$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft File: GkhD6J8kRLLN24EYqoovRBgOhJg.mft (raw, json) Hash identifier: 6f5GXUPZKtM+A2vBWHT5Q5cqnlVEbyQbxf2xyTjlA+Q= Subject key identifier: CC:45:1F:93:1D:D0:76:72:D6:1D:6E:BE:A9:2D:1F:3F:76:74:E8:E1 Authority key identifier: 1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 Certificate issuer: /CN=A91F5280/serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft Manifest number: 0208 Signing time: Sun 01 Mar 2026 22:47:14 +0000 Manifest this update: Sun 01 Mar 2026 22:47:14 +0000 Manifest next update: Sun 08 Mar 2026 22:47:14 +0000 Files and hashes: 1: GkhD6J8kRLLN24EYqoovRBgOhJg.crl (hash: Jip+cLxwuVWZJ/WYNhh9j/dL8A16C0lYU66bk0zTyt0=) 2: B5569B88096311EE9ECB644DC4F9AE02.roa (hash: 4HF0DTPBSH5S3QjwkCb71T/4b+8A54VUugU3EtAjksc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:47:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5280, serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Validity Not Before: Mar 1 22:47:14 2026 GMT Not After : Mar 8 22:47:14 2026 GMT Subject: CN=69a4c1f2-344b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:81:90:11:aa:14:dc:37:2c:11:be:8d:0b:e3: a3:e5:05:c6:86:83:23:5e:72:5a:df:d3:d5:ea:12: 84:d8:a8:a0:83:db:df:7a:92:31:66:d9:51:76:9a: 62:bc:fd:ff:e9:67:42:03:3a:25:b0:66:2e:4e:54: 8e:d1:3a:e3:5a:07:d9:76:bf:3b:1b:25:68:d6:d2: e4:17:28:ab:8e:77:9a:61:37:19:2f:57:bb:41:a9: 65:15:b5:c9:1c:fa:aa:49:94:58:3b:08:47:69:a7: 51:5a:55:9f:a2:3a:85:4c:9e:79:50:ee:12:64:77: 8e:c5:e2:90:51:3e:4e:50:53:f6:32:2b:22:3f:a9: 4f:44:fe:e8:b9:9e:08:05:fb:da:74:ea:ed:e7:ef: f1:13:77:d0:16:2d:83:98:86:43:64:ae:ee:ba:58: 73:95:4b:bb:aa:0f:e5:fb:42:f6:bb:fb:61:87:3b: ee:a3:ed:b1:63:85:c0:32:9f:f4:4e:42:4e:b7:18: 02:94:f6:45:ce:da:b7:cc:7b:02:08:96:5f:3d:39: 3f:ef:15:26:5c:7a:87:ae:d2:ed:e0:52:6c:ba:16: 51:92:c3:97:af:de:aa:3e:84:97:d7:20:25:c2:39: c1:80:d4:1b:d3:e1:fe:49:64:01:c0:f0:1d:bb:68: 69:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:45:1F:93:1D:D0:76:72:D6:1D:6E:BE:A9:2D:1F:3F:76:74:E8:E1 X509v3 Authority Key Identifier: keyid:1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:87:41:a4:e1:2a:1e:5b:79:7c:87:7a:7e:9c:54:8b:4d:96: 4d:5e:bb:2c:6f:28:27:c7:3b:4a:ef:a3:c6:4d:a3:b0:53:a8: 23:b3:fb:91:6b:fe:45:c8:be:72:6f:bb:12:89:42:89:16:4c: 15:16:3f:ce:6e:0f:2c:cc:5b:c5:2a:8d:66:1f:13:e2:22:a7: e4:b4:27:e0:a8:d1:18:6a:a0:48:83:f8:df:1a:b8:9b:8d:c5: 16:65:91:40:9a:b2:2e:3a:4a:0c:d0:3a:90:90:e1:c0:90:be: 3f:da:96:0d:40:53:09:33:a3:06:ec:9b:21:0e:11:da:78:d0: a8:5c:e4:1f:53:7a:02:76:cb:b9:e3:cd:49:5c:ca:fc:f1:fa: 92:c8:12:4e:e3:58:9b:a8:59:d1:ed:61:46:b2:dc:af:b0:f5: 16:b9:a7:4c:4a:5d:83:ff:d7:ff:ee:48:bd:bb:3c:41:04:3f: c4:b1:49:3c:ff:53:d4:8f:e5:ee:95:f7:16:4c:fe:7a:8a:0f: eb:fb:c2:84:5b:f7:95:79:c3:dd:48:20:44:a3:6f:71:13:e1: b0:4c:e6:58:82:fe:80:bf:65:94:dc:34:7d:29:22:f7:84:6d: 3c:90:e3:79:8e:39:39:13:cc:95:a9:e5:d6:ea:71:17:b0:8e: 38:70:09:9e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyODAxMTAvBgNVBAUTKDFBNDg0M0U4OUYyNDQ0QjJDRERCODExOEFBOEEyRjQ0 MTgwRTg0OTgwHhcNMjYwMzAxMjI0NzE0WhcNMjYwMzA4MjI0NzE0WjAYMRYwFAYD VQQDEw02OWE0YzFmMi0zNDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA24GQEaoU3DcsEb6NC+Oj5QXGhoMjXnJa39PV6hKE2Kigg9vfepIxZtlRdppi vP3/6WdCAzolsGYuTlSO0TrjWgfZdr87GyVo1tLkFyirjneaYTcZL1e7QallFbXJ HPqqSZRYOwhHaadRWlWfojqFTJ55UO4SZHeOxeKQUT5OUFP2MisiP6lPRP7ouZ4I BfvadOrt5+/xE3fQFi2DmIZDZK7uulhzlUu7qg/l+0L2u/thhzvuo+2xY4XAMp/0 TkJOtxgClPZFztq3zHsCCJZfPTk/7xUmXHqHrtLt4FJsuhZRksOXr96qPoSX1yAl wjnBgNQb0+H+SWQBwPAdu2hpUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMxFH5Md 0HZy1h1uvqktHz92dOjhMB8GA1UdIwQYMBaAFBpIQ+ifJESyzduBGKqKL0QYDoSY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTI4MC9DMDRCMUI3NjA5 NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JMTE4yNEVZcW9vdlJCZ09o SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0draEQ2SjhrUkxMTjI0RVlxb292UkJnT2hKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTI4MC9DMDRCMUI3NjA5NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JM TE4yNEVZcW9vdlJCZ09oSmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAO4dBpOEqHlt5fId6fpxUi02WTV67LG8oJ8c7Su+jxk2jsFOoI7P7kWv+Rci+ cm+7EolCiRZMFRY/zm4PLMxbxSqNZh8T4iKn5LQn4KjRGGqgSIP43xq4m43FFmWR QJqyLjpKDNA6kJDhwJC+P9qWDUBTCTOjBuybIQ4R2njQqFzkH1N6AnbLuePNSVzK /PH6ksgSTuNYm6hZ0e1hRrLcr7D1FrmnTEpdg//X/+5Ivbs8QQQ/xLFJPP9T1I/l 7pX3Fkz+eooP6/vChFv3lXnD3UggRKNvcRPhsEzmWIL+gL9llNw0fSki94RtPJDj eY45ORPMlanl1upxF7COOHAJng== -----END CERTIFICATE-----Generated at Mon Mar 2 08:01:20 2026 by rpki-client