$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft File: GM0m8vXURLcgxFKoxskgxtCmGAU.mft (raw, json) Hash identifier: wslg121Ab4sof6LQ3jUsjW9j5FSCIh6yXOoLHUjD7LE= Subject key identifier: E7:34:B8:DD:EF:91:29:AE:E3:CE:BE:0D:98:FF:35:13:6A:ED:9B:CD Authority key identifier: 18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 Certificate issuer: /CN=A91AAF02/serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Certificate serial: 023C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft Manifest number: 0237 Signing time: Mon 02 Mar 2026 17:30:51 +0000 Manifest this update: Mon 02 Mar 2026 17:30:51 +0000 Manifest next update: Mon 09 Mar 2026 17:30:51 +0000 Files and hashes: 1: GM0m8vXURLcgxFKoxskgxtCmGAU.crl (hash: uyF/OLn00N2ojco99nBMxZnqz7GPzXkRAArTABTJ5Ms=) 2: 65A422A8C3F411EEB1191654C4F9AE02.roa (hash: s3pplahrtkEIiqFvq9bDswEXkbohC1ZEoUg/qiNs0L4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 17:30:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF02, serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Validity Not Before: Mar 2 17:30:51 2026 GMT Not After : Mar 9 17:30:51 2026 GMT Subject: CN=69a5c94b-d82d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:fc:8b:1b:cd:a4:49:ce:e3:0e:bb:ea:38:4f: 1b:95:f5:bc:87:a2:8f:9f:69:28:98:6c:3e:b5:ba: ed:12:56:ae:ab:1f:b8:bf:4a:a8:a6:e9:2f:73:09: cb:06:ab:7d:3b:1e:41:f2:67:fb:29:e4:b0:c1:bf: 09:66:8c:39:f9:bc:8e:4e:bf:7f:81:84:29:d6:a5: fa:2c:12:11:2a:94:24:26:06:44:56:47:16:62:f8: 99:81:0f:2d:13:63:79:19:cf:25:7f:64:44:9d:7c: e1:8f:9e:38:6f:7e:0b:c9:ee:de:3a:c8:7e:9e:69: 47:09:3d:9b:99:2e:53:11:48:27:9d:ab:5f:d6:66: 62:c4:3e:e1:c4:59:53:bc:00:1b:3c:72:23:0d:3c: a3:a5:33:55:21:11:16:78:8a:18:21:21:83:2d:9d: d5:08:8b:f2:5d:e3:cf:93:2d:b1:4f:e4:85:93:be: 23:80:06:ac:a2:37:ca:fd:9c:8f:6c:37:86:bf:6b: a6:4c:39:93:32:f1:1c:69:81:92:98:8a:14:6d:e7: 5d:52:c6:4d:63:cb:cf:12:0d:07:ed:b2:ca:2a:22: 4f:cd:60:e4:4b:4f:85:79:30:05:5e:9c:55:04:6f: d1:3d:d7:6a:e9:92:6c:d2:37:6f:6a:f4:63:31:af: d2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:34:B8:DD:EF:91:29:AE:E3:CE:BE:0D:98:FF:35:13:6A:ED:9B:CD X509v3 Authority Key Identifier: keyid:18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:f6:d9:0e:00:fb:db:51:75:13:da:56:94:71:cf:e8:ed:94: 2b:e1:5b:9b:f6:e4:7b:e2:29:83:72:79:de:9d:8d:e3:e8:ee: 0a:ba:37:b4:4c:e8:18:74:f1:e4:70:52:5c:00:e5:b9:54:cc: 42:ea:e3:4b:9e:98:1c:e4:ad:e7:1b:cd:20:48:b7:d6:55:98: aa:6a:94:c4:b7:e2:ec:91:54:88:8c:37:9d:75:ea:cc:e0:82: 5e:ac:05:86:34:72:7f:7e:8b:23:b3:0e:8e:13:fe:05:55:30: 65:d9:00:43:53:fe:a2:d0:09:a0:ad:e5:3d:de:75:2b:fd:d3: 53:12:4e:f1:d4:c4:27:bd:64:ed:5b:17:f7:3f:9c:d0:05:02: e0:de:05:a4:52:f3:2e:a0:86:a0:87:b9:cb:80:09:81:af:09: 91:8d:8d:cf:51:8f:74:fe:2e:fe:68:df:e2:ad:ce:66:3d:4e: e1:1c:56:9d:82:c6:4a:19:1f:82:8d:bd:c9:28:2a:8a:8e:f7: 4e:28:42:15:9b:d4:3e:e9:69:41:81:1d:ea:8e:83:39:1d:fe: 63:db:f7:ce:05:51:9a:d1:fb:8e:fe:b3:03:9d:ac:85:67:a8: b1:1d:37:c8:12:f1:79:e7:93:95:78:94:86:ea:cb:ad:62:a9: 5d:16:74:86 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGMDIxMTAvBgNVBAUTKDE4Q0QyNkYyRjVENDQ0QjcyMEM0NTJBOEM2QzkyMEM2 RDBBNjE4MDUwHhcNMjYwMzAyMTczMDUxWhcNMjYwMzA5MTczMDUxWjAYMRYwFAYD VQQDEw02OWE1Yzk0Yi1kODJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2PyLG82kSc7jDrvqOE8blfW8h6KPn2komGw+tbrtElauqx+4v0qopukvcwnL Bqt9Ox5B8mf7KeSwwb8JZow5+byOTr9/gYQp1qX6LBIRKpQkJgZEVkcWYviZgQ8t E2N5Gc8lf2REnXzhj544b34Lye7eOsh+nmlHCT2bmS5TEUgnnatf1mZixD7hxFlT vAAbPHIjDTyjpTNVIREWeIoYISGDLZ3VCIvyXePPky2xT+SFk74jgAasojfK/ZyP bDeGv2umTDmTMvEcaYGSmIoUbeddUsZNY8vPEg0H7bLKKiJPzWDkS0+FeTAFXpxV BG/RPddq6ZJs0jdvavRjMa/SXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOc0uN3v kSmu486+DZj/NRNq7ZvNMB8GA1UdIwQYMBaAFBjNJvL11ES3IMRSqMbJIMbQphgF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUYwMi8yNjFGMzREOEMx RjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJMY2d4RktveHNrZ3h0Q21H QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0dNMG04dlhVUkxjZ3hGS294c2tneHRDbUdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUYwMi8yNjFGMzREOEMxRjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJM Y2d4RktveHNrZ3h0Q21HQVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAF/bZDgD721F1E9pWlHHP6O2UK+Fbm/bke+Ipg3J53p2N4+juCro3tEzoGHTx 5HBSXADluVTMQurjS56YHOSt5xvNIEi31lWYqmqUxLfi7JFUiIw3nXXqzOCCXqwF hjRyf36LI7MOjhP+BVUwZdkAQ1P+otAJoK3lPd51K/3TUxJO8dTEJ71k7VsX9z+c 0AUC4N4FpFLzLqCGoIe5y4AJga8JkY2Nz1GPdP4u/mjf4q3OZj1O4RxWnYLGShkf go29ySgqio73TihCFZvUPulpQYEd6o6DOR3+Y9v3zgVRmtH7jv6zA52shWeosR03 yBLxeeeTlXiUhurLrWKpXRZ0hg== -----END CERTIFICATE-----Generated at Wed Mar 4 08:42:48 2026 by rpki-client