$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft File: sgd9XTkKxy472IWxHzrm0qUmqe0.mft (raw, json) Hash identifier: sm4JC0ShrEE0aoGSEVaIPj2HojonwXUTUJGsBdpvHgw= Subject key identifier: DC:A3:88:10:0E:4A:A7:BE:59:C1:6B:7B:62:AD:3C:13:2F:63:1A:79 Authority key identifier: B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED Certificate issuer: /CN=A91C9B85/serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Certificate serial: 0825 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft Manifest number: 081B Signing time: Tue 24 Mar 2026 20:47:35 +0000 Manifest this update: Tue 24 Mar 2026 20:47:35 +0000 Manifest next update: Tue 31 Mar 2026 20:47:35 +0000 Files and hashes: 1: sgd9XTkKxy472IWxHzrm0qUmqe0.crl (hash: bebaAbnOwgnCg67+ftYC7wqE59KeOyf6AEaR8CpfKrs=) 2: 53B6E5D212CF11EBA8D2C037C4F9AE02.roa (hash: nYn9/0bys+IR+qGNmk02yzjh5gK9SsZ2WJi4ObbzJLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:47:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2085 (0x825) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B85, serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Validity Not Before: Mar 24 20:47:35 2026 GMT Not After : Mar 31 20:47:35 2026 GMT Subject: CN=69c2f867-d3fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:96:c6:22:8c:07:af:a9:65:d1:62:3e:c8:1e: 74:d6:7e:d6:da:1d:0e:a4:fc:f0:10:b4:a5:32:bc: 30:67:a0:00:5f:84:b6:71:4e:60:7a:d5:ec:1f:f6: 3c:14:58:0b:38:8a:6a:e4:6a:28:66:ca:d4:6c:45: ce:68:58:ab:7f:07:b7:ec:e7:9c:cb:f4:9d:53:0c: 11:5c:10:20:8b:59:cf:bb:0e:6e:53:6b:b4:1a:b6: a7:01:e6:7a:96:ba:b6:d5:54:7b:06:f4:dc:e1:62: ac:c5:89:9e:e5:b2:37:93:61:39:57:e7:50:56:7c: 57:eb:e6:30:ec:eb:ff:3b:a6:86:b8:35:e9:24:7c: a8:03:a2:ba:dd:c8:bd:6c:11:3c:a8:fe:a2:77:58: f8:82:fe:bf:0a:08:ed:bd:6e:56:50:6f:a1:cf:a6: db:db:bb:0c:a3:e4:f0:47:5e:8f:87:50:51:e2:de: 79:69:f9:a5:17:54:d7:c4:ad:d8:9b:f5:46:bc:4a: 10:24:eb:7a:14:03:6a:ab:d9:c4:7d:51:55:75:a7: 1d:10:8c:b6:80:b7:87:83:ab:57:00:22:0c:e8:96: 95:15:a4:6c:67:38:5f:3b:f0:35:e1:11:75:77:50: e3:1f:2c:dd:c4:49:72:6e:7a:6c:6a:29:c2:ee:b2: 24:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:A3:88:10:0E:4A:A7:BE:59:C1:6B:7B:62:AD:3C:13:2F:63:1A:79 X509v3 Authority Key Identifier: keyid:B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:0f:c9:3f:ad:8d:cd:a0:4b:99:36:e4:0d:e4:ea:74:f4:05: 3b:8b:8f:ce:84:b5:96:05:fa:aa:9a:0a:92:e1:0f:6f:c9:e7: a4:a4:f6:16:51:6c:1b:bc:42:5a:c2:bf:95:e6:b3:4a:3a:ff: 25:a9:7d:cb:e5:71:5b:93:44:22:1f:68:e8:bd:7a:7b:ba:22: 72:c5:7e:da:bb:8c:ec:23:f5:48:f6:02:9b:34:9b:9e:90:19: 01:fe:55:74:fb:e8:f0:6d:a0:18:56:0b:5d:cf:9a:cb:e5:3e: 1d:91:d7:0b:f6:b3:09:42:70:38:29:5d:d6:f2:8f:36:de:36: d1:3a:ab:0c:a7:8c:99:db:11:e1:d7:d3:35:e1:03:70:b1:a1: 03:fc:d4:4d:2d:89:39:6c:cf:99:73:d9:5e:ff:6a:80:0f:0a: c5:c8:fa:b1:38:6c:dc:36:a2:b5:23:4b:01:ca:da:14:9d:6a: a0:12:20:6c:b2:a4:1b:96:84:75:67:12:5e:6c:89:cb:d6:14: 4b:c7:19:d3:47:38:22:bf:5f:a8:dd:ea:30:c3:a5:48:9b:af: 3e:2f:25:57:aa:9f:b8:5f:ff:79:5e:ca:ea:10:02:13:4a:f5: d0:e2:39:78:7e:60:dd:aa:19:69:c1:37:8b:6a:72:47:e5:c6: 9c:78:de:7d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCODUxMTAvBgNVBAUTKEIyMDc3RDVEMzkwQUM3MkUzQkQ4ODVCMTFGM0FFNkQy QTUyNkE5RUQwHhcNMjYwMzI0MjA0NzM1WhcNMjYwMzMxMjA0NzM1WjAYMRYwFAYD VQQDEw02OWMyZjg2Ny1kM2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZbGIowHr6ll0WI+yB501n7W2h0OpPzwELSlMrwwZ6AAX4S2cU5getXsH/Y8 FFgLOIpq5GooZsrUbEXOaFirfwe37Oecy/SdUwwRXBAgi1nPuw5uU2u0GranAeZ6 lrq21VR7BvTc4WKsxYme5bI3k2E5V+dQVnxX6+Yw7Ov/O6aGuDXpJHyoA6K63ci9 bBE8qP6id1j4gv6/CgjtvW5WUG+hz6bb27sMo+TwR16Ph1BR4t55afmlF1TXxK3Y m/VGvEoQJOt6FANqq9nEfVFVdacdEIy2gLeHg6tXACIM6JaVFaRsZzhfO/A14RF1 d1DjHyzdxElybnpsainC7rIkMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNyjiBAO Sqe+WcFre2KtPBMvYxp5MB8GA1UdIwQYMBaAFLIHfV05CscuO9iFsR865tKlJqnt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUI4NS80MkQ3QzAwQzEy Q0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5NDcySVd4SHpybTBxVW1x ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnZDlYVGtLeHk0NzJJV3hIenJtMHFVbXFlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUI4NS80MkQ3QzAwQzEyQ0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5 NDcySVd4SHpybTBxVW1xZTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALQ/JP62NzaBLmTbkDeTqdPQFO4uPzoS1lgX6qpoKkuEPb8nnpKT2FlFsG7xC WsK/leazSjr/Jal9y+VxW5NEIh9o6L16e7oicsV+2ruM7CP1SPYCmzSbnpAZAf5V dPvo8G2gGFYLXc+ay+U+HZHXC/azCUJwOCld1vKPNt420TqrDKeMmdsR4dfTNeED cLGhA/zUTS2JOWzPmXPZXv9qgA8Kxcj6sThs3DaitSNLAcraFJ1qoBIgbLKkG5aE dWcSXmyJy9YUS8cZ00c4Ir9fqN3qMMOlSJuvPi8lV6qfuF//eV7K6hACE0r10OI5 eH5g3aoZacE3i2pyR+XGnHjefQ== -----END CERTIFICATE-----Generated at Thu Mar 26 08:02:49 2026 by rpki-client