$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft File: Gu-1HeyOsHlip15FnOIQp0ABBPs.mft (raw, json) Hash identifier: oBDbdm+rFr+LoJK2s+KY/STOFEtcif0+bPLhXl++u84= Subject key identifier: A4:65:B8:D9:79:8D:5F:52:56:62:C1:2F:D1:09:5C:A1:58:D1:D8:89 Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 3526 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft Manifest number: 351A Signing time: Sat 28 Feb 2026 14:42:40 +0000 Manifest this update: Sat 28 Feb 2026 14:42:39 +0000 Manifest next update: Sat 07 Mar 2026 14:42:39 +0000 Files and hashes: 1: Gu-1HeyOsHlip15FnOIQp0ABBPs.crl (hash: AWwN0dKAt0Dx2tU8JWfQDbaGd7zF4InzbuIhFyJSK/c=) 2: 232E8BFEFEA411EDBC673B4BC4F9AE02.roa (hash: f0s5M+jY8Uq/Wkuq+EBQtTt5fdf658GNQxqS9tNI1Ho=) 3: 220E32CEFEA411EDBC673B4BC4F9AE02.roa (hash: amc5JKgDCW0FwP7fqve5MmmvPdX66HObowu8LFy8/hw=) 4: 229F27ACFEA411EDBC673B4BC4F9AE02.roa (hash: XxjtUd/hL+kIKHkOi4rgqBJdsfuyYhtMzuXgGEu/n3U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 14:42:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13606 (0x3526) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE, serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: Feb 28 14:42:39 2026 GMT Not After : Mar 7 14:42:39 2026 GMT Subject: CN=69a2fee0-aaf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:0e:21:97:e5:da:84:de:6a:11:b6:50:0a:01: 67:28:80:c6:d6:7d:56:b3:80:42:0c:2e:3c:2d:80: 47:f0:ad:ea:4f:e9:26:ab:94:91:83:68:68:db:44: e6:e5:04:d9:8f:d9:dc:09:cd:f6:66:56:23:cf:20: 1c:12:a4:bf:c4:8f:ce:29:b3:61:fb:55:5c:3b:54: 14:a0:5f:f8:c5:87:93:1c:73:a9:65:6d:9f:20:ba: b1:b4:f6:12:20:1d:2d:a1:ab:dd:d0:71:df:13:3b: 1a:1f:88:9c:83:5d:7f:7d:fb:af:82:7f:3b:65:d2: 08:c6:0d:96:77:42:61:ca:37:8f:08:4f:df:5e:49: 9e:06:6e:1c:cb:46:c7:18:d1:37:c3:83:1d:10:7e: 95:62:92:de:5c:2c:aa:6d:47:b6:d4:99:f2:8c:21: 5c:36:dd:11:fe:8a:44:1e:eb:d3:27:9e:b2:11:7b: 55:bd:63:71:11:80:b4:e1:61:6b:9b:23:0c:66:d7: 0a:37:0b:dc:1e:35:82:93:48:38:99:1a:ea:c7:0e: 5d:93:55:8c:6e:0b:b4:15:b8:b2:15:c6:3c:7f:3b: 92:b4:84:7a:8b:10:a7:d0:2f:e8:12:41:d9:8a:1d: ab:d7:c1:cb:e5:6b:13:f0:fa:fd:6b:41:0a:b7:f7: 9b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:65:B8:D9:79:8D:5F:52:56:62:C1:2F:D1:09:5C:A1:58:D1:D8:89 X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:a5:64:90:f5:7a:83:58:c2:b9:dc:70:a4:91:c2:b2:9a:dd: 95:19:3b:bb:d5:59:79:69:49:bf:a3:4f:99:31:92:de:4c:91: 18:a4:4d:3d:14:11:23:3c:ec:7d:dc:25:7e:59:26:7d:9d:91: cd:61:0d:0b:c7:13:55:da:7d:9f:ee:92:fe:78:eb:96:52:dd: 8f:1a:67:83:02:3a:a1:1b:32:4b:e4:5f:70:07:6b:bd:76:2b: 6c:87:35:87:f7:9f:eb:32:0c:a2:37:60:d8:e6:9e:d1:08:ad: ca:2c:35:ba:b6:9f:80:80:1c:55:39:13:5e:c8:2e:39:76:11: e7:f8:d1:8d:3c:22:8e:51:90:de:2a:28:cf:51:2a:ac:96:ee: b8:28:5f:75:1d:dd:a8:7f:b8:bb:5d:13:da:8e:58:74:cd:d1: 7f:52:43:0c:d8:69:04:ec:34:d0:57:59:57:7b:05:24:26:d0: 82:71:07:5d:38:20:1e:81:8d:0d:b1:b3:f8:22:7c:25:ae:df: 70:92:e3:a3:4f:ae:df:d2:b8:53:13:7e:c7:d9:2d:75:42:66: d3:f6:78:ff:d0:1a:a4:c4:ce:7d:b9:ab:70:76:58:d2:8e:b1: 85:32:5d:34:55:4b:f4:15:d9:70:16:d5:77:22:5e:fc:db:7d: 4a:90:77:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjYwMjI4MTQ0MjM5WhcNMjYwMzA3MTQ0MjM5WjAYMRYwFAYD VQQDDA02OWEyZmVlMC1hYWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAow4hl+XahN5qEbZQCgFnKIDG1n1Ws4BCDC48LYBH8K3qT+kmq5SRg2ho20Tm 5QTZj9ncCc32ZlYjzyAcEqS/xI/OKbNh+1VcO1QUoF/4xYeTHHOpZW2fILqxtPYS IB0toavd0HHfEzsaH4icg11/ffuvgn87ZdIIxg2Wd0JhyjePCE/fXkmeBm4cy0bH GNE3w4MdEH6VYpLeXCyqbUe21JnyjCFcNt0R/opEHuvTJ56yEXtVvWNxEYC04WFr myMMZtcKNwvcHjWCk0g4mRrqxw5dk1WMbgu0FbiyFcY8fzuStIR6ixCn0C/oEkHZ ih2r18HL5WsT8Pr9a0EKt/ebrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKRluNl5 jV9SVmLBL9EJXKFY0diJMB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0RBRS9GRUZCQ0M4RTFEOEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NI bGlwMTVGbk9JUXAwQUJCUHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApKVkkPV6g1jCudxwpJHCsprdlRk7u9VZeWlJv6NPmTGS3kyRGKRNPRQRIzzs fdwlflkmfZ2RzWENC8cTVdp9n+6S/njrllLdjxpngwI6oRsyS+RfcAdrvXYrbIc1 h/ef6zIMojdg2Oae0Qityiw1urafgIAcVTkTXsguOXYR5/jRjTwijlGQ3iooz1Eq rJbuuChfdR3dqH+4u10T2o5YdM3Rf1JDDNhpBOw00FdZV3sFJCbQgnEHXTggHoGN DbGz+CJ8Ja7fcJLjo0+u39K4UxN+x9ktdUJm0/Z4/9AapMTOfbmrcHZY0o6xhTJd NFVL9BXZcBbVdyJe/Nt9SpB3KA== -----END CERTIFICATE-----Generated at Mon Mar 2 00:11:01 2026 by rpki-client