$ rpki-client -vvf rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft File: gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft (raw, json) Hash identifier: 4ucF6kZFHK2x1GpBisq+AiYeNjw8GVpz+NKXF+JbbnI= Subject key identifier: 67:8B:3B:08:EF:B0:79:1B:5A:3B:61:34:9A:D9:68:00:70:7A:C4:B7 Authority key identifier: 80:21:B1:6B:92:42:1F:77:B7:26:0E:97:E6:AD:8C:1D:24:BD:29:9A Certificate issuer: /CN=A91936BE/serialNumber=8021B16B92421F77B7260E97E6AD8C1D24BD299A Certificate serial: 089A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft Manifest number: 088D Signing time: Sat 28 Feb 2026 20:55:05 +0000 Manifest this update: Sat 28 Feb 2026 20:55:04 +0000 Manifest next update: Sat 07 Mar 2026 20:55:04 +0000 Files and hashes: 1: gCGxa5JCH3e3Jg6X5q2MHSS9KZo.crl (hash: h4mnSoSFWpZ+fYuveQRPpRt1c26OIReJ+5jHNRbgPxA=) 2: 538866F6E44B11EAA31DD984C4F9AE02.roa (hash: bESggwBVi2r8+ztWK2qOS9Hu8xH3ds99tl1f1AVVNNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.crl rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 20:55:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2202 (0x89a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91936BE, serialNumber=8021B16B92421F77B7260E97E6AD8C1D24BD299A Validity Not Before: Feb 28 20:55:04 2026 GMT Not After : Mar 7 20:55:04 2026 GMT Subject: CN=69a35629-7993 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:86:13:d5:27:94:ad:8e:98:59:5d:62:04:17: 2b:f8:9a:aa:45:3f:f5:3b:89:c9:00:85:55:be:24: a7:38:82:e5:90:3a:18:a4:7f:d6:03:41:96:eb:3c: a4:f2:70:e1:6c:fa:0d:2a:dd:6b:e8:62:02:7e:59: d5:e5:1b:1e:61:74:c4:5b:45:61:b3:66:f1:2a:c6: 14:4c:1d:01:a9:b7:40:0f:6e:07:64:18:d4:9f:b0: 8a:c3:bc:7d:95:93:cd:c6:3d:8f:62:71:b6:3f:7f: cb:a4:ca:6e:2c:06:91:f9:7a:f6:ac:7d:af:4f:60: 47:93:96:bc:8b:76:dc:c0:26:e6:36:ce:6d:9c:61: 4f:0d:50:09:3f:c9:0c:c8:25:ef:76:72:62:31:50: 4a:9f:4a:69:98:ea:ca:5f:10:ce:92:71:fd:f3:67: 41:21:e9:12:9a:e7:58:ff:88:1f:9c:91:64:89:a6: 6f:65:47:a2:cd:7d:c8:3a:2c:bd:8a:a0:d1:02:64: 00:a9:f7:28:21:e4:3a:13:c6:80:b8:73:41:79:c3: 31:d6:1c:fb:de:de:e4:5b:cb:10:5f:63:55:79:cf: 58:8f:8f:f6:f0:8b:0f:44:03:18:01:c4:b0:e8:2c: bd:d3:7d:c3:27:a1:4a:72:a0:df:f8:af:b0:33:e7: 61:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:8B:3B:08:EF:B0:79:1B:5A:3B:61:34:9A:D9:68:00:70:7A:C4:B7 X509v3 Authority Key Identifier: keyid:80:21:B1:6B:92:42:1F:77:B7:26:0E:97:E6:AD:8C:1D:24:BD:29:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:fd:15:45:44:5f:6b:d8:d7:50:d6:be:f2:ec:c3:d3:a3:89: 4c:b2:16:58:57:1e:32:28:2c:cc:b4:e6:0c:67:c8:7d:17:17: 31:be:4c:e6:96:0d:d1:43:af:d3:0e:fa:56:f5:9e:d5:96:39: e3:3e:b9:d2:b1:ef:3d:c2:4e:77:85:2f:3d:52:fa:e8:6c:dc: 50:c0:46:98:47:61:72:e9:01:11:30:fd:f4:b0:db:5a:ca:f7: 14:3c:4f:a0:83:d5:0b:c9:e2:b3:c4:d8:f1:b6:d8:24:04:0e: 0b:49:fd:da:8c:13:54:8a:09:53:ea:c3:36:ee:81:b5:10:bd: d2:e0:75:9f:95:a3:a6:7b:21:1f:19:e6:c4:fc:4b:04:6d:06: 51:48:93:8c:31:51:81:2c:1c:35:1b:31:2a:95:89:37:4d:31: d5:71:42:00:ba:eb:62:ce:83:08:5c:07:01:5d:5f:f0:b4:42: 9a:65:57:05:a8:d1:ff:ae:a7:12:79:a3:d1:f6:11:9a:57:62: e3:5a:10:86:be:92:2a:50:34:b5:af:2b:e9:45:7e:55:c1:07: 88:fb:49:ff:db:e1:54:c0:4e:a2:5a:ea:20:f1:8a:bd:19:5c: f2:6c:96:21:f9:06:0d:e9:26:0c:d0:21:a1:e3:a2:6e:9c:58: 5b:d6:80:f1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM2QkUxMTAvBgNVBAUTKDgwMjFCMTZCOTI0MjFGNzdCNzI2MEU5N0U2QUQ4QzFE MjRCRDI5OUEwHhcNMjYwMjI4MjA1NTA0WhcNMjYwMzA3MjA1NTA0WjAYMRYwFAYD VQQDDA02OWEzNTYyOS03OTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoYT1SeUrY6YWV1iBBcr+JqqRT/1O4nJAIVVviSnOILlkDoYpH/WA0GW6zyk 8nDhbPoNKt1r6GICflnV5RseYXTEW0Vhs2bxKsYUTB0BqbdAD24HZBjUn7CKw7x9 lZPNxj2PYnG2P3/LpMpuLAaR+Xr2rH2vT2BHk5a8i3bcwCbmNs5tnGFPDVAJP8kM yCXvdnJiMVBKn0ppmOrKXxDOknH982dBIekSmudY/4gfnJFkiaZvZUeizX3IOiy9 iqDRAmQAqfcoIeQ6E8aAuHNBecMx1hz73t7kW8sQX2NVec9Yj4/28IsPRAMYAcSw 6Cy9033DJ6FKcqDf+K+wM+dhPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGeLOwjv sHkbWjthNJrZaABwesS3MB8GA1UdIwQYMBaAFIAhsWuSQh93tyYOl+atjB0kvSma MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzZCRS9DQTA2NjY4Q0U0 NDgxMUVBODEwQjAzODBDNEY5QUUwMi9nQ0d4YTVKQ0gzZTNKZzZYNXEyTUhTUzlL Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dDR3hhNUpDSDNlM0pnNlg1cTJNSFNTOUtaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzZCRS9DQTA2NjY4Q0U0NDgxMUVBODEwQjAzODBDNEY5QUUwMi9nQ0d4YTVKQ0gz ZTNKZzZYNXEyTUhTUzlLWm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfv0VRURfa9jXUNa+8uzD06OJTLIWWFceMigszLTmDGfIfRcXMb5M5pYN0UOv 0w76VvWe1ZY54z650rHvPcJOd4UvPVL66GzcUMBGmEdhcukBETD99LDbWsr3FDxP oIPVC8nis8TY8bbYJAQOC0n92owTVIoJU+rDNu6BtRC90uB1n5WjpnshHxnmxPxL BG0GUUiTjDFRgSwcNRsxKpWJN00x1XFCALrrYs6DCFwHAV1f8LRCmmVXBajR/66n Enmj0fYRmldi41oQhr6SKlA0ta8r6UV+VcEHiPtJ/9vhVMBOolrqIPGKvRlc8myW IfkGDekmDNAhoeOibpxYW9aA8Q== -----END CERTIFICATE-----Generated at Sun Mar 1 20:53:42 2026 by rpki-client