$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft File: sGfGu3DfDcBM5398jXZwakn2y4U.mft (raw, json) Hash identifier: JOM+Tle82VNXGC5AF+3fSpgr14XNOo1nzFTyZ0vg7N0= Subject key identifier: BE:4A:1F:54:D9:1E:C4:92:77:05:62:C7:38:EA:89:FD:51:EB:AD:5B Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Certificate serial: 031A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft Manifest number: 02EC Signing time: Sun 01 Mar 2026 02:19:43 +0000 Manifest this update: Sun 01 Mar 2026 02:19:42 +0000 Manifest next update: Sun 08 Mar 2026 02:19:42 +0000 Files and hashes: 1: sGfGu3DfDcBM5398jXZwakn2y4U.crl (hash: v5qENuvAaPalFnx/JQI/CMg30j+Y1jPqvsOzhPbB7hc=) 2: D6D1A360323911F0BDA2E834C4F9AE02.roa (hash: 3S7sTHQwNR4M05c/J0LAnFvlwfRaJo13g2aipeOM4II=) 3: DF9C04F4897811F08A9D002AC4F9AE02.roa (hash: XfF79hvTmc8NMCL/hID++kJM7536Tc7Eia39Bf3yFuA=) 4: 6E41DE08310A11F0AC8DF544C4F9AE02.roa (hash: MdnsK78f+RePT5EKFxzpSrHG7P2t5sm3+YBB1dYO5+4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 02:19:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 794 (0x31a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D366A, serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Validity Not Before: Mar 1 02:19:42 2026 GMT Not After : Mar 8 02:19:42 2026 GMT Subject: CN=69a3a23f-7257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8e:03:26:20:99:0d:e9:ec:7f:ac:a4:06:69: bb:99:0b:55:d7:41:12:d1:15:23:ec:b0:09:62:3d: 1f:8d:8b:06:d2:61:7c:98:35:e0:df:79:7d:f8:60: 43:b5:dc:a0:43:11:66:f8:3b:b9:81:13:e8:d6:24: fd:e3:a3:49:24:6b:76:06:6a:e7:87:42:f2:bb:c9: 88:59:78:39:be:a3:35:d2:5c:37:a6:c0:a9:15:3e: 86:6b:d7:84:79:f9:dc:35:70:8b:c2:c0:d7:d5:18: b1:61:27:a1:48:be:51:48:6f:e1:a7:43:ca:d1:ac: d2:93:39:d0:f0:96:46:51:b0:2d:55:b4:a8:50:52: 15:0c:11:96:f1:2e:6e:73:4a:3e:96:cd:72:bb:94: 40:df:22:0f:5e:1e:a3:b4:ed:2a:5c:2f:d3:37:44: 86:22:54:fb:18:0b:36:d1:fd:fb:e8:26:6c:79:eb: fb:46:16:35:82:84:2a:fc:43:55:cc:a8:f4:31:bc: 9a:36:98:08:66:ed:db:79:c3:81:f8:62:61:48:a2: f5:2c:1a:62:87:02:38:3f:6a:41:81:da:43:1b:b3: b5:8a:3a:c3:b1:e9:c1:ab:ef:85:aa:49:98:b3:8b: 16:bc:58:d9:35:b6:a8:75:d5:df:43:c4:43:d6:ac: b5:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:4A:1F:54:D9:1E:C4:92:77:05:62:C7:38:EA:89:FD:51:EB:AD:5B X509v3 Authority Key Identifier: keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:e1:20:36:f8:8b:29:1a:46:da:47:ad:51:45:1f:5c:a1:21: bc:0b:95:d8:79:77:f7:d7:4d:d8:aa:40:06:ec:25:44:60:21: 17:d5:fb:99:37:8a:08:73:d2:2c:31:4d:bf:f9:ff:b8:5f:15: bd:c2:0d:16:59:d2:89:ce:c9:a7:1b:66:92:a8:49:55:a9:66: 9e:94:d3:69:25:41:fd:3a:ca:d7:ec:dd:fe:88:de:7d:77:17: 39:22:46:9f:3c:d4:46:38:30:f1:33:8e:ea:21:50:a6:44:23: 24:43:ab:78:8b:83:a3:b1:27:be:d5:14:3b:ba:d4:09:c8:11: ba:5b:e9:6a:42:6b:ce:fd:bd:51:78:7f:5b:e7:1a:bf:e4:5f: 90:3d:2a:33:0c:24:39:db:31:a2:e0:c4:48:db:21:50:6d:0e: 56:26:dc:d3:f6:5b:45:6c:b6:34:14:50:e7:85:ff:c6:fb:81: e8:b8:87:f4:81:40:6d:db:e1:9f:70:30:4a:49:8c:b3:19:f4: e7:52:15:a9:4e:4e:4f:b6:6b:4e:f6:3c:1f:d0:20:cc:fc:9f: ab:19:d8:c1:ea:2d:ba:f1:4f:85:dd:09:d2:6b:23:27:d1:94: 27:76:51:63:45:05:49:3e:58:9c:dd:b7:52:9b:16:04:15:20: 4d:b4:3f:1e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2NkExMTAvBgNVBAUTKEIwNjdDNkJCNzBERjBEQzA0Q0U3N0Y3QzhENzY3MDZB NDlGNkNCODUwHhcNMjYwMzAxMDIxOTQyWhcNMjYwMzA4MDIxOTQyWjAYMRYwFAYD VQQDDA02OWEzYTIzZi03MjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtI4DJiCZDensf6ykBmm7mQtV10ES0RUj7LAJYj0fjYsG0mF8mDXg33l9+GBD tdygQxFm+Du5gRPo1iT946NJJGt2Bmrnh0Lyu8mIWXg5vqM10lw3psCpFT6Ga9eE efncNXCLwsDX1RixYSehSL5RSG/hp0PK0azSkznQ8JZGUbAtVbSoUFIVDBGW8S5u c0o+ls1yu5RA3yIPXh6jtO0qXC/TN0SGIlT7GAs20f376CZseev7RhY1goQq/ENV zKj0MbyaNpgIZu3becOB+GJhSKL1LBpihwI4P2pBgdpDG7O1ijrDsenBq++FqkmY s4sWvFjZNbaoddXfQ8RD1qy1uwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL5KH1TZ HsSSdwVixzjqif1R661bMB8GA1UdIwQYMBaAFLBnxrtw3w3ATOd/fI12cGpJ9suF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzY2QS9FQzA5QUE0QTMw N0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRjQk01Mzk4alhad2FrbjJ5 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHZkd1M0RmRGNCTTUzOThqWFp3YWtuMnk0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzY2QS9FQzA5QUE0QTMwN0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRj Qk01Mzk4alhad2FrbjJ5NFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEeEgNviLKRpG2ketUUUfXKEhvAuV2Hl399dN2KpABuwlRGAhF9X7mTeKCHPS LDFNv/n/uF8VvcINFlnSic7JpxtmkqhJValmnpTTaSVB/TrK1+zd/ojefXcXOSJG nzzURjgw8TOO6iFQpkQjJEOreIuDo7EnvtUUO7rUCcgRulvpakJrzv29UXh/W+ca v+RfkD0qMwwkOdsxouDESNshUG0OVibc0/ZbRWy2NBRQ54X/xvuB6LiH9IFAbdvh n3AwSkmMsxn051IVqU5OT7ZrTvY8H9AgzPyfqxnYweotuvFPhd0J0msjJ9GUJ3ZR Y0UFST5YnN23UpsWBBUgTbQ/Hg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:46:58 2026 by rpki-client