$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft File: SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft (raw, json) Hash identifier: 8aDzz9JssuzNp/oZxyGmvER4N0CDiTSFZXxSgdMQoAs= Subject key identifier: A9:9A:88:B2:72:1F:9C:FD:97:90:19:54:0E:FD:1B:42:DC:59:B1:AC Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Certificate serial: 0869 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft Manifest number: 0837 Signing time: Wed 22 Oct 2025 21:38:12 +0000 Manifest this update: Wed 22 Oct 2025 21:38:11 +0000 Manifest next update: Wed 29 Oct 2025 21:38:11 +0000 Files and hashes: 1: SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl (hash: +RxLAGnrPXIl/HJ9o3zE6Bqs+8vVUfanSD3cu/rdhew=) 2: DDBCA666F18911EAA922EB1FC4F9AE02.roa (hash: 1QBFWULUSDuABI4M5A9+pwghN2xnBCwM1ByVsOf4OoA=) 3: 2F220BBA95AA11ED84962E13C4F9AE02.roa (hash: tNP9+2nzm8wftPIS9csYEXaUq+mqRmQ5CYwfV6WquDE=) 4: 13279E2C124011ED9E430A4CC4F9AE02.roa (hash: 6ixsZ+U2NSefvVb36mPlfQcQ8GQSyjxzHzBxsc46ols=) 5: 67FF0960076911EF8569F157C4F9AE02.roa (hash: QiY4AYjpAOfJUKdo2bWSjao/45XX+9doU5egkrwqJ78=) 6: 68C5CFBE076911EF8569F157C4F9AE02.roa (hash: StO4PQ6ffihfvooMv19fGDjAg2vQbPTwXqeeTRzTihQ=) 7: 42CC52ECC68111EFAE49FF5FC4F9AE02.roa (hash: jw0xm0XxEdyeTKSbIjmLJq8kg/lPA+5yh93w4gEj5Qo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 21:38:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2153 (0x869) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA10A, serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Validity Not Before: Oct 22 21:38:11 2025 GMT Not After : Oct 29 21:38:11 2025 GMT Subject: CN=68f94ec3-e38c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:63:41:1a:38:dc:a0:47:7d:69:a7:e7:8e:8b: a9:a3:d3:d3:89:b6:70:8f:23:4a:34:c1:b6:28:f4: 61:52:da:95:d3:dc:ef:48:bf:c7:d4:31:14:e6:19: 3f:6f:b3:16:a7:34:1c:48:eb:fc:f2:29:49:cf:00: 31:9d:3a:2e:52:c1:c6:be:cf:ad:f5:ab:b6:f5:84: b0:cb:38:67:cf:ea:6e:f3:8b:30:8b:63:a7:ce:d2: c7:82:14:01:3b:fd:a5:f2:ef:04:de:a6:82:bb:6f: a0:a0:5e:df:63:1f:60:7f:a0:f6:5f:b5:9a:4d:e6: 83:6f:e4:50:02:3b:73:3f:b9:7b:b5:75:5d:6a:03: 51:e7:6f:e9:4b:45:6c:54:c6:3f:98:38:b5:dd:55: 39:b4:09:90:9b:86:b2:72:b8:77:ed:7d:c6:4a:30: 72:66:9f:d6:01:a0:1c:11:63:60:11:62:f7:b8:21: 4a:aa:a7:e8:a6:3d:b6:e8:95:31:d6:a9:64:9f:13: 0c:a5:6a:4f:49:0b:e8:15:bc:74:ae:44:53:eb:b2: 20:51:3d:b5:78:7b:a7:6b:0b:00:3b:1d:c7:b0:55: 31:e4:23:62:96:90:a8:ac:12:5a:f0:9c:d9:72:6b: c8:03:06:83:0e:36:8b:dd:25:29:e7:f5:84:81:95: 9d:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:9A:88:B2:72:1F:9C:FD:97:90:19:54:0E:FD:1B:42:DC:59:B1:AC X509v3 Authority Key Identifier: keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:24:73:48:32:b0:95:e2:7e:bb:ca:8c:61:ff:16:21:b5:57: 0e:99:59:3d:1f:a0:9b:ef:5e:b4:64:c3:7f:fc:9d:87:7e:70: f0:f8:94:31:a6:7a:41:bd:92:c2:1a:45:ce:ad:26:8f:67:0e: d6:65:fc:38:62:6c:7d:15:1f:e3:19:c3:c2:1c:37:bc:92:f5: d1:e3:41:79:22:0c:0c:79:15:49:06:b8:0b:ee:0a:1f:7f:bf: c6:e7:ad:a3:52:6e:15:90:2c:08:88:32:f7:6f:5f:e1:d2:8e: 12:4d:74:0c:20:dd:8a:56:66:fd:65:69:14:aa:1f:ef:57:3a: dc:61:e6:9d:42:2f:a0:59:51:2d:40:a5:ca:f1:05:97:e7:ce: dd:6a:20:04:e3:0e:38:16:99:c8:e1:8a:22:91:68:c0:74:ab: b6:35:3b:e6:42:0a:cc:6f:48:d3:61:9a:08:22:3a:14:0d:c3: ab:18:83:1f:11:fa:ca:b9:10:57:c9:fe:6d:5b:e3:5a:d2:a8: 48:a4:8a:ff:b7:c8:5c:e4:ce:13:aa:33:69:02:b7:8b:e4:6a: 85:ef:62:59:fc:d1:2a:68:2b:9b:c6:54:03:89:1c:fe:d7:2f: 5b:c9:7d:8d:eb:44:31:91:47:89:a4:71:c1:b4:4e:00:7f:e7: a0:97:b5:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExMEExMTAvBgNVBAUTKDQ5QjVBNDY0NjNFM0EyQjcwQTMzNDQ2MDE0RUJGNDBF NUM5RUZFNzQwHhcNMjUxMDIyMjEzODExWhcNMjUxMDI5MjEzODExWjAYMRYwFAYD VQQDEw02OGY5NGVjMy1lMzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+mNBGjjcoEd9aafnjoupo9PTibZwjyNKNMG2KPRhUtqV09zvSL/H1DEU5hk/ b7MWpzQcSOv88ilJzwAxnTouUsHGvs+t9au29YSwyzhnz+pu84swi2OnztLHghQB O/2l8u8E3qaCu2+goF7fYx9gf6D2X7WaTeaDb+RQAjtzP7l7tXVdagNR52/pS0Vs VMY/mDi13VU5tAmQm4aycrh37X3GSjByZp/WAaAcEWNgEWL3uCFKqqfopj226JUx 1qlknxMMpWpPSQvoFbx0rkRT67IgUT21eHunawsAOx3HsFUx5CNilpCorBJa8JzZ cmvIAwaDDjaL3SUp5/WEgZWdUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKmaiLJy H5z9l5AZVA79G0LcWbGsMB8GA1UdIwQYMBaAFEm1pGRj46K3CjNEYBTr9A5cnv50 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEwQS9FMzQwMjA0Q0Yx ODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9yY0tNMFJnRk92MERseWVf blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NiV2taR1Bqb3JjS00wUmdGT3YwRGx5ZV9uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEwQS9FMzQwMjA0Q0YxODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9y Y0tNMFJnRk92MERseWVfblEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEJHNIMrCV4n67yoxh/xYhtVcOmVk9H6Cb7160ZMN//J2HfnDw+JQx pnpBvZLCGkXOrSaPZw7WZfw4Ymx9FR/jGcPCHDe8kvXR40F5IgwMeRVJBrgL7gof f7/G562jUm4VkCwIiDL3b1/h0o4STXQMIN2KVmb9ZWkUqh/vVzrcYeadQi+gWVEt QKXK8QWX587daiAE4w44FpnI4YoikWjAdKu2NTvmQgrMb0jTYZoIIjoUDcOrGIMf EfrKuRBXyf5tW+Na0qhIpIr/t8hc5M4TqjNpAreL5GqF72JZ/NEqaCubxlQDiRz+ 1y9byX2N60QxkUeJpHHBtE4Af+egl7Xz -----END CERTIFICATE-----Generated at Thu Oct 23 23:56:34 2025 by rpki-client