$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft File: g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft (raw, json) Hash identifier: 81sJMti9b4zX81ULoVs+kEvBM5gD1jjNY+E3o3lQaKk= Subject key identifier: 5E:A7:F9:54:50:D3:28:48:0E:77:2D:CE:3B:1D:85:53:91:F0:61:00 Authority key identifier: 83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E Certificate issuer: /CN=A91A7CDD/serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Certificate serial: 0175 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft Manifest number: 0172 Signing time: Sun 01 Mar 2026 05:41:58 +0000 Manifest this update: Sun 01 Mar 2026 05:41:57 +0000 Manifest next update: Sun 08 Mar 2026 05:41:57 +0000 Files and hashes: 1: g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl (hash: mUdXFttPGl6Pm65Ja4JG/ZJEPzWUwx2gXFKwlJjdAHY=) 2: 1E595AE8DD0E11EE9833196BC4F9AE02.roa (hash: kcBBvIPO2Q30vTutynVp6ce7Y05AQ3m9EdubLnBzT4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 05:41:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7CDD, serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Validity Not Before: Mar 1 05:41:57 2026 GMT Not After : Mar 8 05:41:57 2026 GMT Subject: CN=69a3d1a5-a3e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:4f:1c:f7:04:be:05:62:eb:26:c5:fc:c5:8c: 76:df:80:e6:63:ec:59:69:29:08:9b:3d:03:22:c9: 36:ce:e9:ed:2d:a8:ee:7a:9c:fc:3c:fe:df:ea:7d: 9f:2d:0d:db:2b:cc:b4:f5:01:ec:c1:a0:47:d8:bb: a6:9a:5e:97:ba:25:35:5c:43:b2:17:fe:05:61:8b: bc:6e:88:67:af:68:b2:8c:94:a3:b6:af:55:98:70: 2b:f4:dd:33:d1:b9:51:5a:9a:cd:61:fa:9b:24:4a: da:15:a9:c2:94:bc:ff:94:41:4f:65:5c:a3:9c:af: 0f:a8:f4:a1:9e:dd:b6:79:c2:55:d0:be:f1:d7:22: 75:85:16:64:63:1b:08:aa:66:f4:6a:9c:21:aa:2a: 4f:9b:cf:d6:5b:6b:6e:11:c6:a2:30:24:10:73:9d: cf:32:b3:00:5a:25:8d:17:2f:d5:15:9d:b8:63:4e: a5:58:7a:9c:fd:eb:1a:0c:34:40:fb:ff:16:8f:be: ef:95:ff:ed:dd:dc:3b:b4:ef:b3:c9:fa:9d:f8:09: 70:33:ea:02:42:41:fe:df:e8:0a:ab:a1:71:9e:b8: 93:e9:b0:c3:e6:4d:41:3b:12:cb:5b:df:92:fd:39: a4:c4:98:e4:8d:2d:8e:00:da:aa:6d:2c:76:57:b5: b7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:A7:F9:54:50:D3:28:48:0E:77:2D:CE:3B:1D:85:53:91:F0:61:00 X509v3 Authority Key Identifier: keyid:83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:8e:e0:68:81:96:cb:c3:a2:6e:c6:bc:e8:7d:55:7d:6f:88: 78:a5:1c:c0:72:aa:a2:c8:79:cc:fe:da:29:96:9d:49:3e:ce: 4b:e9:90:e6:71:82:c1:e9:5b:39:b6:67:02:7e:71:43:bf:a8: d7:80:af:dc:8d:66:1c:82:60:cc:63:39:c7:10:78:12:9d:71: 66:28:87:30:e0:f5:3b:a5:95:11:5d:09:fe:b4:76:58:a5:5e: 6e:5c:ee:30:1a:ef:fd:d4:ab:67:36:ff:1b:e8:54:69:7a:af: 21:44:70:fe:32:e9:aa:d3:19:4c:68:49:e8:d2:19:4e:05:c1: 51:da:36:cb:a2:2a:05:86:bd:97:99:12:e7:c9:c3:1f:f8:51: da:a5:8b:c1:4f:08:cb:e2:c2:60:7f:56:da:fa:b6:4c:7e:fb: 68:be:18:c9:25:eb:94:a3:57:00:1f:11:6c:23:f4:bf:1e:22: cc:f6:d1:0a:9a:1e:e2:a4:57:09:66:d0:ea:ae:18:b0:9c:3c: a0:71:d5:26:d9:9d:50:d7:4d:7f:b5:b3:b1:2f:de:17:0f:8a: d2:7b:3a:cb:49:36:d1:95:59:ef:be:fa:9d:53:dd:1c:b9:95: 04:5c:2d:5c:8d:00:9f:dc:86:ee:bd:08:08:07:65:52:49:9d: 17:e6:ef:d2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDREQxMTAvBgNVBAUTKDgzOEE5NEVEMjUyNDA5NTlBQTZGMTU0OTEwMDNBQzZF NkQwMzk1N0UwHhcNMjYwMzAxMDU0MTU3WhcNMjYwMzA4MDU0MTU3WjAYMRYwFAYD VQQDEw02OWEzZDFhNS1hM2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA208c9wS+BWLrJsX8xYx234DmY+xZaSkImz0DIsk2zuntLajuepz8PP7f6n2f LQ3bK8y09QHswaBH2Lumml6XuiU1XEOyF/4FYYu8bohnr2iyjJSjtq9VmHAr9N0z 0blRWprNYfqbJEraFanClLz/lEFPZVyjnK8PqPShnt22ecJV0L7x1yJ1hRZkYxsI qmb0apwhqipPm8/WW2tuEcaiMCQQc53PMrMAWiWNFy/VFZ24Y06lWHqc/esaDDRA +/8Wj77vlf/t3dw7tO+zyfqd+AlwM+oCQkH+3+gKq6FxnriT6bDD5k1BOxLLW9+S /TmkxJjkjS2OANqqbSx2V7W3xQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF6n+VRQ 0yhIDnctzjsdhVOR8GEAMB8GA1UdIwQYMBaAFIOKlO0lJAlZqm8VSRADrG5tA5V+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0NERC84QTIzQTZGOERE MEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NWbXFieFZKRUFPc2JtMERs WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c0cVU3U1VrQ1ZtcWJ4VkpFQU9zYm0wRGxYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0NERC84QTIzQTZGOEREMEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NW bXFieFZKRUFPc2JtMERsWDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsY7gaIGWy8Oibsa86H1VfW+IeKUcwHKqosh5zP7aKZadST7OS+mQ5nGCwelb ObZnAn5xQ7+o14Cv3I1mHIJgzGM5xxB4Ep1xZiiHMOD1O6WVEV0J/rR2WKVeblzu MBrv/dSrZzb/G+hUaXqvIURw/jLpqtMZTGhJ6NIZTgXBUdo2y6IqBYa9l5kS58nD H/hR2qWLwU8Iy+LCYH9W2vq2TH77aL4YySXrlKNXAB8RbCP0vx4izPbRCpoe4qRX CWbQ6q4YsJw8oHHVJtmdUNdNf7WzsS/eFw+K0ns6y0k20ZVZ7776nVPdHLmVBFwt XI0An9yG7r0ICAdlUkmdF+bv0g== -----END CERTIFICATE-----Generated at Mon Mar 2 13:05:04 2026 by rpki-client