$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft File: sgd9XTkKxy472IWxHzrm0qUmqe0.mft (raw, json) Hash identifier: H+0jCu0k5b2ppxYrgBQaarHNhWEYbBgipsCg/liVCIM= Subject key identifier: 73:3D:76:EE:C1:A0:97:EB:95:7A:D3:FE:A8:24:34:BA:9F:EC:48:E3 Authority key identifier: B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED Certificate issuer: /CN=A91C9B85/serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Certificate serial: 0856 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft Manifest number: 084B Signing time: Mon 22 Jun 2026 20:58:29 +0000 Manifest this update: Mon 22 Jun 2026 20:58:29 +0000 Manifest next update: Mon 29 Jun 2026 20:58:29 +0000 Files and hashes: 1: sgd9XTkKxy472IWxHzrm0qUmqe0.crl (hash: U53nTXWn0LUyqHARoSrs5ae9XOMqcP5m+e2DMmxnEa0=) 2: 53B6E5D212CF11EBA8D2C037C4F9AE02.roa (hash: xQ5Osl/g5IBEyHi+z/+JpV9FYOt4yj/DoqbHsRmNM28=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 20:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2134 (0x856) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B85, serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Validity Not Before: Jun 22 20:58:29 2026 GMT Not After : Jun 29 20:58:29 2026 GMT Subject: CN=6a39a1f5-d54b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:32:8e:45:14:a4:31:ae:22:a1:20:17:4c:d3: c3:06:2b:24:db:3e:54:1a:1d:2d:ce:87:87:cf:1d: 00:26:3e:4a:67:37:a7:22:8b:fc:c8:ee:04:3c:39: 5f:af:85:fb:d2:1b:ab:fd:38:26:4f:1a:2c:1e:8f: 38:42:c9:49:67:a3:a2:b7:b6:da:cf:11:82:f1:86: d2:2b:28:ad:6a:9b:8a:aa:bf:25:c3:cb:8a:85:2e: 4c:3a:16:97:7c:64:6b:13:be:a8:b1:77:0f:9e:be: 5e:02:1f:a8:ce:21:d2:e9:0b:ed:a5:f3:9b:7c:7c: 97:09:be:54:47:c6:ce:b8:a3:9f:40:b9:64:3c:ef: dc:0a:65:4a:0c:8b:57:b0:35:5f:3f:57:9e:17:d1: ca:96:36:7a:4d:ee:d7:6f:1f:12:d0:29:52:a7:1a: 66:c2:49:6e:e6:dd:af:36:5f:e9:57:bc:02:5a:f7: bf:64:a5:53:ce:a9:53:62:19:fc:cd:76:4c:69:df: a0:52:21:c7:ce:dc:f4:a8:ff:08:11:fe:7e:9c:06: dc:0b:10:eb:f3:8c:1c:16:fd:f1:25:42:ce:2a:dc: 27:0c:df:b4:14:75:ff:7d:4f:26:d0:ec:30:ce:de: 22:bd:bf:44:44:16:4f:2e:85:33:34:b5:f4:b0:e1: 64:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:3D:76:EE:C1:A0:97:EB:95:7A:D3:FE:A8:24:34:BA:9F:EC:48:E3 X509v3 Authority Key Identifier: keyid:B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:33:a1:7e:6b:33:23:bc:f2:72:51:a2:7f:f0:63:3a:85:82: b0:52:1c:6e:ab:d8:2e:cb:41:f5:b3:04:fa:54:dd:78:e4:76: 8f:6c:1d:f7:d5:45:7d:32:0b:30:0e:ed:8d:6b:79:7d:bc:c7: 39:5f:9f:b2:d0:1c:16:7e:68:61:b7:92:2e:31:bd:80:24:3b: 6c:04:23:c8:cd:71:ab:b6:ee:e2:3e:be:b9:f4:ec:5c:b9:7f: 59:61:1d:f1:0d:de:3a:38:e2:40:0b:a0:ca:70:90:cc:d2:08: 52:79:e7:43:f3:05:5d:00:b0:29:21:d7:e8:9e:63:7f:ce:46: 29:1f:62:df:7d:28:52:3f:5a:26:f1:6a:0a:33:86:bd:6d:c6: d0:83:5e:2e:ba:8c:44:54:d9:59:12:51:52:c3:62:58:c1:a4: 83:c9:6e:53:29:99:21:da:16:be:b9:c9:62:23:3e:37:15:75: c1:24:aa:eb:bc:91:b8:72:cb:7f:23:28:d7:61:a9:7a:a9:06: 2a:c6:b5:5c:64:4b:ae:e1:6d:d9:7f:3d:58:82:33:a1:9e:b6: f9:a8:cb:14:0b:50:d1:fc:ba:1a:cf:d7:5c:6a:67:6e:76:ec: cd:30:d7:26:84:39:f4:4a:70:6d:da:ff:fd:db:62:51:4c:0c: dd:fd:12:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCODUxMTAvBgNVBAUTKEIyMDc3RDVEMzkwQUM3MkUzQkQ4ODVCMTFGM0FFNkQy QTUyNkE5RUQwHhcNMjYwNjIyMjA1ODI5WhcNMjYwNjI5MjA1ODI5WjAYMRYwFAYD VQQDEw02YTM5YTFmNS1kNTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4DKORRSkMa4ioSAXTNPDBisk2z5UGh0tzoeHzx0AJj5KZzenIov8yO4EPDlf r4X70hur/TgmTxosHo84QslJZ6Oit7bazxGC8YbSKyitapuKqr8lw8uKhS5MOhaX fGRrE76osXcPnr5eAh+oziHS6QvtpfObfHyXCb5UR8bOuKOfQLlkPO/cCmVKDItX sDVfP1eeF9HKljZ6Te7Xbx8S0ClSpxpmwklu5t2vNl/pV7wCWve/ZKVTzqlTYhn8 zXZMad+gUiHHztz0qP8IEf5+nAbcCxDr84wcFv3xJULOKtwnDN+0FHX/fU8m0Oww zt4ivb9ERBZPLoUzNLX0sOFkYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHM9du7B oJfrlXrT/qgkNLqf7EjjMB8GA1UdIwQYMBaAFLIHfV05CscuO9iFsR865tKlJqnt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUI4NS80MkQ3QzAwQzEy Q0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5NDcySVd4SHpybTBxVW1x ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnZDlYVGtLeHk0NzJJV3hIenJtMHFVbXFlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUI4NS80MkQ3QzAwQzEyQ0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5 NDcySVd4SHpybTBxVW1xZTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjjOhfmszI7zyclGif/BjOoWCsFIcbqvYLstB9bME+lTdeOR2j2wd99VFfTIL MA7tjWt5fbzHOV+fstAcFn5oYbeSLjG9gCQ7bAQjyM1xq7bu4j6+ufTsXLl/WWEd 8Q3eOjjiQAugynCQzNIIUnnnQ/MFXQCwKSHX6J5jf85GKR9i330oUj9aJvFqCjOG vW3G0INeLrqMRFTZWRJRUsNiWMGkg8luUymZIdoWvrnJYiM+NxV1wSSq67yRuHLL fyMo12GpeqkGKsa1XGRLruFt2X89WIIzoZ62+ajLFAtQ0fy6Gs/XXGpnbnbszTDX JoQ59Epwbdr//dtiUUwM3f0STA== -----END CERTIFICATE-----Generated at Wed Jun 24 11:27:40 2026 by rpki-client