$ rpki-client -vvf rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft File: ggCxpefBdgW1czx0_sHvEnOz6iU.mft (raw, json) Hash identifier: mkudmQ8wIxyonp2t+oJTZ5czmhHbBu1t0dW4TAoDXJ8= Subject key identifier: A4:7D:2F:12:6B:FC:DE:2C:E1:F2:2F:30:EE:2D:40:D6:4B:6B:B6:8A Authority key identifier: 82:00:B1:A5:E7:C1:76:05:B5:73:3C:74:FE:C1:EF:12:73:B3:EA:25 Certificate issuer: /CN=A911AD0C/serialNumber=8200B1A5E7C17605B5733C74FEC1EF1273B3EA25 Certificate serial: 351B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggCxpefBdgW1czx0_sHvEnOz6iU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft Manifest number: 351B Signing time: Tue 24 Mar 2026 15:15:00 +0000 Manifest this update: Tue 24 Mar 2026 15:15:00 +0000 Manifest next update: Tue 31 Mar 2026 15:15:00 +0000 Files and hashes: 1: ggCxpefBdgW1czx0_sHvEnOz6iU.crl (hash: pRYlcZbG+rSJbnBr/l46PoBpwrP8TyABj2Shq3KEyJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.crl rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggCxpefBdgW1czx0_sHvEnOz6iU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:14:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13595 (0x351b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AD0C, serialNumber=8200B1A5E7C17605B5733C74FEC1EF1273B3EA25 Validity Not Before: Mar 24 15:15:00 2026 GMT Not After : Mar 31 15:15:00 2026 GMT Subject: CN=69c2aa74-de61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a3:a5:ed:ce:a3:3b:9b:44:f8:c1:e4:9e:cc: 36:26:0c:42:43:14:1b:99:ee:7a:ac:71:97:e4:f7: 5d:40:11:39:ab:b7:f8:b7:5e:15:93:20:dc:cc:17: 4c:5a:3e:d1:06:9d:16:5f:3a:20:f4:df:e8:83:5a: fb:95:39:87:1d:13:b5:c3:73:9d:15:79:62:e9:cf: 06:20:64:b0:b6:f6:67:39:60:b5:6d:0c:2b:7e:80: 49:b2:06:02:82:c6:d2:b7:b1:8a:c6:31:89:79:bd: 7d:89:11:ab:39:30:57:93:a4:ce:63:fe:21:4c:46: 85:30:58:18:6c:10:25:74:b1:c7:1d:d0:81:06:d8: a5:35:ef:37:1e:5e:cb:0d:ce:42:12:a9:8c:5d:71: 08:67:1d:62:70:25:a1:6b:07:21:6f:05:80:7a:5d: b0:6a:22:4d:4b:51:b1:b8:28:a9:2f:2f:0e:72:be: d5:43:c6:8f:40:59:aa:ad:f1:e5:91:57:05:8a:8f: 1f:4c:f4:5e:6f:4e:83:a1:26:eb:8f:8d:e7:2d:f1: 46:85:30:35:f1:ec:49:00:1b:4a:60:4e:5c:94:7b: 48:cc:7e:03:ca:f4:ae:50:de:05:a6:92:55:2e:10: 66:43:85:b1:18:c0:09:45:da:db:0e:93:4b:1f:ee: 69:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:7D:2F:12:6B:FC:DE:2C:E1:F2:2F:30:EE:2D:40:D6:4B:6B:B6:8A X509v3 Authority Key Identifier: keyid:82:00:B1:A5:E7:C1:76:05:B5:73:3C:74:FE:C1:EF:12:73:B3:EA:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggCxpefBdgW1czx0_sHvEnOz6iU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:e7:9a:7b:d4:d5:f5:27:23:c9:07:02:d4:a5:a4:04:02:01: ff:f0:80:e2:82:8b:66:df:0b:82:d0:e6:a4:4d:8d:9c:2d:68: 38:e8:2a:47:78:97:be:ef:19:3f:16:5b:50:8e:e1:f2:cb:1c: 99:45:82:89:70:ad:58:46:09:d5:3e:11:f2:1e:f9:dd:b6:38: a1:18:e0:d1:f8:0e:9b:59:00:30:09:88:fa:c8:a6:69:e8:b8: 0a:cc:2f:bd:02:e6:f0:66:ef:98:76:d2:4a:14:f1:fe:81:b6: 10:33:03:0d:da:eb:42:42:e2:8a:3c:e3:39:07:19:66:ad:ba: fa:af:a8:a2:f6:e4:70:60:7f:9e:5f:21:9b:c1:50:8e:ea:31: 8d:16:61:8d:4d:82:d4:07:1d:b9:ee:99:d1:fe:49:8a:b9:df: 5f:72:1e:da:b6:67:5b:2c:00:1a:7c:10:6c:0f:71:e3:b4:39: 3f:59:98:fe:88:06:15:74:aa:e8:d1:e1:51:f2:03:a0:d1:4e: d1:d3:14:3f:f8:fb:9f:97:f0:e7:ad:74:d2:e2:83:17:cd:6f: 1d:ae:58:a9:3a:88:b2:0d:df:47:49:8a:35:2c:0f:3d:fb:a3: f1:25:71:75:b1:50:c9:ee:f0:a7:05:90:42:77:53:45:86:94: 0c:21:4c:64 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFEMEMxMTAvBgNVBAUTKDgyMDBCMUE1RTdDMTc2MDVCNTczM0M3NEZFQzFFRjEy NzNCM0VBMjUwHhcNMjYwMzI0MTUxNTAwWhcNMjYwMzMxMTUxNTAwWjAYMRYwFAYD VQQDEw02OWMyYWE3NC1kZTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0KOl7c6jO5tE+MHknsw2JgxCQxQbme56rHGX5PddQBE5q7f4t14VkyDczBdM Wj7RBp0WXzog9N/og1r7lTmHHRO1w3OdFXli6c8GIGSwtvZnOWC1bQwrfoBJsgYC gsbSt7GKxjGJeb19iRGrOTBXk6TOY/4hTEaFMFgYbBAldLHHHdCBBtilNe83Hl7L Dc5CEqmMXXEIZx1icCWhawchbwWAel2waiJNS1GxuCipLy8Ocr7VQ8aPQFmqrfHl kVcFio8fTPReb06DoSbrj43nLfFGhTA18exJABtKYE5clHtIzH4DyvSuUN4FppJV LhBmQ4WxGMAJRdrbDpNLH+5p/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKR9LxJr /N4s4fIvMO4tQNZLa7aKMB8GA1UdIwQYMBaAFIIAsaXnwXYFtXM8dP7B7xJzs+ol MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUQwQy8xQjBCMzU4RTFE QUIxMUUyOEE3RjAwQTgwOEIwMkNEMi9nZ0N4cGVmQmRnVzFjengwX3NIdkVuT3o2 aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dnQ3hwZWZCZGdXMWN6eDBfc0h2RW5PejZpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUQwQy8xQjBCMzU4RTFEQUIxMUUyOEE3RjAwQTgwOEIwMkNEMi9nZ0N4cGVmQmRn VzFjengwX3NIdkVuT3o2aVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAROeae9TV9ScjyQcC1KWkBAIB//CA4oKLZt8LgtDmpE2NnC1oOOgqR3iXvu8Z PxZbUI7h8sscmUWCiXCtWEYJ1T4R8h753bY4oRjg0fgOm1kAMAmI+simaei4Cswv vQLm8GbvmHbSShTx/oG2EDMDDdrrQkLiijzjOQcZZq26+q+oovbkcGB/nl8hm8FQ juoxjRZhjU2C1Acdue6Z0f5JirnfX3Ie2rZnWywAGnwQbA9x47Q5P1mY/ogGFXSq 6NHhUfIDoNFO0dMUP/j7n5fw56100uKDF81vHa5YqTqIsg3fR0mKNSwPPfuj8SVx dbFQye7wpwWQQndTRYaUDCFMZA== -----END CERTIFICATE-----Generated at Thu Mar 26 14:15:59 2026 by rpki-client