$ rpki-client -vvf rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft File: GJHVTO9qkMIy_KiR45n5eDhnEe4.mft (raw, json) Hash identifier: M/DA4ugxNz7XmlbD7QwzJ9vOuV03VqM5NAeAtDWxlpE= Subject key identifier: 19:93:86:4B:0F:E7:56:74:8D:DD:FB:16:4E:EA:AD:D1:5D:A6:E9:DE Authority key identifier: 18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE Certificate issuer: /CN=A9128576/serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft Manifest number: DF Signing time: Wed 25 Mar 2026 05:47:26 +0000 Manifest this update: Wed 25 Mar 2026 05:47:25 +0000 Manifest next update: Wed 01 Apr 2026 05:47:25 +0000 Files and hashes: 1: GJHVTO9qkMIy_KiR45n5eDhnEe4.crl (hash: 7e6GtrOigs8WfGvEwhLxxzPGPbFqfBndPSKTKEEkX9o=) 2: C9B06ECCD7A411EF9AB81933C4F9AE02.roa (hash: vmkU+Wc2xpDQMgPam/mAe6kA8brCuJz9cHHqu3MmaNY=) 3: C8BFCD96D7A411EF9AB81933C4F9AE02.roa (hash: n/hyIjFqCJzOht5Ju7CI7zedjM3U4KBE15I93wtTvdI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:47:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128576, serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE Validity Not Before: Mar 25 05:47:25 2026 GMT Not After : Apr 1 05:47:25 2026 GMT Subject: CN=69c376ee-9b37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:8b:63:ab:91:02:c9:78:30:6b:47:5e:cc:82: 01:ee:84:5e:9a:7f:3f:c5:53:6b:bb:4b:71:d8:f7: d0:8d:9a:df:18:e3:4a:f7:2e:2c:c3:7b:b4:ca:67: 25:57:4b:9c:e6:47:61:9c:4e:29:fb:7d:db:03:42: fe:e0:66:71:67:90:c8:6f:0c:c7:cb:4e:75:3f:38: c9:7a:5d:2f:26:18:c5:3b:72:13:20:c3:c2:a6:83: 99:ad:d8:1f:fd:ee:e2:1e:b5:31:61:c1:d6:7b:85: 55:3f:18:4a:18:5b:b1:a7:1b:65:8e:d1:3a:b4:8c: 3d:3b:94:ee:6e:64:40:9e:1c:a8:05:44:3c:3f:f3: e7:d9:73:d6:64:9e:ca:70:d1:07:5a:61:67:1e:4e: 0d:d1:3c:07:9b:39:83:3a:2c:fb:cc:c2:69:10:35: 2a:95:e0:d2:73:3d:d0:81:1b:74:06:67:6c:c7:ee: 81:60:bb:3c:d7:b2:10:76:40:fb:06:55:a2:d9:58: ef:fc:89:fe:4e:ac:21:77:1a:13:6e:65:a5:48:1b: e2:15:da:21:b3:91:a5:ca:83:54:f1:77:11:61:1c: 4e:79:5a:c1:66:a9:c1:9e:ff:f6:a6:c3:c3:61:50: 4f:78:d4:8d:5a:36:b3:42:6d:09:66:2a:41:91:35: f8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:93:86:4B:0F:E7:56:74:8D:DD:FB:16:4E:EA:AD:D1:5D:A6:E9:DE X509v3 Authority Key Identifier: keyid:18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:e0:ce:ed:8c:22:88:2a:77:a6:a5:0e:55:bf:77:e0:61:96: 73:34:40:d1:0f:1d:fe:f3:41:b3:f0:5a:0f:dc:5c:02:aa:df: cb:b1:2c:92:00:c3:be:b2:43:a6:2e:3c:41:ab:ca:7f:b7:b1: 49:f6:6e:1a:e8:7e:82:83:31:fe:82:eb:f0:09:a2:ff:dd:6b: 77:75:60:90:fe:14:19:fc:ea:64:2f:31:b8:80:19:51:2a:dc: 2d:bd:05:03:56:16:39:ef:e0:94:5b:95:2c:b8:c5:e8:71:f3: 5e:85:8d:98:22:47:b9:85:65:a7:a7:79:bb:be:13:54:92:b0: cd:95:c9:9c:cc:04:8d:2a:df:74:b1:d4:57:aa:d8:8a:41:f3: da:11:18:bd:5a:37:7d:30:96:1b:13:d8:28:12:12:19:4c:a2: 0e:fc:e4:6d:66:18:9c:6c:91:58:4a:a9:24:f4:f7:48:ec:26: c8:7c:95:0a:1a:dd:21:d7:81:43:74:97:3b:6b:40:34:40:2f: fb:56:48:ec:fc:d3:d5:15:42:99:e6:68:17:13:34:8e:b9:fa: 02:21:cf:3c:40:c7:6c:0b:4a:35:6f:59:0a:54:3e:83:59:f5: 02:2f:8e:61:ce:67:40:5e:b2:86:84:ca:e9:9c:34:dc:31:3b: b8:5a:14:d9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1NzYxMTAvBgNVBAUTKDE4OTFENTRDRUY2QTkwQzIzMkZDQTg5MUUzOTlGOTc4 Mzg2NzExRUUwHhcNMjYwMzI1MDU0NzI1WhcNMjYwNDAxMDU0NzI1WjAYMRYwFAYD VQQDEw02OWMzNzZlZS05YjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Ytjq5ECyXgwa0dezIIB7oRemn8/xVNru0tx2PfQjZrfGONK9y4sw3u0ymcl V0uc5kdhnE4p+33bA0L+4GZxZ5DIbwzHy051PzjJel0vJhjFO3ITIMPCpoOZrdgf /e7iHrUxYcHWe4VVPxhKGFuxpxtljtE6tIw9O5TubmRAnhyoBUQ8P/Pn2XPWZJ7K cNEHWmFnHk4N0TwHmzmDOiz7zMJpEDUqleDScz3QgRt0Bmdsx+6BYLs817IQdkD7 BlWi2Vjv/In+TqwhdxoTbmWlSBviFdohs5GlyoNU8XcRYRxOeVrBZqnBnv/2psPD YVBPeNSNWjazQm0JZipBkTX4BQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBmThksP 51Z0jd37Fk7qrdFdpuneMB8GA1UdIwQYMBaAFBiR1UzvapDCMvyokeOZ+Xg4ZxHu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODU3Ni8yREU5NEE5QUQ3 QTQxMUVGOTY0RDZEN0NDNEY5QUUwMi9HSkhWVE85cWtNSXlfS2lSNDVuNWVEaG5F ZTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dKSFZUTzlxa01JeV9LaVI0NW41ZURobkVlNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODU3Ni8yREU5NEE5QUQ3QTQxMUVGOTY0RDZEN0NDNEY5QUUwMi9HSkhWVE85cWtN SXlfS2lSNDVuNWVEaG5FZTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZ+DO7YwiiCp3pqUOVb934GGWczRA0Q8d/vNBs/BaD9xcAqrfy7EskgDDvrJD pi48QavKf7exSfZuGuh+goMx/oLr8Ami/91rd3VgkP4UGfzqZC8xuIAZUSrcLb0F A1YWOe/glFuVLLjF6HHzXoWNmCJHuYVlp6d5u74TVJKwzZXJnMwEjSrfdLHUV6rY ikHz2hEYvVo3fTCWGxPYKBISGUyiDvzkbWYYnGyRWEqpJPT3SOwmyHyVChrdIdeB Q3SXO2tANEAv+1ZI7PzT1RVCmeZoFxM0jrn6AiHPPEDHbAtKNW9ZClQ+g1n1Ai+O Yc5nQF6yhoTK6Zw03DE7uFoU2Q== -----END CERTIFICATE-----Generated at Thu Mar 26 16:43:42 2026 by rpki-client