$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft File: SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft (raw, json) Hash identifier: whoLx+F0Vw5d+jhE5DxVWAp6pWxkSqJNMrWWsZtp1Kc= Subject key identifier: 78:6D:1A:1C:B5:47:48:4E:FE:32:56:50:99:1E:02:1C:0D:B1:4E:03 Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Certificate serial: 08D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft Manifest number: 0899 Signing time: Sun 26 Apr 2026 20:31:45 +0000 Manifest this update: Sun 26 Apr 2026 20:31:44 +0000 Manifest next update: Sun 03 May 2026 20:31:44 +0000 Files and hashes: 1: SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl (hash: ef9V3S1klaFx3T/W2txMfOm6vECLmTIMQSitcV8nx98=) 2: 42CC52ECC68111EFAE49FF5FC4F9AE02.roa (hash: 2qHKJj29Stc4i29leTShILZcyf4Ep+Zzk1ZPI4rXDjo=) 3: 67FF0960076911EF8569F157C4F9AE02.roa (hash: OgjXzdyKLb9e3ER0qSH5PPgDrGrIXmxcmLjxocZP9q0=) 4: DDBCA666F18911EAA922EB1FC4F9AE02.roa (hash: YfrxXGO42q+6/ia+oj0y9mxJpbnGoWuIY/TIKAzAdhM=) 5: 68C5CFBE076911EF8569F157C4F9AE02.roa (hash: BCGlhRLPOFUBZ5h3/NBuifkyt/vUvXmkmcPgcapZGk0=) 6: 13279E2C124011ED9E430A4CC4F9AE02.roa (hash: 1BxQB/90BOAp9PRDMceVIt4omBUpX65e17xrsW9Ey98=) 7: 2F220BBA95AA11ED84962E13C4F9AE02.roa (hash: C/gCcxezA3MWUMIZZfARocJWxFwgULaiK11HqUVAJI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:31:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2257 (0x8d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA10A, serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Validity Not Before: Apr 26 20:31:44 2026 GMT Not After : May 3 20:31:44 2026 GMT Subject: CN=69ee7631-b6cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d9:7f:f1:88:bb:b0:1c:48:2a:c5:89:d7:10: 9b:fd:3a:43:ea:1f:65:e1:0a:e7:91:8e:7c:22:d1: d1:31:50:72:95:f5:8f:cb:3c:b4:53:7a:2c:97:5a: 41:ae:6e:cb:b6:c3:28:13:2c:cf:f9:a9:f0:93:de: 13:20:17:5d:64:13:5e:04:d3:e9:3a:ee:4a:90:5e: a9:7d:8e:c4:ce:ed:49:59:a4:21:99:44:a6:15:56: ad:0f:24:98:44:56:b3:a6:73:35:c7:54:97:37:20: ae:a3:de:3e:90:80:01:c1:40:4b:aa:43:c6:62:d6: 3f:5e:89:3b:9e:2f:42:9d:5c:c6:08:cd:3d:97:b9: 65:de:74:7c:2b:be:50:23:a4:71:98:1d:4d:aa:75: c1:d8:8f:80:bc:24:5c:42:d3:da:3b:fe:8a:e1:56: 13:87:ec:35:a7:1a:02:2b:e3:9d:a8:b0:eb:85:d7: 47:fc:f8:94:c3:5d:87:ce:9b:52:b1:cf:05:b6:fd: 3e:bb:44:ba:24:f6:30:8e:7e:65:ec:38:44:78:45: fd:a7:87:82:21:e1:1c:cc:4f:05:c3:eb:76:92:a9: 96:58:fb:01:47:6f:51:8d:0a:c3:3a:4a:7d:a9:81: 85:9f:10:a3:f6:08:e4:9a:e1:d9:d5:a7:61:19:8d: 29:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:6D:1A:1C:B5:47:48:4E:FE:32:56:50:99:1E:02:1C:0D:B1:4E:03 X509v3 Authority Key Identifier: keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:ab:97:2b:3c:7d:82:8f:b4:85:b9:0c:c2:3d:00:9f:70:c0: d1:21:f0:89:77:56:05:b4:81:74:4a:e2:12:48:c6:01:85:55: b6:9a:58:3c:74:9e:4f:03:ef:1f:9a:e9:80:b0:79:ce:4d:1b: b6:0f:17:fe:81:2f:15:34:ba:ca:b4:94:cc:5a:37:f3:3f:c3: ec:a3:b2:7a:24:7a:3a:96:93:fd:61:a8:e4:ec:05:28:e9:04: 78:e3:01:b4:97:fc:d0:ff:7b:09:3b:78:a1:da:37:c8:23:c1: 04:11:64:5d:28:d3:0e:be:b9:69:73:6f:2b:ba:46:0d:d3:07: e0:bb:6f:dd:34:21:1b:af:0a:ef:a1:d9:0f:cf:2f:08:40:5b: 53:69:2d:78:fd:a5:37:77:2e:f7:b8:57:70:47:4f:a4:f5:ea: 5a:86:7d:28:71:79:17:fa:06:d4:87:aa:ec:07:0b:79:fe:84: 87:85:f0:6a:ef:31:98:22:41:04:2d:96:42:68:99:14:da:4a: e0:64:cb:66:53:5c:9b:c7:d0:67:d1:5b:78:fe:16:bb:44:55: a4:92:a0:65:aa:26:18:07:6c:75:46:9b:5b:6e:1e:b4:cc:c5: da:51:e7:12:78:6e:fc:d1:69:b7:5c:52:c1:cb:9d:e8:47:52: 84:51:05:57 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExMEExMTAvBgNVBAUTKDQ5QjVBNDY0NjNFM0EyQjcwQTMzNDQ2MDE0RUJGNDBF NUM5RUZFNzQwHhcNMjYwNDI2MjAzMTQ0WhcNMjYwNTAzMjAzMTQ0WjAYMRYwFAYD VQQDEw02OWVlNzYzMS1iNmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydl/8Yi7sBxIKsWJ1xCb/TpD6h9l4QrnkY58ItHRMVBylfWPyzy0U3osl1pB rm7LtsMoEyzP+anwk94TIBddZBNeBNPpOu5KkF6pfY7Ezu1JWaQhmUSmFVatDySY RFazpnM1x1SXNyCuo94+kIABwUBLqkPGYtY/Xok7ni9CnVzGCM09l7ll3nR8K75Q I6RxmB1NqnXB2I+AvCRcQtPaO/6K4VYTh+w1pxoCK+OdqLDrhddH/PiUw12HzptS sc8Ftv0+u0S6JPYwjn5l7DhEeEX9p4eCIeEczE8Fw+t2kqmWWPsBR29RjQrDOkp9 qYGFnxCj9gjkmuHZ1adhGY0pEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHhtGhy1 R0hO/jJWUJkeAhwNsU4DMB8GA1UdIwQYMBaAFEm1pGRj46K3CjNEYBTr9A5cnv50 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEwQS9FMzQwMjA0Q0Yx ODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9yY0tNMFJnRk92MERseWVf blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NiV2taR1Bqb3JjS00wUmdGT3YwRGx5ZV9uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEwQS9FMzQwMjA0Q0YxODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9y Y0tNMFJnRk92MERseWVfblEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkauXKzx9go+0hbkMwj0An3DA0SHwiXdWBbSBdEriEkjGAYVVtppYPHSeTwPv H5rpgLB5zk0btg8X/oEvFTS6yrSUzFo38z/D7KOyeiR6OpaT/WGo5OwFKOkEeOMB tJf80P97CTt4odo3yCPBBBFkXSjTDr65aXNvK7pGDdMH4Ltv3TQhG68K76HZD88v CEBbU2kteP2lN3cu97hXcEdPpPXqWoZ9KHF5F/oG1Ieq7AcLef6Eh4Xwau8xmCJB BC2WQmiZFNpK4GTLZlNcm8fQZ9FbeP4Wu0RVpJKgZaomGAdsdUabW24etMzF2lHn Enhu/NFpt1xSwcud6EdShFEFVw== -----END CERTIFICATE-----Generated at Mon Apr 27 12:39:13 2026 by rpki-client