$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft File: gCx1H6mENH35yTztuX7ZUalSgoY.mft (raw, json) Hash identifier: Ycr099TQI3i6GboeIJtL9S70T1txc93sW/rvAmyt7RE= Subject key identifier: B7:8D:E1:45:B3:8E:39:76:E1:BE:9D:67:09:86:A1:A3:44:03:DC:A8 Authority key identifier: 80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86 Certificate issuer: /CN=A911AE8B/serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286 Certificate serial: 0DD3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft Manifest number: 0DB2 Signing time: Thu 16 Apr 2026 17:50:43 +0000 Manifest this update: Thu 16 Apr 2026 17:50:42 +0000 Manifest next update: Thu 23 Apr 2026 17:50:42 +0000 Files and hashes: 1: gCx1H6mENH35yTztuX7ZUalSgoY.crl (hash: erAiSNKnU9oLDhiCopYLh5fLXWWgG/u1xlI+lzFBeUs=) 2: 749B738AF28F11F095D4F2986B6F56BC.roa (hash: KEcoT61kbpKYaqHWHrY20ixUYzmALZ1uWpR1U4eKh3Y=) 3: AF2CB5CE101E11ED9FA78415C4F9AE02.roa (hash: ygQB2y8hsTLzbf5SF7WCvYfKunhmdLdBTxW0WpljHeM=) 4: 677F3316E02711E9AB669750C4F9AE02.roa (hash: ULb7MnuSpC+RNv8YH7wBDdLNbPZxB2oAuIx44Pnr+I8=) 5: C64AB888F28211F0B78FCAB4696F56BC.roa (hash: 21I1lPOhCB6OoTCDKwmnVs4XWHIQNSrXN0TNGGcuqdQ=) 6: C5C152D2F28211F0B78FCAB4696F56BC.roa (hash: wI1y6ntLsUWaWyufcxzOljo2NrfksupJylZSnJ7IKS8=) 7: 9A735F54EBE611EC82C08A11C4F9AE02.roa (hash: GtQoqjQUirpvjAYOKzxLFZEEug+qoArWCD33oXD/Vgw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3539 (0xdd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE8B, serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286 Validity Not Before: Apr 16 17:50:42 2026 GMT Not After : Apr 23 17:50:42 2026 GMT Subject: CN=69e12173-7993 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:64:c1:7d:4b:8d:af:54:59:27:b5:0c:f2:34: 98:d5:d1:45:da:0b:5d:d1:95:1c:ec:2e:05:24:fb: a0:e2:f6:7d:ac:b9:e2:6b:cc:45:91:fb:1e:57:4c: 03:41:4d:86:e5:e0:62:91:6b:8e:1b:f6:f2:ed:0f: 5f:04:19:01:30:37:2f:e7:f1:f7:ed:8b:49:c8:58: 5b:52:ea:65:9c:7b:6e:75:5e:af:73:a9:22:e0:ae: 85:2e:15:3e:96:70:50:8a:0d:59:42:19:46:fc:87: 54:fc:ca:97:4d:47:4d:18:9e:b4:4c:4d:19:03:61: a3:45:9c:f0:05:1e:67:b7:5e:37:8d:d4:22:6b:a5: 5a:f7:ee:51:00:31:67:35:5e:50:6d:a6:a3:2e:bb: d4:3f:4d:71:a2:b7:ee:bf:99:53:ca:92:39:5a:0b: e7:10:e5:68:bf:fb:d5:b6:42:5a:d9:d0:94:32:c5: d1:56:ad:80:60:44:ef:2f:28:74:aa:56:aa:d3:f6: 01:94:4f:94:4b:ca:fe:33:3c:d7:26:f4:7b:09:58: 8e:c3:97:d8:70:1f:d2:3a:ec:4b:f5:87:0b:a6:d3: 08:f5:3d:5a:46:39:b4:6a:a2:82:90:69:f8:dd:ba: d6:e5:94:bb:7a:e3:4b:a2:47:10:1d:2d:86:3d:6b: 65:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:8D:E1:45:B3:8E:39:76:E1:BE:9D:67:09:86:A1:A3:44:03:DC:A8 X509v3 Authority Key Identifier: keyid:80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:49:31:ab:1b:60:b9:90:7f:64:eb:57:86:e5:e8:f3:88:68: 28:ee:ad:0f:7a:30:43:b7:f8:94:18:04:80:f4:62:4c:cd:d6: 99:11:69:83:1b:c7:04:22:cb:64:5f:cd:77:5e:69:8c:6b:29: 6d:42:9d:c1:5d:12:ad:69:ea:f4:36:cb:04:0c:91:15:8e:24: 2f:43:f5:11:db:f6:78:12:72:cb:1c:e3:9a:85:b9:1b:f6:b2: c2:34:34:81:07:42:30:4e:bd:9f:b1:5f:82:7d:7c:b8:bb:df: e8:93:1a:0e:4f:77:63:ea:14:e8:ab:ca:83:4b:93:4f:8f:0c: 9e:01:58:3a:7a:fa:4d:91:91:e3:a7:14:d6:f2:b5:a6:b0:82: 48:2b:8c:a3:0c:35:44:95:8c:4a:5e:85:37:36:64:1a:f5:ef: be:06:8c:49:18:89:74:f0:52:8c:d1:69:c0:5b:49:ab:6a:51: 08:ec:22:0c:89:49:c5:0e:f2:c2:71:fe:02:f1:c1:fd:18:a3: 4b:8f:99:ef:a6:db:16:a1:86:a2:55:3c:26:b9:f8:00:a2:ac: fc:12:8b:7e:51:9a:b1:85:67:24:b0:bf:7f:ac:3b:68:7e:03: 5a:ca:d7:89:31:32:0c:3f:71:bc:5d:87:c7:93:f2:1e:c6:1e: da:71:1d:af -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFOEIxMTAvBgNVBAUTKDgwMkM3NTFGQTk4NDM0N0RGOUM5M0NFREI5N0VEOTUx QTk1MjgyODYwHhcNMjYwNDE2MTc1MDQyWhcNMjYwNDIzMTc1MDQyWjAYMRYwFAYD VQQDEw02OWUxMjE3My03OTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5GTBfUuNr1RZJ7UM8jSY1dFF2gtd0ZUc7C4FJPug4vZ9rLnia8xFkfseV0wD QU2G5eBikWuOG/by7Q9fBBkBMDcv5/H37YtJyFhbUuplnHtudV6vc6ki4K6FLhU+ lnBQig1ZQhlG/IdU/MqXTUdNGJ60TE0ZA2GjRZzwBR5nt143jdQia6Va9+5RADFn NV5QbaajLrvUP01xorfuv5lTypI5WgvnEOVov/vVtkJa2dCUMsXRVq2AYETvLyh0 qlaq0/YBlE+US8r+MzzXJvR7CViOw5fYcB/SOuxL9YcLptMI9T1aRjm0aqKCkGn4 3brW5ZS7euNLokcQHS2GPWtl4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLeN4UWz jjl24b6dZwmGoaNEA9yoMB8GA1UdIwQYMBaAFIAsdR+phDR9+ck87bl+2VGpUoKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU4Qi9FQzI1N0NDNkUw MjUxMUU5OTFBOTc3NERDNEY5QUUwMi9nQ3gxSDZtRU5IMzV5VHp0dVg3WlVhbFNn b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dDeDFINm1FTkgzNXlUenR1WDdaVWFsU2dvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUU4Qi9FQzI1N0NDNkUwMjUxMUU5OTFBOTc3NERDNEY5QUUwMi9nQ3gxSDZtRU5I MzV5VHp0dVg3WlVhbFNnb1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP0kxqxtguZB/ZOtXhuXo84hoKO6tD3owQ7f4lBgEgPRiTM3WmRFpgxvHBCLL ZF/Nd15pjGspbUKdwV0SrWnq9DbLBAyRFY4kL0P1Edv2eBJyyxzjmoW5G/aywjQ0 gQdCME69n7Ffgn18uLvf6JMaDk93Y+oU6KvKg0uTT48MngFYOnr6TZGR46cU1vK1 prCCSCuMoww1RJWMSl6FNzZkGvXvvgaMSRiJdPBSjNFpwFtJq2pRCOwiDIlJxQ7y wnH+AvHB/RijS4+Z76bbFqGGolU8Jrn4AKKs/BKLflGasYVnJLC/f6w7aH4DWsrX iTEyDD9xvF2Hx5PyHsYe2nEdrw== -----END CERTIFICATE-----Generated at Fri Apr 17 20:31:46 2026 by rpki-client