$ rpki-client -vvf rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft File: gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft (raw, json) Hash identifier: GgCk6lAfvtrW9BsFowThb22WNhu3LtkV+mCfyoZ8oLM= Subject key identifier: E1:B7:D7:B6:EE:93:FD:04:BA:C1:DD:2C:D8:D1:9A:E3:7F:E7:F5:72 Authority key identifier: 81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 Certificate issuer: /CN=A917092C/serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft Manifest number: 011A Signing time: Sun 01 Mar 2026 06:59:14 +0000 Manifest this update: Sun 01 Mar 2026 06:59:14 +0000 Manifest next update: Sun 08 Mar 2026 06:59:14 +0000 Files and hashes: 1: gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl (hash: 40WgtM/kka3sySbnwuAJrR+IHENkPIH9xGWkXprnfK0=) 2: 752774D616A111F0B2CDBC72C4F9AE02.roa (hash: 3FjaUGxyX9keX6h1j1EjjACKPn/PD276JgWOPNcm8Oo=) 3: E27B5862777E11EFB3F75352C4F9AE02.roa (hash: SHadC7K9t4sf0FTRuN25Sqtx5daSfJ2m5VktpFS9BJc=) 4: E3105D04777E11EFB3F75352C4F9AE02.roa (hash: cAiqdNWzTF0sxkzvHv6yM/PcMz/pHk5XzQwUuq8wOgo=) 5: E1F3085E777E11EFB3F75352C4F9AE02.roa (hash: KCUoweqEDh9jHcBtb7W3HaJWTeDZFQpve4LjGr9WIOQ=) 6: E3C4A4EE777E11EFB3F75352C4F9AE02.roa (hash: he2Yg9YLqUGBktzqkNPe9zTZfzSefhfrBKHZ0mm0MXI=) 7: 8E00FBF2777E11EF8D0ECC4EC4F9AE02.roa (hash: aNcYj3A/gGnj4dxbU3z5mV3zt63Nh4QrgMIUUabFzuw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:59:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917092C, serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Validity Not Before: Mar 1 06:59:14 2026 GMT Not After : Mar 8 06:59:14 2026 GMT Subject: CN=69a3e3c2-dd1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d2:cc:c0:8f:e1:71:bc:a0:96:d1:0e:31:34: f9:a7:03:83:e6:2b:62:71:92:27:81:9c:06:bd:7c: 26:c3:ba:48:18:8b:aa:09:88:54:ad:a3:31:11:5e: d7:11:0f:3f:22:34:de:b1:c2:d2:60:8f:53:56:21: 43:86:21:12:87:28:eb:6f:46:83:08:7e:af:44:2d: b7:9f:c4:78:23:f5:ac:0e:da:9a:f9:e5:fc:17:89: d0:19:08:9d:04:e5:6c:3c:a6:20:68:b6:38:3e:10: d1:f4:35:65:6a:57:4b:e2:c4:c6:1c:62:52:f8:5e: fe:e4:d2:cd:8e:d0:85:fe:c7:bd:17:67:53:5f:72: b3:cb:a1:b9:8d:4a:e1:8b:4b:0d:af:0b:3d:ad:3c: 86:93:95:49:25:97:dd:e4:46:38:90:62:ef:4d:89: 11:e4:ac:71:fa:8e:76:43:47:41:a1:36:31:9a:7c: f6:85:2b:7b:bc:47:47:0a:17:11:a2:36:50:a6:18: fb:a2:4c:b7:10:0b:14:b1:f2:11:03:9d:a0:f2:7c: b9:f4:3c:2c:f2:fb:49:12:e2:ac:a9:a0:55:99:a4: b6:85:d9:c8:45:61:a5:7b:12:e0:d8:66:5e:d2:7d: c8:37:1c:a5:27:33:b2:26:33:39:3e:b2:61:bb:3f: 35:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:B7:D7:B6:EE:93:FD:04:BA:C1:DD:2C:D8:D1:9A:E3:7F:E7:F5:72 X509v3 Authority Key Identifier: keyid:81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:c5:aa:f8:38:f1:d0:e5:7e:fa:82:bc:04:75:b7:bb:84:88: d1:39:ed:87:a5:93:67:60:3f:14:52:51:17:c0:a8:29:e5:7a: 14:f6:b9:04:70:22:72:8b:58:ca:4d:df:8d:25:31:45:08:1c: 32:6c:be:7d:23:0b:16:52:f8:4c:e2:de:50:11:3a:30:5f:fe: e8:79:6c:e0:cc:a1:a5:b8:20:23:f6:a8:19:8a:40:27:3b:d5: 7b:52:bf:d2:02:84:22:a7:59:c5:f9:e7:8e:b9:ac:d0:c2:f9: 01:a5:20:24:83:8f:c0:15:3e:2f:7a:2f:60:ab:74:ce:a4:7f: b8:b8:bf:e9:e4:9c:7a:38:2f:e2:02:07:35:47:99:dd:d1:fd: 3d:3a:de:a3:33:ed:7f:1c:11:8b:1e:ae:81:5f:95:9d:f0:bf: cc:f6:8a:86:b4:e2:77:35:06:1a:4f:01:fc:40:53:d1:c0:02: e7:67:ce:e2:4b:83:5c:06:01:e4:37:ae:f5:d4:34:56:3c:94: 6b:e0:66:b8:01:bc:d4:d2:1e:9a:55:cd:88:0a:4d:0f:2a:8d: 30:76:f5:65:f2:2f:64:b6:6b:2c:06:75:75:36:4c:89:ce:94: a1:2d:11:4c:82:0b:e8:fd:31:f7:b3:45:6f:63:e8:ca:94:bc: f0:3b:7c:25 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5MkMxMTAvBgNVBAUTKDgxN0REMzgwMkYyNkU1N0VDRTgyNjVDRTg2MjZGQ0JC OUM2NEU5RDQwHhcNMjYwMzAxMDY1OTE0WhcNMjYwMzA4MDY1OTE0WjAYMRYwFAYD VQQDEw02OWEzZTNjMi1kZDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNLMwI/hcbygltEOMTT5pwOD5iticZIngZwGvXwmw7pIGIuqCYhUraMxEV7X EQ8/IjTescLSYI9TViFDhiEShyjrb0aDCH6vRC23n8R4I/WsDtqa+eX8F4nQGQid BOVsPKYgaLY4PhDR9DVlaldL4sTGHGJS+F7+5NLNjtCF/se9F2dTX3Kzy6G5jUrh i0sNrws9rTyGk5VJJZfd5EY4kGLvTYkR5Kxx+o52Q0dBoTYxmnz2hSt7vEdHChcR ojZQphj7oky3EAsUsfIRA52g8ny59Dws8vtJEuKsqaBVmaS2hdnIRWGlexLg2GZe 0n3INxylJzOyJjM5PrJhuz81EwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOG317bu k/0EusHdLNjRmuN/5/VyMB8GA1UdIwQYMBaAFIF904AvJuV+zoJlzoYm/LucZOnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDkyQy9FMkMwNzdERTc3 NjYxMUVGQjU1RUQyNzlDNEY5QUUwMi9nWDNUZ0M4bTVYN09nbVhPaGliOHU1eGs2 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dYM1RnQzhtNVg3T2dtWE9oaWI4dTV4azZkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDkyQy9FMkMwNzdERTc3NjYxMUVGQjU1RUQyNzlDNEY5QUUwMi9nWDNUZ0M4bTVY N09nbVhPaGliOHU1eGs2ZFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfMWq+Djx0OV++oK8BHW3u4SI0Tnth6WTZ2A/FFJRF8CoKeV6FPa5BHAicotY yk3fjSUxRQgcMmy+fSMLFlL4TOLeUBE6MF/+6Hls4MyhpbggI/aoGYpAJzvVe1K/ 0gKEIqdZxfnnjrms0ML5AaUgJIOPwBU+L3ovYKt0zqR/uLi/6eScejgv4gIHNUeZ 3dH9PTreozPtfxwRix6ugV+VnfC/zPaKhrTidzUGGk8B/EBT0cAC52fO4kuDXAYB 5Deu9dQ0VjyUa+BmuAG81NIemlXNiApNDyqNMHb1ZfIvZLZrLAZ1dTZMic6UoS0R TIIL6P0x97NFb2PoypS88Dt8JQ== -----END CERTIFICATE-----Generated at Mon Mar 2 14:31:39 2026 by rpki-client