$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft File: SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft (raw, json) Hash identifier: aThrQUHNFUxcHSD6vJkViJLQpvssoaWw82qE4tWeSVw= Subject key identifier: 26:07:19:FC:84:10:EB:5D:BF:DC:59:12:F7:11:4D:3D:43:4B:E5:BB Authority key identifier: 49:47:5B:59:75:F1:97:98:95:A3:C6:E4:41:83:E4:BC:A2:E8:34:6F Certificate issuer: /CN=A91BC4FF/serialNumber=49475B5975F1979895A3C6E44183E4BCA2E8346F Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft Manifest number: 0116 Signing time: Wed 25 Mar 2026 05:04:22 +0000 Manifest this update: Wed 25 Mar 2026 05:04:21 +0000 Manifest next update: Wed 01 Apr 2026 05:04:21 +0000 Files and hashes: 1: SUdbWXXxl5iVo8bkQYPkvKLoNG8.crl (hash: fD1EptnTM6xQUrdWWYJUODGyQdH1068FzEoz6NHp3MQ=) 2: 35525B92845611EFB053C341C4F9AE02.roa (hash: nap5DwScCHSxl7+vobvju05szU4kvHjXe5lhp9A3q7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.crl rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:04:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC4FF, serialNumber=49475B5975F1979895A3C6E44183E4BCA2E8346F Validity Not Before: Mar 25 05:04:21 2026 GMT Not After : Apr 1 05:04:21 2026 GMT Subject: CN=69c36cd6-9884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:33:58:7d:a2:8b:3e:f6:34:f8:2b:af:dc:ed: 79:85:29:61:fe:2a:63:02:c2:45:c9:40:2a:f3:c1: 4f:0f:0f:4f:50:5a:d5:ce:ac:fe:e9:51:51:8f:3e: 71:e7:31:6f:c6:97:c6:62:d2:be:7a:b1:ac:71:7d: 72:20:1f:1a:42:13:4b:8e:d0:a3:02:cc:68:83:73: 80:2e:1e:4c:84:cb:37:2b:c9:d5:a6:d3:4e:b3:21: 6d:9d:51:54:e7:3c:4c:bb:3f:a1:46:79:a3:74:fe: c1:9e:60:d8:cd:3a:cf:02:1a:73:70:5f:99:6e:ed: 4c:a7:03:ef:3b:c9:aa:a2:cd:14:16:10:e0:53:ee: 6d:a6:88:76:25:35:db:cc:3f:e5:6f:37:e8:1a:0a: 37:24:6e:ff:54:dc:30:5c:0e:2e:8f:73:b9:e3:63: 34:b0:9e:de:bf:d0:a0:c3:81:94:4d:92:da:0a:a4: 2d:18:f5:f3:74:0e:e1:b9:ce:f7:49:ee:1f:57:08: 3e:4a:9b:f0:c4:26:a9:2b:e3:09:3d:0e:ff:a2:55: 33:85:50:99:8e:18:cc:4e:61:06:9e:59:02:ba:0e: cc:1f:9d:0b:07:1b:cd:4b:37:9a:80:80:f6:e5:6f: fd:18:20:27:d4:b1:d6:ed:f5:aa:8c:36:07:14:29: 5d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:07:19:FC:84:10:EB:5D:BF:DC:59:12:F7:11:4D:3D:43:4B:E5:BB X509v3 Authority Key Identifier: keyid:49:47:5B:59:75:F1:97:98:95:A3:C6:E4:41:83:E4:BC:A2:E8:34:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:6d:b6:df:6e:59:3b:30:3b:57:41:e5:fd:77:46:f2:99:95: 4a:ed:01:28:ee:0e:de:03:68:d9:4d:f7:e2:1b:6b:90:6d:44: 6f:77:d6:48:f3:b2:fc:f4:35:04:e6:c2:3a:a9:cb:3b:1b:09: c6:29:87:00:94:9c:bf:45:b1:20:ac:58:24:99:1c:69:42:9e: de:23:4b:98:c4:7e:f9:77:62:c3:66:b1:41:14:a1:20:f8:11: 18:3c:1e:3f:b2:a0:11:31:38:ba:d4:79:1d:8a:8e:44:9c:e1: 48:47:63:cc:e9:fb:33:96:70:d2:95:c7:98:b7:a7:76:22:1e: 6e:3a:ee:ac:c1:e6:fe:51:f9:9b:91:eb:47:8e:30:b5:26:36: 7f:b7:78:6d:42:d6:27:ae:d7:01:6e:48:d9:c9:6c:7f:e5:9a: f7:ba:e6:65:64:70:fc:c9:42:cb:9a:d4:e1:9e:6d:09:2b:1b: 50:0d:0e:f6:78:81:ca:21:89:9b:68:e1:59:f2:75:06:2f:1c: 7b:03:e3:42:f4:f6:c5:57:7e:80:67:c1:1d:37:c7:f4:b7:a5: c7:3f:ab:4d:ef:9d:4f:c7:24:65:60:89:4e:3b:a5:46:f7:fd: 7c:44:b8:fb:d4:ca:1b:0e:1e:20:af:17:27:96:0b:71:cd:60: 2e:4d:8b:be -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM0RkYxMTAvBgNVBAUTKDQ5NDc1QjU5NzVGMTk3OTg5NUEzQzZFNDQxODNFNEJD QTJFODM0NkYwHhcNMjYwMzI1MDUwNDIxWhcNMjYwNDAxMDUwNDIxWjAYMRYwFAYD VQQDEw02OWMzNmNkNi05ODg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzNYfaKLPvY0+Cuv3O15hSlh/ipjAsJFyUAq88FPDw9PUFrVzqz+6VFRjz5x 5zFvxpfGYtK+erGscX1yIB8aQhNLjtCjAsxog3OALh5MhMs3K8nVptNOsyFtnVFU 5zxMuz+hRnmjdP7BnmDYzTrPAhpzcF+Zbu1MpwPvO8mqos0UFhDgU+5tpoh2JTXb zD/lbzfoGgo3JG7/VNwwXA4uj3O542M0sJ7ev9Cgw4GUTZLaCqQtGPXzdA7huc73 Se4fVwg+SpvwxCapK+MJPQ7/olUzhVCZjhjMTmEGnlkCug7MH50LBxvNSzeagID2 5W/9GCAn1LHW7fWqjDYHFCldpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCYHGfyE EOtdv9xZEvcRTT1DS+W7MB8GA1UdIwQYMBaAFElHW1l18ZeYlaPG5EGD5Lyi6DRv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzRGRi85QzU2QkU0Mjg0 NTUxMUVGQjc2RDI3NDBDNEY5QUUwMi9TVWRiV1hYeGw1aVZvOGJrUVlQa3ZLTG9O RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NVZGJXWFh4bDVpVm84YmtRWVBrdktMb05HOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzRGRi85QzU2QkU0Mjg0NTUxMUVGQjc2RDI3NDBDNEY5QUUwMi9TVWRiV1hYeGw1 aVZvOGJrUVlQa3ZLTG9ORzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAk222325ZOzA7V0Hl/XdG8pmVSu0BKO4O3gNo2U334htrkG1Eb3fWSPOy/PQ1 BObCOqnLOxsJximHAJScv0WxIKxYJJkcaUKe3iNLmMR++Xdiw2axQRShIPgRGDwe P7KgETE4utR5HYqORJzhSEdjzOn7M5Zw0pXHmLendiIebjrurMHm/lH5m5HrR44w tSY2f7d4bULWJ67XAW5I2clsf+Wa97rmZWRw/MlCy5rU4Z5tCSsbUA0O9niByiGJ m2jhWfJ1Bi8cewPjQvT2xVd+gGfBHTfH9Lelxz+rTe+dT8ckZWCJTjulRvf9fES4 +9TKGw4eIK8XJ5YLcc1gLk2Lvg== -----END CERTIFICATE-----Generated at Thu Mar 26 18:23:59 2026 by rpki-client