$ rpki-client -vvf rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft File: sb1NsCH1THJj88NTX4g2hJui5g4.mft (raw, json) Hash identifier: l3dM24HOo5+BN1SmSHPtelp/oZpL114OKipVsWbnF/A= Subject key identifier: C3:E7:0D:34:68:34:F7:52:3F:61:04:FB:1E:C6:A8:B0:DE:33:9D:DA Authority key identifier: B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E Certificate issuer: /CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Certificate serial: 7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft Manifest number: 7B Signing time: Sat 19 Jul 2025 06:58:27 +0000 Manifest this update: Sat 19 Jul 2025 06:58:27 +0000 Manifest next update: Sat 26 Jul 2025 06:58:27 +0000 Files and hashes: 1: sb1NsCH1THJj88NTX4g2hJui5g4.crl (hash: 8SZSqghu/Es9XlckQVmYYncVi2msJaKXJSPcEi+SZ5c=) 2: A30B17FAA81911EF862F3A56C4F9AE02.roa (hash: 5t/9vRDX7bOXj/AudhNlmGxZtmB+Rx0Lf8bwk6wLjkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:58:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E520F, serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Validity Not Before: Jul 19 06:58:27 2025 GMT Not After : Jul 26 06:58:27 2025 GMT Subject: CN=687b4213-2300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3e:88:ff:00:3b:4f:d1:dd:c9:54:ed:40:71: 1e:b7:5b:06:63:2e:90:a1:48:1b:37:69:19:b7:75: 3d:7f:1a:18:03:63:29:96:1b:04:40:f4:2f:5c:14: 6e:28:d6:ed:b5:28:d9:70:a9:a7:8b:18:00:d8:2e: f7:5f:bc:17:b7:eb:d4:b7:77:3c:2b:d6:47:46:24: ee:91:7a:51:ec:b7:0d:a8:3d:31:38:56:be:39:2a: ba:4f:46:0c:6e:1c:db:ad:8d:55:9f:65:39:6b:ce: 76:76:87:4e:9f:5d:e7:a6:50:e6:46:05:8a:4b:6e: ae:d9:02:59:b9:d3:6b:2e:40:8a:80:49:4d:f0:30: e1:0c:cb:ac:ab:97:2b:20:75:56:89:7d:60:f2:94: cc:ed:83:ec:a8:c5:7e:ea:4d:97:b3:74:47:ce:ff: ce:4b:6e:bd:c7:86:fe:1d:25:a9:f5:96:e9:1c:b2: 99:ba:d7:ed:9e:86:b9:ce:3b:bd:10:5b:ed:7b:e8: 46:09:3b:3e:fd:96:bb:c4:15:bc:86:77:c9:7a:8b: 9d:66:b3:52:e3:7a:e6:8b:50:74:b1:7f:4e:6c:42: dc:32:25:21:61:7d:0c:61:f9:2a:db:6d:e1:83:94: 78:91:b9:64:ff:32:c9:4f:2f:69:ae:c0:49:b0:c4: b6:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:E7:0D:34:68:34:F7:52:3F:61:04:FB:1E:C6:A8:B0:DE:33:9D:DA X509v3 Authority Key Identifier: keyid:B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:66:83:03:33:99:7d:75:b5:ee:6b:3e:71:28:c6:44:06:a6: 37:b2:8e:3e:15:a2:e2:33:c7:02:db:20:f1:e0:60:76:66:76: a5:95:0c:aa:42:e2:43:49:92:cd:51:f0:2f:ee:29:51:b2:f2: 33:1f:45:1a:dc:ea:dd:18:0a:8a:a4:76:30:24:a7:0e:5e:ae: 8a:94:ba:af:a5:96:de:6d:7c:c1:ed:47:20:6f:c1:2a:e8:be: ab:33:dd:84:39:0b:56:e7:41:fb:ae:18:fc:41:a7:d2:a7:5e: 11:34:60:8d:fd:ab:3b:c4:4a:49:61:92:68:86:ac:56:c7:c1: 40:9a:b1:21:90:9c:54:40:e2:67:e9:a7:67:c8:46:bc:81:48: 6d:49:e4:dc:9b:d4:09:37:04:f7:4b:37:54:26:0b:4a:6d:9a: dc:36:09:9e:bf:db:f6:22:d8:66:14:0a:d6:2d:7d:04:bb:e4: 05:85:0f:55:84:7c:80:13:3f:5b:6f:bc:2e:d8:4c:2b:92:98: 60:a7:ae:96:ad:f1:39:ba:d4:b3:5f:0c:99:dd:7e:bb:86:cc: 8f:2e:c7:4d:c3:ac:b9:3e:90:38:96:0d:26:ea:ec:32:45:37: 17:2d:a2:2c:73:bb:cf:b8:36:71:b6:74:52:66:f1:b7:2f:54: d7:e0:5d:2a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTIwRjExMC8GA1UEBRMoQjFCRDREQjAyMUY1NEM3MjYzRjNDMzUzNUY4ODM2ODQ5 QkEyRTYwRTAeFw0yNTA3MTkwNjU4MjdaFw0yNTA3MjYwNjU4MjdaMBgxFjAUBgNV BAMTDTY4N2I0MjEzLTIzMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5Poj/ADtP0d3JVO1AcR63WwZjLpChSBs3aRm3dT1/GhgDYymWGwRA9C9cFG4o 1u21KNlwqaeLGADYLvdfvBe369S3dzwr1kdGJO6RelHstw2oPTE4Vr45KrpPRgxu HNutjVWfZTlrznZ2h06fXeemUOZGBYpLbq7ZAlm502suQIqASU3wMOEMy6yrlysg dVaJfWDylMztg+yoxX7qTZezdEfO/85Lbr3Hhv4dJan1lukcspm61+2ehrnOO70Q W+176EYJOz79lrvEFbyGd8l6i51ms1LjeuaLUHSxf05sQtwyJSFhfQxh+SrbbeGD lHiRuWT/MslPL2muwEmwxLZvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUw+cNNGg0 91I/YQT7HsaosN4zndowHwYDVR0jBBgwFoAUsb1NsCH1THJj88NTX4g2hJui5g4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1MjBGLzQxQ0NCQzZFQTgx OTExRUZCOUJERUQ3MUM0RjlBRTAyL3NiMU5zQ0gxVEhKajg4TlRYNGcyaEp1aTVn NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2IxTnNDSDFUSEpqODhOVFg0ZzJoSnVpNWc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 MjBGLzQxQ0NCQzZFQTgxOTExRUZCOUJERUQ3MUM0RjlBRTAyL3NiMU5zQ0gxVEhK ajg4TlRYNGcyaEp1aTVnNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALhmgwMzmX11te5rPnEoxkQGpjeyjj4VouIzxwLbIPHgYHZmdqWVDKpC 4kNJks1R8C/uKVGy8jMfRRrc6t0YCoqkdjAkpw5eroqUuq+llt5tfMHtRyBvwSro vqsz3YQ5C1bnQfuuGPxBp9KnXhE0YI39qzvESklhkmiGrFbHwUCasSGQnFRA4mfp p2fIRryBSG1J5Nyb1Ak3BPdLN1QmC0ptmtw2CZ6/2/Yi2GYUCtYtfQS75AWFD1WE fIATP1tvvC7YTCuSmGCnrpat8Tm61LNfDJndfruGzI8ux03DrLk+kDiWDSbq7DJF Nxctoixzu8+4NnG2dFJm8bcvVNfgXSo= -----END CERTIFICATE-----Generated at Sun Jul 20 11:40:26 2025 by rpki-client