$ rpki-client -vvf rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft File: sb1NsCH1THJj88NTX4g2hJui5g4.mft (raw, json) Hash identifier: 2GafhtZSRaVK6HAlyNa67l+ZFIwwIjvK9hodg275uEk= Subject key identifier: 71:A2:6C:E2:CF:5B:F6:C3:54:52:E3:5E:B0:29:2C:3F:92:52:7E:97 Authority key identifier: B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E Certificate issuer: /CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft Manifest number: 51 Signing time: Fri 25 Apr 2025 06:15:17 +0000 Manifest this update: Fri 25 Apr 2025 06:15:16 +0000 Manifest next update: Fri 02 May 2025 06:15:16 +0000 Files and hashes: 1: sb1NsCH1THJj88NTX4g2hJui5g4.crl (hash: EB40qlFaCnR4vznuvo7wnJ2B+LMxWsyXoIbDl12RVik=) 2: A30B17FAA81911EF862F3A56C4F9AE02.roa (hash: 5t/9vRDX7bOXj/AudhNlmGxZtmB+Rx0Lf8bwk6wLjkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:15:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E520F, serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Validity Not Before: Apr 25 06:15:16 2025 GMT Not After : May 2 06:15:16 2025 GMT Subject: CN=680b2874-c972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a7:87:ab:82:03:79:ee:95:ef:8c:c8:82:a6: 5b:5a:97:32:85:8c:2e:44:d9:1a:0c:fa:3d:f3:1c: d7:bc:95:c0:1a:9c:dc:75:50:30:65:09:4a:ee:73: 77:e8:ea:f2:72:94:63:5b:a4:61:3b:38:98:0f:4a: d9:50:09:6f:d4:09:f1:39:8d:0c:58:20:5c:39:40: a4:cc:08:7b:b1:0d:7f:91:5a:07:59:02:17:71:08: 1a:94:d4:d9:1a:18:2e:b6:15:f6:8c:08:00:6b:41: bc:20:13:b6:21:dd:3a:8c:c5:d1:1f:f7:bd:9f:f1: b2:8a:6b:ff:de:47:c0:8e:4d:84:8e:d8:f1:79:04: b6:24:0e:45:7a:c3:b7:c5:7e:06:60:90:18:79:24: 1f:2e:1c:0d:5b:90:d2:65:31:e6:2f:9c:59:9b:2f: d2:a9:c8:f0:11:6b:64:ec:3b:8f:e1:6d:17:f1:86: 32:44:47:52:eb:7f:26:0c:c2:9a:b9:51:16:0f:17: 57:37:9d:05:73:4f:c1:26:b4:35:21:9f:4c:97:83: bf:b7:5d:30:05:ae:92:46:44:d5:d1:bd:c7:e4:6d: 12:5c:28:5d:59:92:d2:7c:15:85:0f:e7:9a:4a:17: 37:46:c3:60:b1:b6:b2:ee:29:74:cc:da:e7:53:b3: bf:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:A2:6C:E2:CF:5B:F6:C3:54:52:E3:5E:B0:29:2C:3F:92:52:7E:97 X509v3 Authority Key Identifier: keyid:B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:87:de:1c:c4:b0:62:b1:83:a8:51:f8:83:52:92:ff:59:37: b4:3d:a4:4f:ef:1f:e5:9e:ec:cf:da:2b:b1:ef:05:72:69:f5: 41:7e:99:74:ae:87:67:af:29:e9:51:7b:52:8a:80:2d:98:b5: ed:d8:02:75:84:af:d7:31:c1:2f:04:49:42:63:2d:09:48:0c: 52:75:35:17:61:45:70:c2:cf:9f:ce:7f:49:e4:22:f9:a8:76: 40:a3:69:95:85:a4:6b:40:c8:ae:27:60:f4:e7:4f:d6:4a:91: 02:7e:55:93:ca:ac:d6:dc:3e:23:94:ac:83:4c:a9:36:ad:0a: 12:60:69:3b:c9:be:8b:5c:3b:ae:c0:5e:a1:9d:c4:b9:e7:a4: 64:66:cb:df:7c:f9:01:a9:6a:2e:ac:e3:c7:36:79:e7:a6:d9: 79:9b:ad:f8:77:71:e5:8f:52:00:15:1c:b5:1a:03:8e:ae:9e: 8d:22:0d:0d:61:ef:c5:04:c2:94:2d:7c:c2:95:f9:62:bd:83: ff:58:2b:7c:7a:1f:4e:36:d7:7a:04:3a:3f:35:e5:50:5d:95: f3:2b:8e:2f:24:a0:39:69:ec:7f:3b:f0:4e:57:16:ce:a3:79: ee:50:35:3c:79:c4:b4:0e:68:fe:1f:86:27:a4:07:bc:16:2b: 77:7f:ef:8f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTIwRjExMC8GA1UEBRMoQjFCRDREQjAyMUY1NEM3MjYzRjNDMzUzNUY4ODM2ODQ5 QkEyRTYwRTAeFw0yNTA0MjUwNjE1MTZaFw0yNTA1MDIwNjE1MTZaMBgxFjAUBgNV BAMTDTY4MGIyODc0LWM5NzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9p4erggN57pXvjMiCpltalzKFjC5E2RoM+j3zHNe8lcAanNx1UDBlCUruc3fo 6vJylGNbpGE7OJgPStlQCW/UCfE5jQxYIFw5QKTMCHuxDX+RWgdZAhdxCBqU1Nka GC62FfaMCABrQbwgE7Yh3TqMxdEf972f8bKKa//eR8COTYSO2PF5BLYkDkV6w7fF fgZgkBh5JB8uHA1bkNJlMeYvnFmbL9KpyPARa2TsO4/hbRfxhjJER1LrfyYMwpq5 URYPF1c3nQVzT8EmtDUhn0yXg7+3XTAFrpJGRNXRvcfkbRJcKF1ZktJ8FYUP55pK FzdGw2CxtrLuKXTM2udTs79rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcaJs4s9b 9sNUUuNesCksP5JSfpcwHwYDVR0jBBgwFoAUsb1NsCH1THJj88NTX4g2hJui5g4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1MjBGLzQxQ0NCQzZFQTgx OTExRUZCOUJERUQ3MUM0RjlBRTAyL3NiMU5zQ0gxVEhKajg4TlRYNGcyaEp1aTVn NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2IxTnNDSDFUSEpqODhOVFg0ZzJoSnVpNWc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 MjBGLzQxQ0NCQzZFQTgxOTExRUZCOUJERUQ3MUM0RjlBRTAyL3NiMU5zQ0gxVEhK ajg4TlRYNGcyaEp1aTVnNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFuH3hzEsGKxg6hR+INSkv9ZN7Q9pE/vH+We7M/aK7HvBXJp9UF+mXSu h2evKelRe1KKgC2Yte3YAnWEr9cxwS8ESUJjLQlIDFJ1NRdhRXDCz5/Of0nkIvmo dkCjaZWFpGtAyK4nYPTnT9ZKkQJ+VZPKrNbcPiOUrINMqTatChJgaTvJvotcO67A XqGdxLnnpGRmy998+QGpai6s48c2eeem2Xmbrfh3ceWPUgAVHLUaA46uno0iDQ1h 78UEwpQtfMKV+WK9g/9YK3x6H04213oEOj815VBdlfMrji8koDlp7H878E5XFs6j ee5QNTx5xLQOaP4fhiekB7wWK3d/748= -----END CERTIFICATE-----Generated at Sat Apr 26 12:38:55 2025 by rpki-client