$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft File: g2LSOGrBMH7vi7_YdPc45tqjVXI.mft (raw, json) Hash identifier: c8l2uHiR17tp7bpIHd6tTUD/u8PBD0FGsmTtb+E3CwQ= Subject key identifier: E3:A2:3C:FD:10:AF:93:52:05:2B:D7:A3:82:A1:C9:E5:9D:26:B1:C0 Authority key identifier: 83:62:D2:38:6A:C1:30:7E:EF:8B:BF:D8:74:F7:38:E6:DA:A3:55:72 Certificate issuer: /CN=A917C0F5/serialNumber=8362D2386AC1307EEF8BBFD874F738E6DAA35572 Certificate serial: 0DAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft Manifest number: 0DA3 Signing time: Sat 28 Feb 2026 18:03:40 +0000 Manifest this update: Sat 28 Feb 2026 18:03:40 +0000 Manifest next update: Sat 07 Mar 2026 18:03:40 +0000 Files and hashes: 1: g2LSOGrBMH7vi7_YdPc45tqjVXI.crl (hash: 4hLHETQYvhHznKdLxBm8sfKnndWSzLRwoFabeBHfMRg=) 2: D11C8B12DB7111E981104A54C4F9AE02.roa (hash: b+YvMULskW1aqcLGiau9z7PDlxuascZM6xtTvuLKH/M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.crl rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 18:03:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3498 (0xdaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F5, serialNumber=8362D2386AC1307EEF8BBFD874F738E6DAA35572 Validity Not Before: Feb 28 18:03:40 2026 GMT Not After : Mar 7 18:03:40 2026 GMT Subject: CN=69a32dfc-91f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:18:ff:0c:22:ee:49:fa:a9:29:75:18:65:a0: f3:b3:f7:dc:79:a4:2a:7f:d9:79:e9:28:bd:5f:84: 91:84:c5:b7:cf:fc:88:0d:e5:26:1e:7e:cb:fc:2a: 59:5b:dd:40:cb:af:e9:91:6f:53:ba:49:35:14:b3: 30:e5:6d:a9:89:6b:fc:ec:eb:9f:6f:7e:0e:99:ee: 71:12:c2:de:3e:76:ce:b1:89:05:19:1b:16:9e:de: df:9d:66:f1:b2:2d:9c:8e:b5:d5:fd:fd:79:92:9c: 90:55:18:07:f0:44:5f:f6:de:14:f0:96:7c:a2:7c: b5:49:eb:33:56:59:87:27:04:b9:2e:38:8c:9d:87: a9:88:e4:68:02:db:1f:2d:92:0b:95:8a:cb:9f:49: a9:85:b4:79:5d:6d:f4:5b:6a:45:62:31:29:68:1b: 6b:e0:91:4d:79:74:46:c2:75:6c:a5:1f:ca:55:d1: 9d:ef:0f:72:70:76:8c:e4:36:58:36:6f:cb:a5:21: f0:1f:3a:5d:ba:96:fa:0d:ca:4e:73:6e:2e:e4:f1: f7:ce:8f:55:79:ab:21:77:55:ee:11:1e:93:ce:2c: 99:5f:7b:7e:03:5f:03:9b:11:ac:29:d0:6b:4e:08: fa:73:4b:9d:96:53:38:41:bd:b6:cf:ec:4b:83:b6: 7f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:A2:3C:FD:10:AF:93:52:05:2B:D7:A3:82:A1:C9:E5:9D:26:B1:C0 X509v3 Authority Key Identifier: keyid:83:62:D2:38:6A:C1:30:7E:EF:8B:BF:D8:74:F7:38:E6:DA:A3:55:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:49:54:31:b9:49:19:89:68:43:5f:0b:11:63:c4:26:d1:2e: d9:99:2d:ee:81:ee:7b:f9:8b:1a:b9:a6:fb:01:38:48:c6:73: c0:fc:a4:44:1a:87:bf:30:f2:5e:d1:20:46:02:fd:87:22:81: 10:f1:44:96:a0:a0:cc:97:1d:91:82:c7:aa:8c:17:c6:a9:28: 9b:22:04:9e:8e:37:a0:52:16:a7:49:4c:85:79:dd:9f:10:c7: 9d:d8:8c:f9:b2:d6:e6:e7:af:fd:f0:92:89:d4:7e:43:e0:12: 95:33:cc:a6:d9:35:3b:3e:bb:36:5f:97:3b:8f:f1:63:33:c8: 80:f1:48:ed:4f:09:38:80:01:56:48:b4:08:5d:9d:5f:df:81: 49:96:c1:79:09:ed:d7:d2:74:88:b4:f3:ec:6a:ad:0c:15:d6: d4:b4:57:ba:13:09:63:de:bc:a3:1f:d9:f6:0b:b0:43:ab:86: 9f:74:d3:8e:5f:a2:50:ec:ed:8d:98:4f:bc:7d:e8:45:6b:89: 76:9d:20:7e:5c:93:62:2e:40:01:48:c8:9b:8c:be:a9:38:32: f9:2f:e6:ff:60:c6:19:d8:71:4c:d5:4a:b3:33:7e:d2:1c:8d: c3:d6:92:a2:91:e0:b9:ea:4f:05:9f:91:52:d4:93:31:cc:41: 8b:0d:85:bf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MwRjUxMTAvBgNVBAUTKDgzNjJEMjM4NkFDMTMwN0VFRjhCQkZEODc0RjczOEU2 REFBMzU1NzIwHhcNMjYwMjI4MTgwMzQwWhcNMjYwMzA3MTgwMzQwWjAYMRYwFAYD VQQDDA02OWEzMmRmYy05MWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRj/DCLuSfqpKXUYZaDzs/fceaQqf9l56Si9X4SRhMW3z/yIDeUmHn7L/CpZ W91Ay6/pkW9Tukk1FLMw5W2piWv87Oufb34Ome5xEsLePnbOsYkFGRsWnt7fnWbx si2cjrXV/f15kpyQVRgH8ERf9t4U8JZ8ony1SeszVlmHJwS5LjiMnYepiORoAtsf LZILlYrLn0mphbR5XW30W2pFYjEpaBtr4JFNeXRGwnVspR/KVdGd7w9ycHaM5DZY Nm/LpSHwHzpdupb6DcpOc24u5PH3zo9Veashd1XuER6TziyZX3t+A18DmxGsKdBr Tgj6c0udllM4Qb22z+xLg7Z/ZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOOiPP0Q r5NSBSvXo4KhyeWdJrHAMB8GA1UdIwQYMBaAFINi0jhqwTB+74u/2HT3OObao1Vy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzBGNS8xRUM0RTA5QURC NzExMUU5QjYxMDUzNTNDNEY5QUUwMi9nMkxTT0dyQk1IN3ZpN19ZZFBjNDV0cWpW WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cyTFNPR3JCTUg3dmk3X1lkUGM0NXRxalZYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzBGNS8xRUM0RTA5QURCNzExMUU5QjYxMDUzNTNDNEY5QUUwMi9nMkxTT0dyQk1I N3ZpN19ZZFBjNDV0cWpWWEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFUlUMblJGYloQ18LEWPEJtEu2Zkt7oHue/mLGrmm+wE4SMZzwPykRBqHvzDy XtEgRgL9hyKBEPFElqCgzJcdkYLHqowXxqkomyIEno43oFIWp0lMhXndnxDHndiM +bLW5uev/fCSidR+Q+ASlTPMptk1Oz67Nl+XO4/xYzPIgPFI7U8JOIABVki0CF2d X9+BSZbBeQnt19J0iLTz7GqtDBXW1LRXuhMJY968ox/Z9guwQ6uGn3TTjl+iUOzt jZhPvH3oRWuJdp0gflyTYi5AAUjIm4y+qTgy+S/m/2DGGdhxTNVKszN+0hyNw9aS opHguepPBZ+RUtSTMcxBiw2Fvw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:29:13 2026 by rpki-client