$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft File: MGSQ23RcleyGYUmf_IJkZnumf4o.mft (raw, json) Hash identifier: Ek5w+dyjNwBRx7i6ThN/f4HFC1v1znkKs3muLzF4J/s= Subject key identifier: 8C:14:76:E7:E7:95:21:52:7B:29:EA:D3:58:FE:A2:F7:08:1D:62:F9 Authority key identifier: 30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A Certificate issuer: /CN=A91CE7A4/serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft Manifest number: DB Signing time: Sun 01 Mar 2026 08:27:03 +0000 Manifest this update: Sun 01 Mar 2026 08:27:03 +0000 Manifest next update: Sun 08 Mar 2026 08:27:03 +0000 Files and hashes: 1: MGSQ23RcleyGYUmf_IJkZnumf4o.crl (hash: 1A5SPx4mGzt/7CFFFtuINFkUYvwtJzmLpywMIMuXeLg=) 2: 19C407C0CC1011EFBC7E0050C4F9AE02.roa (hash: YhEgP7BtjPiAKP/DklQo7tOfqEOazq/YqPHJ1ipjURA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.crl rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE7A4, serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A Validity Not Before: Mar 1 08:27:03 2026 GMT Not After : Mar 8 08:27:03 2026 GMT Subject: CN=69a3f857-18ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:15:62:f4:67:fd:df:18:52:e1:c5:d3:8e:c3: e4:3f:82:64:45:c1:d6:55:7e:8d:6b:cd:44:bb:02: 0d:40:42:af:d1:a5:1f:7f:eb:f3:a0:13:35:45:83: be:1a:dd:e8:08:09:94:7a:71:67:cd:42:34:8f:6d: 9c:94:24:55:f2:1b:cc:2f:7f:82:a6:4f:97:b3:c1: 71:a2:ac:44:05:01:e8:3f:1b:49:2b:5e:bc:fc:a8: af:bb:73:d3:03:2e:93:c6:56:de:7d:3c:80:6b:4a: cc:5f:46:3a:86:06:10:e9:b6:bb:26:bf:3b:d4:9c: 0b:5d:85:c4:8c:7f:2f:48:4e:06:0d:ee:22:9e:df: 53:b6:56:d5:68:98:dc:81:fc:1c:5e:6b:1c:0b:48: e9:43:59:e9:4f:c7:88:5d:8f:e3:1e:05:6f:18:b0: f5:c2:47:6a:29:21:af:d3:23:75:93:e9:2a:90:06: 4e:16:5b:98:11:79:20:f4:80:eb:39:e3:41:e5:ce: cf:69:f7:50:e8:40:53:04:bd:89:ea:7b:62:85:2e: f0:1f:25:ec:46:a9:fd:96:83:62:b2:31:f5:8f:af: 7a:6b:71:cc:3d:3e:e5:bf:3a:20:ab:39:65:e3:1f: 9e:bc:4b:2c:25:41:ed:40:e3:1d:db:a9:81:b1:de: df:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:14:76:E7:E7:95:21:52:7B:29:EA:D3:58:FE:A2:F7:08:1D:62:F9 X509v3 Authority Key Identifier: keyid:30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:8e:b6:fe:4a:16:44:89:48:03:c5:66:f5:a7:6f:0d:b6:32: e9:b7:c2:63:54:cd:e4:e7:71:5c:d2:65:61:80:33:04:fb:08: 0f:44:83:7d:3b:3e:7d:b4:24:7e:1c:78:4b:7e:87:16:11:42: dc:ed:4a:f9:0a:6b:e6:38:a6:60:71:2d:08:d1:17:3c:6c:2b: 12:0f:66:2c:e7:da:fe:83:bc:eb:a5:c2:24:41:e6:0d:b5:a0: da:fc:b0:7c:ec:c8:e6:69:2e:70:47:e3:ce:8b:b4:b4:bb:01: 4f:e2:2e:aa:8e:13:94:ac:78:3c:1e:30:f7:40:50:b6:22:98: b5:cf:4d:45:d7:f9:61:9f:07:40:e9:5c:e5:ff:31:56:6d:a3: b7:b2:b0:df:80:63:b5:cb:53:70:99:b7:29:87:36:19:2a:bd: cc:7e:b0:aa:18:77:24:32:2d:40:b2:79:c6:76:a6:4e:01:71: 9b:54:19:72:67:36:76:79:65:9d:d1:3c:d6:c3:53:cd:f1:c6: 93:e8:d1:a7:01:98:33:d3:b4:68:32:eb:a9:ae:e6:a8:2c:fe: 47:f3:c2:4a:70:f3:fd:a4:14:ce:75:6e:35:bb:17:5d:22:3f: bc:2f:fc:03:31:b0:52:b7:bc:94:9b:dd:3f:c2:cf:b4:8c:91: bc:67:3b:31 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U3QTQxMTAvBgNVBAUTKDMwNjQ5MERCNzQ1Qzk1RUM4NjYxNDk5RkZDODI2NDY2 N0JBNjdGOEEwHhcNMjYwMzAxMDgyNzAzWhcNMjYwMzA4MDgyNzAzWjAYMRYwFAYD VQQDEw02OWEzZjg1Ny0xOGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiBVi9Gf93xhS4cXTjsPkP4JkRcHWVX6Na81EuwINQEKv0aUff+vzoBM1RYO+ Gt3oCAmUenFnzUI0j22clCRV8hvML3+Cpk+Xs8FxoqxEBQHoPxtJK168/Kivu3PT Ay6TxlbefTyAa0rMX0Y6hgYQ6ba7Jr871JwLXYXEjH8vSE4GDe4int9TtlbVaJjc gfwcXmscC0jpQ1npT8eIXY/jHgVvGLD1wkdqKSGv0yN1k+kqkAZOFluYEXkg9IDr OeNB5c7PafdQ6EBTBL2J6ntihS7wHyXsRqn9loNisjH1j696a3HMPT7lvzogqzll 4x+evEssJUHtQOMd26mBsd7fvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIwUdufn lSFSeynq01j+ovcIHWL5MB8GA1UdIwQYMBaAFDBkkNt0XJXshmFJn/yCZGZ7pn+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTdBNC9CODkwREZEMkND MEYxMUVGQTI3OEZENENDNEY5QUUwMi9NR1NRMjNSY2xleUdZVW1mX0lKa1pudW1m NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HU1EyM1JjbGV5R1lVbWZfSUprWm51bWY0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTdBNC9CODkwREZEMkNDMEYxMUVGQTI3OEZENENDNEY5QUUwMi9NR1NRMjNSY2xl eUdZVW1mX0lKa1pudW1mNG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEY62/koWRIlIA8Vm9advDbYy6bfCY1TN5OdxXNJlYYAzBPsID0SDfTs+fbQk fhx4S36HFhFC3O1K+Qpr5jimYHEtCNEXPGwrEg9mLOfa/oO866XCJEHmDbWg2vyw fOzI5mkucEfjzou0tLsBT+Iuqo4TlKx4PB4w90BQtiKYtc9NRdf5YZ8HQOlc5f8x Vm2jt7Kw34BjtctTcJm3KYc2GSq9zH6wqhh3JDItQLJ5xnamTgFxm1QZcmc2dnll ndE81sNTzfHGk+jRpwGYM9O0aDLrqa7mqCz+R/PCSnDz/aQUznVuNbsXXSI/vC/8 AzGwUre8lJvdP8LPtIyRvGc7MQ== -----END CERTIFICATE-----Generated at Mon Mar 2 10:37:16 2026 by rpki-client