$ rpki-client -vvf rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft File: sb1NsCH1THJj88NTX4g2hJui5g4.mft (raw, json) Hash identifier: lrKpPbSPx+6PtOq7dmY++ZY6xfFz02jfEixILL8eoM4= Subject key identifier: E3:42:28:19:D2:92:FF:1C:60:6E:0B:C1:13:0E:72:C4:26:97:93:96 Authority key identifier: B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E Certificate issuer: /CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft Manifest number: 0125 Signing time: Sat 13 Jun 2026 05:42:34 +0000 Manifest this update: Sat 13 Jun 2026 05:42:34 +0000 Manifest next update: Sat 20 Jun 2026 05:42:34 +0000 Files and hashes: 1: sb1NsCH1THJj88NTX4g2hJui5g4.crl (hash: 5lC+UKSfisGzyESX9O1NSn+w8y7b68OCKRlMm6XbcGQ=) 2: A30B17FAA81911EF862F3A56C4F9AE02.roa (hash: PGZEC43Jrl4xxGDivGAOBx4e7We0intHItmZzFxukHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 05:42:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E520F, serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Validity Not Before: Jun 13 05:42:34 2026 GMT Not After : Jun 20 05:42:34 2026 GMT Subject: CN=6a2cedca-eac5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:78:ea:35:5c:08:b4:82:7c:f1:f9:dc:6e:96: 7b:93:17:b5:b5:dc:2b:98:00:a5:e8:79:05:47:fb: f3:79:89:13:3e:97:09:5f:4f:8f:71:05:7b:8b:35: b1:42:b0:9b:76:28:17:93:2f:d9:62:6d:e6:b9:1d: df:80:23:af:77:37:e1:bd:ee:a9:a9:2d:6b:d7:ce: a1:a5:b1:74:da:a4:11:a0:ae:bc:e6:1e:4c:72:e7: 5b:e9:3c:df:93:32:52:04:54:23:53:4e:70:09:66: b7:39:be:69:03:87:bb:16:42:a3:5f:1a:ea:1e:7f: b2:0c:45:22:96:06:30:ec:2b:7b:c0:fb:c3:57:36: 62:5c:df:27:5a:93:7e:ca:64:92:88:30:28:9d:b1: 4c:05:21:b1:8b:68:49:3e:37:d1:65:c9:23:07:c8: 6b:b3:4f:3f:ca:f1:b7:47:3c:86:ac:6c:5e:ef:aa: fc:66:03:d8:0a:9b:1d:4b:03:0c:3d:7f:e8:30:c2: d1:02:a0:00:ea:74:f0:1e:2a:9e:bd:b9:21:61:66: 6a:bd:11:a9:5c:33:66:ed:fe:37:02:05:11:7a:91: 58:8b:18:cd:2e:07:f1:68:d3:f3:b6:bf:04:14:c6: a6:e1:fd:a8:e2:91:43:34:09:d6:ba:d8:3f:44:68: 38:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:42:28:19:D2:92:FF:1C:60:6E:0B:C1:13:0E:72:C4:26:97:93:96 X509v3 Authority Key Identifier: keyid:B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:18:78:69:33:43:bf:08:18:5d:b0:97:83:4d:26:fe:70:58: db:62:35:d8:0e:d8:c2:ae:b8:3d:95:a5:79:32:56:a3:cb:37: 86:b2:92:27:0f:82:7f:e1:b1:a7:c7:9d:e5:1e:ab:25:fd:0d: 07:7c:d8:6d:32:07:1e:aa:ab:2c:d3:d4:ac:62:50:18:4a:b0: a7:b6:96:ff:12:5a:22:5b:17:37:be:1a:52:c3:46:3a:4e:85: a6:24:51:1a:53:98:92:a6:c4:90:7d:67:e9:d0:d7:f4:48:79: 75:3e:46:1b:b0:65:d7:30:3a:14:d3:0b:64:d0:c3:03:a9:6c: 72:de:5a:4c:17:c3:9c:7b:83:19:7d:47:a8:20:a3:82:e4:85: c8:c5:c7:32:b3:5b:55:6a:28:7f:d7:06:9e:f7:5d:b8:a1:a1: 0f:d0:3a:a1:35:28:62:aa:30:28:a3:05:c1:77:d6:8c:07:50: 47:15:f2:02:88:2a:5f:75:9f:36:d0:d6:93:d9:1d:83:4b:59: 33:04:11:79:3c:b5:a4:78:7d:43:04:ec:47:e5:87:d5:44:a2: 22:ec:35:b1:2b:1c:f1:08:56:8e:d3:1f:36:fe:c8:5d:1d:4a: 2d:fa:70:99:29:33:78:3d:46:5a:b1:0e:8e:45:9c:78:97:f7: a3:b8:b5:52 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUyMEYxMTAvBgNVBAUTKEIxQkQ0REIwMjFGNTRDNzI2M0YzQzM1MzVGODgzNjg0 OUJBMkU2MEUwHhcNMjYwNjEzMDU0MjM0WhcNMjYwNjIwMDU0MjM0WjAYMRYwFAYD VQQDEw02YTJjZWRjYS1lYWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1HjqNVwItIJ88fncbpZ7kxe1tdwrmACl6HkFR/vzeYkTPpcJX0+PcQV7izWx QrCbdigXky/ZYm3muR3fgCOvdzfhve6pqS1r186hpbF02qQRoK685h5Mcudb6Tzf kzJSBFQjU05wCWa3Ob5pA4e7FkKjXxrqHn+yDEUilgYw7Ct7wPvDVzZiXN8nWpN+ ymSSiDAonbFMBSGxi2hJPjfRZckjB8hrs08/yvG3RzyGrGxe76r8ZgPYCpsdSwMM PX/oMMLRAqAA6nTwHiqevbkhYWZqvRGpXDNm7f43AgURepFYixjNLgfxaNPztr8E FMam4f2o4pFDNAnWutg/RGg4ywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFONCKBnS kv8cYG4LwRMOcsQml5OWMB8GA1UdIwQYMBaAFLG9TbAh9UxyY/PDU1+INoSbouYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTIwRi80MUNDQkM2RUE4 MTkxMUVGQjlCREVENzFDNEY5QUUwMi9zYjFOc0NIMVRISmo4OE5UWDRnMmhKdWk1 ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NiMU5zQ0gxVEhKajg4TlRYNGcyaEp1aTVnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTIwRi80MUNDQkM2RUE4MTkxMUVGQjlCREVENzFDNEY5QUUwMi9zYjFOc0NIMVRI Smo4OE5UWDRnMmhKdWk1ZzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiRh4aTNDvwgYXbCXg00m/nBY22I12A7Ywq64PZWleTJWo8s3hrKSJw+Cf+Gx p8ed5R6rJf0NB3zYbTIHHqqrLNPUrGJQGEqwp7aW/xJaIlsXN74aUsNGOk6FpiRR GlOYkqbEkH1n6dDX9Eh5dT5GG7Bl1zA6FNMLZNDDA6lsct5aTBfDnHuDGX1HqCCj guSFyMXHMrNbVWoof9cGnvdduKGhD9A6oTUoYqowKKMFwXfWjAdQRxXyAogqX3Wf NtDWk9kdg0tZMwQReTy1pHh9QwTsR+WH1USiIuw1sSsc8QhWjtMfNv7IXR1KLfpw mSkzeD1GWrEOjkWceJf3o7i1Ug== -----END CERTIFICATE-----Generated at Sat Jun 13 23:42:07 2026 by rpki-client