$ rpki-client -vvf rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft File: sb1NsCH1THJj88NTX4g2hJui5g4.mft (raw, json) Hash identifier: 8rRivzko4Uq56iJhCyu7nUvlbdNu70xWNOX6S0gI4xk= Subject key identifier: 20:E5:CA:07:72:68:92:B0:F9:5C:9E:2D:92:62:CE:3C:94:91:CC:46 Authority key identifier: B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E Certificate issuer: /CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft Manifest number: B3 Signing time: Mon 03 Nov 2025 06:05:06 +0000 Manifest this update: Mon 03 Nov 2025 06:05:06 +0000 Manifest next update: Mon 10 Nov 2025 06:05:06 +0000 Files and hashes: 1: sb1NsCH1THJj88NTX4g2hJui5g4.crl (hash: N2L0LA7hMnWUlvJonHNBG7QNRMeLE0hICQwyawn+j90=) 2: A30B17FAA81911EF862F3A56C4F9AE02.roa (hash: 6sFK3IOISiUObcshTaAhJEDmqO5j9CtjdCqW8qlBcT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:05:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E520F, serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Validity Not Before: Nov 3 06:05:06 2025 GMT Not After : Nov 10 06:05:06 2025 GMT Subject: CN=69084612-caaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:3b:d7:eb:f0:ae:bb:fe:54:73:57:17:ff:2d: 45:d6:e9:67:31:e9:29:1d:c6:5a:48:07:66:f6:05: 41:13:64:2a:b2:0d:02:f1:02:30:59:bb:78:d5:d2: 3c:66:a2:26:1a:d3:07:2d:77:85:ca:94:59:ea:f1: 1a:a0:92:23:8a:c8:60:64:0b:83:16:16:16:76:e8: b1:ed:ed:95:c2:60:0b:85:c1:41:2d:46:f2:6f:47: 3b:ab:34:65:b8:b9:34:a4:ec:34:42:1a:7f:59:5e: b9:84:52:6e:00:df:43:68:01:3d:89:67:ab:40:e4: c4:21:38:ba:af:21:ab:d0:f5:36:86:b7:86:da:c1: be:24:7d:b3:88:9b:2d:80:a8:1a:51:48:ea:c6:2c: a6:b2:58:88:d2:c1:17:3e:13:3e:0e:20:c6:53:e8: b1:d0:a0:40:ad:62:ee:8c:e6:42:d5:37:cc:7d:78: 70:e9:12:0b:48:36:41:ca:d9:91:fb:28:17:7f:c6: 3c:25:3d:68:47:c2:33:80:34:5a:5c:49:d8:23:f5: 42:19:7a:6c:45:85:fd:5b:6a:c9:a1:18:92:b5:ca: 8b:ff:6a:83:53:96:07:43:71:d3:37:19:d5:90:13: e3:55:af:00:68:1c:42:bd:56:4c:cb:b3:5a:52:55: af:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:E5:CA:07:72:68:92:B0:F9:5C:9E:2D:92:62:CE:3C:94:91:CC:46 X509v3 Authority Key Identifier: keyid:B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:38:ae:de:24:78:3c:de:5c:40:bc:c7:61:2c:d5:8c:77:36: 8e:1a:1e:c1:6c:01:37:a9:63:c5:6a:58:2f:e4:6f:f0:95:34: d1:f6:83:c1:61:07:1f:e9:f3:1b:6a:e3:f3:85:d5:bd:32:f8: d5:81:cb:57:7e:36:76:8e:b4:29:60:69:7e:ee:a1:b5:da:fc: 94:21:fc:04:e5:61:ec:f5:a0:f1:21:cd:de:1c:d1:1c:6e:b7: 7c:f2:56:2f:1c:cf:ca:5f:dd:1b:d0:02:6a:2f:42:4b:52:17: 37:48:38:c1:be:fa:76:a9:b3:96:62:f7:51:bf:fb:eb:70:a7: 57:a0:83:98:6c:98:6c:33:8a:11:87:51:81:62:39:90:f0:0e: 80:4a:90:66:d0:bd:41:a4:cf:41:ea:b4:bf:e2:ce:18:e6:14: 9d:d4:19:fa:5f:29:f1:d2:84:ac:9f:72:e0:be:6e:77:f4:ad: f1:59:92:8d:8e:a7:05:fc:fa:cd:ed:17:03:e0:cb:94:3b:6b: ad:37:6d:3c:3d:a9:bb:16:87:45:56:5e:4d:8b:7c:40:d2:c5: d8:cb:3e:df:da:6a:c1:28:87:16:6f:90:6a:28:52:4a:3e:52: 72:46:4c:ac:ba:3a:6c:ce:81:e5:0e:bf:9e:69:51:0b:69:9e: 58:56:fe:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUyMEYxMTAvBgNVBAUTKEIxQkQ0REIwMjFGNTRDNzI2M0YzQzM1MzVGODgzNjg0 OUJBMkU2MEUwHhcNMjUxMTAzMDYwNTA2WhcNMjUxMTEwMDYwNTA2WjAYMRYwFAYD VQQDEw02OTA4NDYxMi1jYWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7TvX6/Cuu/5Uc1cX/y1F1ulnMekpHcZaSAdm9gVBE2Qqsg0C8QIwWbt41dI8 ZqImGtMHLXeFypRZ6vEaoJIjishgZAuDFhYWduix7e2VwmALhcFBLUbyb0c7qzRl uLk0pOw0Qhp/WV65hFJuAN9DaAE9iWerQOTEITi6ryGr0PU2hreG2sG+JH2ziJst gKgaUUjqxiymsliI0sEXPhM+DiDGU+ix0KBArWLujOZC1TfMfXhw6RILSDZBytmR +ygXf8Y8JT1oR8IzgDRaXEnYI/VCGXpsRYX9W2rJoRiStcqL/2qDU5YHQ3HTNxnV kBPjVa8AaBxCvVZMy7NaUlWvpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDlygdy aJKw+VyeLZJizjyUkcxGMB8GA1UdIwQYMBaAFLG9TbAh9UxyY/PDU1+INoSbouYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTIwRi80MUNDQkM2RUE4 MTkxMUVGQjlCREVENzFDNEY5QUUwMi9zYjFOc0NIMVRISmo4OE5UWDRnMmhKdWk1 ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NiMU5zQ0gxVEhKajg4TlRYNGcyaEp1aTVnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTIwRi80MUNDQkM2RUE4MTkxMUVGQjlCREVENzFDNEY5QUUwMi9zYjFOc0NIMVRI Smo4OE5UWDRnMmhKdWk1ZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEOK7eJHg83lxAvMdhLNWMdzaOGh7BbAE3qWPFalgv5G/wlTTR9oPB YQcf6fMbauPzhdW9MvjVgctXfjZ2jrQpYGl+7qG12vyUIfwE5WHs9aDxIc3eHNEc brd88lYvHM/KX90b0AJqL0JLUhc3SDjBvvp2qbOWYvdRv/vrcKdXoIOYbJhsM4oR h1GBYjmQ8A6ASpBm0L1BpM9B6rS/4s4Y5hSd1Bn6Xynx0oSsn3Lgvm539K3xWZKN jqcF/PrN7RcD4MuUO2utN208Pam7FodFVl5Ni3xA0sXYyz7f2mrBKIcWb5BqKFJK PlJyRkysujpszoHlDr+eaVELaZ5YVv7u -----END CERTIFICATE-----Generated at Tue Nov 4 18:05:39 2025 by rpki-client