$ rpki-client -vvf rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft File: sb1NsCH1THJj88NTX4g2hJui5g4.mft (raw, json) Hash identifier: RWK7p87wzObrlHUf+zJ0msF+s+O6p0YGAaiC31hnhjc= Subject key identifier: D1:5C:56:41:5D:95:58:66:73:1D:08:84:96:D8:B1:65:23:44:90:D1 Authority key identifier: B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E Certificate issuer: /CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft Manifest number: 88 Signing time: Sat 09 Aug 2025 07:04:28 +0000 Manifest this update: Sat 09 Aug 2025 07:04:27 +0000 Manifest next update: Sat 16 Aug 2025 07:04:27 +0000 Files and hashes: 1: sb1NsCH1THJj88NTX4g2hJui5g4.crl (hash: zWpLnJgZi6iWbgsdgK6rdk3WjWTFMSM0oPOpWpkYVSQ=) 2: A30B17FAA81911EF862F3A56C4F9AE02.roa (hash: 6sFK3IOISiUObcshTaAhJEDmqO5j9CtjdCqW8qlBcT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E520F, serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Validity Not Before: Aug 9 07:04:27 2025 GMT Not After : Aug 16 07:04:27 2025 GMT Subject: CN=6896f2fb-11f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:5d:6b:17:0e:6d:74:48:f3:8a:9b:53:19:10: ef:9e:eb:0d:c1:fe:c7:74:d6:a1:a5:3a:be:17:9a: fd:a9:59:9b:f3:b2:be:0d:d8:f3:e9:fb:77:e2:24: ec:07:c4:5e:e4:e5:a2:c0:74:29:4a:99:a2:00:0d: 84:89:cc:21:1b:d9:3e:bd:2a:5e:8f:9d:c5:21:b1: 0e:d6:d6:fb:39:ea:23:ca:f7:b4:39:20:8b:fa:11: ef:e2:7b:01:fc:7d:2d:6c:4a:2e:91:2e:ba:98:25: 7f:5d:1d:3a:29:67:49:3f:79:88:7e:de:42:a6:84: 62:3f:03:54:9f:e8:4d:03:fc:b2:02:3d:d1:ee:1f: 8e:fa:5f:fd:6a:a1:b5:3b:5d:ac:aa:a8:cd:90:ba: d5:44:6f:20:6e:08:e1:94:82:a6:7a:3b:5b:72:4f: 73:16:0c:23:c3:c0:16:d2:86:28:69:dc:86:c8:a1: 1c:82:49:ee:c8:18:fb:8a:a4:46:cd:c5:91:1d:8a: 56:ff:f6:e0:cd:59:f3:01:4b:d5:36:83:5c:cb:b7: 74:a8:c6:61:71:b5:83:df:0b:19:b4:3c:e9:a6:4f: 6d:dd:8c:87:e1:4d:7a:99:e9:9c:73:25:40:2c:c6: 01:55:12:b5:c2:2b:8d:ba:76:a2:97:c7:14:40:e9: 74:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:5C:56:41:5D:95:58:66:73:1D:08:84:96:D8:B1:65:23:44:90:D1 X509v3 Authority Key Identifier: keyid:B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:8b:85:c8:3a:ce:19:8e:96:b3:cb:ad:1b:28:78:8d:64:87: 64:6a:c6:10:f5:1e:d8:f7:ad:6a:22:38:13:67:fb:ae:8b:48: d3:f1:6c:bc:93:59:10:b2:eb:6d:c8:8d:cc:08:31:0a:d5:16: 35:36:f7:31:a7:14:3f:1a:55:fc:8b:86:83:6b:15:b0:72:ef: ab:ed:05:aa:b8:32:f8:58:08:ef:f6:35:51:00:e4:10:5b:3f: 4c:86:14:e7:30:e0:a5:e4:66:0f:ca:ce:bb:15:8c:c0:d6:54: 1d:b2:66:98:f3:98:a0:9c:ed:6d:73:3a:00:19:a6:bf:6d:10: 83:96:c4:68:d6:fb:19:3d:f4:6f:90:ab:37:7b:dd:7a:e1:64: b7:45:11:01:11:e6:9f:8e:0a:22:c4:4c:58:74:89:75:84:57: 5f:87:9d:9a:be:1c:8b:9b:d2:9d:03:12:1e:95:1b:58:00:d1: 8a:9d:f6:46:63:14:21:03:90:e1:64:f1:cc:d9:86:c3:64:7a: 46:9d:69:4f:f1:bd:0b:d0:2e:ee:85:10:f0:2a:73:d3:6a:bb: a5:c5:9b:3b:6b:6f:98:1f:55:af:20:0c:ad:fc:15:5c:b2:56: 2b:e5:b9:2c:1f:3b:87:21:73:52:f9:4b:7a:ab:3c:05:1b:41: e9:1c:42:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUyMEYxMTAvBgNVBAUTKEIxQkQ0REIwMjFGNTRDNzI2M0YzQzM1MzVGODgzNjg0 OUJBMkU2MEUwHhcNMjUwODA5MDcwNDI3WhcNMjUwODE2MDcwNDI3WjAYMRYwFAYD VQQDEw02ODk2ZjJmYi0xMWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzF1rFw5tdEjziptTGRDvnusNwf7HdNahpTq+F5r9qVmb87K+Ddjz6ft34iTs B8Re5OWiwHQpSpmiAA2EicwhG9k+vSpej53FIbEO1tb7Oeojyve0OSCL+hHv4nsB /H0tbEoukS66mCV/XR06KWdJP3mIft5CpoRiPwNUn+hNA/yyAj3R7h+O+l/9aqG1 O12sqqjNkLrVRG8gbgjhlIKmejtbck9zFgwjw8AW0oYoadyGyKEcgknuyBj7iqRG zcWRHYpW//bgzVnzAUvVNoNcy7d0qMZhcbWD3wsZtDzppk9t3YyH4U16memccyVA LMYBVRK1wiuNunail8cUQOl08QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNFcVkFd lVhmcx0IhJbYsWUjRJDRMB8GA1UdIwQYMBaAFLG9TbAh9UxyY/PDU1+INoSbouYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTIwRi80MUNDQkM2RUE4 MTkxMUVGQjlCREVENzFDNEY5QUUwMi9zYjFOc0NIMVRISmo4OE5UWDRnMmhKdWk1 ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NiMU5zQ0gxVEhKajg4TlRYNGcyaEp1aTVnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTIwRi80MUNDQkM2RUE4MTkxMUVGQjlCREVENzFDNEY5QUUwMi9zYjFOc0NIMVRI Smo4OE5UWDRnMmhKdWk1ZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2i4XIOs4Zjpazy60bKHiNZIdkasYQ9R7Y961qIjgTZ/uui0jT8Wy8 k1kQsuttyI3MCDEK1RY1NvcxpxQ/GlX8i4aDaxWwcu+r7QWquDL4WAjv9jVRAOQQ Wz9MhhTnMOCl5GYPys67FYzA1lQdsmaY85ignO1tczoAGaa/bRCDlsRo1vsZPfRv kKs3e9164WS3RREBEeafjgoixExYdIl1hFdfh52avhyLm9KdAxIelRtYANGKnfZG YxQhA5DhZPHM2YbDZHpGnWlP8b0L0C7uhRDwKnPTarulxZs7a2+YH1WvIAyt/BVc slYr5bksHzuHIXNS+Ut6qzwFG0HpHEIX -----END CERTIFICATE-----Generated at Mon Aug 11 04:23:36 2025 by rpki-client