$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft File: gYkRn4AeKAprTdViZT7xA2lh0Js.mft (raw, json) Hash identifier: B4TqI67wWY9r8LXOwVcfoNrzpJO4+7CoGwSHprvRMIo= Subject key identifier: 9D:2C:D8:DD:17:C2:27:40:B6:D1:9D:6D:44:69:A3:5C:4B:9A:B3:BC Authority key identifier: 81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B Certificate issuer: /CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Certificate serial: 0516 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft Manifest number: 050F Signing time: Sun 01 Mar 2026 23:30:30 +0000 Manifest this update: Sun 01 Mar 2026 23:30:28 +0000 Manifest next update: Sun 08 Mar 2026 23:30:28 +0000 Files and hashes: 1: gYkRn4AeKAprTdViZT7xA2lh0Js.crl (hash: mUyr0bcAJwR4bfzi3Vee68zRGuZ8WrusePktBphHLbs=) 2: D30098F6413111ECB71E086AC4F9AE02.roa (hash: yrbFlXX+Q20ODJMbiysSXJ6ACMYRj3dlttqVySrHsBg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:30:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1302 (0x516) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CAE, serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Validity Not Before: Mar 1 23:30:28 2026 GMT Not After : Mar 8 23:30:28 2026 GMT Subject: CN=69a4cc16-86d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:34:04:24:f6:dc:ea:6d:52:27:d3:ad:4d:9f: cd:8a:1e:58:19:26:df:49:81:d9:e5:04:fb:2b:01: 7f:ea:a2:92:82:eb:70:ca:cc:97:a6:ff:02:21:a3: 96:8b:41:d1:f7:f2:dd:53:6b:b8:d8:bd:5c:35:60: 0a:a9:d5:bc:da:d1:5f:1c:31:97:61:6c:e9:ff:e4: ea:1e:c3:1d:81:50:47:63:8e:42:81:99:ce:18:ab: 82:80:b0:a4:3d:03:8a:fc:7a:31:09:5c:74:db:fe: 38:66:bf:5b:d9:1d:8c:fc:8c:e5:c6:c6:6e:f2:ba: 99:97:a1:8e:dc:d9:1b:0b:fb:56:4b:92:f1:03:d5: c1:1f:78:9a:29:35:8a:49:9a:83:ea:dd:93:97:6a: 0c:de:60:84:69:68:bb:f0:fb:02:47:8d:5f:36:dd: 4e:29:24:bb:e7:60:d0:79:d1:fd:5d:20:92:84:16: c1:0e:48:35:af:cf:9f:2e:72:ea:60:60:ff:dc:77: de:24:57:a7:cc:59:cb:6f:90:a1:f4:24:cc:e6:72: af:5b:e7:b5:70:9d:e3:72:68:8a:98:25:d0:2b:4c: 1d:36:b7:71:2b:5e:d4:e0:fa:1d:57:3a:0f:3a:35: e9:ce:14:b0:9f:14:8a:6e:37:46:e6:94:25:e8:17: 83:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:2C:D8:DD:17:C2:27:40:B6:D1:9D:6D:44:69:A3:5C:4B:9A:B3:BC X509v3 Authority Key Identifier: keyid:81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:64:f3:53:46:be:9e:fb:34:99:ed:24:ac:30:89:a0:6f:bc: a1:2a:9b:87:77:97:32:70:c3:2b:78:e5:f4:82:12:a3:9b:7f: 06:e3:cd:e7:12:49:75:de:2c:f4:7b:bc:28:00:6b:7b:b7:79: 4a:4e:d1:d9:80:75:9e:fc:94:aa:ab:37:fb:e7:20:a4:48:45: a2:36:2a:c9:eb:ed:4d:b7:20:da:47:92:ee:60:c4:4d:f5:74: 10:df:d2:fb:aa:0a:66:93:8e:a8:39:8e:a6:f9:49:53:af:7f: 39:75:bd:2e:7b:21:37:50:89:90:06:a0:66:e1:a2:d5:7f:3f: 55:42:a2:e2:af:28:52:7d:c9:6c:ac:ae:e7:6b:13:57:4b:f3: 1b:ea:d7:7e:9e:35:4a:ce:99:30:a4:5f:66:0f:8f:7f:0f:f0: 1c:cb:6f:2f:b2:f4:7d:b1:a0:0d:db:d6:cf:a5:56:eb:59:e1: d6:c4:ed:fb:35:5b:0a:fd:83:65:71:08:6b:84:ed:a6:15:b0: f1:a3:5f:1c:20:d2:d9:fe:b5:68:76:c5:9a:2a:c5:9a:c8:85: 70:ba:4a:ee:2e:28:ad:27:f0:76:26:da:cb:47:ce:5e:19:b2: 5c:e6:84:d1:ad:dc:24:7f:b4:9f:aa:bd:43:9c:35:bd:5a:c9: da:dd:0c:91 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBRYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQUUxMTAvBgNVBAUTKDgxODkxMTlGODAxRTI4MEE2QjRERDU2MjY1M0VGMTAz Njk2MUQwOUIwHhcNMjYwMzAxMjMzMDI4WhcNMjYwMzA4MjMzMDI4WjAYMRYwFAYD VQQDEw02OWE0Y2MxNi04NmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjQEJPbc6m1SJ9OtTZ/Nih5YGSbfSYHZ5QT7KwF/6qKSgutwysyXpv8CIaOW i0HR9/LdU2u42L1cNWAKqdW82tFfHDGXYWzp/+TqHsMdgVBHY45CgZnOGKuCgLCk PQOK/HoxCVx02/44Zr9b2R2M/IzlxsZu8rqZl6GO3NkbC/tWS5LxA9XBH3iaKTWK SZqD6t2Tl2oM3mCEaWi78PsCR41fNt1OKSS752DQedH9XSCShBbBDkg1r8+fLnLq YGD/3HfeJFenzFnLb5Ch9CTM5nKvW+e1cJ3jcmiKmCXQK0wdNrdxK17U4PodVzoP OjXpzhSwnxSKbjdG5pQl6BeDTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ0s2N0X widAttGdbURpo1xLmrO8MB8GA1UdIwQYMBaAFIGJEZ+AHigKa03VYmU+8QNpYdCb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBRS9GRUQ1QTJBODQx MkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtBcHJUZFZpWlQ3eEEybGgw SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZa1JuNEFlS0FwclRkVmlaVDd4QTJsaDBKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBRS9GRUQ1QTJBODQxMkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtB cHJUZFZpWlQ3eEEybGgwSnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAD2TzU0a+nvs0me0krDCJoG+8oSqbh3eXMnDDK3jl9IISo5t/BuPN5xJJdd4s 9Hu8KABre7d5Sk7R2YB1nvyUqqs3++cgpEhFojYqyevtTbcg2keS7mDETfV0EN/S +6oKZpOOqDmOpvlJU69/OXW9LnshN1CJkAagZuGi1X8/VUKi4q8oUn3JbKyu52sT V0vzG+rXfp41Ss6ZMKRfZg+Pfw/wHMtvL7L0fbGgDdvWz6VW61nh1sTt+zVbCv2D ZXEIa4TtphWw8aNfHCDS2f61aHbFmirFmsiFcLpK7i4orSfwdibay0fOXhmyXOaE 0a3cJH+0n6q9Q5w1vVrJ2t0MkQ== -----END CERTIFICATE-----Generated at Mon Mar 2 09:13:22 2026 by rpki-client