$ rpki-client -vvf rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft File: Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft (raw, json) Hash identifier: J+BP1/7BMQx31LDAm1dsjONZkxEXlRs44CWC72tyWsw= Subject key identifier: FB:1E:B4:96:A1:2C:CC:B1:C7:E7:DC:F2:07:AE:92:1A:10:E7:35:6F Authority key identifier: 19:BA:BB:CF:4C:99:99:30:0A:C0:59:C6:53:C2:90:84:2F:6A:66:0D Certificate issuer: /CN=A913E0D7/serialNumber=19BABBCF4C9999300AC059C653C290842F6A660D Certificate serial: 028D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft Manifest number: 0288 Signing time: Sun 01 Mar 2026 02:24:57 +0000 Manifest this update: Sun 01 Mar 2026 02:24:57 +0000 Manifest next update: Sun 08 Mar 2026 02:24:57 +0000 Files and hashes: 1: Gbq7z0yZmTAKwFnGU8KQhC9qZg0.crl (hash: VnQXbm+ccPk9029oJNQGta9fLYYcoFQnMWJEJhfq/Mc=) 2: 12326B1E3ED211EDAE00DB18C4F9AE02.roa (hash: ZO40cDLO9gCJwUx/TeWQoT8tC/grIjJKwCJILx9s2x0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.crl rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 02:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 653 (0x28d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E0D7, serialNumber=19BABBCF4C9999300AC059C653C290842F6A660D Validity Not Before: Mar 1 02:24:57 2026 GMT Not After : Mar 8 02:24:57 2026 GMT Subject: CN=69a3a379-0d9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9e:71:d9:40:80:3b:4d:c1:88:98:2c:ac:ee: b1:bc:c5:8f:09:38:34:1b:fa:5a:e2:53:6b:c1:9e: ed:36:7e:0d:85:ba:b5:06:2e:c8:de:80:a0:81:79: 30:0e:c6:fa:d2:10:1b:69:ef:7e:27:45:82:ff:23: ce:6b:b5:a1:9a:23:86:56:da:f5:ff:07:e9:d4:22: 46:eb:1f:8e:1a:35:30:1a:bc:f6:b9:98:4a:bd:78: 86:b5:31:bc:d0:27:57:fb:99:b3:90:cb:e5:ba:01: e4:2b:4a:53:97:45:3f:f2:66:73:c1:0e:fa:25:38: 85:5d:26:93:61:9d:7a:09:1e:1b:8c:22:6b:42:a0: 41:8c:3f:0c:c0:6e:d2:5d:f6:70:8a:ce:34:71:5b: 18:8f:d6:42:2e:4f:b5:64:ea:b4:e4:1d:81:86:6a: 94:b1:dd:f4:70:4e:36:aa:04:c1:b6:24:1a:d2:55: 49:5d:2f:5c:e1:04:8f:69:72:f5:f7:cd:07:04:ae: 13:bd:fb:62:8e:32:60:35:fc:60:6e:54:57:0c:f5: ae:c1:ed:1d:72:a4:95:2e:2d:8f:11:08:8d:56:fa: 0b:b0:82:a0:d0:c9:e6:88:ca:49:cc:37:4b:88:5f: a5:c9:f5:ac:4a:17:1e:15:3e:e0:d5:b5:38:14:11: 59:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:1E:B4:96:A1:2C:CC:B1:C7:E7:DC:F2:07:AE:92:1A:10:E7:35:6F X509v3 Authority Key Identifier: keyid:19:BA:BB:CF:4C:99:99:30:0A:C0:59:C6:53:C2:90:84:2F:6A:66:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:5f:85:55:9e:80:87:96:b1:85:ec:bc:24:6d:b3:5a:cf:f0: 06:06:4e:33:14:8b:8f:d0:e4:d5:f1:19:ba:e8:fd:b2:2b:30: d4:38:27:81:6d:45:40:c6:cc:0e:61:57:ac:a8:b2:97:9d:7a: 47:77:d9:61:6e:6b:24:ee:8f:b7:b8:6c:ba:17:16:2d:11:dc: eb:b7:5e:40:9d:69:20:b4:3d:ba:99:2a:ad:b6:da:3a:c8:6d: 50:ed:41:e2:2c:6b:6d:fb:7d:07:c5:b3:77:73:5f:db:ec:02: 3d:06:49:ab:e0:1c:30:66:84:c5:1d:10:9f:69:30:e8:f1:b0: 5a:92:17:b5:c2:28:ab:c1:b5:ea:2b:73:47:84:11:ee:db:70: cb:81:39:6f:78:dc:f9:05:98:f2:6b:11:b1:a9:ff:4e:63:49: 3e:73:ce:20:4c:f5:fa:5c:89:67:2f:3b:44:67:6f:fe:3c:a1: 6b:50:fc:80:50:a0:64:b2:e5:97:99:7c:86:46:00:85:af:6c: c1:4b:58:ed:90:22:91:ba:bf:f0:11:2d:a7:7f:bd:c2:06:9e: 8c:8e:38:dd:3f:c1:04:ea:ca:d2:b1:22:4e:39:a4:68:59:7b: 26:0f:2b:74:0b:7c:a6:0d:ca:e4:45:e6:6b:f7:ae:ed:d7:77: ce:d5:d9:f7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UwRDcxMTAvBgNVBAUTKDE5QkFCQkNGNEM5OTk5MzAwQUMwNTlDNjUzQzI5MDg0 MkY2QTY2MEQwHhcNMjYwMzAxMDIyNDU3WhcNMjYwMzA4MDIyNDU3WjAYMRYwFAYD VQQDDA02OWEzYTM3OS0wZDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy55x2UCAO03BiJgsrO6xvMWPCTg0G/pa4lNrwZ7tNn4Nhbq1Bi7I3oCggXkw Dsb60hAbae9+J0WC/yPOa7WhmiOGVtr1/wfp1CJG6x+OGjUwGrz2uZhKvXiGtTG8 0CdX+5mzkMvlugHkK0pTl0U/8mZzwQ76JTiFXSaTYZ16CR4bjCJrQqBBjD8MwG7S XfZwis40cVsYj9ZCLk+1ZOq05B2BhmqUsd30cE42qgTBtiQa0lVJXS9c4QSPaXL1 980HBK4TvftijjJgNfxgblRXDPWuwe0dcqSVLi2PEQiNVvoLsIKg0MnmiMpJzDdL iF+lyfWsShceFT7g1bU4FBFZ2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPsetJah LMyxx+fc8geukhoQ5zVvMB8GA1UdIwQYMBaAFBm6u89MmZkwCsBZxlPCkIQvamYN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTBENy84RkVGODQwNDNF Q0YxMUVEQTVGMUZBMTdDNEY5QUUwMi9HYnE3ejB5Wm1UQUt3Rm5HVThLUWhDOXFa ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dicTd6MHlabVRBS3dGbkdVOEtRaEM5cVpnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTBENy84RkVGODQwNDNFQ0YxMUVEQTVGMUZBMTdDNEY5QUUwMi9HYnE3ejB5Wm1U QUt3Rm5HVThLUWhDOXFaZzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqF+FVZ6Ah5axhey8JG2zWs/wBgZOMxSLj9Dk1fEZuuj9sisw1DgngW1FQMbM DmFXrKiyl516R3fZYW5rJO6Pt7hsuhcWLRHc67deQJ1pILQ9upkqrbbaOshtUO1B 4ixrbft9B8Wzd3Nf2+wCPQZJq+AcMGaExR0Qn2kw6PGwWpIXtcIoq8G16itzR4QR 7ttwy4E5b3jc+QWY8msRsan/TmNJPnPOIEz1+lyJZy87RGdv/jyha1D8gFCgZLLl l5l8hkYAha9swUtY7ZAikbq/8BEtp3+9wgaejI443T/BBOrK0rEiTjmkaFl7Jg8r dAt8pg3K5EXma/eu7dd3ztXZ9w== -----END CERTIFICATE-----Generated at Sun Mar 1 21:02:46 2026 by rpki-client