$ rpki-client -vvf rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft File: GJHVTO9qkMIy_KiR45n5eDhnEe4.mft (raw, json) Hash identifier: gM6bh+hdSdvp1mNC+ol3EgyhSCxeiINKU8KpHxvGZQU= Subject key identifier: 7D:54:B2:F6:6E:10:D0:4D:DC:1D:D2:2A:2B:FC:A2:B8:DB:6E:2E:E3 Authority key identifier: 18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE Certificate issuer: /CN=A9128576/serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft Manifest number: D3 Signing time: Mon 02 Mar 2026 03:10:10 +0000 Manifest this update: Mon 02 Mar 2026 03:10:08 +0000 Manifest next update: Mon 09 Mar 2026 03:10:08 +0000 Files and hashes: 1: GJHVTO9qkMIy_KiR45n5eDhnEe4.crl (hash: udxLFNuXQBWr3m5dxgavFH53esC+v0jSDRXzn186JIM=) 2: C8BFCD96D7A411EF9AB81933C4F9AE02.roa (hash: n/hyIjFqCJzOht5Ju7CI7zedjM3U4KBE15I93wtTvdI=) 3: C9B06ECCD7A411EF9AB81933C4F9AE02.roa (hash: vmkU+Wc2xpDQMgPam/mAe6kA8brCuJz9cHHqu3MmaNY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:10:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128576, serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE Validity Not Before: Mar 2 03:10:08 2026 GMT Not After : Mar 9 03:10:08 2026 GMT Subject: CN=69a4ff91-dd28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5a:98:7f:49:07:12:fd:d1:e9:75:ef:1d:b2: d1:cc:19:a5:c5:13:cc:09:0f:28:a0:fd:f7:41:ce: 4e:43:df:37:54:a1:90:79:0c:71:6d:0a:48:d3:00: 16:59:8f:b0:3a:34:82:fb:e5:83:6a:6b:61:38:15: 3e:79:37:f1:ae:5e:a5:b5:c6:73:01:e1:39:f8:3a: f0:0b:25:98:6b:13:b9:08:a2:bc:80:db:c0:97:0c: 1d:bd:d1:09:f2:de:31:d0:d2:bd:2b:8c:64:30:a4: 8f:1e:b5:53:35:fa:06:06:87:a9:e2:17:4c:82:32: b2:82:61:7c:21:5a:66:dc:bc:9c:d8:cf:e8:17:37: 99:86:fe:07:83:2e:15:51:dd:7d:a2:1d:78:e4:7a: 08:16:8c:de:4c:93:6d:05:12:64:1b:5b:55:a3:2b: 08:c9:e6:2f:29:13:1e:d6:72:e2:a8:ac:99:a0:06: 30:1c:9c:ba:17:c6:86:b2:5b:ac:fc:79:3a:77:c2: f7:8a:27:5e:8d:83:96:a8:e4:13:73:9f:49:0d:1f: b6:84:9e:a2:05:e6:9f:38:bb:b0:81:84:d1:17:08: 3f:33:0c:00:63:ce:df:85:7d:bf:d4:73:98:f4:95: a9:34:c2:3e:ab:31:e8:ca:16:4b:49:9d:e4:fc:71: 09:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:54:B2:F6:6E:10:D0:4D:DC:1D:D2:2A:2B:FC:A2:B8:DB:6E:2E:E3 X509v3 Authority Key Identifier: keyid:18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:af:6c:3d:a8:61:b0:41:7e:9d:40:25:9d:94:bd:87:25:e0: 74:af:c0:61:57:ee:0b:fc:b7:09:3b:6e:b9:39:d3:0d:63:a1: 03:06:4d:d4:69:25:53:90:53:f7:a9:0d:92:35:ba:1a:8e:cc: 9b:6f:d9:e6:76:89:6a:cc:c1:19:eb:45:3e:b4:49:c4:80:d2: 34:00:0e:ea:0d:91:86:2d:9d:c2:c2:99:fe:77:f2:36:0e:b4: 38:25:14:43:15:8e:85:d2:f6:86:a8:d4:42:b8:cd:ff:9f:c3: 73:4d:3d:ff:48:f1:c8:9f:42:23:14:d2:a3:34:f1:98:74:d8: 44:c5:cb:6e:9b:3e:41:cb:31:d5:e0:f9:a7:44:dd:30:a7:d7: 26:e6:1e:23:c8:1a:83:73:47:ec:21:6e:4a:8d:2a:d2:b3:40: c5:a1:a4:4d:c3:f4:a9:01:9a:2c:06:bb:73:3a:31:5c:0b:55: b8:23:57:70:8c:ab:73:9e:de:04:dc:63:b6:de:94:d9:ab:e5: a3:ef:67:35:f4:80:a5:79:d5:5b:b1:4a:fc:d7:e7:8d:88:77: 4f:a1:76:a7:96:c5:47:54:b9:10:97:c6:a4:6c:01:05:1b:e1: 7e:86:dd:5b:a6:12:25:2f:60:c1:e1:b4:10:b3:0b:33:8a:4e: 4d:49:6a:58 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1NzYxMTAvBgNVBAUTKDE4OTFENTRDRUY2QTkwQzIzMkZDQTg5MUUzOTlGOTc4 Mzg2NzExRUUwHhcNMjYwMzAyMDMxMDA4WhcNMjYwMzA5MDMxMDA4WjAYMRYwFAYD VQQDEw02OWE0ZmY5MS1kZDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlqYf0kHEv3R6XXvHbLRzBmlxRPMCQ8ooP33Qc5OQ983VKGQeQxxbQpI0wAW WY+wOjSC++WDamthOBU+eTfxrl6ltcZzAeE5+DrwCyWYaxO5CKK8gNvAlwwdvdEJ 8t4x0NK9K4xkMKSPHrVTNfoGBoep4hdMgjKygmF8IVpm3Lyc2M/oFzeZhv4Hgy4V Ud19oh145HoIFozeTJNtBRJkG1tVoysIyeYvKRMe1nLiqKyZoAYwHJy6F8aGslus /Hk6d8L3iidejYOWqOQTc59JDR+2hJ6iBeafOLuwgYTRFwg/MwwAY87fhX2/1HOY 9JWpNMI+qzHoyhZLSZ3k/HEJJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH1UsvZu ENBN3B3SKiv8orjbbi7jMB8GA1UdIwQYMBaAFBiR1UzvapDCMvyokeOZ+Xg4ZxHu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODU3Ni8yREU5NEE5QUQ3 QTQxMUVGOTY0RDZEN0NDNEY5QUUwMi9HSkhWVE85cWtNSXlfS2lSNDVuNWVEaG5F ZTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dKSFZUTzlxa01JeV9LaVI0NW41ZURobkVlNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODU3Ni8yREU5NEE5QUQ3QTQxMUVGOTY0RDZEN0NDNEY5QUUwMi9HSkhWVE85cWtN SXlfS2lSNDVuNWVEaG5FZTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaa9sPahhsEF+nUAlnZS9hyXgdK/AYVfuC/y3CTtuuTnTDWOhAwZN1GklU5BT 96kNkjW6Go7Mm2/Z5naJaszBGetFPrRJxIDSNAAO6g2Rhi2dwsKZ/nfyNg60OCUU QxWOhdL2hqjUQrjN/5/Dc009/0jxyJ9CIxTSozTxmHTYRMXLbps+Qcsx1eD5p0Td MKfXJuYeI8gag3NH7CFuSo0q0rNAxaGkTcP0qQGaLAa7czoxXAtVuCNXcIyrc57e BNxjtt6U2avlo+9nNfSApXnVW7FK/NfnjYh3T6F2p5bFR1S5EJfGpGwBBRvhfobd W6YSJS9gweG0ELMLM4pOTUlqWA== -----END CERTIFICATE-----Generated at Mon Mar 2 08:39:33 2026 by rpki-client