$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft File: SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft (raw, json) Hash identifier: jW+k5WILH//XgR1WbuSmg9Yiiz17CgrHde/vWqdDfYs= Subject key identifier: 64:6C:52:61:DC:7A:81:40:4A:C0:D2:07:0F:C7:63:11:CB:6C:37:D2 Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Certificate serial: 08E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft Manifest number: 08B0 Signing time: Wed 10 Jun 2026 20:35:53 +0000 Manifest this update: Wed 10 Jun 2026 20:35:52 +0000 Manifest next update: Wed 17 Jun 2026 20:35:52 +0000 Files and hashes: 1: SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl (hash: Hy57syeAz4wsDyPZGtc6AuttssnvA5Ey9VHVw/PxIf8=) 2: 42CC52ECC68111EFAE49FF5FC4F9AE02.roa (hash: 2qHKJj29Stc4i29leTShILZcyf4Ep+Zzk1ZPI4rXDjo=) 3: 2F220BBA95AA11ED84962E13C4F9AE02.roa (hash: C/gCcxezA3MWUMIZZfARocJWxFwgULaiK11HqUVAJI8=) 4: DDBCA666F18911EAA922EB1FC4F9AE02.roa (hash: YfrxXGO42q+6/ia+oj0y9mxJpbnGoWuIY/TIKAzAdhM=) 5: 67FF0960076911EF8569F157C4F9AE02.roa (hash: OgjXzdyKLb9e3ER0qSH5PPgDrGrIXmxcmLjxocZP9q0=) 6: 68C5CFBE076911EF8569F157C4F9AE02.roa (hash: BCGlhRLPOFUBZ5h3/NBuifkyt/vUvXmkmcPgcapZGk0=) 7: 13279E2C124011ED9E430A4CC4F9AE02.roa (hash: 1BxQB/90BOAp9PRDMceVIt4omBUpX65e17xrsW9Ey98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 20:35:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2280 (0x8e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA10A, serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Validity Not Before: Jun 10 20:35:52 2026 GMT Not After : Jun 17 20:35:52 2026 GMT Subject: CN=6a29caa9-aa41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:17:83:ed:ed:20:2e:84:b6:0c:3c:17:6f:c2: 20:e6:2c:fb:a3:4a:45:ef:95:fb:97:f9:c9:6c:05: 17:1c:d0:a5:75:e2:42:3d:cc:9a:99:1e:a9:52:79: e8:03:23:24:4d:18:b3:ff:3a:4c:5d:68:a4:8f:8f: a7:6c:2e:aa:e2:40:ee:bd:2b:6d:d5:2d:28:2a:90: 65:d6:09:d1:99:62:46:27:4e:82:5f:cf:2b:73:ce: 4a:c0:d9:6a:49:a8:24:ec:02:62:a9:b0:bf:6a:69: a0:f7:c6:72:4e:4c:9d:c1:c0:3e:42:8f:d9:01:59: 8b:bf:5e:d0:53:f6:ff:79:2d:25:4d:05:7a:2c:10: b3:79:6e:a1:f6:95:49:85:08:03:12:6b:a6:cc:1b: 8e:27:13:47:86:c6:df:ec:08:ee:7c:ff:16:ab:b0: 3d:61:57:37:a4:a7:e2:1f:d8:45:cf:a4:b6:ba:e5: 94:e1:d0:a6:5a:47:80:15:1f:af:9d:e4:ff:93:56: 2a:c8:0c:7a:f6:f4:b0:04:3e:94:b6:3c:52:db:b8: 05:e7:6d:4a:39:d9:27:80:47:37:1d:03:89:dc:e1: e6:a8:ca:60:10:94:41:c0:29:be:fc:54:c7:7a:77: 4c:ed:a6:65:54:d1:43:7a:45:91:1d:f8:58:13:6c: ca:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:6C:52:61:DC:7A:81:40:4A:C0:D2:07:0F:C7:63:11:CB:6C:37:D2 X509v3 Authority Key Identifier: keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:4f:d8:61:68:14:d6:86:14:3d:c4:03:ce:aa:6f:84:d9:09: d4:5f:b1:98:83:3e:ed:31:55:39:34:3b:34:61:10:31:4d:4f: cc:1d:5c:08:65:e3:a8:6f:8c:8c:4b:fa:8d:b5:92:34:64:7a: bf:23:2d:58:fb:23:9d:4e:c5:c0:60:e3:39:26:e9:ba:fe:9b: 78:ea:98:69:0c:31:a5:d7:5c:58:d2:db:08:c4:fc:0e:ed:2f: 63:c8:c4:29:20:c9:74:d9:e8:ef:e9:ab:11:d5:bb:ce:04:77: 72:bb:e2:c1:a4:b9:c0:92:41:60:74:cd:37:86:a5:37:fa:51: 34:d5:84:60:1d:ce:c3:5e:91:8d:a1:87:d3:ff:fb:4f:d9:1a: c3:50:c6:7c:09:b7:3e:9c:b3:b1:1f:65:13:97:f3:b6:f6:4b: 25:df:84:da:31:a9:93:c3:52:50:03:b7:66:ed:e4:19:6e:24: 59:1d:10:7c:03:73:2f:89:2a:0b:17:6f:f4:07:bb:f3:da:28: 5a:01:49:10:95:d9:0a:54:86:79:12:fe:d5:ad:a1:d4:80:02: 51:2d:11:42:10:78:7c:7d:39:c3:97:39:5d:73:c1:8a:87:1f: 48:31:46:23:83:fd:e3:cf:d7:ae:f5:64:c9:10:4a:13:a0:0c: d5:e9:ec:ae -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExMEExMTAvBgNVBAUTKDQ5QjVBNDY0NjNFM0EyQjcwQTMzNDQ2MDE0RUJGNDBF NUM5RUZFNzQwHhcNMjYwNjEwMjAzNTUyWhcNMjYwNjE3MjAzNTUyWjAYMRYwFAYD VQQDEw02YTI5Y2FhOS1hYTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8BeD7e0gLoS2DDwXb8Ig5iz7o0pF75X7l/nJbAUXHNCldeJCPcyamR6pUnno AyMkTRiz/zpMXWikj4+nbC6q4kDuvStt1S0oKpBl1gnRmWJGJ06CX88rc85KwNlq Sagk7AJiqbC/ammg98ZyTkydwcA+Qo/ZAVmLv17QU/b/eS0lTQV6LBCzeW6h9pVJ hQgDEmumzBuOJxNHhsbf7AjufP8Wq7A9YVc3pKfiH9hFz6S2uuWU4dCmWkeAFR+v neT/k1YqyAx69vSwBD6UtjxS27gF521KOdkngEc3HQOJ3OHmqMpgEJRBwCm+/FTH endM7aZlVNFDekWRHfhYE2zKTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGRsUmHc eoFASsDSBw/HYxHLbDfSMB8GA1UdIwQYMBaAFEm1pGRj46K3CjNEYBTr9A5cnv50 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEwQS9FMzQwMjA0Q0Yx ODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9yY0tNMFJnRk92MERseWVf blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NiV2taR1Bqb3JjS00wUmdGT3YwRGx5ZV9uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEwQS9FMzQwMjA0Q0YxODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9y Y0tNMFJnRk92MERseWVfblEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXk/YYWgU1oYUPcQDzqpvhNkJ1F+xmIM+7TFVOTQ7NGEQMU1PzB1cCGXjqG+M jEv6jbWSNGR6vyMtWPsjnU7FwGDjOSbpuv6beOqYaQwxpddcWNLbCMT8Du0vY8jE KSDJdNno7+mrEdW7zgR3crviwaS5wJJBYHTNN4alN/pRNNWEYB3Ow16RjaGH0//7 T9kaw1DGfAm3PpyzsR9lE5fztvZLJd+E2jGpk8NSUAO3Zu3kGW4kWR0QfANzL4kq Cxdv9Ae789ooWgFJEJXZClSGeRL+1a2h1IACUS0RQhB4fH05w5c5XXPBiocfSDFG I4P948/XrvVkyRBKE6AM1ensrg== -----END CERTIFICATE-----Generated at Thu Jun 11 20:50:27 2026 by rpki-client