$ rpki-client -vvf rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft File: sb1NsCH1THJj88NTX4g2hJui5g4.mft (raw, json) Hash identifier: QzAcE6Y80uEbq4k37ih4IGRff66X5uUdZ2OHmUgTBNM= Subject key identifier: 23:84:CE:9D:44:13:EC:A5:5F:83:77:97:B6:29:69:97:AA:58:E8:B5 Authority key identifier: B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E Certificate issuer: /CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft Manifest number: 62 Signing time: Sat 31 May 2025 06:37:09 +0000 Manifest this update: Sat 31 May 2025 06:37:09 +0000 Manifest next update: Sat 07 Jun 2025 06:37:09 +0000 Files and hashes: 1: sb1NsCH1THJj88NTX4g2hJui5g4.crl (hash: XAQ9PAq3p8NdqAPNoxabBxQ23A6GfsIdTrWgWgfkvms=) 2: A30B17FAA81911EF862F3A56C4F9AE02.roa (hash: 5t/9vRDX7bOXj/AudhNlmGxZtmB+Rx0Lf8bwk6wLjkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:37:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E520F, serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Validity Not Before: May 31 06:37:09 2025 GMT Not After : Jun 7 06:37:09 2025 GMT Subject: CN=683aa395-4d53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:39:b8:80:f2:ca:2f:91:c6:13:c3:d9:d8:37: 90:49:77:2b:bc:e9:27:4c:c7:a0:b6:8d:db:41:44: 50:58:60:40:dd:9b:9c:ae:f8:7c:55:99:40:8e:82: 48:01:aa:de:bc:ed:df:a2:b0:48:81:2e:c4:93:fe: 14:f8:77:92:14:c4:12:42:e6:09:84:37:eb:3d:97: 3a:4e:eb:d4:dc:89:c4:a7:10:64:6c:a6:06:99:71: 22:bd:5a:c1:84:2a:e5:59:53:1a:e3:dd:22:e6:5c: 2c:83:77:9a:2f:ca:ab:65:10:2c:80:3b:d8:15:b7: e5:a2:03:58:58:f1:d4:78:8b:2d:56:d1:e3:a1:66: 43:84:64:55:ce:c5:a6:de:a8:69:08:71:33:6d:97: 02:1e:bc:51:b0:da:1b:2e:81:f8:9a:29:6e:9f:99: dd:78:1a:d0:b9:43:f8:07:1c:d5:c7:d8:0a:a1:a5: a9:7b:a0:15:23:be:bc:88:fb:47:b0:f1:bd:14:eb: cd:4c:b2:d8:08:ca:3c:1f:43:fd:81:91:c8:98:99: 68:80:f7:26:3b:4a:c4:b7:0c:ba:63:b0:d8:7f:1d: 0c:81:99:fc:f3:65:29:b1:45:d6:e9:6e:55:ba:92: b0:90:0a:38:49:a0:3e:3a:56:dd:04:43:1e:0f:4f: ae:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:84:CE:9D:44:13:EC:A5:5F:83:77:97:B6:29:69:97:AA:58:E8:B5 X509v3 Authority Key Identifier: keyid:B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:55:90:9a:60:65:a7:52:5f:5a:f9:5c:3d:79:60:3d:c0:4a: d2:f6:ae:1f:f5:81:9a:c1:20:d5:61:7b:c0:81:a5:ca:59:92: a3:f7:86:da:bd:12:db:0b:23:5f:c6:29:61:9a:f9:e7:b6:83: fd:b6:99:7e:dc:a6:27:8f:28:71:d0:13:ca:15:70:32:89:32: ca:0d:c8:ec:b3:32:a6:c5:c5:6e:b1:c3:44:ee:37:ca:ff:6f: 58:ca:04:bc:f8:dc:61:c2:bd:d3:32:17:ff:06:f6:4f:a7:ce: 4f:ef:e4:41:ff:81:31:54:56:cf:52:0c:e7:0d:47:6c:ab:65: 20:b8:9e:6d:08:0e:cb:b2:98:27:8a:b3:7e:89:8f:0b:63:cb: 9c:45:b2:1f:b3:2e:b8:6f:55:62:d5:90:77:31:f2:24:ec:bd: 5d:4c:bb:07:f3:15:38:27:5d:35:2d:93:46:d9:3a:c4:59:8d: b0:4d:80:4f:1d:9c:65:e8:5e:72:03:79:38:60:31:c1:88:4c: d7:10:46:58:4e:55:24:36:f2:12:1f:a2:c0:9d:a5:8b:5a:72: c9:b0:40:95:a4:64:4f:ca:4e:39:5d:c9:4a:42:0d:77:13:7b: da:e0:af:77:2a:88:ca:37:a5:46:25:72:d3:08:d7:0d:98:10: bd:1a:13:a5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTIwRjExMC8GA1UEBRMoQjFCRDREQjAyMUY1NEM3MjYzRjNDMzUzNUY4ODM2ODQ5 QkEyRTYwRTAeFw0yNTA1MzEwNjM3MDlaFw0yNTA2MDcwNjM3MDlaMBgxFjAUBgNV BAMTDTY4M2FhMzk1LTRkNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9ObiA8sovkcYTw9nYN5BJdyu86SdMx6C2jdtBRFBYYEDdm5yu+HxVmUCOgkgB qt687d+isEiBLsST/hT4d5IUxBJC5gmEN+s9lzpO69TcicSnEGRspgaZcSK9WsGE KuVZUxrj3SLmXCyDd5ovyqtlECyAO9gVt+WiA1hY8dR4iy1W0eOhZkOEZFXOxabe qGkIcTNtlwIevFGw2hsugfiaKW6fmd14GtC5Q/gHHNXH2Aqhpal7oBUjvryI+0ew 8b0U681MstgIyjwfQ/2BkciYmWiA9yY7SsS3DLpjsNh/HQyBmfzzZSmxRdbpblW6 krCQCjhJoD46Vt0EQx4PT65/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUI4TOnUQT 7KVfg3eXtilpl6pY6LUwHwYDVR0jBBgwFoAUsb1NsCH1THJj88NTX4g2hJui5g4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1MjBGLzQxQ0NCQzZFQTgx OTExRUZCOUJERUQ3MUM0RjlBRTAyL3NiMU5zQ0gxVEhKajg4TlRYNGcyaEp1aTVn NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2IxTnNDSDFUSEpqODhOVFg0ZzJoSnVpNWc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 MjBGLzQxQ0NCQzZFQTgxOTExRUZCOUJERUQ3MUM0RjlBRTAyL3NiMU5zQ0gxVEhK ajg4TlRYNGcyaEp1aTVnNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG1VkJpgZadSX1r5XD15YD3AStL2rh/1gZrBINVhe8CBpcpZkqP3htq9 EtsLI1/GKWGa+ee2g/22mX7cpiePKHHQE8oVcDKJMsoNyOyzMqbFxW6xw0TuN8r/ b1jKBLz43GHCvdMyF/8G9k+nzk/v5EH/gTFUVs9SDOcNR2yrZSC4nm0IDsuymCeK s36Jjwtjy5xFsh+zLrhvVWLVkHcx8iTsvV1MuwfzFTgnXTUtk0bZOsRZjbBNgE8d nGXoXnIDeThgMcGITNcQRlhOVSQ28hIfosCdpYtacsmwQJWkZE/KTjldyUpCDXcT e9rgr3cqiMo3pUYlctMI1w2YEL0aE6U= -----END CERTIFICATE-----Generated at Sat May 31 17:46:22 2025 by rpki-client