$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft File: GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft (raw, json) Hash identifier: SKs1Nbgm3BbxgUqCC5eXZJReTpbcWs9KrsQcUS2yOa8= Subject key identifier: CA:C0:35:AF:CF:FD:8E:41:C8:51:B4:9B:E6:B7:F2:C2:84:9C:90:71 Authority key identifier: 19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17 Certificate issuer: /CN=A91991D3/serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17 Certificate serial: 0238 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft Manifest number: 0208 Signing time: Mon 02 Mar 2026 02:07:36 +0000 Manifest this update: Mon 02 Mar 2026 02:07:35 +0000 Manifest next update: Mon 09 Mar 2026 02:07:35 +0000 Files and hashes: 1: GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl (hash: D/YUqQQs+xloZzNa+RsnO1C/s1w4C4E3g9y78CZWqQo=) 2: 12D4E3D41AA411F0A196BA66C4F9AE02.roa (hash: Wb9fqxh/2GhJbzzPZAroheRX0Q4IRD6pGw48st/qKjM=) 3: 3F50C060031811F19D968415183D8C67.roa (hash: ikbWJMeGoQ4NT+iTgattiHwkrEFygkhc4z1JEm/i9+4=) 4: 1F388278205F11F0A895DE1EC4F9AE02.roa (hash: SPaCgDejvUx7FptJCD5UIANcqzATtL9+9X2RUGgGItI=) 5: F250438EF44011F0A1A516A45F6F56BC.roa (hash: 39UXrQgnsrOoQwxWVU9MQlKYuieI5NM5dujARlQugR8=) 6: 926A40AC205E11F0A7552513C4F9AE02.roa (hash: YKiXx5HCj2zwN3jfK9q5GakLYQcoFw4kl98GWbjUs9o=) 7: 6E1C49FA031811F1BA97C916183D8C67.roa (hash: W3xz1OlCOY4911IjT7XvKTLZQ/EXJxfvdWuVQx6sAYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3, serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17 Validity Not Before: Mar 2 02:07:35 2026 GMT Not After : Mar 9 02:07:35 2026 GMT Subject: CN=69a4f0e8-d975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:86:7f:6d:54:18:7e:de:ae:7d:29:b0:99:17: 49:b3:ef:6c:10:9f:8e:05:0c:9d:93:53:7e:b2:67: e2:46:27:bd:4c:aa:1e:f7:8d:ab:de:66:48:0a:e0: 74:4d:55:13:7d:fa:a2:25:23:a7:78:a7:fb:38:de: 51:2d:31:44:a4:b4:f4:b9:db:98:aa:e1:b9:8b:62: 7d:49:e2:6a:0a:9d:81:df:0a:58:63:f9:4b:36:4a: bb:85:62:ad:1b:ea:ef:fb:ee:4d:e8:b7:5b:05:d2: 66:18:29:2b:c5:0d:1d:33:b8:7d:ae:b5:e5:75:93: 59:f2:42:a6:40:95:ca:b1:ac:7a:70:c2:c6:d5:dd: 3a:a5:32:ba:9e:14:db:f0:32:2c:30:4c:82:10:80: c2:0d:ad:39:6a:60:4f:ab:3b:13:21:ce:66:b6:5c: 9f:73:f1:44:01:35:6c:d3:70:a2:64:7b:f4:58:11: e6:a7:83:03:02:27:b5:4d:84:48:ec:e4:bb:66:7c: 24:0c:44:fc:5f:2c:fc:04:14:a8:07:37:f0:05:fe: 10:7f:06:c9:4b:4d:4a:54:ea:d4:5d:f5:2c:0b:3e: f2:1d:fd:c5:d1:06:01:ed:4e:fb:f6:b7:f0:33:b1: 91:95:43:15:5e:20:a2:b7:63:5b:ad:3a:d9:b8:e9: b5:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:C0:35:AF:CF:FD:8E:41:C8:51:B4:9B:E6:B7:F2:C2:84:9C:90:71 X509v3 Authority Key Identifier: keyid:19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:72:d8:44:02:4b:26:58:22:cf:09:bc:83:d5:8b:fe:7a:68: 59:ec:bb:fb:29:46:a0:eb:33:52:61:05:4c:1c:28:83:fe:7e: 4e:a1:17:d8:23:a4:10:d4:e9:4e:17:40:34:93:22:55:c2:e6: 81:35:92:00:b6:4f:d1:81:7b:f7:4b:60:57:69:41:b7:9f:76: 75:45:ca:35:09:35:6b:87:d0:a1:8a:5c:04:34:ad:18:07:fd: 1c:3b:cc:6b:50:cd:62:fa:22:34:6f:f9:20:2e:af:b3:bb:ce: 58:7a:7c:28:43:90:fd:0f:a7:ec:26:fa:93:39:ab:af:53:7f: ca:61:6c:44:ea:2b:f6:a9:f0:55:59:0a:d5:ba:6a:9b:80:63: 8d:cd:b5:77:8e:45:16:f6:d4:a7:aa:8d:97:eb:03:c7:75:89: ff:34:0e:39:4b:71:9a:b0:0c:01:1b:0a:e4:c0:a3:49:3f:94: 9e:79:24:4c:23:1e:aa:8d:ae:37:00:a2:ab:f7:9e:5b:a3:c9: 71:66:1e:bb:f6:7d:3d:43:32:0d:67:68:80:32:3a:7e:83:50: 1f:06:0f:2a:fb:cc:8a:a3:6b:f0:4f:e0:62:12:88:4e:a6:7f: af:14:28:56:0f:2e:f4:5f:ce:13:47:f7:97:c2:17:c9:e6:55: 42:c0:a6:d7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDE5NTgxMzM4QTlENjNEOTVBOTZEMTcxMTYyM0UyRjY2 MEVCMEZCMTcwHhcNMjYwMzAyMDIwNzM1WhcNMjYwMzA5MDIwNzM1WjAYMRYwFAYD VQQDEw02OWE0ZjBlOC1kOTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4Z/bVQYft6ufSmwmRdJs+9sEJ+OBQydk1N+smfiRie9TKoe942r3mZICuB0 TVUTffqiJSOneKf7ON5RLTFEpLT0uduYquG5i2J9SeJqCp2B3wpYY/lLNkq7hWKt G+rv++5N6LdbBdJmGCkrxQ0dM7h9rrXldZNZ8kKmQJXKsax6cMLG1d06pTK6nhTb 8DIsMEyCEIDCDa05amBPqzsTIc5mtlyfc/FEATVs03CiZHv0WBHmp4MDAie1TYRI 7OS7ZnwkDET8Xyz8BBSoBzfwBf4QfwbJS01KVOrUXfUsCz7yHf3F0QYB7U779rfw M7GRlUMVXiCit2NbrTrZuOm17QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMrANa/P /Y5ByFG0m+a38sKEnJBxMB8GA1UdIwQYMBaAFBlYEzip1j2VqW0XEWI+L2YOsPsX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy82MjlFOEIyMDNC MjMxMUVFQTQzQjAyMTlDNEY5QUUwMi9HVmdUT0tuV1BaV3BiUmNSWWo0dlpnNnct eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0dWZ1RPS25XUFpXcGJSY1JZajR2Wmc2dy14Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTFEMy82MjlFOEIyMDNCMjMxMUVFQTQzQjAyMTlDNEY5QUUwMi9HVmdUT0tuV1Ba V3BiUmNSWWo0dlpnNncteGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApnLYRAJLJlgizwm8g9WL/npoWey7+ylGoOszUmEFTBwog/5+TqEX2COkENTp ThdANJMiVcLmgTWSALZP0YF790tgV2lBt592dUXKNQk1a4fQoYpcBDStGAf9HDvM a1DNYvoiNG/5IC6vs7vOWHp8KEOQ/Q+n7Cb6kzmrr1N/ymFsROor9qnwVVkK1bpq m4Bjjc21d45FFvbUp6qNl+sDx3WJ/zQOOUtxmrAMARsK5MCjST+UnnkkTCMeqo2u NwCiq/eeW6PJcWYeu/Z9PUMyDWdogDI6foNQHwYPKvvMiqNr8E/gYhKITqZ/rxQo Vg8u9F/OE0f3l8IXyeZVQsCm1w== -----END CERTIFICATE-----Generated at Mon Mar 2 08:19:46 2026 by rpki-client