$ rpki-client -vvf rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft File: G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft (raw, json) Hash identifier: QsoTMTdvFsHPkJDfSa4+2k4TzAUkVLo5gWCS09l1R3Y= Subject key identifier: 23:D7:94:C4:7D:5A:34:08:18:B9:85:A8:C9:42:0E:CA:56:56:1C:5E Authority key identifier: 1B:8A:E7:C7:43:01:72:9D:85:C3:15:95:24:9C:3B:48:F1:B9:15:1E Certificate issuer: /CN=A91340D8/serialNumber=1B8AE7C74301729D85C31595249C3B48F1B9151E Certificate serial: 02D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft Manifest number: 02C4 Signing time: Mon 02 Mar 2026 02:00:33 +0000 Manifest this update: Mon 02 Mar 2026 02:00:31 +0000 Manifest next update: Mon 09 Mar 2026 02:00:31 +0000 Files and hashes: 1: G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl (hash: 10kHa02Yoa/yjTGRmreycyUI2e6Qh6IMtdjnl8ZcpL4=) 2: BDDB04B633DC11EF82BB2E27C4F9AE02.roa (hash: dkeJym/v87RKiKKUryyLDWvUYJU8ndSZ66o3idoC4+8=) 3: BE608B1833DC11EF82BB2E27C4F9AE02.roa (hash: yGjZ2qr+BhGngGtcisuW8nAIXic6S3m8loWau7p/bRY=) 4: F2257AC0289011ED8AEEB43CC4F9AE02.roa (hash: vLKPklVP43k6OROJ42PijdvI9ys2gzzUNgh6DMpb1V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 725 (0x2d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91340D8, serialNumber=1B8AE7C74301729D85C31595249C3B48F1B9151E Validity Not Before: Mar 2 02:00:31 2026 GMT Not After : Mar 9 02:00:31 2026 GMT Subject: CN=69a4ef41-ed45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:59:45:eb:f6:ee:00:d9:0c:b0:89:1c:a8:f2: 57:8e:f9:61:37:73:46:51:b3:ed:79:15:ec:50:71: 11:2e:66:e9:cd:51:25:cf:2a:11:f2:26:b7:53:21: 0a:a5:8f:a0:4e:e5:ca:fd:c1:87:9d:f7:01:69:05: 6c:a8:21:fe:c5:8b:fc:16:b6:91:59:b7:c1:3f:3a: 38:45:14:9a:d2:ff:fc:56:4a:d5:43:e8:13:e0:ab: a8:8f:f6:a1:9f:3d:bf:0d:83:d5:1e:0a:e2:bf:f3: 7d:b1:a2:5b:89:1b:26:14:a6:45:d8:fa:ea:c2:d9: 2f:42:9b:92:03:ed:aa:a9:ac:92:8d:64:c9:cc:7f: c2:7f:99:95:64:8d:22:30:d1:a0:95:1f:7e:2c:88: 2c:28:76:bf:30:6e:8c:45:b4:9b:55:33:06:23:cd: 57:35:f4:de:92:41:84:76:5e:67:88:a1:d7:ab:70: 67:45:47:f7:25:ce:1b:7b:bc:c8:8b:85:54:a0:db: db:c2:14:e2:86:60:16:1b:56:e7:2b:fb:3a:9a:ab: b1:98:30:82:d6:80:92:5a:05:f4:90:de:b6:7c:74: 0c:5d:c5:63:fe:f7:18:85:de:65:f6:e7:6a:bc:b0: 02:14:ee:82:38:52:c4:9a:ec:44:e1:be:2f:ae:9f: 5c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D7:94:C4:7D:5A:34:08:18:B9:85:A8:C9:42:0E:CA:56:56:1C:5E X509v3 Authority Key Identifier: keyid:1B:8A:E7:C7:43:01:72:9D:85:C3:15:95:24:9C:3B:48:F1:B9:15:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:9c:b3:65:8e:08:f5:25:11:df:0c:b2:ac:ca:c5:18:f3:0a: 07:eb:64:85:10:fd:23:fe:f6:96:20:f5:6b:73:8c:69:1d:91: e3:c7:97:40:72:2c:42:87:b9:70:50:ae:aa:fc:ba:fe:19:27: b9:51:35:3b:89:0c:ff:72:4b:7d:d6:57:15:c1:75:40:a6:2c: 28:42:e0:74:95:2c:85:91:9c:ca:f0:94:cb:18:fd:88:cf:93: b3:32:30:5d:fe:6d:d8:6e:08:65:48:ad:6f:8f:b5:06:8a:be: b8:b3:b0:43:76:b5:8b:30:ec:38:94:5f:d2:91:c6:6f:b8:cc: c9:df:c7:0d:45:e2:91:1e:50:01:44:08:8c:4b:1b:35:8f:36: aa:42:47:da:6b:ed:db:37:11:2d:5e:c0:50:1f:2c:e6:90:90: 8b:cb:51:f0:b4:58:5c:b8:f3:34:04:9b:cb:d1:63:fb:ce:64: 90:76:e4:59:3b:85:89:3f:04:7a:c3:ee:27:8a:a6:dd:61:e3: 84:25:f8:f3:9f:45:3e:b1:4e:d3:d4:ff:f1:29:28:dd:c1:1f: 4a:5b:04:40:59:f5:07:a4:68:d4:9d:cb:61:34:de:6c:f4:60: 55:ee:86:b1:3f:3d:f5:b7:1d:27:cb:e7:d4:a0:9c:f1:d5:92: f1:84:6a:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQwRDgxMTAvBgNVBAUTKDFCOEFFN0M3NDMwMTcyOUQ4NUMzMTU5NTI0OUMzQjQ4 RjFCOTE1MUUwHhcNMjYwMzAyMDIwMDMxWhcNMjYwMzA5MDIwMDMxWjAYMRYwFAYD VQQDEw02OWE0ZWY0MS1lZDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFlF6/buANkMsIkcqPJXjvlhN3NGUbPteRXsUHERLmbpzVElzyoR8ia3UyEK pY+gTuXK/cGHnfcBaQVsqCH+xYv8FraRWbfBPzo4RRSa0v/8VkrVQ+gT4Kuoj/ah nz2/DYPVHgriv/N9saJbiRsmFKZF2PrqwtkvQpuSA+2qqaySjWTJzH/Cf5mVZI0i MNGglR9+LIgsKHa/MG6MRbSbVTMGI81XNfTekkGEdl5niKHXq3BnRUf3Jc4be7zI i4VUoNvbwhTihmAWG1bnK/s6mquxmDCC1oCSWgX0kN62fHQMXcVj/vcYhd5l9udq vLACFO6COFLEmuxE4b4vrp9crwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCPXlMR9 WjQIGLmFqMlCDspWVhxeMB8GA1UdIwQYMBaAFBuK58dDAXKdhcMVlSScO0jxuRUe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDBEOC9CM0RFNUNFNDI4 OEQxMUVEQTlBNEVBNkZDNEY5QUUwMi9HNHJueDBNQmNwMkZ3eFdWSkp3N1NQRzVG UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0cm54ME1CY3AyRnd4V1ZKSnc3U1BHNUZSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDBEOC9CM0RFNUNFNDI4OEQxMUVEQTlBNEVBNkZDNEY5QUUwMi9HNHJueDBNQmNw MkZ3eFdWSkp3N1NQRzVGUjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWJyzZY4I9SUR3wyyrMrFGPMKB+tkhRD9I/72liD1a3OMaR2R48eXQHIsQoe5 cFCuqvy6/hknuVE1O4kM/3JLfdZXFcF1QKYsKELgdJUshZGcyvCUyxj9iM+TszIw Xf5t2G4IZUitb4+1Boq+uLOwQ3a1izDsOJRf0pHGb7jMyd/HDUXikR5QAUQIjEsb NY82qkJH2mvt2zcRLV7AUB8s5pCQi8tR8LRYXLjzNASby9Fj+85kkHbkWTuFiT8E esPuJ4qm3WHjhCX4859FPrFO09T/8Sko3cEfSlsEQFn1B6Ro1J3LYTTebPRgVe6G sT899bcdJ8vn1KCc8dWS8YRqlw== -----END CERTIFICATE-----Generated at Mon Mar 2 07:44:35 2026 by rpki-client