$ rpki-client -vvf rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft File: sb1NsCH1THJj88NTX4g2hJui5g4.mft (raw, json) Hash identifier: gk27VrhmXKzB/uQ/r0N5zH64XTxwdHuvjEGibHlyW/c= Subject key identifier: 61:ED:DA:1E:27:51:50:34:53:C6:0D:E4:C9:6D:B5:1D:BA:B8:C4:C6 Authority key identifier: B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E Certificate issuer: /CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Certificate serial: 9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft Manifest number: 9C Signing time: Wed 17 Sep 2025 07:03:32 +0000 Manifest this update: Wed 17 Sep 2025 07:03:32 +0000 Manifest next update: Wed 24 Sep 2025 07:03:32 +0000 Files and hashes: 1: sb1NsCH1THJj88NTX4g2hJui5g4.crl (hash: kcH7p0B+5a6yL9Sk4fx7+OtUraIyLK8XLVNzSjENpu4=) 2: A30B17FAA81911EF862F3A56C4F9AE02.roa (hash: 6sFK3IOISiUObcshTaAhJEDmqO5j9CtjdCqW8qlBcT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:03:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E520F, serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Validity Not Before: Sep 17 07:03:32 2025 GMT Not After : Sep 24 07:03:32 2025 GMT Subject: CN=68ca5d44-6bc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a4:a1:7c:49:7d:3c:57:8c:93:94:0a:a7:bf: 08:08:03:8e:c8:75:70:b7:4a:53:41:9e:98:e3:5a: 06:24:b4:f6:86:d4:d7:cb:7c:a9:ff:b3:1b:b2:df: 71:06:0b:57:dc:f7:b2:fe:e2:08:a2:ba:30:7b:64: c9:76:f5:a8:2c:04:e3:7b:98:a7:52:15:b9:d7:c8: c4:46:f9:c8:7d:5e:55:53:41:e2:fa:17:65:bf:ea: 19:82:dd:4a:b7:fe:73:30:e7:39:f8:3c:eb:de:fb: 41:cd:94:bb:78:c4:bb:4c:11:96:1f:49:a3:57:c9: 5a:a4:53:27:cc:9b:01:3e:34:fe:97:c5:5c:b0:3b: 89:4c:0a:4c:ed:e1:9d:95:d2:ef:40:43:21:44:c5: 67:fd:96:05:7c:be:1e:cb:ba:54:f0:6a:86:b0:6e: 32:b4:19:0b:03:37:43:03:f5:82:3b:f3:f3:9e:1b: 2e:cd:d8:39:f0:51:1e:77:eb:b4:61:89:15:52:1e: 9f:c3:da:27:0b:dd:5c:4d:b8:22:18:a6:76:9a:75: 10:97:7f:15:36:fb:b8:a6:77:5e:59:c3:6f:f6:6b: cb:1f:f2:30:3f:d1:94:d8:db:3f:a8:3d:e4:a3:88: 1a:ec:2c:d6:6f:f8:0a:e1:71:3b:5a:88:23:a5:9b: 05:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:ED:DA:1E:27:51:50:34:53:C6:0D:E4:C9:6D:B5:1D:BA:B8:C4:C6 X509v3 Authority Key Identifier: keyid:B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:b2:0b:e7:14:59:a9:6b:cc:fa:f3:b7:34:49:bd:8c:51:b3: 0a:35:e9:94:20:f3:0b:f1:f1:82:ca:14:77:42:77:78:35:6b: 74:22:82:93:b0:a5:88:df:fe:cb:ff:a6:61:3e:16:9a:91:c9: 14:de:0c:b8:79:98:da:2d:05:f3:d7:cc:58:43:33:8e:be:aa: eb:a2:4d:b3:a3:9f:9f:da:8f:c9:52:a4:44:de:ed:ba:fd:0b: 92:d0:0a:39:b0:5e:40:4a:d7:d2:6a:79:25:08:ff:f1:40:cd: 3c:07:0c:c1:93:0c:5b:69:af:4b:2f:05:d1:5b:ac:e4:7a:fa: 82:3c:b6:04:f2:4d:fa:1f:e2:77:a7:e6:4f:63:9a:41:5b:fe: 07:c0:8a:f0:08:87:c8:9e:fe:74:b1:74:24:c1:88:eb:19:61: df:20:45:07:c0:f2:cc:4b:81:17:d8:1e:8f:dd:a7:5f:1d:0b: 2b:89:f0:27:9e:e0:e6:1d:1e:b1:a2:34:ca:ea:5e:a2:ad:29: 93:39:21:ee:49:32:5d:7c:97:dc:c5:89:9c:86:ac:35:2f:2e: 4b:0b:34:43:80:f9:98:5c:01:d4:a9:00:13:29:05:fe:40:3d: fc:63:e9:29:04:cf:00:04:ed:3f:76:95:c0:da:8a:cc:8f:2b: 44:e9:ea:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUyMEYxMTAvBgNVBAUTKEIxQkQ0REIwMjFGNTRDNzI2M0YzQzM1MzVGODgzNjg0 OUJBMkU2MEUwHhcNMjUwOTE3MDcwMzMyWhcNMjUwOTI0MDcwMzMyWjAYMRYwFAYD VQQDEw02OGNhNWQ0NC02YmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaShfEl9PFeMk5QKp78ICAOOyHVwt0pTQZ6Y41oGJLT2htTXy3yp/7Mbst9x BgtX3Pey/uIIorowe2TJdvWoLATje5inUhW518jERvnIfV5VU0Hi+hdlv+oZgt1K t/5zMOc5+Dzr3vtBzZS7eMS7TBGWH0mjV8lapFMnzJsBPjT+l8VcsDuJTApM7eGd ldLvQEMhRMVn/ZYFfL4ey7pU8GqGsG4ytBkLAzdDA/WCO/Pznhsuzdg58FEed+u0 YYkVUh6fw9onC91cTbgiGKZ2mnUQl38VNvu4pndeWcNv9mvLH/IwP9GU2Ns/qD3k o4ga7CzWb/gK4XE7WogjpZsFIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGHt2h4n UVA0U8YN5MlttR26uMTGMB8GA1UdIwQYMBaAFLG9TbAh9UxyY/PDU1+INoSbouYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTIwRi80MUNDQkM2RUE4 MTkxMUVGQjlCREVENzFDNEY5QUUwMi9zYjFOc0NIMVRISmo4OE5UWDRnMmhKdWk1 ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NiMU5zQ0gxVEhKajg4TlRYNGcyaEp1aTVnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTIwRi80MUNDQkM2RUE4MTkxMUVGQjlCREVENzFDNEY5QUUwMi9zYjFOc0NIMVRI Smo4OE5UWDRnMmhKdWk1ZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvsgvnFFmpa8z687c0Sb2MUbMKNemUIPML8fGCyhR3Qnd4NWt0IoKT sKWI3/7L/6ZhPhaakckU3gy4eZjaLQXz18xYQzOOvqrrok2zo5+f2o/JUqRE3u26 /QuS0Ao5sF5AStfSanklCP/xQM08BwzBkwxbaa9LLwXRW6zkevqCPLYE8k36H+J3 p+ZPY5pBW/4HwIrwCIfInv50sXQkwYjrGWHfIEUHwPLMS4EX2B6P3adfHQsrifAn nuDmHR6xojTK6l6irSmTOSHuSTJdfJfcxYmchqw1Ly5LCzRDgPmYXAHUqQATKQX+ QD38Y+kpBM8ABO0/dpXA2orMjytE6ert -----END CERTIFICATE-----Generated at Fri Sep 19 05:31:41 2025 by rpki-client