$ rpki-client -vvf rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft File: GJZ9zbckqEpxcR5niqsdLnIhXWw.mft (raw, json) Hash identifier: h+WuNwVe26xqtvON9k5B5oMwEIgZsM5zTIWSMar8HQo= Subject key identifier: 11:09:98:41:7F:95:1F:E9:CE:13:B2:51:F0:EF:7D:26:18:E9:34:5A Authority key identifier: 18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C Certificate issuer: /CN=A91D243F/serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft Manifest number: BD Signing time: Sat 21 Mar 2026 06:05:24 +0000 Manifest this update: Sat 21 Mar 2026 06:05:23 +0000 Manifest next update: Sat 28 Mar 2026 06:05:23 +0000 Files and hashes: 1: GJZ9zbckqEpxcR5niqsdLnIhXWw.crl (hash: 3+heXE7J0dhbbB7LoW4pgtQHa9zvZb0EWzXXeMKP+1U=) 2: 5E6EBAF64D0611F09396603CC4F9AE02.roa (hash: EQ/dGxeAiZ6vHXkroDIcnJlL4m1F5+KIqXhx9EpVY3I=) 3: 1879BE8A318411F0BC1DD041C4F9AE02.roa (hash: n9iP0WPrNjOJsc8gp31zfQ/gYNuAttaaJx8o5oGeAlU=) 4: 17894A68318411F0BC1DD041C4F9AE02.roa (hash: LAExrJE538PRX43tpAGuI2fnl3to7F90HEFOP88VoQE=) 5: 372E72941F7811F0AC4FFF82C4F9AE02.roa (hash: aIPk2IIOdSh9CObI9EP0QJCswO68I2tnkEvU/YLg9Zk=) 6: 349ACBB2450811F09650FF5FC4F9AE02.roa (hash: wVIVQYayEMOatDoFauwoUEJLMsb5B+2FoO+m1LHPbJc=) 7: 37B448241F7811F0AC4FFF82C4F9AE02.roa (hash: KXmFtf/aIxVULwWU2AV8/gJ5ecdsYrZWDPGXWWMJwLA=) 8: 6896A446318411F0BBC4F91DC4F9AE02.roa (hash: MfzN1k54/wkCiAendoymZC3ZEWqOCUIUy5Y1tmrtH+A=) 9: 3408F1BA450811F09650FF5FC4F9AE02.roa (hash: LgIHG0W8PH+BYBIWZChDxWTeWm+mE0UsFagnNkGmodQ=) 10: 1808A790318411F0BC1DD041C4F9AE02.roa (hash: Yprm848X+Zm8Tq1T0Mdhgazd/B8nteAp3m1HTdOALK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 06:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D243F, serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Validity Not Before: Mar 21 06:05:23 2026 GMT Not After : Mar 28 06:05:23 2026 GMT Subject: CN=69be3524-d3f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6d:83:58:7b:1a:76:36:2f:a2:50:42:ed:22: fa:01:5f:46:53:7a:89:97:b1:ed:f6:9c:8d:b0:e6: 46:96:36:48:e2:40:3a:20:41:95:14:b5:47:e6:f5: 8c:9b:33:dd:7b:84:23:a7:2e:17:bb:5d:33:53:07: fc:d3:97:da:a5:f2:63:d8:f3:c5:00:ef:73:c9:c1: ea:8e:97:62:07:56:89:8c:a7:38:d2:e0:6f:9c:66: 1e:92:4c:70:03:f6:fa:9d:71:dc:fb:65:a4:b2:a6: ff:96:1a:f6:d9:dd:ba:f0:fa:6a:ad:97:3e:34:34: 3f:d2:50:a1:ce:36:c2:00:77:48:6d:b7:35:bc:91: 76:3a:89:e6:89:9d:a6:f0:84:29:f6:b1:8e:bb:36: a3:12:40:ca:91:f5:6e:b7:b6:05:36:d6:c0:82:fb: d0:58:b8:a4:0a:33:77:c5:c9:1e:66:ac:b8:5b:55: ee:9a:83:20:05:78:3e:54:4f:f9:bc:88:b6:b7:b7: 22:32:5d:21:ba:5f:d3:d9:0f:f0:a0:06:55:e6:be: f0:48:39:a4:ec:44:0a:43:9b:c5:32:45:c5:6f:99: 65:8a:32:60:41:f9:0b:f3:1c:05:15:26:b9:17:b4: 81:6f:6f:77:79:1c:db:c5:90:53:86:10:32:19:9e: da:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:09:98:41:7F:95:1F:E9:CE:13:B2:51:F0:EF:7D:26:18:E9:34:5A X509v3 Authority Key Identifier: keyid:18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:f6:f4:bb:02:0f:46:55:c1:e2:ca:86:65:17:ad:bc:62:f6: 40:45:86:45:8c:9a:9a:72:d0:29:cf:11:83:a6:7a:68:23:e2: 66:d8:c9:ed:db:c7:6b:71:cd:6b:c2:19:a1:ab:91:12:2e:14: 8c:82:4e:e3:2b:88:89:85:84:95:55:d6:fd:77:1c:b7:d1:64: 63:87:cf:5a:ae:5b:be:4f:52:c5:56:12:fc:97:f4:80:d7:55: 99:55:2a:be:6e:1b:ba:7b:2a:db:93:07:18:0e:fc:57:eb:b2: 78:5c:a4:8c:48:15:ab:b6:fc:51:ac:a8:88:75:53:ef:ac:e5: dc:73:88:d7:54:a7:29:56:76:31:76:2d:75:3d:5d:d9:e6:df: eb:70:4e:15:e1:af:a6:71:09:55:d7:5b:40:76:f6:bd:6f:c8: fa:f7:e2:e3:b2:f4:7f:76:e2:41:3f:a3:47:41:2b:8a:a3:34: 3a:10:6c:30:2c:08:3c:a6:f5:ed:ba:61:d9:c4:28:fc:22:83: 00:4d:bb:07:1d:64:6d:87:9f:99:34:f6:44:31:c0:9a:51:0c: 38:bd:b8:13:ff:76:c4:c4:c0:c3:82:12:21:55:26:f0:26:5b: 51:a3:96:70:09:9b:8a:d1:7f:2d:a9:ac:71:5a:35:03:b0:d7: f5:b9:aa:b0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI0M0YxMTAvBgNVBAUTKDE4OTY3RENEQjcyNEE4NEE3MTcxMUU2NzhBQUIxRDJF NzIyMTVENkMwHhcNMjYwMzIxMDYwNTIzWhcNMjYwMzI4MDYwNTIzWjAYMRYwFAYD VQQDEw02OWJlMzUyNC1kM2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvm2DWHsadjYvolBC7SL6AV9GU3qJl7Ht9pyNsOZGljZI4kA6IEGVFLVH5vWM mzPde4Qjpy4Xu10zUwf805fapfJj2PPFAO9zycHqjpdiB1aJjKc40uBvnGYekkxw A/b6nXHc+2Wksqb/lhr22d268PpqrZc+NDQ/0lChzjbCAHdIbbc1vJF2OonmiZ2m 8IQp9rGOuzajEkDKkfVut7YFNtbAgvvQWLikCjN3xckeZqy4W1XumoMgBXg+VE/5 vIi2t7ciMl0hul/T2Q/woAZV5r7wSDmk7EQKQ5vFMkXFb5llijJgQfkL8xwFFSa5 F7SBb293eRzbxZBThhAyGZ7aoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBEJmEF/ lR/pzhOyUfDvfSYY6TRaMB8GA1UdIwQYMBaAFBiWfc23JKhKcXEeZ4qrHS5yIV1s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjQzRi9ENjg0RkMyRTFB OEIxMUYwOUNDMjQ1MzVDNEY5QUUwMi9HSlo5emJja3FFcHhjUjVuaXFzZExuSWhY V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dKWjl6YmNrcUVweGNSNW5pcXNkTG5JaFhXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjQzRi9ENjg0RkMyRTFBOEIxMUYwOUNDMjQ1MzVDNEY5QUUwMi9HSlo5emJja3FF cHhjUjVuaXFzZExuSWhYV3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAv/b0uwIPRlXB4sqGZRetvGL2QEWGRYyamnLQKc8Rg6Z6aCPiZtjJ7dvHa3HN a8IZoauREi4UjIJO4yuIiYWElVXW/Xcct9FkY4fPWq5bvk9SxVYS/Jf0gNdVmVUq vm4bunsq25MHGA78V+uyeFykjEgVq7b8UayoiHVT76zl3HOI11SnKVZ2MXYtdT1d 2ebf63BOFeGvpnEJVddbQHb2vW/I+vfi47L0f3biQT+jR0EriqM0OhBsMCwIPKb1 7bph2cQo/CKDAE27Bx1kbYefmTT2RDHAmlEMOL24E/92xMTAw4ISIVUm8CZbUaOW cAmbitF/LamscVo1A7DX9bmqsA== -----END CERTIFICATE-----Generated at Sat Mar 21 13:20:10 2026 by rpki-client