$ rpki-client -vvf rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.mft File: GNdIiJK3LFSvZOLdI4thnIm3LWg.mft (raw, json) Hash identifier: 3oHXXYT60BhiatI8rWgV7zrltQRW0+tgTgI7mU2ksZM= Subject key identifier: 39:97:B2:56:F4:26:49:FA:0E:C4:EC:B0:44:4F:67:05:B7:FD:42:DA Authority key identifier: 18:D7:48:88:92:B7:2C:54:AF:64:E2:DD:23:8B:61:9C:89:B7:2D:68 Certificate issuer: /CN=A91E17BF/serialNumber=18D7488892B72C54AF64E2DD238B619C89B72D68 Certificate serial: 0322 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNdIiJK3LFSvZOLdI4thnIm3LWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.mft Manifest number: 031B Signing time: Sun 01 Mar 2026 01:59:32 +0000 Manifest this update: Sun 01 Mar 2026 01:59:32 +0000 Manifest next update: Sun 08 Mar 2026 01:59:32 +0000 Files and hashes: 1: GNdIiJK3LFSvZOLdI4thnIm3LWg.crl (hash: fC6+AUPlOv+MESAAMt8qteU5Uke8se2W9Wygqhn+0aQ=) 2: 83D6FAEE077511EDBD013D37C4F9AE02.roa (hash: 7RWQhgSbZcnPOnEsIYtd3qHWkXqAq8ZnwRthU2QRdqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.crl rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNdIiJK3LFSvZOLdI4thnIm3LWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 802 (0x322) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E17BF, serialNumber=18D7488892B72C54AF64E2DD238B619C89B72D68 Validity Not Before: Mar 1 01:59:32 2026 GMT Not After : Mar 8 01:59:32 2026 GMT Subject: CN=69a39d84-fec4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a7:e2:db:ee:86:d5:a0:a6:19:25:cc:dc:bb: c2:95:38:b2:93:78:fe:c2:d3:2c:3a:a5:d8:cf:0b: ac:ec:60:6e:9f:2c:9a:1a:d2:fe:f8:95:a0:fb:0d: 46:e2:99:34:d0:6e:09:f0:fc:c5:18:83:51:40:1e: 41:b5:75:49:2d:82:2b:b2:59:37:a2:33:1a:7f:d0: e2:4e:07:51:b9:7f:55:44:80:18:6b:cd:75:c6:9e: 4f:e8:ad:d5:79:8c:1e:ca:54:04:24:62:97:a3:53: e9:b1:81:86:91:41:44:5f:d7:40:92:f9:50:ad:9b: 04:93:b5:1a:b9:5b:66:b6:d7:96:86:9f:80:85:38: 41:b9:99:cc:51:bb:6b:cb:49:b7:9c:da:13:73:e9: 29:5e:57:94:a5:2a:a9:71:de:e7:57:87:a5:68:fc: 55:61:e0:6a:02:41:3b:fc:17:3b:5c:ed:fd:56:da: d0:ca:0a:46:a2:f9:e8:d8:5b:a9:78:9f:be:9a:9d: 7a:ed:ba:fb:f8:65:2a:e2:ba:84:94:a8:d7:b5:b0: e7:9b:98:5e:b2:4b:2b:38:f4:64:cc:37:8e:d9:54: b3:a2:ad:b1:7c:8a:d3:38:e1:25:77:b1:58:53:32: 30:aa:69:74:06:cc:e9:c8:a5:b3:99:d9:3b:cc:cd: a0:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:97:B2:56:F4:26:49:FA:0E:C4:EC:B0:44:4F:67:05:B7:FD:42:DA X509v3 Authority Key Identifier: keyid:18:D7:48:88:92:B7:2C:54:AF:64:E2:DD:23:8B:61:9C:89:B7:2D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNdIiJK3LFSvZOLdI4thnIm3LWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:65:2e:45:13:ce:c3:91:72:b1:a8:28:93:b2:89:fc:76:98: 05:cf:02:e1:3c:32:3a:18:0e:da:84:72:c3:53:ae:f1:4a:2b: c4:d1:3d:2d:bf:89:bf:98:ab:73:de:27:41:54:62:78:e8:40: e5:f4:9d:be:d3:04:5d:20:9f:85:c2:e3:f5:f8:f0:92:63:fb: c8:c2:5f:c8:cd:5d:bf:d6:93:56:cd:53:44:c9:1f:ca:ae:01: 94:03:7f:0b:5c:5c:1a:2b:a8:c4:32:c8:53:e1:a7:57:81:90: bd:c2:64:3e:7c:39:cd:ad:78:2e:d9:b8:78:cb:3a:ab:86:b5: 3b:4e:a2:21:6f:0e:f0:7e:01:22:3f:52:d0:f1:16:b8:5c:67: 28:c7:59:be:bc:62:59:d3:5f:58:2f:72:e5:e2:3c:c5:c4:29: b8:5b:2e:0e:b5:6f:80:ae:76:e1:e3:60:39:2f:ff:ff:33:56: db:89:1b:9c:1d:21:7f:96:0a:8c:2d:07:7f:cf:3e:c3:6c:34: c4:88:45:c4:d5:97:c8:29:89:04:8d:c1:4f:c6:5c:b2:96:39: 48:50:c3:60:fb:1b:ce:a8:1e:c9:25:ed:d7:8f:6d:98:0c:7d: 44:31:03:e4:db:ec:b4:5d:7c:c1:f6:97:ff:96:ac:15:f4:53: ff:f1:e3:31 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAyIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3QkYxMTAvBgNVBAUTKDE4RDc0ODg4OTJCNzJDNTRBRjY0RTJERDIzOEI2MTlD ODlCNzJENjgwHhcNMjYwMzAxMDE1OTMyWhcNMjYwMzA4MDE1OTMyWjAYMRYwFAYD VQQDDA02OWEzOWQ4NC1mZWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1qfi2+6G1aCmGSXM3LvClTiyk3j+wtMsOqXYzwus7GBunyyaGtL++JWg+w1G 4pk00G4J8PzFGINRQB5BtXVJLYIrslk3ojMaf9DiTgdRuX9VRIAYa811xp5P6K3V eYweylQEJGKXo1PpsYGGkUFEX9dAkvlQrZsEk7UauVtmtteWhp+AhThBuZnMUbtr y0m3nNoTc+kpXleUpSqpcd7nV4elaPxVYeBqAkE7/Bc7XO39VtrQygpGovno2Fup eJ++mp167br7+GUq4rqElKjXtbDnm5hesksrOPRkzDeO2VSzoq2xfIrTOOEld7FY UzIwqml0BszpyKWzmdk7zM2gNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDmXslb0 Jkn6DsTssERPZwW3/ULaMB8GA1UdIwQYMBaAFBjXSIiStyxUr2Ti3SOLYZyJty1o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTdCRi84RDBEQzA5NjA3 NzIxMUVEOUVDNDVBMzFDNEY5QUUwMi9HTmRJaUpLM0xGU3ZaT0xkSTR0aG5JbTNM V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dOZElpSkszTEZTdlpPTGRJNHRobkltM0xXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTdCRi84RDBEQzA5NjA3NzIxMUVEOUVDNDVBMzFDNEY5QUUwMi9HTmRJaUpLM0xG U3ZaT0xkSTR0aG5JbTNMV2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnWUuRRPOw5Fysagok7KJ/HaYBc8C4TwyOhgO2oRyw1Ou8UorxNE9Lb+Jv5ir c94nQVRieOhA5fSdvtMEXSCfhcLj9fjwkmP7yMJfyM1dv9aTVs1TRMkfyq4BlAN/ C1xcGiuoxDLIU+GnV4GQvcJkPnw5za14Ltm4eMs6q4a1O06iIW8O8H4BIj9S0PEW uFxnKMdZvrxiWdNfWC9y5eI8xcQpuFsuDrVvgK524eNgOS///zNW24kbnB0hf5YK jC0Hf88+w2w0xIhFxNWXyCmJBI3BT8ZcspY5SFDDYPsbzqgeySXt149tmAx9RDED 5NvstF18wfaX/5asFfRT//HjMQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:09:59 2026 by rpki-client