$ rpki-client -vvf rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft File: sb1NsCH1THJj88NTX4g2hJui5g4.mft (raw, json) Hash identifier: vzEWFfTopAS+kayA4akBXGqezKXBx23BX5tAihT2Yaw= Subject key identifier: CF:1D:2B:7C:6E:C3:A3:F4:A1:88:A4:2C:0B:0B:06:83:4D:FD:69:17 Authority key identifier: B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E Certificate issuer: /CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft Manifest number: FD Signing time: Wed 25 Mar 2026 05:24:39 +0000 Manifest this update: Wed 25 Mar 2026 05:24:38 +0000 Manifest next update: Wed 01 Apr 2026 05:24:38 +0000 Files and hashes: 1: sb1NsCH1THJj88NTX4g2hJui5g4.crl (hash: QaXlvxQqPL3/2zUs8H0b+2wmgWG0QM0hwn5l9EIFYkc=) 2: A30B17FAA81911EF862F3A56C4F9AE02.roa (hash: PGZEC43Jrl4xxGDivGAOBx4e7We0intHItmZzFxukHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E520F, serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Validity Not Before: Mar 25 05:24:38 2026 GMT Not After : Apr 1 05:24:38 2026 GMT Subject: CN=69c37197-4819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3d:cb:9a:30:fa:e2:05:ca:72:75:4d:94:89: b0:45:d8:dd:bd:e8:c9:96:88:90:c5:80:99:aa:97: b1:28:ad:b6:12:35:73:c3:ce:92:57:72:29:60:3f: b0:3e:80:c9:f0:a6:e4:e4:09:d2:89:2f:9e:a6:05: 7e:a3:d6:e6:4f:19:91:57:da:3a:8b:dd:e8:5a:5a: fe:b1:d3:02:53:47:73:93:b7:e3:8e:4f:22:36:5e: 23:27:c3:3b:42:f4:7e:7f:17:38:78:22:6b:b8:58: e5:6c:99:e9:0b:41:b9:a7:f5:dc:44:6e:fd:f6:fb: e9:e6:83:9f:b9:07:13:68:b2:51:e4:7e:9a:a0:6e: b5:44:4f:05:aa:59:65:f9:b8:09:58:96:ce:04:79: c8:7a:2b:bf:22:05:73:14:c6:93:f7:68:19:4a:8c: d9:04:66:b7:1b:27:b7:7d:e4:77:31:4d:1e:62:da: bd:a6:01:b2:ce:51:d4:00:ee:66:b6:3c:93:b2:df: 21:3a:6c:23:ad:81:c4:9c:67:9b:02:3c:b8:d6:0a: 61:b5:60:d5:39:f3:17:8f:31:96:48:33:68:5c:4b: 11:43:25:04:3b:a6:c7:1d:4a:af:48:7e:e0:15:9c: 72:fc:03:c6:93:73:64:cb:53:55:65:42:32:b8:de: 8d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:1D:2B:7C:6E:C3:A3:F4:A1:88:A4:2C:0B:0B:06:83:4D:FD:69:17 X509v3 Authority Key Identifier: keyid:B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:d6:74:37:69:91:b4:b9:38:f9:3e:62:0b:65:43:d5:72:21: eb:b0:76:4f:26:29:61:f8:0f:60:90:35:e1:9b:19:80:58:f3: 26:21:c5:f1:0a:73:9d:86:7e:4b:6a:7f:aa:dc:ed:10:c2:54: 5e:7c:8d:d1:e5:ec:0f:ce:3d:0b:5c:28:37:e1:84:45:78:24: 79:e3:95:fd:c5:02:64:22:f2:0e:b4:fd:66:a5:c4:c6:73:f6: 6d:10:1a:2f:a4:53:c7:07:a8:fc:4e:6a:33:b6:b5:98:f1:2f: 5f:e1:19:69:eb:91:34:32:39:89:11:29:01:cd:67:f5:42:c8: 26:30:32:10:18:01:4d:3d:5a:1f:37:ca:af:59:6b:5f:dc:be: 2f:c3:54:72:fc:8a:09:4a:7c:bf:b6:14:f3:0c:27:b2:77:7a: 92:4b:dc:fd:66:ec:52:ab:d4:f7:a7:25:17:b6:94:44:29:4c: 70:95:32:de:a7:5b:3d:0f:74:63:e3:47:96:c1:d2:88:ab:71: 59:93:db:20:ff:79:c3:b1:51:0f:de:a4:ab:06:fd:c1:8b:5f: 4b:f4:03:1e:b6:8b:6e:28:83:28:5a:1b:4e:32:29:a1:66:24: d1:e0:ba:df:5d:83:82:5c:5b:67:29:b5:f4:a0:08:f8:ca:9f: 62:ec:bf:c2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUyMEYxMTAvBgNVBAUTKEIxQkQ0REIwMjFGNTRDNzI2M0YzQzM1MzVGODgzNjg0 OUJBMkU2MEUwHhcNMjYwMzI1MDUyNDM4WhcNMjYwNDAxMDUyNDM4WjAYMRYwFAYD VQQDEw02OWMzNzE5Ny00ODE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArD3LmjD64gXKcnVNlImwRdjdvejJloiQxYCZqpexKK22EjVzw86SV3IpYD+w PoDJ8Kbk5AnSiS+epgV+o9bmTxmRV9o6i93oWlr+sdMCU0dzk7fjjk8iNl4jJ8M7 QvR+fxc4eCJruFjlbJnpC0G5p/XcRG799vvp5oOfuQcTaLJR5H6aoG61RE8Fqlll +bgJWJbOBHnIeiu/IgVzFMaT92gZSozZBGa3Gye3feR3MU0eYtq9pgGyzlHUAO5m tjyTst8hOmwjrYHEnGebAjy41gphtWDVOfMXjzGWSDNoXEsRQyUEO6bHHUqvSH7g FZxy/APGk3Nky1NVZUIyuN6NawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM8dK3xu w6P0oYikLAsLBoNN/WkXMB8GA1UdIwQYMBaAFLG9TbAh9UxyY/PDU1+INoSbouYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTIwRi80MUNDQkM2RUE4 MTkxMUVGQjlCREVENzFDNEY5QUUwMi9zYjFOc0NIMVRISmo4OE5UWDRnMmhKdWk1 ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NiMU5zQ0gxVEhKajg4TlRYNGcyaEp1aTVnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTIwRi80MUNDQkM2RUE4MTkxMUVGQjlCREVENzFDNEY5QUUwMi9zYjFOc0NIMVRI Smo4OE5UWDRnMmhKdWk1ZzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGdZ0N2mRtLk4+T5iC2VD1XIh67B2TyYpYfgPYJA14ZsZgFjzJiHF8QpznYZ+ S2p/qtztEMJUXnyN0eXsD849C1woN+GERXgkeeOV/cUCZCLyDrT9ZqXExnP2bRAa L6RTxweo/E5qM7a1mPEvX+EZaeuRNDI5iREpAc1n9ULIJjAyEBgBTT1aHzfKr1lr X9y+L8NUcvyKCUp8v7YU8wwnsnd6kkvc/WbsUqvU96clF7aURClMcJUy3qdbPQ90 Y+NHlsHSiKtxWZPbIP95w7FRD96kqwb9wYtfS/QDHraLbiiDKFobTjIpoWYk0eC6 312DglxbZym19KAI+MqfYuy/wg== -----END CERTIFICATE-----Generated at Thu Mar 26 23:47:24 2026 by rpki-client