$ rpki-client -vvf rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft File: gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft (raw, json) Hash identifier: pLdqmvakqJ118wyQHtXPEq/IYbfUz3vEGNS1E4kw8pI= Subject key identifier: 7C:41:21:F0:79:78:A2:4A:1E:1A:2E:B9:9D:52:52:F7:B2:77:CA:F2 Authority key identifier: 81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 Certificate issuer: /CN=A917092C/serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Certificate serial: 0165 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft Manifest number: 0134 Signing time: Fri 17 Apr 2026 05:19:15 +0000 Manifest this update: Fri 17 Apr 2026 05:19:15 +0000 Manifest next update: Fri 24 Apr 2026 05:19:15 +0000 Files and hashes: 1: gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl (hash: MkE4Okcb8KQ0AdMsB/aBZYrw4olRtpDKPVPhyxrIzwQ=) 2: E1F3085E777E11EFB3F75352C4F9AE02.roa (hash: tbOGVdr1pGEtRNIPhw+pN+6OYD1Bg4DdAHsAJbGglfo=) 3: E27B5862777E11EFB3F75352C4F9AE02.roa (hash: WpLf4AaObe+N5I2HIzmO3ifOs3a8b6pFk0v9kjWfhKo=) 4: E3105D04777E11EFB3F75352C4F9AE02.roa (hash: nm1Ullm2VIIXw5m4XpAUTvY39qoFFv2kQzceO6Rs4JQ=) 5: E3C4A4EE777E11EFB3F75352C4F9AE02.roa (hash: CkipJrZk0lzhAoob2kPQd93c6/y1lAZ0Ra8Fe1utBl0=) 6: 752774D616A111F0B2CDBC72C4F9AE02.roa (hash: iGlUh9TWU4eF1gUngLKtyEqTN0brCSv48MjOIvg0+wA=) 7: 8E00FBF2777E11EF8D0ECC4EC4F9AE02.roa (hash: zpgkPkDvpxrkSLXBoEJusQVoT2JeDQ/RaiKoNpwaUvg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:19:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 357 (0x165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917092C, serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Validity Not Before: Apr 17 05:19:15 2026 GMT Not After : Apr 24 05:19:15 2026 GMT Subject: CN=69e1c2d3-24de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ae:51:1b:de:38:d9:61:6a:f1:11:87:c4:0b: 76:0d:8e:2e:b7:3a:ff:5c:65:d6:97:10:64:67:1c: 42:0c:09:ee:19:9c:52:be:ad:29:c6:70:14:e9:49: cc:5f:80:d2:75:ca:c4:41:5e:56:23:09:10:f8:c3: 19:9e:a1:19:85:84:8d:04:d4:1d:3c:79:a1:bd:ee: 26:ed:95:23:a9:b2:3b:7c:79:9c:94:cc:89:0e:0f: b9:98:e8:28:ab:c6:b6:91:e1:ba:c9:ef:6e:eb:4a: 62:c3:bb:0c:3a:9b:85:6c:03:b5:f0:03:f6:d3:cb: 9b:1b:d1:cf:eb:d5:fa:eb:05:0f:4f:5f:e2:4d:85: 68:6d:c5:16:1f:82:52:53:06:75:99:6d:6f:55:09: b3:55:b2:50:ff:f9:54:f8:33:cf:56:2c:17:59:57: 46:1d:71:24:bc:d5:1e:3e:90:3e:16:34:d4:19:ca: 8d:7a:a9:5e:56:1b:94:39:24:c0:f4:39:f7:c3:c2: db:10:32:84:50:55:be:30:3f:44:61:36:92:89:12: 65:b9:4d:14:c8:dd:97:57:3f:5e:54:62:68:15:f5: a8:c4:7e:9d:e4:01:26:ed:54:e2:2b:ea:44:ff:12: a4:56:2f:b8:ed:fd:01:c4:ff:cc:77:d5:e0:d4:71: 6d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:41:21:F0:79:78:A2:4A:1E:1A:2E:B9:9D:52:52:F7:B2:77:CA:F2 X509v3 Authority Key Identifier: keyid:81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:6c:0a:6b:42:af:0d:ff:f9:f1:24:5f:bf:19:66:09:0f:99: 83:61:02:d9:5f:1f:83:5f:61:9d:07:bd:ca:19:e1:85:27:b6: 93:1d:6d:10:f2:1f:c7:21:32:c0:8b:f1:90:fb:4f:4e:e3:3f: e0:87:57:b0:dc:6c:b0:47:45:a3:03:e2:ba:a0:17:cc:8e:92: fc:81:19:73:08:d0:f5:21:51:28:aa:58:27:3c:d2:80:de:a4: 25:af:c3:fa:f4:1b:60:1c:3a:39:f5:62:4d:3f:95:d7:ef:01: 50:67:ff:6e:83:f5:2f:d9:76:29:a4:d3:ee:8c:a7:fa:a9:e6: 15:02:0a:54:3d:90:77:84:e0:69:a5:6e:b2:ac:92:ee:20:3c: b8:e4:0f:83:63:a4:05:90:c2:17:76:e1:39:8a:62:13:23:64: 70:0d:37:9e:db:fc:0b:69:c4:d6:c8:d5:3b:35:bd:18:d7:3a: 68:25:3c:8f:aa:40:02:c2:47:4a:8b:62:82:da:bb:91:d2:f6: 56:e9:67:ec:22:0f:6b:16:96:1a:f6:7a:0e:b5:9b:89:78:fd: 40:3a:59:44:2e:dc:8b:74:7c:a8:ea:f4:33:4f:b8:83:f2:b2: 3e:12:8e:8c:3d:ce:9a:f6:37:07:90:e7:eb:1e:6b:a1:b3:45: 0b:6b:59:db -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5MkMxMTAvBgNVBAUTKDgxN0REMzgwMkYyNkU1N0VDRTgyNjVDRTg2MjZGQ0JC OUM2NEU5RDQwHhcNMjYwNDE3MDUxOTE1WhcNMjYwNDI0MDUxOTE1WjAYMRYwFAYD VQQDEw02OWUxYzJkMy0yNGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr65RG9442WFq8RGHxAt2DY4utzr/XGXWlxBkZxxCDAnuGZxSvq0pxnAU6UnM X4DSdcrEQV5WIwkQ+MMZnqEZhYSNBNQdPHmhve4m7ZUjqbI7fHmclMyJDg+5mOgo q8a2keG6ye9u60piw7sMOpuFbAO18AP208ubG9HP69X66wUPT1/iTYVobcUWH4JS UwZ1mW1vVQmzVbJQ//lU+DPPViwXWVdGHXEkvNUePpA+FjTUGcqNeqleVhuUOSTA 9Dn3w8LbEDKEUFW+MD9EYTaSiRJluU0UyN2XVz9eVGJoFfWoxH6d5AEm7VTiK+pE /xKkVi+47f0BxP/Md9Xg1HFtMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHxBIfB5 eKJKHhouuZ1SUveyd8ryMB8GA1UdIwQYMBaAFIF904AvJuV+zoJlzoYm/LucZOnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDkyQy9FMkMwNzdERTc3 NjYxMUVGQjU1RUQyNzlDNEY5QUUwMi9nWDNUZ0M4bTVYN09nbVhPaGliOHU1eGs2 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dYM1RnQzhtNVg3T2dtWE9oaWI4dTV4azZkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDkyQy9FMkMwNzdERTc3NjYxMUVGQjU1RUQyNzlDNEY5QUUwMi9nWDNUZ0M4bTVY N09nbVhPaGliOHU1eGs2ZFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASmwKa0KvDf/58SRfvxlmCQ+Zg2EC2V8fg19hnQe9yhnhhSe2kx1tEPIfxyEy wIvxkPtPTuM/4IdXsNxssEdFowPiuqAXzI6S/IEZcwjQ9SFRKKpYJzzSgN6kJa/D +vQbYBw6OfViTT+V1+8BUGf/boP1L9l2KaTT7oyn+qnmFQIKVD2Qd4TgaaVusqyS 7iA8uOQPg2OkBZDCF3bhOYpiEyNkcA03ntv8C2nE1sjVOzW9GNc6aCU8j6pAAsJH Sotigtq7kdL2Vuln7CIPaxaWGvZ6DrWbiXj9QDpZRC7ci3R8qOr0M0+4g/KyPhKO jD3OmvY3B5Dn6x5robNFC2tZ2w== -----END CERTIFICATE-----Generated at Fri Apr 17 19:49:29 2026 by rpki-client