$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft File: GxesPclsojRSUCPv02J-ks2IR0g.mft (raw, json) Hash identifier: mt0hCyd/iINJ39Wjp8twK5x14p5vt60zZ3CQiY7r9JQ= Subject key identifier: BD:8D:C3:74:53:29:CD:18:39:60:7B:F1:C9:AB:79:DD:00:2F:8F:7E Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1DCE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft Manifest number: 1D88 Signing time: Sat 28 Feb 2026 16:09:49 +0000 Manifest this update: Sat 28 Feb 2026 16:09:48 +0000 Manifest next update: Sat 07 Mar 2026 16:09:48 +0000 Files and hashes: 1: GxesPclsojRSUCPv02J-ks2IR0g.crl (hash: eODjYd4Y5SoDBDMBoXx0DaohXt28jakDZLSa3yP4YBw=) 2: C2EECBA0E85C11EBA2171A25C4F9AE02.roa (hash: 7Oq0EjOKn6bsTSP6mL6KCCgjBt4lIyqqyhmO1I6s8cg=) 3: 89654CDAB83B11EFAA80DD09C4F9AE02.roa (hash: K6+IQwuXFtveYnyJKOPghHPL0spb630my7bhT2uUe9U=) 4: 907B9B20E8AD11EBAA895D0AC4F9AE02.roa (hash: C5BU3MAo0qzPK3etR8Uu8HuQVsgLuK4klq4m4qrDiqA=) 5: 4E2669F4FF3B11EB910E8847C4F9AE02.roa (hash: ITJVNmWHBLHEJmLTUv7d72LHGeyvhHsIJZAHgiwehM8=) 6: 8A1AF86E94BC11EC9E49DB41C4F9AE02.roa (hash: wujTvAf8/JJQGtinlXYUDnd4JDT6dqfAQG2vaS5mD/A=) 7: C154DA14E85C11EBA2171A25C4F9AE02.roa (hash: U3j8kgNn5oJuusJATbx5BoU853fMftfdomkb+RsEHUQ=) 8: 4D609E86FF3B11EB910E8847C4F9AE02.roa (hash: VR+mLs8VBCr7w8U86r02L1Totd53q0JqQ7zpHnNUexc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 16:09:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7630 (0x1dce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2, serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Validity Not Before: Feb 28 16:09:48 2026 GMT Not After : Mar 7 16:09:48 2026 GMT Subject: CN=69a3134d-cc1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c7:ef:4e:99:31:7e:4e:04:53:3b:5b:fc:8c: dc:37:c0:cf:9a:1a:50:af:1f:80:f5:68:7a:c2:eb: 1f:b4:99:d3:19:2b:84:fe:2e:8a:72:89:41:9e:32: 9c:5b:3f:8f:70:aa:11:0c:32:ed:8f:82:4a:0e:3f: 10:76:a6:35:57:31:20:ea:2c:33:b3:09:5d:bd:d4: 24:7d:53:13:aa:65:39:85:6e:fb:88:39:35:8e:47: 20:81:43:e2:c5:1a:75:45:e4:63:7f:bc:af:4a:2c: df:e1:a9:43:ba:4d:f8:0d:a6:67:b2:53:e6:f7:a5: 70:44:28:8d:95:0c:29:cb:f5:0a:8b:f7:f2:8c:34: 31:87:e0:56:fc:c8:6a:0e:ba:be:f3:1e:ed:47:c4: 0e:e3:9a:00:a5:25:48:e7:8b:bf:0f:7f:db:82:f4: cd:54:35:f6:d7:bf:e4:48:ab:6f:69:c8:56:c1:ff: 9c:ab:48:5f:be:d1:a2:c6:20:cb:1f:00:94:2b:de: 51:f0:d8:70:72:2f:e6:02:65:f6:63:59:ec:c0:9d: 6f:f0:ea:38:59:bb:59:cd:0c:4e:96:11:51:68:75: c0:31:42:56:60:46:1d:9e:96:a7:1c:55:c7:e9:67: e3:4b:80:5b:f5:5a:20:80:21:49:da:41:72:7a:00: 43:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:8D:C3:74:53:29:CD:18:39:60:7B:F1:C9:AB:79:DD:00:2F:8F:7E X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:bd:56:9e:cc:0b:d3:b6:59:9b:ab:80:50:77:3b:95:f5:8a: af:b7:17:3d:73:3c:88:e1:33:40:55:8b:40:f3:d6:17:87:1d: e7:f7:4a:50:97:7a:9e:34:41:5e:12:b0:41:57:20:23:d2:09: 98:a1:5e:d7:c3:f3:f3:d7:01:f8:48:eb:af:07:68:62:f9:ca: 39:74:f0:ed:39:ca:6a:69:42:7e:43:b9:cc:aa:17:4e:ff:e3: 1e:3c:cd:b7:96:1e:c3:13:33:69:25:a3:13:86:23:46:12:a3: 11:4d:27:9f:d6:f2:4b:d5:b7:82:ad:a0:4b:72:d6:1f:b1:c2: 25:e0:fa:0b:5f:60:06:3a:1d:a1:74:08:00:ab:c8:aa:cf:ba: 54:36:5b:6d:e8:1c:7a:34:3c:68:7a:b3:db:84:fc:37:04:8d: c4:96:fe:9c:23:73:fa:e0:ae:4e:b5:c4:6e:61:bc:c2:6e:94: 92:e9:33:91:63:1e:11:30:12:bd:d9:30:ed:da:12:8c:b1:99: a1:67:fc:66:a0:39:a5:3b:2e:9d:27:b6:02:4f:ac:ec:c6:7f: c5:99:8b:40:f8:2b:a7:c7:2b:1d:06:9c:17:f5:e5:f7:b5:ad: 93:fd:d2:dc:40:41:2d:9f:e9:6c:1d:43:3a:c3:6e:05:ac:3e: 18:fb:79:b4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjYwMjI4MTYwOTQ4WhcNMjYwMzA3MTYwOTQ4WjAYMRYwFAYD VQQDDA02OWEzMTM0ZC1jYzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApsfvTpkxfk4EUztb/IzcN8DPmhpQrx+A9Wh6wusftJnTGSuE/i6KcolBnjKc Wz+PcKoRDDLtj4JKDj8QdqY1VzEg6iwzswldvdQkfVMTqmU5hW77iDk1jkcggUPi xRp1ReRjf7yvSizf4alDuk34DaZnslPm96VwRCiNlQwpy/UKi/fyjDQxh+BW/Mhq Drq+8x7tR8QO45oApSVI54u/D3/bgvTNVDX217/kSKtvachWwf+cq0hfvtGixiDL HwCUK95R8Nhwci/mAmX2Y1nswJ1v8Oo4WbtZzQxOlhFRaHXAMUJWYEYdnpanHFXH 6WfjS4Bb9VoggCFJ2kFyegBD1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL2Nw3RT Kc0YOWB78cmred0AL49+MB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REJGMi9FMzQ0NTAxNkMyRjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29q UlNVQ1B2MDJKLWtzMklSMGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXr1WnswL07ZZm6uAUHc7lfWKr7cXPXM8iOEzQFWLQPPWF4cd5/dKUJd6njRB XhKwQVcgI9IJmKFe18Pz89cB+EjrrwdoYvnKOXTw7TnKamlCfkO5zKoXTv/jHjzN t5YewxMzaSWjE4YjRhKjEU0nn9byS9W3gq2gS3LWH7HCJeD6C19gBjodoXQIAKvI qs+6VDZbbegcejQ8aHqz24T8NwSNxJb+nCNz+uCuTrXEbmG8wm6UkukzkWMeETAS vdkw7doSjLGZoWf8ZqA5pTsunSe2Ak+s7MZ/xZmLQPgrp8crHQacF/Xl97Wtk/3S 3EBBLZ/pbB1DOsNuBaw+GPt5tA== -----END CERTIFICATE-----Generated at Mon Mar 2 00:12:05 2026 by rpki-client