$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft File: SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft (raw, json) Hash identifier: jXhbhQfZXLyZbr3dFC8thOXVMhLGzascXC1CTWWWJN0= Subject key identifier: 19:20:96:8F:37:15:91:9F:58:A9:8F:E9:8D:8E:35:CA:46:B0:48:F1 Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Certificate serial: 08B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft Manifest number: 0881 Signing time: Tue 10 Mar 2026 20:19:01 +0000 Manifest this update: Tue 10 Mar 2026 20:19:00 +0000 Manifest next update: Tue 17 Mar 2026 20:19:00 +0000 Files and hashes: 1: SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl (hash: zL0GBaH/0kqruVKUk/cffdMk3Ax5NsZddxHXsLE7//Y=) 2: 68C5CFBE076911EF8569F157C4F9AE02.roa (hash: BCGlhRLPOFUBZ5h3/NBuifkyt/vUvXmkmcPgcapZGk0=) 3: 67FF0960076911EF8569F157C4F9AE02.roa (hash: OgjXzdyKLb9e3ER0qSH5PPgDrGrIXmxcmLjxocZP9q0=) 4: 2F220BBA95AA11ED84962E13C4F9AE02.roa (hash: C/gCcxezA3MWUMIZZfARocJWxFwgULaiK11HqUVAJI8=) 5: 13279E2C124011ED9E430A4CC4F9AE02.roa (hash: 1BxQB/90BOAp9PRDMceVIt4omBUpX65e17xrsW9Ey98=) 6: 42CC52ECC68111EFAE49FF5FC4F9AE02.roa (hash: 2qHKJj29Stc4i29leTShILZcyf4Ep+Zzk1ZPI4rXDjo=) 7: DDBCA666F18911EAA922EB1FC4F9AE02.roa (hash: YfrxXGO42q+6/ia+oj0y9mxJpbnGoWuIY/TIKAzAdhM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Mar 2026 20:19:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2233 (0x8b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA10A, serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Validity Not Before: Mar 10 20:19:00 2026 GMT Not After : Mar 17 20:19:00 2026 GMT Subject: CN=69b07cb5-4405 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:01:d5:76:30:17:5c:ae:7a:34:5b:d8:6e:a5: 76:e7:7b:d0:6c:b0:91:52:34:09:08:97:24:73:65: 99:08:2a:19:fa:c3:7b:d0:0f:47:ae:73:0e:b3:9c: bd:17:0e:77:82:b6:05:a9:27:06:66:44:1d:0a:c4: 1d:a5:c4:26:ac:33:eb:8d:ac:d7:03:0b:2a:06:52: 75:8c:b7:b6:85:d6:0b:3b:79:b7:1f:c5:ee:40:c0: aa:ae:5c:a9:61:c6:f5:1d:1b:19:c9:5b:63:32:2f: 4c:13:3f:65:91:f6:4b:2f:3d:38:e5:7a:49:e8:d8: d1:72:7f:77:06:29:b9:ba:65:5c:e1:59:be:29:57: 88:8f:c7:59:1c:3f:47:fd:15:e8:0e:5e:62:3a:6e: 89:d7:5d:cd:f5:06:c7:1d:da:c8:4e:2a:99:e2:f8: 10:13:d1:36:e7:f0:39:eb:1d:31:cf:98:16:7b:31: 7c:34:5c:65:14:66:cd:85:9b:22:11:5c:74:59:0a: c5:9e:a5:3b:c3:36:ad:96:70:7c:b3:72:70:ba:dc: 5a:8d:26:ee:1e:70:fc:b5:ac:bc:12:f6:d8:8e:c8: 86:00:c6:ad:a4:18:1a:ba:0f:82:54:99:05:df:cd: 9c:aa:06:04:b2:72:68:c9:44:8a:ef:d2:c9:e4:5e: 02:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:20:96:8F:37:15:91:9F:58:A9:8F:E9:8D:8E:35:CA:46:B0:48:F1 X509v3 Authority Key Identifier: keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:b2:4e:9c:64:e5:51:93:98:79:38:59:2c:9c:3f:9a:41:5e: ff:c0:38:28:d5:45:a9:bf:98:e5:c0:ec:d5:8d:70:38:15:18: 81:ae:d8:1f:5b:46:c0:86:d4:70:29:3b:50:92:d4:f5:12:dd: cf:ac:d8:9e:d6:e9:8a:04:10:4d:83:fa:77:7b:80:52:26:8e: 75:5f:c0:f1:3d:9d:d1:07:14:81:a8:78:fe:29:bc:e2:70:56: a5:dc:91:8c:2c:c6:d5:09:55:03:c0:0a:cd:c8:c5:d2:e4:73: 16:67:7d:d7:be:e5:d3:df:7a:94:32:80:d2:59:2a:90:da:18: 8c:35:04:4a:a8:7b:f8:81:66:8b:92:cd:50:8c:1a:66:cd:76: 2d:3c:10:d0:08:8d:3b:d5:f4:c2:8b:06:32:15:cb:b0:ac:4f: 5c:71:bd:81:68:fb:77:53:53:4d:b1:72:19:3d:9a:17:b5:e0: 97:f8:90:d5:d1:18:06:4d:76:94:4b:24:76:8d:d6:e3:4c:e8: 2c:b3:e7:3c:0e:32:bb:45:ba:10:40:17:8e:58:d6:20:dd:8c: bb:a5:8d:75:9e:d4:1c:f6:b5:22:82:a7:c4:12:8a:61:a8:87: f0:24:01:c0:d4:5f:c4:6a:75:34:c3:3f:5e:9f:77:45:b9:3e: 74:6f:16:30 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExMEExMTAvBgNVBAUTKDQ5QjVBNDY0NjNFM0EyQjcwQTMzNDQ2MDE0RUJGNDBF NUM5RUZFNzQwHhcNMjYwMzEwMjAxOTAwWhcNMjYwMzE3MjAxOTAwWjAYMRYwFAYD VQQDEw02OWIwN2NiNS00NDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmwHVdjAXXK56NFvYbqV253vQbLCRUjQJCJckc2WZCCoZ+sN70A9HrnMOs5y9 Fw53grYFqScGZkQdCsQdpcQmrDPrjazXAwsqBlJ1jLe2hdYLO3m3H8XuQMCqrlyp Ycb1HRsZyVtjMi9MEz9lkfZLLz045XpJ6NjRcn93Bim5umVc4Vm+KVeIj8dZHD9H /RXoDl5iOm6J113N9QbHHdrITiqZ4vgQE9E25/A56x0xz5gWezF8NFxlFGbNhZsi EVx0WQrFnqU7wzatlnB8s3JwutxajSbuHnD8tay8EvbYjsiGAMatpBgaug+CVJkF 382cqgYEsnJoyUSK79LJ5F4CYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBkglo83 FZGfWKmP6Y2ONcpGsEjxMB8GA1UdIwQYMBaAFEm1pGRj46K3CjNEYBTr9A5cnv50 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEwQS9FMzQwMjA0Q0Yx ODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9yY0tNMFJnRk92MERseWVf blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NiV2taR1Bqb3JjS00wUmdGT3YwRGx5ZV9uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEwQS9FMzQwMjA0Q0YxODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9y Y0tNMFJnRk92MERseWVfblEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAArJOnGTlUZOYeThZLJw/mkFe/8A4KNVFqb+Y5cDs1Y1wOBUYga7YH1tGwIbU cCk7UJLU9RLdz6zYntbpigQQTYP6d3uAUiaOdV/A8T2d0QcUgah4/im84nBWpdyR jCzG1QlVA8AKzcjF0uRzFmd9177l0996lDKA0lkqkNoYjDUESqh7+IFmi5LNUIwa Zs12LTwQ0AiNO9X0wosGMhXLsKxPXHG9gWj7d1NTTbFyGT2aF7Xgl/iQ1dEYBk12 lEskdo3W40zoLLPnPA4yu0W6EEAXjljWIN2Mu6WNdZ7UHPa1IoKnxBKKYaiH8CQB wNRfxGp1NMM/Xp93Rbk+dG8WMA== -----END CERTIFICATE-----Generated at Thu Mar 12 11:00:48 2026 by rpki-client