$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft File: GHotNbr5BXwPC40mLS5dYiajI4I.mft (raw, json) Hash identifier: G/uNtHEVunUu1f0AUruLxKf9TJQNMNipzNWr0oFvBZQ= Subject key identifier: 3D:EC:91:E0:DB:F5:F0:0C:9F:90:75:5D:A0:FD:3D:F4:F8:5F:F9:09 Authority key identifier: 18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 Certificate issuer: /CN=A91FD1C3/serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft Manifest number: 0209 Signing time: Sat 13 Jun 2026 03:07:19 +0000 Manifest this update: Sat 13 Jun 2026 03:07:19 +0000 Manifest next update: Sat 20 Jun 2026 03:07:19 +0000 Files and hashes: 1: GHotNbr5BXwPC40mLS5dYiajI4I.crl (hash: jBV5IdwvoqHX9e53BQZTJlCXykptIMLbiW81ypjEtdE=) 2: 5773966456D011EE9C8F8C56C4F9AE02.roa (hash: V94XCH+V6AH+/jsR1uuPC4R2sBLnX4SmOxfv0adXwxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD1C3, serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Validity Not Before: Jun 13 03:07:19 2026 GMT Not After : Jun 20 03:07:19 2026 GMT Subject: CN=6a2cc967-c211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:40:7a:6f:d4:1e:46:cc:82:0c:f4:f6:b1:4f: 5e:6d:28:30:50:49:09:68:91:45:e1:3c:c9:29:62: 69:c8:ec:0f:d7:6a:a3:57:b8:7a:69:7c:53:35:9b: 4c:c0:94:a6:b6:96:60:e8:ed:e6:28:ee:de:d5:c7: 8f:c4:30:7f:c8:cb:19:dd:d1:bc:c3:7a:5c:32:d8: b8:d5:6b:8d:bb:91:bd:60:5c:6f:c2:7d:02:f1:bb: a5:af:e1:cc:a8:51:be:77:60:55:7d:5c:e9:69:ce: 90:74:df:eb:b5:aa:38:9f:30:7b:4c:a1:6b:f6:26: 90:39:4e:2b:06:66:05:56:e3:a3:d7:6b:ff:dc:e1: 9c:95:75:5c:2d:50:d1:bc:7f:ed:ff:9f:2d:0a:b5: a8:cc:58:5a:8a:12:25:4c:14:21:f8:6c:8c:fd:fe: 86:b1:cd:29:9c:fe:d8:4e:64:f8:01:e8:5a:19:54: a1:36:ed:44:5e:1e:57:a1:13:eb:92:19:c3:7a:ef: 78:9f:d2:ce:01:33:d5:8d:a3:df:a1:5c:ff:39:c3: 0d:9d:6c:16:e4:ff:37:59:cf:a6:30:30:b9:41:fc: 18:6c:5c:4c:80:b8:94:df:d0:32:89:d1:d3:7b:e6: f6:23:49:84:4b:48:c8:3b:eb:26:45:34:2c:20:fa: 6b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:EC:91:E0:DB:F5:F0:0C:9F:90:75:5D:A0:FD:3D:F4:F8:5F:F9:09 X509v3 Authority Key Identifier: keyid:18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:4b:cd:1a:5c:15:3e:2a:48:96:bc:74:20:65:aa:e1:d9:81: 8b:2e:d7:c6:d7:84:ec:13:9e:d4:3f:d5:70:67:c2:a3:ea:05: 94:96:9e:a6:66:7c:a2:d0:77:05:c2:f4:b7:01:0b:69:cb:23: 29:13:64:0c:bd:0c:44:48:c5:98:d3:d1:7c:61:45:8d:97:1f: 4f:45:ae:31:a8:97:85:20:af:c0:7e:4d:bf:77:91:00:72:5d: 9b:75:35:2e:1b:89:cf:fa:af:00:d5:69:7f:a5:aa:cb:de:97: cd:93:b4:3d:f5:c1:4f:b4:86:40:c4:27:04:7b:4e:d7:80:2d: 7e:f7:6a:54:9b:94:c6:78:fa:7c:59:dd:0c:78:c4:45:11:17: d8:0a:ba:e0:29:e6:b2:e3:9c:b8:35:4c:73:c8:aa:6b:04:7d: b2:7b:9d:40:ad:f5:93:9f:0a:ae:5c:11:3c:70:32:15:8b:26: b6:e6:b1:3a:05:63:6b:58:89:d8:71:b2:aa:8b:68:c5:8b:b0: 11:a2:c7:5f:da:f0:71:43:e4:25:12:61:05:66:8a:4e:0e:1f: 4a:30:3f:f3:df:f3:6e:79:64:e0:62:8a:9e:9f:42:12:0f:e7: c2:14:4b:39:00:38:e4:3d:7a:91:29:8e:76:63:03:7d:68:74: 59:8d:42:d6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQxQzMxMTAvBgNVBAUTKDE4N0EyRDM1QkFGOTA1N0MwRjBCOEQyNjJEMkU1RDYy MjZBMzIzODIwHhcNMjYwNjEzMDMwNzE5WhcNMjYwNjIwMDMwNzE5WjAYMRYwFAYD VQQDEw02YTJjYzk2Ny1jMjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskB6b9QeRsyCDPT2sU9ebSgwUEkJaJFF4TzJKWJpyOwP12qjV7h6aXxTNZtM wJSmtpZg6O3mKO7e1cePxDB/yMsZ3dG8w3pcMti41WuNu5G9YFxvwn0C8bulr+HM qFG+d2BVfVzpac6QdN/rtao4nzB7TKFr9iaQOU4rBmYFVuOj12v/3OGclXVcLVDR vH/t/58tCrWozFhaihIlTBQh+GyM/f6Gsc0pnP7YTmT4AehaGVShNu1EXh5XoRPr khnDeu94n9LOATPVjaPfoVz/OcMNnWwW5P83Wc+mMDC5QfwYbFxMgLiU39AyidHT e+b2I0mES0jIO+smRTQsIPprfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD3skeDb 9fAMn5B1XaD9PfT4X/kJMB8GA1UdIwQYMBaAFBh6LTW6+QV8DwuNJi0uXWImoyOC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDFDMy9GQjcxQzU2NjU2 Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJYd1BDNDBtTFM1ZFlpYWpJ NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dIb3ROYnI1Qlh3UEM0MG1MUzVkWWlhakk0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDFDMy9GQjcxQzU2NjU2Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJY d1BDNDBtTFM1ZFlpYWpJNEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnEvNGlwVPipIlrx0IGWq4dmBiy7XxteE7BOe1D/VcGfCo+oFlJaepmZ8otB3 BcL0twELacsjKRNkDL0MREjFmNPRfGFFjZcfT0WuMaiXhSCvwH5Nv3eRAHJdm3U1 LhuJz/qvANVpf6Wqy96XzZO0PfXBT7SGQMQnBHtO14AtfvdqVJuUxnj6fFndDHjE RREX2Aq64CnmsuOcuDVMc8iqawR9snudQK31k58KrlwRPHAyFYsmtuaxOgVja1iJ 2HGyqotoxYuwEaLHX9rwcUPkJRJhBWaKTg4fSjA/89/zbnlk4GKKnp9CEg/nwhRL OQA45D16kSmOdmMDfWh0WY1C1g== -----END CERTIFICATE-----Generated at Sat Jun 13 09:31:21 2026 by rpki-client