$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft File: gCx1H6mENH35yTztuX7ZUalSgoY.mft (raw, json) Hash identifier: PCth+t/ee5KiJNh5W0kcDaBvd5NaWQQLEEfdC+u2/08= Subject key identifier: 86:9E:7B:16:9C:DF:39:C3:F5:49:3F:00:9E:32:60:0F:8F:0B:DC:6C Authority key identifier: 80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86 Certificate issuer: /CN=A911AE8B/serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286 Certificate serial: 0DBB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft Manifest number: 0D9A Signing time: Sun 01 Mar 2026 23:09:30 +0000 Manifest this update: Sun 01 Mar 2026 23:09:29 +0000 Manifest next update: Sun 08 Mar 2026 23:09:29 +0000 Files and hashes: 1: gCx1H6mENH35yTztuX7ZUalSgoY.crl (hash: KyJ7ONTIXo8GyTV/PwGt7xzMvSJFwzIQXRXfl3gb37o=) 2: C64AB888F28211F0B78FCAB4696F56BC.roa (hash: 21I1lPOhCB6OoTCDKwmnVs4XWHIQNSrXN0TNGGcuqdQ=) 3: 9A735F54EBE611EC82C08A11C4F9AE02.roa (hash: GtQoqjQUirpvjAYOKzxLFZEEug+qoArWCD33oXD/Vgw=) 4: 677F3316E02711E9AB669750C4F9AE02.roa (hash: ULb7MnuSpC+RNv8YH7wBDdLNbPZxB2oAuIx44Pnr+I8=) 5: C5C152D2F28211F0B78FCAB4696F56BC.roa (hash: wI1y6ntLsUWaWyufcxzOljo2NrfksupJylZSnJ7IKS8=) 6: 749B738AF28F11F095D4F2986B6F56BC.roa (hash: KEcoT61kbpKYaqHWHrY20ixUYzmALZ1uWpR1U4eKh3Y=) 7: AF2CB5CE101E11ED9FA78415C4F9AE02.roa (hash: ygQB2y8hsTLzbf5SF7WCvYfKunhmdLdBTxW0WpljHeM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:09:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3515 (0xdbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE8B, serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286 Validity Not Before: Mar 1 23:09:29 2026 GMT Not After : Mar 8 23:09:29 2026 GMT Subject: CN=69a4c729-b586 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:e9:53:a6:10:11:66:d3:51:69:66:b1:d9:08: 46:2d:89:9a:ae:ab:72:04:05:fa:69:07:b7:12:7f: f2:60:40:31:ea:5e:f4:ba:cb:4e:c2:4a:66:81:74: ef:ad:95:35:1d:0d:c3:62:34:d2:cc:69:b1:97:ae: 28:7c:9e:dd:da:3c:b5:a3:0d:ba:df:db:29:bf:79: 24:9d:d3:0b:16:4c:5e:1d:f7:bf:d0:77:d8:c1:60: 29:ae:54:12:6e:3d:cd:e5:b1:41:c2:78:11:5c:97: 3f:c9:e7:05:e4:47:6f:64:55:7e:6f:62:e8:60:09: 6c:47:12:5b:76:5c:46:30:da:0e:4b:37:93:07:96: 70:50:2f:5c:fe:8e:ee:33:b9:48:41:74:c4:09:de: bd:44:0a:60:ce:a8:90:b4:8b:e5:22:d2:b1:07:0b: 00:22:95:54:dd:1e:20:0e:71:bd:6f:4c:0c:1a:42: 28:8e:d6:2f:60:a9:06:c2:6e:8b:21:5b:3a:0d:d4: f5:1b:25:c7:21:92:90:58:7e:2b:dd:79:79:06:e0: e4:ce:39:90:c6:d7:ad:1e:b8:03:1f:49:0b:05:18: 6a:ed:c8:e6:72:68:cb:d0:a8:bf:88:56:36:78:54: 22:b1:56:c6:33:d9:d4:91:21:1b:b4:62:d6:53:3e: 76:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:9E:7B:16:9C:DF:39:C3:F5:49:3F:00:9E:32:60:0F:8F:0B:DC:6C X509v3 Authority Key Identifier: keyid:80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:44:6f:fc:67:28:94:dc:a5:e0:b4:74:a5:b4:58:32:93:35: ae:89:5f:d9:10:5f:54:95:98:5e:fe:f3:e8:b9:3e:8f:bc:44: 5d:6e:ce:84:71:71:f4:95:fd:4b:ac:f6:3a:b8:a6:0b:69:71: 05:62:5e:bd:d5:dd:0f:6d:23:cf:36:f5:67:86:43:7b:19:a0: f5:17:81:dc:2c:83:f6:97:44:7a:70:23:8d:b4:85:be:88:ab: bc:1b:b7:c1:2a:96:4d:8a:84:69:44:9f:52:0a:ac:72:70:2b: 2c:56:78:48:1f:10:98:58:b3:c5:ae:b2:06:c6:88:d8:2f:b9: d7:db:5b:cb:d7:fc:51:5a:77:79:3a:01:a1:9d:24:46:76:cc: fa:1e:9f:61:a9:be:22:cd:b2:c0:57:c4:cb:28:70:df:08:34: 77:2b:53:3e:37:af:70:ce:93:e3:cb:ff:cc:61:35:a8:0c:95: 1e:11:b3:7c:83:cd:52:f8:75:2b:92:fd:94:5b:50:0a:e1:b2: b8:2a:52:fa:64:f4:23:ee:1d:94:d8:8e:17:ee:b7:96:38:54: 7e:13:5a:8f:92:7e:27:e1:d4:5c:4a:14:e6:4d:68:85:be:f4: 8b:f7:71:a8:22:7a:3b:b3:68:b1:6d:58:1d:9a:bc:01:37:3f: f8:7f:01:d0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFOEIxMTAvBgNVBAUTKDgwMkM3NTFGQTk4NDM0N0RGOUM5M0NFREI5N0VEOTUx QTk1MjgyODYwHhcNMjYwMzAxMjMwOTI5WhcNMjYwMzA4MjMwOTI5WjAYMRYwFAYD VQQDEw02OWE0YzcyOS1iNTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj+lTphARZtNRaWax2QhGLYmarqtyBAX6aQe3En/yYEAx6l70ustOwkpmgXTv rZU1HQ3DYjTSzGmxl64ofJ7d2jy1ow2639spv3kkndMLFkxeHfe/0HfYwWAprlQS bj3N5bFBwngRXJc/yecF5EdvZFV+b2LoYAlsRxJbdlxGMNoOSzeTB5ZwUC9c/o7u M7lIQXTECd69RApgzqiQtIvlItKxBwsAIpVU3R4gDnG9b0wMGkIojtYvYKkGwm6L IVs6DdT1GyXHIZKQWH4r3Xl5BuDkzjmQxtetHrgDH0kLBRhq7cjmcmjL0Ki/iFY2 eFQisVbGM9nUkSEbtGLWUz52swIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIaeexac 3znD9Uk/AJ4yYA+PC9xsMB8GA1UdIwQYMBaAFIAsdR+phDR9+ck87bl+2VGpUoKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU4Qi9FQzI1N0NDNkUw MjUxMUU5OTFBOTc3NERDNEY5QUUwMi9nQ3gxSDZtRU5IMzV5VHp0dVg3WlVhbFNn b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dDeDFINm1FTkgzNXlUenR1WDdaVWFsU2dvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUU4Qi9FQzI1N0NDNkUwMjUxMUU5OTFBOTc3NERDNEY5QUUwMi9nQ3gxSDZtRU5I MzV5VHp0dVg3WlVhbFNnb1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaURv/GcolNyl4LR0pbRYMpM1rolf2RBfVJWYXv7z6Lk+j7xEXW7OhHFx9JX9 S6z2OrimC2lxBWJevdXdD20jzzb1Z4ZDexmg9ReB3CyD9pdEenAjjbSFvoirvBu3 wSqWTYqEaUSfUgqscnArLFZ4SB8QmFizxa6yBsaI2C+519tby9f8UVp3eToBoZ0k RnbM+h6fYam+Is2ywFfEyyhw3wg0dytTPjevcM6T48v/zGE1qAyVHhGzfIPNUvh1 K5L9lFtQCuGyuCpS+mT0I+4dlNiOF+63ljhUfhNaj5J+J+HUXEoU5k1ohb70i/dx qCJ6O7NosW1YHZq8ATc/+H8B0A== -----END CERTIFICATE-----Generated at Mon Mar 2 12:50:31 2026 by rpki-client