$ rpki-client -vvf rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft File: sb1NsCH1THJj88NTX4g2hJui5g4.mft (raw, json) Hash identifier: kGV0VDAHV4Hibr0aammrkWKKJasq6md0e8xovhTSUQ4= Subject key identifier: 00:40:C7:7C:4C:FA:30:E2:66:51:4A:A3:3E:14:A4:A7:3A:84:2F:95 Authority key identifier: B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E Certificate issuer: /CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft Manifest number: 69 Signing time: Fri 13 Jun 2025 05:52:27 +0000 Manifest this update: Fri 13 Jun 2025 05:52:27 +0000 Manifest next update: Fri 20 Jun 2025 05:52:27 +0000 Files and hashes: 1: sb1NsCH1THJj88NTX4g2hJui5g4.crl (hash: 9A4sLg7gYsKjU4CGh9y7bcUFkVVfrWaEPrutENnGaMw=) 2: A30B17FAA81911EF862F3A56C4F9AE02.roa (hash: 5t/9vRDX7bOXj/AudhNlmGxZtmB+Rx0Lf8bwk6wLjkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:52:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E520F, serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Validity Not Before: Jun 13 05:52:27 2025 GMT Not After : Jun 20 05:52:27 2025 GMT Subject: CN=684bbc9b-154f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:02:0b:db:27:7a:cc:f6:03:ad:08:a2:bb:01: 4b:59:48:bd:87:29:a9:64:6e:4b:f6:12:c9:66:83: c8:93:b6:45:6d:44:6d:21:f6:1e:5e:e7:23:ef:28: 6c:97:c6:59:a3:b7:59:18:0c:62:b8:e9:17:ed:ae: 9c:cd:0c:df:4a:d4:36:b4:96:90:cd:94:4b:a2:b4: 30:01:98:0f:eb:23:b6:96:62:ee:56:f5:83:c4:a6: f2:d9:64:90:d8:0e:54:2b:75:05:bd:fd:ee:ed:95: a8:7b:85:d9:64:da:f4:74:bd:a1:bf:75:28:50:68: bd:7b:33:0c:c2:98:24:4d:e8:b5:66:29:fc:30:1c: 9e:44:88:1f:9a:bb:06:6c:72:24:60:44:71:b3:77: 1b:ca:43:4e:ba:cd:4c:9e:44:43:29:74:a5:05:d1: 90:57:e3:2c:aa:a6:28:ab:a7:1b:3f:23:d0:c8:49: 48:31:d8:ca:35:db:b9:3e:3b:fe:ff:53:27:5f:9f: c3:95:fd:43:14:c8:f0:54:cf:69:7b:45:af:a1:04: d6:c7:da:33:0c:c5:20:ad:0a:3b:22:d0:80:b1:f6: 6a:4e:60:96:b0:25:d2:20:41:fb:18:ba:1e:ac:8e: 7f:06:83:15:af:b6:1a:17:78:22:64:a9:35:d7:66: 3c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:40:C7:7C:4C:FA:30:E2:66:51:4A:A3:3E:14:A4:A7:3A:84:2F:95 X509v3 Authority Key Identifier: keyid:B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:3c:78:f9:36:bb:0f:ec:79:1f:b8:4c:8c:5e:3c:dd:71:3d: 21:62:86:13:96:fe:d3:45:a0:3e:aa:31:57:e8:92:5c:86:ac: d4:68:a8:69:1f:3f:6b:e7:3c:a2:32:c3:31:ea:04:90:71:94: 32:51:1e:45:2f:7f:64:26:5b:d6:5a:cc:5f:aa:f3:93:26:ad: 67:f4:41:56:fb:21:d4:3a:b5:e9:fd:9f:96:f4:ef:0b:93:6d: 39:c0:61:05:5a:ba:02:4c:c0:85:df:1b:6c:f4:62:d3:cc:b7: 0a:92:0d:4c:e7:38:b0:ad:78:96:b6:3b:eb:58:d7:d0:41:3c: 7d:26:08:96:dc:aa:e5:a8:9f:e2:ca:ce:80:8b:5d:d2:fe:05: ef:1d:65:bc:55:ac:6a:f7:b7:df:68:95:bc:9e:ef:88:15:c8: 30:e1:c1:30:1a:91:47:0f:66:c5:1f:1e:e7:bb:a2:b1:02:73: 8e:3c:73:e2:15:6c:48:98:68:e5:29:0e:4d:1f:59:73:cb:29: 9f:de:ed:7b:69:f2:ce:04:39:ba:1e:4a:83:eb:b4:ca:1d:25: 7a:7b:ce:35:ac:8e:e0:8c:31:92:54:6a:63:11:07:3b:11:22: 4e:04:fa:e0:97:1b:66:46:da:1a:64:60:b1:77:ba:58:6e:be: d0:5d:3d:3e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTIwRjExMC8GA1UEBRMoQjFCRDREQjAyMUY1NEM3MjYzRjNDMzUzNUY4ODM2ODQ5 QkEyRTYwRTAeFw0yNTA2MTMwNTUyMjdaFw0yNTA2MjAwNTUyMjdaMBgxFjAUBgNV BAMTDTY4NGJiYzliLTE1NGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOAgvbJ3rM9gOtCKK7AUtZSL2HKalkbkv2Eslmg8iTtkVtRG0h9h5e5yPvKGyX xlmjt1kYDGK46RftrpzNDN9K1Da0lpDNlEuitDABmA/rI7aWYu5W9YPEpvLZZJDY DlQrdQW9/e7tlah7hdlk2vR0vaG/dShQaL17MwzCmCRN6LVmKfwwHJ5EiB+auwZs ciRgRHGzdxvKQ066zUyeREMpdKUF0ZBX4yyqpiirpxs/I9DISUgx2Mo127k+O/7/ Uydfn8OV/UMUyPBUz2l7Ra+hBNbH2jMMxSCtCjsi0ICx9mpOYJawJdIgQfsYuh6s jn8GgxWvthoXeCJkqTXXZjxZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAEDHfEz6 MOJmUUqjPhSkpzqEL5UwHwYDVR0jBBgwFoAUsb1NsCH1THJj88NTX4g2hJui5g4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1MjBGLzQxQ0NCQzZFQTgx OTExRUZCOUJERUQ3MUM0RjlBRTAyL3NiMU5zQ0gxVEhKajg4TlRYNGcyaEp1aTVn NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2IxTnNDSDFUSEpqODhOVFg0ZzJoSnVpNWc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 MjBGLzQxQ0NCQzZFQTgxOTExRUZCOUJERUQ3MUM0RjlBRTAyL3NiMU5zQ0gxVEhK ajg4TlRYNGcyaEp1aTVnNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI88ePk2uw/seR+4TIxePN1xPSFihhOW/tNFoD6qMVfoklyGrNRoqGkf P2vnPKIywzHqBJBxlDJRHkUvf2QmW9ZazF+q85MmrWf0QVb7IdQ6ten9n5b07wuT bTnAYQVaugJMwIXfG2z0YtPMtwqSDUznOLCteJa2O+tY19BBPH0mCJbcquWon+LK zoCLXdL+Be8dZbxVrGr3t99olbye74gVyDDhwTAakUcPZsUfHue7orECc448c+IV bEiYaOUpDk0fWXPLKZ/e7Xtp8s4EOboeSoPrtModJXp7zjWsjuCMMZJUamMRBzsR Ik4E+uCXG2ZG2hpkYLF3ulhuvtBdPT4= -----END CERTIFICATE-----Generated at Sat Jun 14 19:33:56 2025 by rpki-client