:55:ec:10:8a:36:59:5d:94:9d: 58:00:35:3d:58:7e:8a:8b:66:98:52:b6:b0:be:05: ca:92:80:d6:e3:ca:8b:66:d7:98:c8:fa:3b:60:6d: 1f:89:16:df:69:54:1c:41:73:50:1f:c0:53:ce:0e: 46:07:8f:73:7c:88:0b:e2:79:18:cc:f1:e1:04:e2: 94:86:33:32:07:f4:f7:8a:a8:f9:ab:1f:c6:c2:7f: 6c:f1:8b:93:7d:ae:66:fd:ed:32:c9:71:f3:e7:1b: 28:e9:77:93:1f:27:e1:b2:1e:80:ce:6a:7c:9e:7e: 75:9e:01:88:7a:34:99:1c:9d:2e:25:0d:0e:4e:3e: 0e:a6:be:d1:10:04:bf:a5:ca:20:e1:b2:81:98:7f: 79:11:c7:63:d1:08:4f:56:4c:dd:4b:11:75:71:e7: 3f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:7F:DA:4D:38:BA:9E:59:EB:17:D1:75:E8:C8:D0:03:99:A5:21:D3 X509v3 Authority Key Identifier: keyid:B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:35:c7:85:b0:d3:8e:74:90:9c:19:ec:23:2d:ae:28:5c:73: 14:56:15:30:e4:cc:1c:d4:8f:c6:e1:8e:4f:31:16:6a:81:1e: f6:ad:cf:b8:86:f6:c7:8a:4f:00:e0:20:35:94:72:bb:f7:2e: 3a:30:32:60:06:d9:83:0d:80:91:78:b9:51:18:1a:98:82:a6: 94:e5:d3:34:2a:73:55:1b:98:99:27:75:19:60:fe:1e:9c:86: 24:15:9b:b9:af:b6:20:bb:89:38:1b:c3:b7:44:d0:f8:49:bb: c9:10:fa:36:40:11:3f:4d:a4:8e:37:e3:ca:24:b8:95:23:fd: dd:f6:ec:16:98:a9:71:d1:c4:6d:6b:5f:d2:a2:52:df:d1:3c: ea:4d:4d:97:c0:83:71:10:b9:31:c0:1d:21:06:cf:fb:42:c1: 9b:b4:1e:8d:b7:07:5c:05:90:98:07:ea:9b:58:ef:69:1d:8c: 9b:f1:ad:e1:94:65:05:30:b0:e1:69:e8:8b:ec:05:a6:ac:34: bd:8f:46:4e:eb:6a:a9:9e:d8:77:b5:18:ec:42:2d:1f:2a:d9: 83:03:ee:22:a1:d5:38:94:30:82:19:16:3f:1f:28:54:fb:c5: 7e:5e:b6:f3:d4:68:c6:e6:27:06:3e:e6:4e:12:69:68:2f:a4: 8a:c1:fb:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUyMEYxMTAvBgNVBAUTKEIxQkQ0REIwMjFGNTRDNzI2M0YzQzM1MzVGODgzNjg0 OUJBMkU2MEUwHhcNMjUwODIzMDY0NTE5WhcNMjUwODMwMDY0NTE5WjAYMRYwFAYD VQQDEw02OGE5NjM3Zi1iODcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAaiL0BpbCXFzQbA3aqbPUolq73ef8/MtXeMxeqWgGdhn+yysF5qOa/XWwGq h1w7jalG1OkXtDCWeqFxLIWsIptnyPxZcMu43wEHmmZKYLhbRVwi4yAVoN7qLUSM 9nBV7BCKNlldlJ1YADU9WH6Ki2aYUrawvgXKkoDW48qLZteYyPo7YG0fiRbfaVQc QXNQH8BTzg5GB49zfIgL4nkYzPHhBOKUhjMyB/T3iqj5qx/Gwn9s8YuTfa5m/e0y yXHz5xso6XeTHyfhsh6Azmp8nn51ngGIejSZHJ0uJQ0OTj4Opr7REAS/pcog4bKB mH95Ecdj0QhPVkzdSxF1cec/MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPt/2k04 up5Z6xfRdejI0AOZpSHTMB8GA1UdIwQYMBaAFLG9TbAh9UxyY/PDU1+INoSbouYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTIwRi80MUNDQkM2RUE4 MTkxMUVGQjlCREVENzFDNEY5QUUwMi9zYjFOc0NIMVRISmo4OE5UWDRnMmhKdWk1 ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NiMU5zQ0gxVEhKajg4TlRYNGcyaEp1aTVnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTIwRi80MUNDQkM2RUE4MTkxMUVGQjlCREVENzFDNEY5QUUwMi9zYjFOc0NIMVRI Smo4OE5UWDRnMmhKdWk1ZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnNceFsNOOdJCcGewjLa4oXHMUVhUw5Mwc1I/G4Y5PMRZqgR72rc+4 hvbHik8A4CA1lHK79y46MDJgBtmDDYCReLlRGBqYgqaU5dM0KnNVG5iZJ3UZYP4e nIYkFZu5r7Ygu4k4G8O3RND4SbvJEPo2QBE/TaSON+PKJLiVI/3d9uwWmKlx0cRt a1/SolLf0TzqTU2XwINxELkxwB0hBs/7QsGbtB6NtwdcBZCYB+qbWO9pHYyb8a3h lGUFMLDhaeiL7AWmrDS9j0ZO62qpnth3tRjsQi0fKtmDA+4iodU4lDCCGRY/HyhU +8V+Xrbz1GjG5icGPuZOEmloL6SKwfsW -----END CERTIFICATE-----Generated at Sun Aug 24 00:49:51 2025 by rpki-client