$ rpki-client -vvf rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft File: gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft (raw, json) Hash identifier: wbFTMaA7gu6KOWBSKR3VPYDxtwx7cHa5L0WEiHf5mx4= Subject key identifier: D2:9F:88:D4:45:A6:B2:ED:06:90:FF:84:15:DC:8A:E0:76:D4:DA:9B Authority key identifier: 80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51 Certificate issuer: /CN=A9155D1E/serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51 Certificate serial: 02FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft Manifest number: 02F9 Signing time: Sun 01 Mar 2026 02:06:23 +0000 Manifest this update: Sun 01 Mar 2026 02:06:23 +0000 Manifest next update: Sun 08 Mar 2026 02:06:23 +0000 Files and hashes: 1: gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl (hash: +HcgznXXemk4Wn6zySrUMHZdzcHSjkm8v8HjssIpxsE=) 2: C003531C10EB11ED9C882A38C4F9AE02.roa (hash: dtuYeScxI0cvK8sz9E/Cl0+96zsD1MptOKpsIJKXrl0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 02:06:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 765 (0x2fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155D1E, serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51 Validity Not Before: Mar 1 02:06:23 2026 GMT Not After : Mar 8 02:06:23 2026 GMT Subject: CN=69a39f1f-3dfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9b:80:11:8a:e2:81:2c:0b:f0:e2:33:bf:54: 3f:94:7e:15:dc:fa:b2:c7:31:2f:94:92:59:e1:7c: a9:22:36:68:4f:6d:eb:96:6e:ea:14:61:b5:88:6a: 62:98:4c:61:d6:4b:63:bc:89:fe:30:71:fb:d1:7d: 12:9f:d2:7f:ab:df:ad:4a:e2:c1:ca:34:3c:e3:99: 35:cb:e9:ca:6a:48:ad:cc:90:bc:ec:da:9f:e9:70: 6a:50:34:5c:6c:c7:0e:c3:09:05:65:7a:54:7c:80: 3c:a6:85:dd:ed:7e:28:94:8b:f0:5a:ba:d5:57:fa: cf:f3:5e:d8:00:f5:ca:a6:c0:3e:4d:de:b4:40:b3: 42:51:26:7c:07:ba:56:40:52:eb:18:70:02:2a:65: 2c:ab:3a:0f:1f:17:c7:bf:42:4e:9a:cd:b1:c9:ac: c6:65:02:db:24:89:18:dd:6f:e7:4d:7a:b0:fc:0f: 17:d5:06:db:ac:f6:92:c8:9b:84:86:b2:27:8e:a3: 5f:f3:38:0c:78:0e:ca:bd:69:cf:0c:c9:6f:b8:91: 39:6e:87:22:09:98:b9:70:22:11:6a:d6:1f:21:2d: e5:f7:26:aa:4a:85:59:39:2d:81:99:44:14:c7:a7: f3:e2:66:10:01:8e:50:fe:bc:08:95:5d:b9:8c:af: 00:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:9F:88:D4:45:A6:B2:ED:06:90:FF:84:15:DC:8A:E0:76:D4:DA:9B X509v3 Authority Key Identifier: keyid:80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:47:00:02:0f:13:14:62:de:0c:c8:a0:57:2c:81:2c:ae:af: cb:9d:b7:a5:2d:18:23:7d:da:f2:4a:ee:15:82:82:b7:dd:9c: 6e:85:ad:78:57:83:da:ad:a9:ac:97:e7:7a:93:0a:03:96:0e: 40:39:86:be:17:ff:15:ed:17:86:00:a5:1a:df:0b:12:08:ed: a4:2b:71:85:6a:fc:49:36:1d:72:d5:a5:cf:85:d1:e7:fb:18: 57:fb:0e:6c:cc:c7:82:5c:e0:2c:84:f9:5f:95:cc:c7:c9:17: 39:3c:f6:a6:74:f7:89:80:32:72:61:4e:2b:e1:4d:e1:f0:1a: e2:27:9d:5f:9e:19:80:5e:55:f1:cd:32:81:3f:11:89:d4:95: 3c:62:7a:89:bf:72:d8:cc:32:5e:f3:68:d5:e8:a6:97:14:f1: a9:a4:8c:0e:3f:22:f9:c6:ac:cb:8c:23:84:6a:f9:e4:bd:80: 96:50:b6:52:33:d3:1d:f6:e7:45:23:0e:c1:9d:d0:f1:17:ca: 0a:c9:9e:3a:77:d1:14:8e:ee:26:f1:08:e8:e3:ea:38:bf:c6: 58:2d:79:11:84:83:f3:ad:2c:94:73:21:a0:9e:37:f5:2b:6c: 1e:3e:e3:47:fb:ab:99:e3:b5:95:87:a7:f6:20:86:5b:ed:0f: 63:0f:42:dd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVEMUUxMTAvBgNVBAUTKDgwQTRCOEZDQUVDRDAxMUU4MkFBNEUyRDcyMTczQ0E2 M0U5QzRFNTEwHhcNMjYwMzAxMDIwNjIzWhcNMjYwMzA4MDIwNjIzWjAYMRYwFAYD VQQDDA02OWEzOWYxZi0zZGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5uAEYrigSwL8OIzv1Q/lH4V3PqyxzEvlJJZ4XypIjZoT23rlm7qFGG1iGpi mExh1ktjvIn+MHH70X0Sn9J/q9+tSuLByjQ845k1y+nKakitzJC87Nqf6XBqUDRc bMcOwwkFZXpUfIA8poXd7X4olIvwWrrVV/rP817YAPXKpsA+Td60QLNCUSZ8B7pW QFLrGHACKmUsqzoPHxfHv0JOms2xyazGZQLbJIkY3W/nTXqw/A8X1QbbrPaSyJuE hrInjqNf8zgMeA7KvWnPDMlvuJE5bociCZi5cCIRatYfIS3l9yaqSoVZOS2BmUQU x6fz4mYQAY5Q/rwIlV25jK8AXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNKfiNRF prLtBpD/hBXciuB21NqbMB8GA1UdIwQYMBaAFICkuPyuzQEegqpOLXIXPKY+nE5R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUQxRS9BOEQ4ODNFQTEw RTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFSNkNxazR0Y2hjOHBqNmNU bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dLUzRfSzdOQVI2Q3FrNHRjaGM4cGo2Y1RsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NUQxRS9BOEQ4ODNFQTEwRTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFS NkNxazR0Y2hjOHBqNmNUbEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASkcAAg8TFGLeDMigVyyBLK6vy523pS0YI33a8kruFYKCt92cboWteFeD2q2p rJfnepMKA5YOQDmGvhf/Fe0XhgClGt8LEgjtpCtxhWr8STYdctWlz4XR5/sYV/sO bMzHglzgLIT5X5XMx8kXOTz2pnT3iYAycmFOK+FN4fAa4iedX54ZgF5V8c0ygT8R idSVPGJ6ib9y2MwyXvNo1eimlxTxqaSMDj8i+casy4wjhGr55L2AllC2UjPTHfbn RSMOwZ3Q8RfKCsmeOnfRFI7uJvEI6OPqOL/GWC15EYSD860slHMhoJ439StsHj7j R/urmeO1lYen9iCGW+0PYw9C3Q== -----END CERTIFICATE-----Generated at Sun Mar 1 22:35:38 2026 by rpki-client