$ rpki-client -vvf rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft File: g8K1S2QeP_BuMaK0RQwVetrVm2g.mft (raw, json) Hash identifier: ENqUaKy8ZyRDR2N2+usYfIjkSMV2Cu/+c5v2J4c/mSg= Subject key identifier: 57:B9:4D:33:02:A2:ED:2F:06:87:1E:4C:37:F6:23:AF:73:F0:09:C0 Authority key identifier: 83:C2:B5:4B:64:1E:3F:F0:6E:31:A2:B4:45:0C:15:7A:DA:D5:9B:68 Certificate issuer: /CN=A9137E5F/serialNumber=83C2B54B641E3FF06E31A2B4450C157ADAD59B68 Certificate serial: 011D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft Manifest number: 011B Signing time: Sun 01 Mar 2026 06:50:22 +0000 Manifest this update: Sun 01 Mar 2026 06:50:22 +0000 Manifest next update: Sun 08 Mar 2026 06:50:22 +0000 Files and hashes: 1: g8K1S2QeP_BuMaK0RQwVetrVm2g.crl (hash: FnD9wom0ceT1aJqlKbCRDVoVTRlbdtK02qyecleo/lw=) 2: 7114716A653911EFB61F430DC4F9AE02.roa (hash: Jxy+pvv4xysDlIQZeDPDC9SdzrWtHicNhXpYrAxOrBk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.crl rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137E5F, serialNumber=83C2B54B641E3FF06E31A2B4450C157ADAD59B68 Validity Not Before: Mar 1 06:50:22 2026 GMT Not After : Mar 8 06:50:22 2026 GMT Subject: CN=69a3e1ae-c272 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a6:02:e9:8e:ee:20:36:6d:7a:a3:ad:73:ed: ef:12:1e:84:7a:15:f9:cf:bb:80:04:da:4c:6b:f1: c0:89:6f:f5:31:5b:43:88:0f:09:72:8b:35:41:82: bc:c0:25:c7:3d:ea:db:d1:fb:37:a3:0d:8f:4a:5c: e8:81:9b:e3:75:b9:86:04:f6:19:9e:81:50:be:0b: fa:15:9c:83:d0:7f:05:2d:2d:68:fd:cb:9e:31:86: 4c:d4:44:92:c3:b0:72:4f:d0:07:04:ac:43:06:c9: 2e:dc:f0:92:35:33:48:9a:81:01:19:22:c1:1a:49: eb:0a:5c:20:7b:5f:9d:28:52:2b:b8:08:a6:c7:90: 05:21:29:80:d2:ab:b3:68:5f:43:16:81:18:34:86: 1c:67:fa:df:18:6e:7c:86:e8:af:68:6b:a8:92:d3: 79:04:b1:13:84:37:c6:14:32:5c:f3:15:a1:20:53: af:b5:50:10:52:43:c8:91:ba:b0:e5:0a:d1:da:57: db:35:09:ef:aa:b2:fd:bd:19:fc:0d:02:56:cc:55: e0:c4:ba:0b:33:2b:d0:22:29:3a:36:30:d9:94:03: 0f:48:79:60:62:87:c2:be:f0:80:68:da:d0:6a:07: 43:ca:f8:61:f9:a3:24:0b:dd:59:3b:99:dc:bf:0b: e9:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:B9:4D:33:02:A2:ED:2F:06:87:1E:4C:37:F6:23:AF:73:F0:09:C0 X509v3 Authority Key Identifier: keyid:83:C2:B5:4B:64:1E:3F:F0:6E:31:A2:B4:45:0C:15:7A:DA:D5:9B:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:15:2f:db:fa:e5:aa:3c:b7:7f:fc:50:43:16:a1:60:5f:93: 4e:c2:05:ba:99:e2:1d:d7:37:3b:e1:65:79:0d:5b:c3:7b:4d: 22:65:60:4a:56:04:47:59:ed:1c:53:d8:33:29:78:a5:ef:08: ef:45:ef:d0:17:9b:bf:3e:10:97:ab:eb:62:47:bf:29:b9:95: 31:50:3b:2a:42:e5:bc:04:14:f0:c5:2d:d0:93:7d:bb:ec:d3: d0:55:4c:3b:8a:88:ee:dc:7a:4a:e6:de:eb:db:e5:18:51:20: 32:51:a2:52:ea:fd:11:13:d0:89:47:10:a3:40:3f:9e:bb:b9: e4:29:e2:aa:d2:99:33:64:4b:0c:c2:0c:f9:8d:9f:8c:ca:85: c5:b4:88:b3:3d:b0:be:58:d4:1b:a5:13:c0:57:f2:6c:97:6a: 6d:66:77:e5:ab:e8:c9:31:a6:38:21:70:59:a3:2b:87:55:13: 63:c3:d3:80:28:95:b7:26:df:e6:48:3a:34:f0:3a:a6:4a:78: c6:45:00:08:58:1e:c6:29:43:69:81:d5:3a:54:43:5e:68:c5: 3a:cc:78:cb:a2:b1:af:62:8a:c3:67:45:5d:0c:3b:b8:ba:e6: e0:a3:25:7e:d5:f6:dd:47:53:37:75:8f:22:39:ca:49:fa:4d: 58:90:dc:b4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdFNUYxMTAvBgNVBAUTKDgzQzJCNTRCNjQxRTNGRjA2RTMxQTJCNDQ1MEMxNTdB REFENTlCNjgwHhcNMjYwMzAxMDY1MDIyWhcNMjYwMzA4MDY1MDIyWjAYMRYwFAYD VQQDEw02OWEzZTFhZS1jMjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6YC6Y7uIDZteqOtc+3vEh6EehX5z7uABNpMa/HAiW/1MVtDiA8Jcos1QYK8 wCXHPerb0fs3ow2PSlzogZvjdbmGBPYZnoFQvgv6FZyD0H8FLS1o/cueMYZM1ESS w7ByT9AHBKxDBsku3PCSNTNImoEBGSLBGknrClwge1+dKFIruAimx5AFISmA0quz aF9DFoEYNIYcZ/rfGG58huivaGuoktN5BLEThDfGFDJc8xWhIFOvtVAQUkPIkbqw 5QrR2lfbNQnvqrL9vRn8DQJWzFXgxLoLMyvQIik6NjDZlAMPSHlgYofCvvCAaNrQ agdDyvhh+aMkC91ZO5ncvwvpEQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFe5TTMC ou0vBoceTDf2I69z8AnAMB8GA1UdIwQYMBaAFIPCtUtkHj/wbjGitEUMFXra1Zto MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0U1Ri84MEM0QjMwMDY1 MzgxMUVGOEI0Njg5NkVDNEY5QUUwMi9nOEsxUzJRZVBfQnVNYUswUlF3VmV0clZt MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4SzFTMlFlUF9CdU1hSzBSUXdWZXRyVm0yZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0U1Ri84MEM0QjMwMDY1MzgxMUVGOEI0Njg5NkVDNEY5QUUwMi9nOEsxUzJRZVBf QnVNYUswUlF3VmV0clZtMmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeBUv2/rlqjy3f/xQQxahYF+TTsIFupniHdc3O+FleQ1bw3tNImVgSlYER1nt HFPYMyl4pe8I70Xv0Bebvz4Ql6vrYke/KbmVMVA7KkLlvAQU8MUt0JN9u+zT0FVM O4qI7tx6Sube69vlGFEgMlGiUur9ERPQiUcQo0A/nru55CniqtKZM2RLDMIM+Y2f jMqFxbSIsz2wvljUG6UTwFfybJdqbWZ35avoyTGmOCFwWaMrh1UTY8PTgCiVtybf 5kg6NPA6pkp4xkUACFgexilDaYHVOlRDXmjFOsx4y6Kxr2KKw2dFXQw7uLrm4KMl ftX23UdTN3WPIjnKSfpNWJDctA== -----END CERTIFICATE-----Generated at Mon Mar 2 08:05:54 2026 by rpki-client