$ rpki-client -vvf rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft File: ghhST3oWtYwNm3OUAxk5fuT8pv0.mft (raw, json) Hash identifier: ylGk3DUirf/scSgjiUcNbSp1rk/xSDfKWW2ALYqTTUM= Subject key identifier: ED:BC:C0:37:AD:6E:E7:2E:DD:2D:6A:95:29:7D:EE:C1:C6:BD:8D:7A Authority key identifier: 82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD Certificate issuer: /CN=A9179EE2/serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Certificate serial: 0892 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft Manifest number: 0874 Signing time: Thu 16 Apr 2026 20:35:24 +0000 Manifest this update: Thu 16 Apr 2026 20:35:24 +0000 Manifest next update: Thu 23 Apr 2026 20:35:24 +0000 Files and hashes: 1: ghhST3oWtYwNm3OUAxk5fuT8pv0.crl (hash: ku1BDVLNCBm15Cvt9CUVr13wn6p+RuOSIq1doyl6x78=) 2: 431106B2125611ED9FB5292EC4F9AE02.roa (hash: HC1HlngI6XYoexa+iP3Lsv/hSItkWBl0CdvwYSY1Yh0=) 3: FD10505CC75011EFBA3D195BC4F9AE02.roa (hash: o4pPobBwjt8OFkaZBIgV8zZzFKBhPJBPQIzcgJ7nHNM=) 4: 81E94F18F57311EA86849119C4F9AE02.roa (hash: o7hslMVigOY231eahjNEQ0NYOJaFI9mq6NC5ziX7dQc=) 5: 816A256CF57311EA86849119C4F9AE02.roa (hash: 0r9XfnUOK88lrdHrVj5W9qn3Uab5Rf0RHHQdbv15M8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:35:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2194 (0x892) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179EE2, serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Validity Not Before: Apr 16 20:35:24 2026 GMT Not After : Apr 23 20:35:24 2026 GMT Subject: CN=69e1480c-c98b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8b:97:51:44:e4:41:da:68:95:37:6a:51:16: b8:9f:7e:83:16:3d:c3:7b:e2:47:ab:45:53:27:32: 84:df:07:a3:62:0b:df:5a:61:13:9e:99:09:fd:ac: e3:f5:fc:21:4c:69:b1:00:2a:e8:65:29:9a:8c:73: f1:cd:bd:c8:c7:a4:9c:61:33:0c:ef:56:5c:5b:d4: d1:a4:a9:ab:e0:ba:ac:0b:ed:12:01:52:fd:8b:c2: fb:a2:b1:df:40:7b:e4:62:47:2e:27:09:34:3c:78: 2f:85:ee:da:f9:9a:07:f7:2d:60:12:94:05:78:a9: 49:6e:57:1c:7a:b7:c0:af:ad:6e:60:a9:ee:1c:36: 2b:5d:9e:1a:ca:0c:04:77:4b:08:76:2e:16:42:3f: d2:50:d4:4e:a1:73:90:31:5e:ef:c7:f2:b8:81:5d: f4:d4:60:4c:7c:2e:f5:3f:1a:bf:82:95:89:3c:bd: 81:fe:cf:f3:67:7d:b8:98:86:c1:4a:dd:5e:91:de: 6e:80:d5:91:f6:1d:35:a4:3f:82:94:d9:7e:ae:0f: 13:a1:26:1e:4d:44:97:16:98:8d:bc:ba:cd:a6:b4: 19:f9:74:d9:dc:9b:98:7b:a0:b2:02:79:83:08:03: 53:0f:42:54:3a:59:15:1b:5d:4f:dd:db:1a:9b:31: d8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:BC:C0:37:AD:6E:E7:2E:DD:2D:6A:95:29:7D:EE:C1:C6:BD:8D:7A X509v3 Authority Key Identifier: keyid:82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:3b:ac:a6:6f:ed:13:60:7d:32:e0:58:c4:cc:cb:01:2c:ce: ef:9a:a9:e6:8d:a7:1e:1d:c2:68:d7:49:e4:84:87:bb:f7:5e: 07:b1:8d:94:f9:3f:09:2b:8c:b1:33:39:d2:e6:91:62:e1:69: 1a:7a:5d:92:87:12:dd:67:fb:c9:03:1b:1c:24:da:d5:0c:3b: 59:22:4c:ad:a8:d8:21:2b:78:9d:84:36:53:2e:89:3f:2f:27: 52:0f:7f:4b:68:57:6f:66:04:f0:d0:b4:3a:3a:64:de:30:41: da:62:94:a0:49:b6:4b:13:55:a5:b0:21:97:9c:53:2b:d0:8a: ee:2a:f1:19:f5:ec:ac:ad:d4:ea:09:fa:a3:5f:04:07:0d:3e: 32:0e:69:2e:d5:e4:3c:6f:21:9e:31:c6:c5:34:89:fa:17:32: 21:f3:16:c3:0e:a1:9b:6f:2a:12:d2:aa:8e:13:7c:6d:73:2a: 42:23:19:73:93:83:e6:c7:0a:5c:8f:77:1e:6d:ad:9f:d5:fe: 57:67:30:99:15:97:8c:73:b6:08:d3:25:66:90:39:76:b2:76: bb:29:28:47:17:e4:e0:d7:87:da:46:09:a4:04:99:61:40:9f: bc:92:35:48:b1:98:60:b9:7b:49:ed:fd:86:af:83:84:48:1e: 13:4f:e1:cd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlFRTIxMTAvBgNVBAUTKDgyMTg1MjRGN0ExNkI1OEMwRDlCNzM5NDAzMTkzOTdF RTRGQ0E2RkQwHhcNMjYwNDE2MjAzNTI0WhcNMjYwNDIzMjAzNTI0WjAYMRYwFAYD VQQDEw02OWUxNDgwYy1jOThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4uXUUTkQdpolTdqURa4n36DFj3De+JHq0VTJzKE3wejYgvfWmETnpkJ/azj 9fwhTGmxACroZSmajHPxzb3Ix6ScYTMM71ZcW9TRpKmr4LqsC+0SAVL9i8L7orHf QHvkYkcuJwk0PHgvhe7a+ZoH9y1gEpQFeKlJblccerfAr61uYKnuHDYrXZ4aygwE d0sIdi4WQj/SUNROoXOQMV7vx/K4gV301GBMfC71Pxq/gpWJPL2B/s/zZ324mIbB St1ekd5ugNWR9h01pD+ClNl+rg8ToSYeTUSXFpiNvLrNprQZ+XTZ3JuYe6CyAnmD CANTD0JUOlkVG11P3dsamzHYmwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO28wDet bucu3S1qlSl97sHGvY16MB8GA1UdIwQYMBaAFIIYUk96FrWMDZtzlAMZOX7k/Kb9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUVFMi8wMkIyNzM4OEY1 NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZd05tM09VQXhrNWZ1VDhw djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doaFNUM29XdFl3Tm0zT1VBeGs1ZnVUOHB2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUVFMi8wMkIyNzM4OEY1NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZ d05tM09VQXhrNWZ1VDhwdjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuzuspm/tE2B9MuBYxMzLASzO75qp5o2nHh3CaNdJ5ISHu/deB7GNlPk/CSuM sTM50uaRYuFpGnpdkocS3Wf7yQMbHCTa1Qw7WSJMrajYISt4nYQ2Uy6JPy8nUg9/ S2hXb2YE8NC0Ojpk3jBB2mKUoEm2SxNVpbAhl5xTK9CK7irxGfXsrK3U6gn6o18E Bw0+Mg5pLtXkPG8hnjHGxTSJ+hcyIfMWww6hm28qEtKqjhN8bXMqQiMZc5OD5scK XI93Hm2tn9X+V2cwmRWXjHO2CNMlZpA5drJ2uykoRxfk4NeH2kYJpASZYUCfvJI1 SLGYYLl7Se39hq+DhEgeE0/hzQ== -----END CERTIFICATE-----Generated at Fri Apr 17 12:24:36 2026 by rpki-client