$ rpki-client -vvf rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft File: GLHIjO5o9jwhzWoMsbgx1db11s8.mft (raw, json) Hash identifier: /kO3kzWpMySsCuaYxcD5840kCJwiI622IPWkupvE+4E= Subject key identifier: 14:E2:8B:DC:71:68:F6:8F:77:1D:D0:9E:02:55:D3:8D:A7:C1:A1:0B Authority key identifier: 18:B1:C8:8C:EE:68:F6:3C:21:CD:6A:0C:B1:B8:31:D5:D6:F5:D6:CF Certificate issuer: /CN=A91DAFA2/serialNumber=18B1C88CEE68F63C21CD6A0CB1B831D5D6F5D6CF Certificate serial: 1C9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft Manifest number: 1C8D Signing time: Sun 01 Mar 2026 23:57:11 +0000 Manifest this update: Sun 01 Mar 2026 23:57:10 +0000 Manifest next update: Sun 08 Mar 2026 23:57:10 +0000 Files and hashes: 1: GLHIjO5o9jwhzWoMsbgx1db11s8.crl (hash: FLqhza/e2aF6yHqdAEusoMXsxuZ15VX7gJklPlHNjX8=) 2: 02FB1DCAEF6A11E69A4AD551C4F9AE02.roa (hash: 2yvcCZV+pN9jEg/q9+iV+9Rfav7HZxuqjuwplpogEBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.crl rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:57:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7323 (0x1c9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DAFA2, serialNumber=18B1C88CEE68F63C21CD6A0CB1B831D5D6F5D6CF Validity Not Before: Mar 1 23:57:10 2026 GMT Not After : Mar 8 23:57:10 2026 GMT Subject: CN=69a4d257-2593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2d:af:48:a6:a7:1f:5b:c2:07:d0:de:89:80: 51:1c:71:93:15:e4:d4:7d:97:b7:1f:31:62:18:2a: 52:f5:bd:27:e3:a1:a3:66:29:99:7c:0f:4b:01:50: 5a:4e:02:4a:87:bb:79:24:59:b2:74:1b:af:25:d1: 3d:13:b9:e0:9a:46:26:dd:0d:e2:df:4c:8c:61:ff: 69:80:a3:c8:88:a2:7b:50:4c:34:60:c1:e2:a9:5b: 78:92:97:9d:40:8c:91:17:b5:bf:8f:c1:b8:89:ed: 6d:cd:3b:bf:73:33:05:2e:22:bc:af:5f:75:bc:d0: 0d:fe:82:d0:a0:0e:ac:65:17:c5:fd:f1:cd:a2:b5: af:8e:43:8c:bf:3e:b5:ca:c3:76:b0:c6:cb:39:85: b9:a3:d2:21:46:e2:ce:e3:f0:00:76:0f:15:97:f0: 56:6a:c5:6d:19:31:4d:7a:92:a8:c1:36:7e:c9:21: 1d:6a:83:84:b5:cd:6c:46:d0:98:30:6e:36:b5:18: 83:4c:2e:da:26:9e:89:aa:98:3e:76:22:7b:51:7a: 55:35:13:d7:a5:83:8f:84:fd:af:f1:f4:64:10:7a: f8:78:a0:b9:33:65:de:4e:fd:2c:d9:94:b1:72:04: 56:8e:c6:3f:5d:70:5e:fe:01:76:4b:83:b2:1c:66: 80:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:E2:8B:DC:71:68:F6:8F:77:1D:D0:9E:02:55:D3:8D:A7:C1:A1:0B X509v3 Authority Key Identifier: keyid:18:B1:C8:8C:EE:68:F6:3C:21:CD:6A:0C:B1:B8:31:D5:D6:F5:D6:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:ad:93:83:ce:4b:e1:7a:b4:0c:43:d3:e8:91:36:59:1b:23: 94:8e:a3:5a:25:4b:1d:bb:26:04:41:17:b5:3e:e5:e4:ab:db: bf:ce:ae:6a:93:3b:74:47:5d:a9:1a:55:05:b6:a3:59:64:45: 14:15:c7:9c:24:ee:5a:2c:72:b6:78:da:5a:cb:13:03:d6:e3: 2f:1c:45:c3:28:d5:a5:7c:20:bc:25:7a:35:df:35:ec:1a:25: 39:51:e9:bb:18:c5:7a:2c:22:f7:81:e4:09:9e:57:7a:c5:5f: f7:5a:56:97:60:f4:7a:5b:60:3c:64:37:51:bd:3f:70:1e:07: 2a:9c:92:1f:5c:53:e8:1f:12:64:db:ee:5d:f3:0b:26:e9:ba: d6:f1:f9:e1:5b:48:c1:ac:c1:5b:5e:2f:c5:fa:c7:71:af:8a: 78:e4:d7:3c:d5:94:21:96:3a:1f:0f:4c:11:cb:4a:f8:28:5a: 12:40:38:f9:50:8e:93:e4:4f:08:95:c4:ce:84:ba:33:8d:ed: 39:2b:44:03:e1:00:05:8b:44:ff:98:3c:66:5b:9a:87:48:3a: db:14:c4:a6:56:ee:e8:71:d7:80:2b:ce:61:84:62:c6:49:6c: 25:30:ef:7e:7b:5c:b4:f6:33:a7:1d:f1:cd:ba:5d:d4:7e:22: 25:25:d4:80 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REFGQTIxMTAvBgNVBAUTKDE4QjFDODhDRUU2OEY2M0MyMUNENkEwQ0IxQjgzMUQ1 RDZGNUQ2Q0YwHhcNMjYwMzAxMjM1NzEwWhcNMjYwMzA4MjM1NzEwWjAYMRYwFAYD VQQDEw02OWE0ZDI1Ny0yNTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsC2vSKanH1vCB9DeiYBRHHGTFeTUfZe3HzFiGCpS9b0n46GjZimZfA9LAVBa TgJKh7t5JFmydBuvJdE9E7ngmkYm3Q3i30yMYf9pgKPIiKJ7UEw0YMHiqVt4kped QIyRF7W/j8G4ie1tzTu/czMFLiK8r191vNAN/oLQoA6sZRfF/fHNorWvjkOMvz61 ysN2sMbLOYW5o9IhRuLO4/AAdg8Vl/BWasVtGTFNepKowTZ+ySEdaoOEtc1sRtCY MG42tRiDTC7aJp6Jqpg+diJ7UXpVNRPXpYOPhP2v8fRkEHr4eKC5M2XeTv0s2ZSx cgRWjsY/XXBe/gF2S4OyHGaAmwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBTii9xx aPaPdx3QngJV042nwaELMB8GA1UdIwQYMBaAFBixyIzuaPY8Ic1qDLG4MdXW9dbP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQUZBMi9CN0I2Nzc2MEVG NjkxMUU2QkQ3M0M2NTFDNEY5QUUwMi9HTEhJak81bzlqd2h6V29Nc2JneDFkYjEx czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dMSElqTzVvOWp3aHpXb01zYmd4MWRiMTFzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QUZBMi9CN0I2Nzc2MEVGNjkxMUU2QkQ3M0M2NTFDNEY5QUUwMi9HTEhJak81bzlq d2h6V29Nc2JneDFkYjExczgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHK2Tg85L4Xq0DEPT6JE2WRsjlI6jWiVLHbsmBEEXtT7l5Kvbv86uapM7dEdd qRpVBbajWWRFFBXHnCTuWixytnjaWssTA9bjLxxFwyjVpXwgvCV6Nd817BolOVHp uxjFeiwi94HkCZ5XesVf91pWl2D0eltgPGQ3Ub0/cB4HKpySH1xT6B8SZNvuXfML Jum61vH54VtIwazBW14vxfrHca+KeOTXPNWUIZY6Hw9MEctK+ChaEkA4+VCOk+RP CJXEzoS6M43tOStEA+EABYtE/5g8Zluah0g62xTEplbu6HHXgCvOYYRixklsJTDv fntctPYzpx3xzbpd1H4iJSXUgA== -----END CERTIFICATE-----Generated at Mon Mar 2 08:01:50 2026 by rpki-client