$ rpki-client -vvf rpki.apnic.net/member_repository/A914E4E2/41CE9DEEDAFA11F09AF616207CD3641D/gS_w3hw0QUY8yVyohCO-WhCtsXQ.mft File: gS_w3hw0QUY8yVyohCO-WhCtsXQ.mft (raw, json) Hash identifier: IEY7vS5kbHJlOy3qoiRC0c3Qu4HmZpcaY7yZukDVYik= Subject key identifier: D9:01:AD:16:CE:6D:78:F8:67:4A:3C:4F:7D:B8:6E:B2:67:D7:3E:0F Authority key identifier: 81:2F:F0:DE:1C:34:41:46:3C:C9:5C:A8:84:23:BE:5A:10:AD:B1:74 Certificate issuer: /CN=A914E4E2/serialNumber=812FF0DE1C3441463CC95CA88423BE5A10ADB174 Certificate serial: 2F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gS_w3hw0QUY8yVyohCO-WhCtsXQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E4E2/41CE9DEEDAFA11F09AF616207CD3641D/gS_w3hw0QUY8yVyohCO-WhCtsXQ.mft Manifest number: 2D Signing time: Tue 03 Mar 2026 08:24:28 +0000 Manifest this update: Tue 03 Mar 2026 08:24:28 +0000 Manifest next update: Tue 10 Mar 2026 08:24:28 +0000 Files and hashes: 1: gS_w3hw0QUY8yVyohCO-WhCtsXQ.crl (hash: cRyRgdJVSDpYhbYYItIT2IXGGpuCZD6rfPnAQ4H6JMk=) 2: 6F81A4F8E64811F09CAB54BE376F56BC.roa (hash: kTGqoANe0FuZnU39X94Ie/hbapSgOp3eh2oaDxbXHwE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E4E2/41CE9DEEDAFA11F09AF616207CD3641D/gS_w3hw0QUY8yVyohCO-WhCtsXQ.crl rsync://rpki.apnic.net/member_repository/A914E4E2/41CE9DEEDAFA11F09AF616207CD3641D/gS_w3hw0QUY8yVyohCO-WhCtsXQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gS_w3hw0QUY8yVyohCO-WhCtsXQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 08:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E4E2, serialNumber=812FF0DE1C3441463CC95CA88423BE5A10ADB174 Validity Not Before: Mar 3 08:24:28 2026 GMT Not After : Mar 10 08:24:28 2026 GMT Subject: CN=69a69abc-a72f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7b:80:5a:2e:e9:93:d8:a8:ea:cb:f6:fe:17: 17:a5:69:38:af:9a:61:1e:d4:75:f0:58:64:93:73: 19:a0:9c:75:2a:e7:26:6e:80:9f:65:b1:2c:84:79: e9:62:4b:96:7c:fe:af:0f:df:ab:ad:c5:e0:e6:d8: a3:b8:ad:91:04:58:9d:21:cd:66:d9:bb:7f:a3:5d: 8a:e4:1a:15:70:e9:f1:b1:4f:6f:8d:4a:d0:3a:01: a4:81:73:5a:c7:d2:c5:10:73:35:4a:19:bc:d3:6b: 63:c6:9a:e8:3d:39:92:a3:f6:69:7e:45:d6:70:7a: 9b:1c:fc:22:91:0a:d8:6b:5f:98:2e:58:30:ee:a7: a4:52:09:0a:8b:80:67:ea:ca:a4:02:d7:f5:3e:8a: e6:3a:46:97:0f:09:f6:cb:ff:32:8f:83:10:e4:a6: 13:2f:fe:c3:e8:27:b9:fb:b7:eb:d9:24:d0:aa:68: 70:f4:ad:55:53:6f:62:ab:6c:37:60:ba:7f:68:ca: 44:03:27:a0:e7:07:0b:5d:89:f0:6b:5d:08:23:e1: 89:b3:3b:7e:bd:f9:10:cc:ee:4d:2b:ee:ff:62:8e: 61:e8:74:f1:d7:25:65:95:03:ec:eb:39:ed:a7:8b: 9b:8c:1b:bf:92:23:00:3e:93:68:8b:b9:75:6d:8a: 53:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:01:AD:16:CE:6D:78:F8:67:4A:3C:4F:7D:B8:6E:B2:67:D7:3E:0F X509v3 Authority Key Identifier: keyid:81:2F:F0:DE:1C:34:41:46:3C:C9:5C:A8:84:23:BE:5A:10:AD:B1:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E4E2/41CE9DEEDAFA11F09AF616207CD3641D/gS_w3hw0QUY8yVyohCO-WhCtsXQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gS_w3hw0QUY8yVyohCO-WhCtsXQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E4E2/41CE9DEEDAFA11F09AF616207CD3641D/gS_w3hw0QUY8yVyohCO-WhCtsXQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:86:de:5b:1b:11:48:4f:9d:f0:59:4f:4b:b7:f1:58:cf:05: fc:96:0c:f4:c4:58:c5:9c:8d:e6:44:b9:96:d5:5e:f4:45:57: 4e:b2:88:59:69:89:89:cc:c2:d8:44:12:93:9d:9e:b6:14:3b: 98:8a:6f:61:d3:8a:b5:a3:8c:32:c0:d6:64:6f:74:38:18:dd: 11:25:e1:e0:df:d2:9e:a4:6d:04:9c:2a:67:d1:55:eb:22:c7: 34:e6:ac:cd:e0:43:0d:99:6a:7f:d3:df:90:c0:a0:17:db:42: fd:f2:ae:8d:4a:b1:94:e2:56:2e:46:df:0d:a0:1f:a3:7d:2a: 94:d0:54:7a:35:3c:6b:e1:a7:20:71:bd:7c:4c:bd:4a:c5:fe: 38:81:c3:31:cc:ad:07:b6:48:6f:01:5a:e1:da:8d:6d:35:e1: e1:6a:b8:fd:af:53:da:fc:3d:f4:45:20:a2:00:bf:bb:fb:97: 57:6c:fe:27:37:cb:b0:28:cc:77:79:2f:98:ef:43:f3:a9:79: c8:aa:d5:43:b4:3b:0d:de:83:f9:2c:d0:97:7d:a0:53:10:c2: 4a:5d:7f:4d:b2:88:95:cb:fd:f5:76:8c:35:4b:89:5a:52:c0: 38:02:4e:73:eb:52:3d:a1:56:01:ed:ef:2c:c8:e9:56:fd:6b: c7:a4:58:af -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTRFMjExMC8GA1UEBRMoODEyRkYwREUxQzM0NDE0NjNDQzk1Q0E4ODQyM0JFNUEx MEFEQjE3NDAeFw0yNjAzMDMwODI0MjhaFw0yNjAzMTAwODI0MjhaMBgxFjAUBgNV BAMTDTY5YTY5YWJjLWE3MmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPe4BaLumT2Kjqy/b+FxelaTivmmEe1HXwWGSTcxmgnHUq5yZugJ9lsSyEeeli S5Z8/q8P36utxeDm2KO4rZEEWJ0hzWbZu3+jXYrkGhVw6fGxT2+NStA6AaSBc1rH 0sUQczVKGbzTa2PGmug9OZKj9ml+RdZwepsc/CKRCthrX5guWDDup6RSCQqLgGfq yqQC1/U+iuY6RpcPCfbL/zKPgxDkphMv/sPoJ7n7t+vZJNCqaHD0rVVTb2KrbDdg un9oykQDJ6DnBwtdifBrXQgj4YmzO369+RDM7k0r7v9ijmHodPHXJWWVA+zrOe2n i5uMG7+SIwA+k2iLuXVtilP1AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU2QGtFs5t ePhnSjxPfbhusmfXPg8wHwYDVR0jBBgwFoAUgS/w3hw0QUY8yVyohCO+WhCtsXQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFNEUyLzQxQ0U5REVFREFG QTExRjA5QUY2MTYyMDdDRDM2NDFEL2dTX3czaHcwUVVZOHlWeW9oQ08tV2hDdHNY US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ1NfdzNodzBRVVk4eVZ5b2hDTy1XaEN0c1hRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRF NEUyLzQxQ0U5REVFREFGQTExRjA5QUY2MTYyMDdDRDM2NDFEL2dTX3czaHcwUVVZ OHlWeW9oQ08tV2hDdHNYUS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBGht5bGxFIT53wWU9Lt/FYzwX8lgz0xFjFnI3mRLmW1V70RVdOsohZaYmJzMLY RBKTnZ62FDuYim9h04q1o4wywNZkb3Q4GN0RJeHg39KepG0EnCpn0VXrIsc05qzN 4EMNmWp/09+QwKAX20L98q6NSrGU4lYuRt8NoB+jfSqU0FR6NTxr4acgcb18TL1K xf44gcMxzK0HtkhvAVrh2o1tNeHharj9r1Pa/D30RSCiAL+7+5dXbP4nN8uwKMx3 eS+Y70PzqXnIqtVDtDsN3oP5LNCXfaBTEMJKXX9NsoiVy/31dow1S4laUsA4Ak5z 61I9oVYB7e8syOlW/WvHpFiv -----END CERTIFICATE-----Generated at Wed Mar 4 08:31:14 2026 by rpki-client