$ rpki-client -vvf rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft File: GLHIjO5o9jwhzWoMsbgx1db11s8.mft (raw, json) Hash identifier: IWFjsyayQoZULmbIADvPnf8NlVnCEKWQ4tkSpi50xh0= Subject key identifier: 50:FF:F3:33:12:85:2A:57:20:2B:19:4C:78:A1:1E:6F:56:3D:8F:91 Authority key identifier: 18:B1:C8:8C:EE:68:F6:3C:21:CD:6A:0C:B1:B8:31:D5:D6:F5:D6:CF Certificate issuer: /CN=A91DAFA2/serialNumber=18B1C88CEE68F63C21CD6A0CB1B831D5D6F5D6CF Certificate serial: 1CB3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft Manifest number: 1CA5 Signing time: Thu 16 Apr 2026 16:07:05 +0000 Manifest this update: Thu 16 Apr 2026 16:07:05 +0000 Manifest next update: Thu 23 Apr 2026 16:07:05 +0000 Files and hashes: 1: GLHIjO5o9jwhzWoMsbgx1db11s8.crl (hash: GMRRAueWJFvaYEJOAGqXGfAwevMcunfk05qeKPobaIc=) 2: 02FB1DCAEF6A11E69A4AD551C4F9AE02.roa (hash: 2yvcCZV+pN9jEg/q9+iV+9Rfav7HZxuqjuwplpogEBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.crl rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:07:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7347 (0x1cb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DAFA2, serialNumber=18B1C88CEE68F63C21CD6A0CB1B831D5D6F5D6CF Validity Not Before: Apr 16 16:07:05 2026 GMT Not After : Apr 23 16:07:05 2026 GMT Subject: CN=69e10929-d185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:61:78:79:df:ba:a2:5b:62:a3:a3:e3:72:c8: b6:73:7d:a4:d6:3e:23:71:0f:44:95:fa:0a:9e:68: 0f:6c:4c:02:1f:3c:96:b0:4f:da:04:bf:c8:59:4d: d6:b6:a9:e4:a7:b9:fc:4f:9a:39:61:4c:4a:ac:83: 8a:0c:75:37:2a:f1:5d:cc:11:b8:59:27:82:b7:3d: 0f:39:a7:db:11:d5:e2:c1:21:61:7e:b6:85:18:b3: a5:ac:84:a0:05:16:47:89:a9:42:c6:6e:3a:ed:d3: 1f:fb:41:6b:44:bf:fd:07:a3:45:f1:49:fa:20:a1: fb:72:21:f4:4e:d1:5b:e4:13:4a:33:b6:c1:ce:22: 2a:43:cb:5c:c4:8d:69:27:4c:a9:4e:fe:3b:e4:00: c6:74:70:a0:4c:88:03:ed:7f:75:e2:88:43:08:12: 6b:d6:3e:de:7b:2e:b6:20:b4:96:05:7b:02:e6:c1: 0c:2b:71:fd:96:ce:45:59:9d:26:c1:e7:6c:0f:b3: 41:0f:26:6e:1f:4a:5c:9d:f7:a6:8f:48:37:0b:ba: 56:4b:92:33:62:20:79:2b:1d:bf:6f:3e:6e:92:fe: ec:ad:66:6e:6f:5e:5c:b9:70:63:c2:72:d7:61:b3: 2b:84:7f:d5:d6:4a:c7:39:7f:f7:40:9a:83:cb:cf: 25:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:FF:F3:33:12:85:2A:57:20:2B:19:4C:78:A1:1E:6F:56:3D:8F:91 X509v3 Authority Key Identifier: keyid:18:B1:C8:8C:EE:68:F6:3C:21:CD:6A:0C:B1:B8:31:D5:D6:F5:D6:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:00:ed:d4:9f:ff:2e:97:8a:fb:a7:25:9f:71:e5:31:33:bd: 40:6f:a1:23:81:70:a4:02:62:05:eb:c4:b3:1e:9b:80:6f:cf: 65:b7:46:5b:61:2c:4d:ec:f3:b2:59:1b:81:74:8a:fd:4d:db: 70:df:80:09:bc:55:ab:63:dd:09:88:20:62:d9:4c:54:fb:bb: ac:ba:c1:3b:fc:bf:82:f1:20:61:f7:54:00:3a:4a:ed:7a:1c: 71:d3:5b:07:ad:54:c0:06:5e:a8:04:7d:43:6a:a2:40:58:99: 49:ff:88:eb:22:94:a7:bf:02:8c:2f:61:1b:62:25:e6:ce:30: 6b:1d:4a:e2:57:f9:19:3d:94:c8:dd:e4:81:42:71:49:a2:fd: ce:8c:7b:f7:00:80:09:90:92:a8:21:33:a5:9c:4f:3b:58:eb: 81:fd:72:bf:b8:ba:58:28:53:13:84:c1:4b:19:1e:71:57:34: ad:a9:86:7d:1c:e4:37:5b:a9:0b:04:e1:a0:47:b1:78:ea:9e: 0a:d8:f6:90:c2:5b:3b:e8:b2:34:3a:75:57:63:7c:e5:4f:38: 04:d4:61:b6:ed:8d:07:25:d7:c2:78:e3:ff:25:9a:78:db:25: e6:41:b3:24:fa:37:51:44:00:53:9c:ee:de:6d:5d:49:f9:fc: a0:45:49:20 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REFGQTIxMTAvBgNVBAUTKDE4QjFDODhDRUU2OEY2M0MyMUNENkEwQ0IxQjgzMUQ1 RDZGNUQ2Q0YwHhcNMjYwNDE2MTYwNzA1WhcNMjYwNDIzMTYwNzA1WjAYMRYwFAYD VQQDEw02OWUxMDkyOS1kMTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWF4ed+6oltio6Pjcsi2c32k1j4jcQ9ElfoKnmgPbEwCHzyWsE/aBL/IWU3W tqnkp7n8T5o5YUxKrIOKDHU3KvFdzBG4WSeCtz0POafbEdXiwSFhfraFGLOlrISg BRZHialCxm467dMf+0FrRL/9B6NF8Un6IKH7ciH0TtFb5BNKM7bBziIqQ8tcxI1p J0ypTv475ADGdHCgTIgD7X914ohDCBJr1j7eey62ILSWBXsC5sEMK3H9ls5FWZ0m wedsD7NBDyZuH0pcnfemj0g3C7pWS5IzYiB5Kx2/bz5ukv7srWZub15cuXBjwnLX YbMrhH/V1krHOX/3QJqDy88l+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFD/8zMS hSpXICsZTHihHm9WPY+RMB8GA1UdIwQYMBaAFBixyIzuaPY8Ic1qDLG4MdXW9dbP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQUZBMi9CN0I2Nzc2MEVG NjkxMUU2QkQ3M0M2NTFDNEY5QUUwMi9HTEhJak81bzlqd2h6V29Nc2JneDFkYjEx czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dMSElqTzVvOWp3aHpXb01zYmd4MWRiMTFzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QUZBMi9CN0I2Nzc2MEVGNjkxMUU2QkQ3M0M2NTFDNEY5QUUwMi9HTEhJak81bzlq d2h6V29Nc2JneDFkYjExczgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXQDt1J//LpeK+6cln3HlMTO9QG+hI4FwpAJiBevEsx6bgG/PZbdGW2EsTezz slkbgXSK/U3bcN+ACbxVq2PdCYggYtlMVPu7rLrBO/y/gvEgYfdUADpK7XoccdNb B61UwAZeqAR9Q2qiQFiZSf+I6yKUp78CjC9hG2Il5s4wax1K4lf5GT2UyN3kgUJx SaL9zox79wCACZCSqCEzpZxPO1jrgf1yv7i6WChTE4TBSxkecVc0ramGfRzkN1up CwThoEexeOqeCtj2kMJbO+iyNDp1V2N85U84BNRhtu2NByXXwnjj/yWaeNsl5kGz JPo3UUQAU5zu3m1dSfn8oEVJIA== -----END CERTIFICATE-----Generated at Fri Apr 17 11:33:54 2026 by rpki-client