$ rpki-client -vvf rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft File: sb1NsCH1THJj88NTX4g2hJui5g4.mft (raw, json) Hash identifier: t/bWlNAKjgWlOjFytjvEU1C0yE4RiRRYUqPJ28vtedQ= Subject key identifier: 73:98:D3:FA:7E:B8:DD:58:1F:79:31:31:82:6D:3E:F7:3D:20:D1:23 Authority key identifier: B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E Certificate issuer: /CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Certificate serial: F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft Manifest number: F1 Signing time: Mon 02 Mar 2026 15:19:45 +0000 Manifest this update: Mon 02 Mar 2026 15:19:44 +0000 Manifest next update: Mon 09 Mar 2026 15:19:44 +0000 Files and hashes: 1: sb1NsCH1THJj88NTX4g2hJui5g4.crl (hash: HSqwB0nPC0vouBbuBs5MMcUDJJWjf2i6G0SPnLQLegA=) 2: A30B17FAA81911EF862F3A56C4F9AE02.roa (hash: PGZEC43Jrl4xxGDivGAOBx4e7We0intHItmZzFxukHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:19:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E520F, serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Validity Not Before: Mar 2 15:19:44 2026 GMT Not After : Mar 9 15:19:44 2026 GMT Subject: CN=69a5aa91-272b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:87:b4:96:ed:4f:9e:7a:5d:6b:df:76:38:37: 2d:fe:39:bb:11:86:ef:05:b5:84:6d:ed:3d:d3:ac: fb:db:d8:8c:d9:b7:49:c1:99:cd:e5:4d:df:29:c7: 3b:b7:a7:5c:d9:c2:ab:b5:30:65:d7:e3:d0:f7:be: 85:43:a3:2d:d8:93:d1:29:68:ec:eb:4a:7c:a1:5f: 5a:f2:c0:ae:0a:8e:97:3d:88:57:37:9f:16:e8:bb: 38:27:7e:e6:12:cc:fa:5f:03:c3:f8:2a:1b:a3:88: ba:01:d2:53:da:04:80:91:84:2d:03:bf:75:0a:d7: 43:07:e6:fb:a5:46:15:b2:f2:f8:f8:a7:e8:0c:e7: 41:2c:84:f7:88:11:2a:08:20:10:52:03:56:74:e3: 9d:b2:ef:41:6f:ce:f1:df:88:a5:53:f7:be:b2:06: 06:fa:4d:e5:19:2a:0f:f9:78:1b:ad:f3:89:c3:f9: d8:1c:00:ef:77:64:59:23:0f:6d:11:8f:ee:c6:cf: 04:3b:41:a1:e6:02:57:9f:21:9e:f7:b4:f6:03:8c: 60:ac:c3:85:f7:b6:69:ef:3b:d2:5e:e3:0b:10:97: ec:85:3d:20:22:12:69:eb:b5:3e:21:b2:e8:ec:0d: f3:30:c2:9f:01:79:8d:8b:2e:4d:64:02:a0:0e:8a: 5c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:98:D3:FA:7E:B8:DD:58:1F:79:31:31:82:6D:3E:F7:3D:20:D1:23 X509v3 Authority Key Identifier: keyid:B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:57:bf:83:37:75:62:4c:1f:64:1c:e9:89:cd:dd:c5:b4:51: bc:61:f4:9b:e0:19:2e:90:6f:00:76:28:9f:1c:d5:73:b1:06: 5d:70:eb:0c:26:c7:a3:23:17:3b:9f:0e:9e:c7:5e:fe:bb:bd: 78:e9:46:b9:09:59:38:fa:f8:f1:14:93:6a:a9:90:6e:d2:b1: 68:de:de:b0:2a:dd:f9:53:76:de:37:fa:c0:2a:59:5d:ed:d9: a8:45:ff:71:6f:d6:62:5b:a6:8b:21:66:7a:b3:ef:5c:a8:0c: 5f:33:03:71:81:1d:3f:7e:3b:eb:d8:c5:76:c0:1a:d7:eb:bc: 3a:6a:2d:40:05:ed:ed:e8:20:47:b4:1b:0a:5d:96:41:d7:e6: d7:13:39:df:c4:4e:b5:59:42:36:bc:7e:d0:6e:d8:41:41:91: c9:5b:23:30:21:5a:4b:e0:8c:20:6a:ff:e2:8e:95:20:b1:13: 25:55:fa:a1:88:0e:20:a8:9f:b4:e6:c0:7a:3b:d8:c1:e1:ad: 68:13:fa:24:eb:a6:d1:4e:62:2e:c2:47:41:02:cb:f6:bf:0b: 52:3b:d5:70:10:53:fd:c0:2d:d1:7a:36:95:08:86:6a:c9:47: ef:8b:0c:15:54:9f:f6:54:28:25:bc:50:27:83:03:e3:c5:14: 7c:06:04:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUyMEYxMTAvBgNVBAUTKEIxQkQ0REIwMjFGNTRDNzI2M0YzQzM1MzVGODgzNjg0 OUJBMkU2MEUwHhcNMjYwMzAyMTUxOTQ0WhcNMjYwMzA5MTUxOTQ0WjAYMRYwFAYD VQQDEw02OWE1YWE5MS0yNzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIe0lu1Pnnpda992ODct/jm7EYbvBbWEbe0906z729iM2bdJwZnN5U3fKcc7 t6dc2cKrtTBl1+PQ976FQ6Mt2JPRKWjs60p8oV9a8sCuCo6XPYhXN58W6Ls4J37m Esz6XwPD+Cobo4i6AdJT2gSAkYQtA791CtdDB+b7pUYVsvL4+KfoDOdBLIT3iBEq CCAQUgNWdOOdsu9Bb87x34ilU/e+sgYG+k3lGSoP+XgbrfOJw/nYHADvd2RZIw9t EY/uxs8EO0Gh5gJXnyGe97T2A4xgrMOF97Zp7zvSXuMLEJfshT0gIhJp67U+IbLo 7A3zMMKfAXmNiy5NZAKgDopcGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHOY0/p+ uN1YH3kxMYJtPvc9INEjMB8GA1UdIwQYMBaAFLG9TbAh9UxyY/PDU1+INoSbouYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTIwRi80MUNDQkM2RUE4 MTkxMUVGQjlCREVENzFDNEY5QUUwMi9zYjFOc0NIMVRISmo4OE5UWDRnMmhKdWk1 ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NiMU5zQ0gxVEhKajg4TlRYNGcyaEp1aTVnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTIwRi80MUNDQkM2RUE4MTkxMUVGQjlCREVENzFDNEY5QUUwMi9zYjFOc0NIMVRI Smo4OE5UWDRnMmhKdWk1ZzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACVe/gzd1YkwfZBzpic3dxbRRvGH0m+AZLpBvAHYonxzVc7EGXXDrDCbHoyMX O58Onsde/ru9eOlGuQlZOPr48RSTaqmQbtKxaN7esCrd+VN23jf6wCpZXe3ZqEX/ cW/WYlumiyFmerPvXKgMXzMDcYEdP34769jFdsAa1+u8OmotQAXt7eggR7QbCl2W Qdfm1xM538ROtVlCNrx+0G7YQUGRyVsjMCFaS+CMIGr/4o6VILETJVX6oYgOIKif tObAejvYweGtaBP6JOum0U5iLsJHQQLL9r8LUjvVcBBT/cAt0Xo2lQiGaslH74sM FVSf9lQoJbxQJ4MD48UUfAYENA== -----END CERTIFICATE-----Generated at Mon Mar 2 20:16:04 2026 by rpki-client