$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft File: GxesPclsojRSUCPv02J-ks2IR0g.mft (raw, json) Hash identifier: OOzFaCKzRq6qRp0hDSqTE4HFHXBawBZCDOWXGTW+YdQ= Subject key identifier: C4:30:01:06:00:65:A6:F5:5A:45:C6:41:07:23:C6:26:40:49:CC:05 Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1DF6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft Manifest number: 1DA2 Signing time: Thu 16 Apr 2026 16:04:42 +0000 Manifest this update: Thu 16 Apr 2026 16:04:41 +0000 Manifest next update: Thu 23 Apr 2026 16:04:41 +0000 Files and hashes: 1: GxesPclsojRSUCPv02J-ks2IR0g.crl (hash: zz+zFxVdM2vlcukG56euhLcbFxChaH5+rn7ISPf4P64=) 2: 4D609E86FF3B11EB910E8847C4F9AE02.roa (hash: WhkLj0w45a5YtVE3jvzrZ8Dxr8O2vOWWoHPkacPIXzA=) 3: C2EECBA0E85C11EBA2171A25C4F9AE02.roa (hash: 3ijGtnKRZtAGtvocDeUrSBYus200G7y6Dr0KE05wtXM=) 4: 4E2669F4FF3B11EB910E8847C4F9AE02.roa (hash: hsIMVES/RshZRMg/IYSKfaC8xNA1Vhhbh6ui/TW2WWo=) 5: 89654CDAB83B11EFAA80DD09C4F9AE02.roa (hash: Y2B9BXK6GgEUgrdOgkuvUr+OvwRamCav5yIYFYLKyOo=) 6: 8A1AF86E94BC11EC9E49DB41C4F9AE02.roa (hash: YuvkBqlEeFCoXBaOZasT0zM29UlrwmymL5NE2blVSiE=) 7: C154DA14E85C11EBA2171A25C4F9AE02.roa (hash: IPxwuDAs+rs/dWI7IwZQIjs7sZfbx/rQmmj734bJ2/s=) 8: 907B9B20E8AD11EBAA895D0AC4F9AE02.roa (hash: BRkeotXr+WaPofrhA/ccsuUEV0af6klyrqasow7IzzQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:04:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7670 (0x1df6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2, serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Validity Not Before: Apr 16 16:04:41 2026 GMT Not After : Apr 23 16:04:41 2026 GMT Subject: CN=69e10899-8b7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:53:f9:d9:15:7f:b2:4d:37:9b:59:d7:40:11: 06:7d:34:1f:9f:52:c2:b1:dc:2b:63:b1:7c:db:8c: 02:3e:92:52:48:eb:67:21:9e:31:80:72:ef:65:5d: 71:64:99:07:ed:48:d9:69:65:c6:f3:ad:1d:28:13: 01:15:ac:e7:77:d8:bf:3b:4b:df:bb:f1:99:be:bb: f1:b1:e4:e6:cd:3c:75:4c:a4:72:1e:28:7a:1f:bb: 7f:9c:55:8f:7f:f9:1c:1c:14:b9:ee:93:41:64:97: 82:dd:f5:16:e4:8b:ad:5b:b1:7d:70:37:a4:6e:d9: 73:37:f3:a2:f6:07:a3:c1:11:28:4b:1d:5e:35:22: 9b:2e:3c:96:19:3f:af:7e:94:11:2e:9e:d9:f1:b5: bc:8a:b0:23:16:30:cd:b9:8d:85:0a:12:21:ec:f2: e0:f7:2c:ff:3c:e7:7b:12:21:a7:c4:30:25:a5:5e: 92:45:d4:b4:3a:c6:eb:2f:19:7e:2f:6c:ec:2c:6b: 58:28:8b:c1:e2:72:f0:a4:54:fe:ce:eb:ef:bf:25: ae:59:fa:44:f6:cd:c0:f4:23:5e:76:d1:71:da:b2: 6c:8c:53:b7:2e:b4:36:fc:d4:40:96:2f:53:1a:12: 62:f8:be:4c:14:1d:c9:b0:e4:5b:c7:2d:ad:cb:33: d7:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:30:01:06:00:65:A6:F5:5A:45:C6:41:07:23:C6:26:40:49:CC:05 X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:4d:bf:4e:7f:34:42:0c:6f:99:39:4b:79:f4:ef:c4:20:1a: b1:c6:57:61:2f:5a:68:25:51:de:03:36:d0:ba:39:23:8f:1e: 04:54:81:78:5b:0d:48:0a:a2:76:e7:07:34:fc:2d:61:41:77: ab:d9:a2:7f:dc:88:62:28:a7:d6:65:09:19:79:3a:fb:36:2e: 2d:cc:04:47:a9:ee:9d:6d:24:fe:26:29:9d:4a:02:4e:ad:98: 6a:39:30:38:3b:33:b3:82:c8:5f:87:a2:4c:a6:24:61:40:a5: a2:0a:29:7e:61:99:24:ea:29:74:30:da:81:82:94:d2:9b:26: dd:c6:ff:37:ca:65:37:1b:a6:60:d3:c5:67:24:ef:c3:b9:72: 86:f4:0a:39:c0:e2:8a:62:d4:08:6b:6b:33:75:47:d7:61:b7: 8e:4a:29:fc:02:b3:86:65:e1:17:c4:d1:f0:34:e9:74:79:86: 8f:1e:07:cc:d7:9c:1e:be:d5:9c:50:d9:08:37:bb:42:8a:c4: c2:25:d8:f8:79:a1:47:0a:99:15:c2:6e:23:27:46:79:02:99: b9:76:59:99:5b:1e:63:61:b7:5b:2d:44:18:c4:f9:ba:87:11: c5:da:12:23:c7:6f:0d:1e:d8:a6:f4:3c:2a:3e:5c:44:3c:12: 8a:d9:6f:0b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjYwNDE2MTYwNDQxWhcNMjYwNDIzMTYwNDQxWjAYMRYwFAYD VQQDEw02OWUxMDg5OS04YjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFP52RV/sk03m1nXQBEGfTQfn1LCsdwrY7F824wCPpJSSOtnIZ4xgHLvZV1x ZJkH7UjZaWXG860dKBMBFaznd9i/O0vfu/GZvrvxseTmzTx1TKRyHih6H7t/nFWP f/kcHBS57pNBZJeC3fUW5IutW7F9cDekbtlzN/Oi9gejwREoSx1eNSKbLjyWGT+v fpQRLp7Z8bW8irAjFjDNuY2FChIh7PLg9yz/POd7EiGnxDAlpV6SRdS0OsbrLxl+ L2zsLGtYKIvB4nLwpFT+zuvvvyWuWfpE9s3A9CNedtFx2rJsjFO3LrQ2/NRAli9T GhJi+L5MFB3JsORbxy2tyzPXsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMQwAQYA Zab1WkXGQQcjxiZAScwFMB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REJGMi9FMzQ0NTAxNkMyRjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29q UlNVQ1B2MDJKLWtzMklSMGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsU2/Tn80QgxvmTlLefTvxCAascZXYS9aaCVR3gM20Lo5I48eBFSBeFsNSAqi ducHNPwtYUF3q9mif9yIYiin1mUJGXk6+zYuLcwER6nunW0k/iYpnUoCTq2Yajkw ODszs4LIX4eiTKYkYUClogopfmGZJOopdDDagYKU0psm3cb/N8plNxumYNPFZyTv w7lyhvQKOcDiimLUCGtrM3VH12G3jkop/AKzhmXhF8TR8DTpdHmGjx4HzNecHr7V nFDZCDe7QorEwiXY+HmhRwqZFcJuIydGeQKZuXZZmVseY2G3Wy1EGMT5uocRxdoS I8dvDR7YpvQ8Kj5cRDwSitlvCw== -----END CERTIFICATE-----Generated at Fri Apr 17 05:28:09 2026 by rpki-client