$ rpki-client -vvf rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft File: sb1NsCH1THJj88NTX4g2hJui5g4.mft (raw, json) Hash identifier: tbo5N0KYQYE38eTbxCU2fBbNpidQq2MZbdFWAH80lZE= Subject key identifier: 91:6C:2E:07:58:6B:E7:60:83:7B:24:EA:4A:58:88:0F:AB:3D:37:07 Authority key identifier: B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E Certificate issuer: /CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Certificate serial: 44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft Manifest number: 43 Signing time: Sat 29 Mar 2025 06:45:20 +0000 Manifest this update: Sat 29 Mar 2025 06:45:19 +0000 Manifest next update: Sat 05 Apr 2025 06:45:19 +0000 Files and hashes: 1: sb1NsCH1THJj88NTX4g2hJui5g4.crl (hash: Yoql+jrJLvTmo0DlJUeEZWtu74LrDt6WxKdSloPOrq4=) 2: A30B17FAA81911EF862F3A56C4F9AE02.roa (hash: 5t/9vRDX7bOXj/AudhNlmGxZtmB+Rx0Lf8bwk6wLjkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E520F Validity Not Before: Mar 29 06:45:19 2025 GMT Not After : Apr 5 06:45:19 2025 GMT Subject: CN=67e796ff-4f4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ea:ca:9b:ca:8e:a4:ec:2c:d3:bf:f4:2b:cd: a1:25:9b:10:60:43:d8:fd:d5:fe:20:56:7d:c4:94: d2:0d:b4:8c:c5:81:0d:94:61:63:22:71:85:4f:72: 4e:dc:f4:01:3b:55:d6:d3:68:1a:e6:69:b0:5c:b8: db:78:2e:31:d4:9c:fd:32:81:a3:df:7f:91:82:32: 08:4e:14:68:f4:e8:6e:be:d9:72:04:13:98:0e:1a: 76:7e:7d:16:de:45:cc:3f:b6:ab:40:5e:23:30:ad: 78:25:ec:d0:91:09:c9:5f:98:42:d1:ca:ff:82:9a: d7:f9:94:8e:c2:3b:79:70:0f:77:cf:3d:6d:ab:c2: 93:bc:2b:a0:c0:c9:80:3e:ac:02:b3:7f:f3:c0:2c: cd:cc:eb:d1:3c:02:fc:aa:c4:c4:69:8b:b8:c5:ec: 0f:a0:ef:a5:62:a4:59:0d:e5:ad:42:0b:c6:0a:70: cd:9f:c4:b7:51:f7:f3:31:8b:5c:df:d7:8a:06:46: 73:63:7f:8b:9a:a9:2f:2f:7c:79:e8:59:40:06:4c: fb:92:8b:66:01:7a:55:6f:68:f4:ae:32:7d:d9:7e: 72:53:a5:07:dd:51:59:45:93:02:c2:b6:d0:57:3e: 8c:c6:62:20:8a:4d:11:3c:06:0b:5e:8c:1d:50:16: 7f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:6C:2E:07:58:6B:E7:60:83:7B:24:EA:4A:58:88:0F:AB:3D:37:07 X509v3 Authority Key Identifier: keyid:B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:dc:e4:cf:fa:ca:36:04:7c:1b:ec:10:fd:be:88:91:4e:dd: d3:36:84:3b:c3:ea:f3:42:f2:65:36:aa:a2:42:f3:b5:9a:79: a0:4d:9e:eb:86:79:af:27:31:66:ec:e1:f4:6c:fd:38:9b:e0: 60:7c:d4:88:48:86:c5:b4:15:91:3c:11:3c:8f:bc:53:5d:39: 2e:93:33:98:af:31:74:f3:cd:70:8a:f1:f9:3b:d1:c0:71:6b: 03:28:ce:40:73:d0:b1:ca:05:be:94:4e:72:59:79:ce:50:f7: e9:d0:65:a3:01:f3:18:e7:41:00:84:f1:46:1d:fa:b8:ef:7a: 29:5a:bc:35:91:44:03:04:89:0f:5a:3d:d5:16:c6:ba:67:c3: 08:c8:f3:b1:eb:ca:c7:9a:52:ee:f8:89:c6:bc:fe:79:a3:b3: 50:49:24:bc:e3:72:e8:de:be:16:3f:c7:5f:a9:27:68:52:20: 5b:b1:92:54:56:21:43:20:9f:79:07:bb:98:42:74:33:14:aa: 86:b7:31:cd:1f:4c:a3:18:23:63:f0:c9:27:6d:64:28:17:98: 33:a5:80:d0:2c:25:b1:04:4e:c2:fc:5e:91:f8:99:4b:e1:d6: bf:a8:20:09:22:0b:9c:98:6b:e5:5b:8e:e3:88:c3:58:b3:5e: e9:56:d3:d8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTIwRjExMC8GA1UEBRMoQjFCRDREQjAyMUY1NEM3MjYzRjNDMzUzNUY4ODM2ODQ5 QkEyRTYwRTAeFw0yNTAzMjkwNjQ1MTlaFw0yNTA0MDUwNjQ1MTlaMBgxFjAUBgNV BAMTDTY3ZTc5NmZmLTRmNGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCk6sqbyo6k7CzTv/QrzaElmxBgQ9j91f4gVn3ElNINtIzFgQ2UYWMicYVPck7c 9AE7VdbTaBrmabBcuNt4LjHUnP0ygaPff5GCMghOFGj06G6+2XIEE5gOGnZ+fRbe Rcw/tqtAXiMwrXgl7NCRCclfmELRyv+Cmtf5lI7CO3lwD3fPPW2rwpO8K6DAyYA+ rAKzf/PALM3M69E8AvyqxMRpi7jF7A+g76VipFkN5a1CC8YKcM2fxLdR9/Mxi1zf 14oGRnNjf4uaqS8vfHnoWUAGTPuSi2YBelVvaPSuMn3ZfnJTpQfdUVlFkwLCttBX PozGYiCKTRE8BgtejB1QFn8FAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkWwuB1hr 52CDeyTqSliID6s9NwcwHwYDVR0jBBgwFoAUsb1NsCH1THJj88NTX4g2hJui5g4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1MjBGLzQxQ0NCQzZFQTgx OTExRUZCOUJERUQ3MUM0RjlBRTAyL3NiMU5zQ0gxVEhKajg4TlRYNGcyaEp1aTVn NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2IxTnNDSDFUSEpqODhOVFg0ZzJoSnVpNWc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 MjBGLzQxQ0NCQzZFQTgxOTExRUZCOUJERUQ3MUM0RjlBRTAyL3NiMU5zQ0gxVEhK ajg4TlRYNGcyaEp1aTVnNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADHc5M/6yjYEfBvsEP2+iJFO3dM2hDvD6vNC8mU2qqJC87WaeaBNnuuG ea8nMWbs4fRs/Tib4GB81IhIhsW0FZE8ETyPvFNdOS6TM5ivMXTzzXCK8fk70cBx awMozkBz0LHKBb6UTnJZec5Q9+nQZaMB8xjnQQCE8UYd+rjveilavDWRRAMEiQ9a PdUWxrpnwwjI87HryseaUu74ica8/nmjs1BJJLzjcujevhY/x1+pJ2hSIFuxklRW IUMgn3kHu5hCdDMUqoa3Mc0fTKMYI2PwySdtZCgXmDOlgNAsJbEETsL8XpH4mUvh 1r+oIAkiC5yYa+VbjuOIw1izXulW09g= -----END CERTIFICATE-----Generated at Fri Apr 4 18:32:06 2025 by rpki-client