$ rpki-client -vvf rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft File: sb1NsCH1THJj88NTX4g2hJui5g4.mft (raw, json) Hash identifier: V4LZn2YH/F82l0lKx5RiRstCSRs/g+z1FGO/kidKJ20= Subject key identifier: D8:47:94:78:B8:B5:68:A0:BA:3C:27:0F:5C:D3:8C:F8:AF:DF:DD:07 Authority key identifier: B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E Certificate issuer: /CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft Manifest number: 74 Signing time: Sat 05 Jul 2025 07:08:22 +0000 Manifest this update: Sat 05 Jul 2025 07:08:22 +0000 Manifest next update: Sat 12 Jul 2025 07:08:22 +0000 Files and hashes: 1: sb1NsCH1THJj88NTX4g2hJui5g4.crl (hash: osD+f161raWCGKdhOp/QNGY4Yy6rXzIIl27d3mxajqc=) 2: A30B17FAA81911EF862F3A56C4F9AE02.roa (hash: 5t/9vRDX7bOXj/AudhNlmGxZtmB+Rx0Lf8bwk6wLjkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E520F, serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Validity Not Before: Jul 5 07:08:22 2025 GMT Not After : Jul 12 07:08:22 2025 GMT Subject: CN=6868cf66-22c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0a:ef:44:06:f3:34:49:07:a0:95:e4:a4:3b: 97:61:68:dc:33:dc:09:94:cb:f9:54:84:dd:78:20: 78:3c:ec:6f:b8:c7:ee:26:42:d6:47:49:d7:01:25: 09:44:ec:0b:05:13:7a:bd:b5:91:18:96:87:ba:69: 5a:3a:05:db:d3:d5:b2:5a:8a:f6:7a:90:56:1c:ec: 96:44:96:aa:6f:86:f7:8b:4e:38:fa:85:a7:40:b0: fe:04:84:d5:1b:39:78:1a:fc:d5:96:29:a4:86:b6: 20:6a:b6:ca:ea:4b:c7:20:27:4a:ec:da:e6:d8:d2: 2b:d0:d4:19:09:c9:63:15:e3:e0:e0:9c:17:fa:fe: 0a:00:bb:f2:66:cc:97:e8:a2:fe:1f:e0:ca:74:5a: ba:b9:6c:68:4c:88:01:6f:9f:a7:5a:66:e0:17:e1: 17:de:d0:d6:81:f0:8d:43:b6:52:05:2d:40:eb:f0: 8e:ee:ae:15:39:d7:df:61:f0:db:8c:90:4e:e6:46: ae:0d:b3:b5:86:1a:29:95:9a:aa:cf:b4:53:8c:0a: 03:07:ec:67:96:79:1f:2b:c8:c0:b5:99:4b:74:0f: 94:f3:17:72:bf:70:8d:ec:36:f1:6e:c2:88:47:d6: 31:66:8a:38:d5:08:85:bc:e6:b3:2e:d9:8d:67:02: 83:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:47:94:78:B8:B5:68:A0:BA:3C:27:0F:5C:D3:8C:F8:AF:DF:DD:07 X509v3 Authority Key Identifier: keyid:B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:6c:69:c8:6a:e5:bb:98:00:10:ac:6a:33:1f:7d:8c:a7:2c: 4e:ca:b5:f2:ca:bf:13:55:a2:0e:6f:b0:1f:db:09:99:85:3c: 03:42:3c:26:21:26:75:46:35:11:c8:c6:5c:cc:73:1e:1f:2c: e6:dd:66:04:c6:c9:61:63:9b:d2:65:87:9a:1e:fc:84:b3:a8: 8d:35:a8:3b:ef:8e:fd:c1:51:9a:84:67:f6:ad:7a:5d:10:ed: 0a:cb:a9:72:66:d1:1b:25:02:a2:07:63:3a:35:0c:23:be:09: 58:8a:b2:19:93:ec:f4:0e:36:92:6c:d0:d3:38:1f:59:7f:20: 9f:7c:72:5f:b6:35:73:e6:59:02:41:73:95:d2:d6:a8:fa:5c: 6f:45:38:79:87:bf:c3:da:94:38:26:17:f3:b6:8f:97:3b:e6: 5c:0d:c4:fb:3c:fb:c8:0c:3f:20:c0:f6:bd:bd:78:00:fd:6c: 62:03:d8:b9:04:ea:82:05:c5:6b:41:36:5d:f5:dc:3e:1b:f6: 36:60:46:da:9e:87:80:78:66:f1:4a:b7:6e:1a:ab:88:62:ac: 03:a6:13:e6:a5:65:f3:94:76:ff:4e:cd:dd:95:80:6c:02:cd: 2c:34:87:ba:41:d7:37:08:36:68:e1:0c:ca:0b:9b:c9:74:38: a5:13:f2:26 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTIwRjExMC8GA1UEBRMoQjFCRDREQjAyMUY1NEM3MjYzRjNDMzUzNUY4ODM2ODQ5 QkEyRTYwRTAeFw0yNTA3MDUwNzA4MjJaFw0yNTA3MTIwNzA4MjJaMBgxFjAUBgNV BAMTDTY4NjhjZjY2LTIyYzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKCu9EBvM0SQegleSkO5dhaNwz3AmUy/lUhN14IHg87G+4x+4mQtZHSdcBJQlE 7AsFE3q9tZEYloe6aVo6BdvT1bJaivZ6kFYc7JZElqpvhveLTjj6hadAsP4EhNUb OXga/NWWKaSGtiBqtsrqS8cgJ0rs2ubY0ivQ1BkJyWMV4+DgnBf6/goAu/JmzJfo ov4f4Mp0Wrq5bGhMiAFvn6daZuAX4Rfe0NaB8I1DtlIFLUDr8I7urhU5199h8NuM kE7mRq4Ns7WGGimVmqrPtFOMCgMH7GeWeR8ryMC1mUt0D5TzF3K/cI3sNvFuwohH 1jFmijjVCIW85rMu2Y1nAoMPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2EeUeLi1 aKC6PCcPXNOM+K/f3QcwHwYDVR0jBBgwFoAUsb1NsCH1THJj88NTX4g2hJui5g4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1MjBGLzQxQ0NCQzZFQTgx OTExRUZCOUJERUQ3MUM0RjlBRTAyL3NiMU5zQ0gxVEhKajg4TlRYNGcyaEp1aTVn NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2IxTnNDSDFUSEpqODhOVFg0ZzJoSnVpNWc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 MjBGLzQxQ0NCQzZFQTgxOTExRUZCOUJERUQ3MUM0RjlBRTAyL3NiMU5zQ0gxVEhK ajg4TlRYNGcyaEp1aTVnNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALBsachq5buYABCsajMffYynLE7KtfLKvxNVog5vsB/bCZmFPANCPCYh JnVGNRHIxlzMcx4fLObdZgTGyWFjm9Jlh5oe/ISzqI01qDvvjv3BUZqEZ/atel0Q 7QrLqXJm0RslAqIHYzo1DCO+CViKshmT7PQONpJs0NM4H1l/IJ98cl+2NXPmWQJB c5XS1qj6XG9FOHmHv8PalDgmF/O2j5c75lwNxPs8+8gMPyDA9r29eAD9bGID2LkE 6oIFxWtBNl313D4b9jZgRtqeh4B4ZvFKt24aq4hirAOmE+alZfOUdv9Ozd2VgGwC zSw0h7pB1zcINmjhDMoLm8l0OKUT8iY= -----END CERTIFICATE-----Generated at Sun Jul 6 01:10:02 2025 by rpki-client