$ rpki-client -vvf rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft File: ghhST3oWtYwNm3OUAxk5fuT8pv0.mft (raw, json) Hash identifier: ezL6rrzNBhfmfKn1uBCcruZevsHZg4u/X2reUYuJTBc= Subject key identifier: 17:BC:A5:4E:ED:D4:1C:F2:39:5B:5D:AA:F1:66:44:D8:18:A9:E0:4A Authority key identifier: 82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD Certificate issuer: /CN=A9179EE2/serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Certificate serial: 0886 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft Manifest number: 0868 Signing time: Tue 24 Mar 2026 20:28:05 +0000 Manifest this update: Tue 24 Mar 2026 20:28:04 +0000 Manifest next update: Tue 31 Mar 2026 20:28:04 +0000 Files and hashes: 1: ghhST3oWtYwNm3OUAxk5fuT8pv0.crl (hash: 5+AfPURhxbG/8nIGQ5wOOv3hV95JiiCdEnuJpvemJdM=) 2: FD10505CC75011EFBA3D195BC4F9AE02.roa (hash: o4pPobBwjt8OFkaZBIgV8zZzFKBhPJBPQIzcgJ7nHNM=) 3: 81E94F18F57311EA86849119C4F9AE02.roa (hash: o7hslMVigOY231eahjNEQ0NYOJaFI9mq6NC5ziX7dQc=) 4: 816A256CF57311EA86849119C4F9AE02.roa (hash: 0r9XfnUOK88lrdHrVj5W9qn3Uab5Rf0RHHQdbv15M8Q=) 5: 431106B2125611ED9FB5292EC4F9AE02.roa (hash: HC1HlngI6XYoexa+iP3Lsv/hSItkWBl0CdvwYSY1Yh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:28:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2182 (0x886) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179EE2, serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Validity Not Before: Mar 24 20:28:04 2026 GMT Not After : Mar 31 20:28:04 2026 GMT Subject: CN=69c2f3d5-7bad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:38:7a:c0:b0:9e:c5:ea:92:e7:89:f8:39:6a: 71:21:1e:9b:53:bc:44:33:34:79:f1:8e:30:0c:6f: f7:e9:4d:7e:b7:1f:33:82:d1:a0:bd:58:29:90:8e: 2e:fa:9c:28:25:da:b3:27:77:73:8e:c3:d5:d0:62: ed:da:1b:9c:70:23:2d:46:6e:9c:d3:17:17:57:de: 91:c1:76:4b:8d:0a:3c:b5:b6:23:0e:09:52:ed:b0: c5:f0:a7:f8:38:74:8d:09:2c:5f:f3:ee:03:85:6d: 74:aa:89:c2:d7:bd:f2:4f:51:1d:0e:7b:a5:40:6c: bb:db:19:2f:60:2a:30:56:48:34:b6:f1:a4:71:95: ad:97:eb:a0:b1:86:4c:a5:44:8f:fb:86:6c:63:83: 15:46:e5:bd:31:05:36:94:6f:f0:2b:dc:df:f4:66: b8:06:e9:33:79:8e:50:66:4f:7f:54:d8:7e:b1:87: 39:29:72:40:a7:8b:cf:f1:f3:90:ab:ae:3d:48:52: 90:dc:8b:34:91:13:42:ef:ca:27:21:2f:a3:67:7f: 42:eb:04:8d:d6:9f:c4:38:c4:be:ae:71:da:84:54: 73:3c:dc:6b:d5:6a:f0:03:1e:2f:00:c1:81:9f:bf: 94:8d:12:f3:e2:04:62:f3:55:77:8a:d9:8f:85:f0: 58:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:BC:A5:4E:ED:D4:1C:F2:39:5B:5D:AA:F1:66:44:D8:18:A9:E0:4A X509v3 Authority Key Identifier: keyid:82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:17:0d:a3:43:d2:fe:95:c2:0d:5f:31:b7:3a:6b:75:b3:99: 50:a3:06:21:45:26:7e:ed:db:89:e6:96:a2:c3:8e:07:d8:5b: 13:32:b4:ec:18:d4:37:b7:81:5d:17:a8:48:2f:ef:b1:d4:1f: 22:e8:16:50:a3:cc:f1:68:dc:3d:91:59:a7:f9:e3:6d:ff:13: 6b:be:28:52:ab:a9:e7:4c:14:5d:18:58:d0:c7:6d:62:a0:95: 9d:65:9e:64:a8:34:b4:91:72:23:43:f6:7c:a4:30:90:5a:35: ac:ca:51:d4:58:14:20:87:a9:73:09:3e:2f:93:10:dd:ac:d9: de:a0:51:8f:9d:3b:e5:77:87:98:05:d6:06:dc:6e:e5:55:cb: fa:aa:7c:66:fa:a2:b4:a1:cb:21:d6:bd:49:cd:59:6d:b9:53: 32:a6:a6:af:8e:c5:3c:f7:c7:85:75:56:51:0c:e4:4c:48:42: f6:0f:46:2d:c4:1c:55:f1:c0:9a:d3:68:b3:84:b5:b1:e3:d9: a1:df:c6:97:06:1b:a6:59:d1:6a:69:04:f7:ac:3b:7a:dc:06: b9:f0:be:e2:d8:2f:0b:84:26:6c:8b:22:b4:20:28:7a:a7:7e: 2b:6d:eb:17:8b:e2:e9:d3:32:64:ec:80:85:a6:50:0a:c7:49: 93:d5:58:fe -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlFRTIxMTAvBgNVBAUTKDgyMTg1MjRGN0ExNkI1OEMwRDlCNzM5NDAzMTkzOTdF RTRGQ0E2RkQwHhcNMjYwMzI0MjAyODA0WhcNMjYwMzMxMjAyODA0WjAYMRYwFAYD VQQDEw02OWMyZjNkNS03YmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvzh6wLCexeqS54n4OWpxIR6bU7xEMzR58Y4wDG/36U1+tx8zgtGgvVgpkI4u +pwoJdqzJ3dzjsPV0GLt2huccCMtRm6c0xcXV96RwXZLjQo8tbYjDglS7bDF8Kf4 OHSNCSxf8+4DhW10qonC173yT1EdDnulQGy72xkvYCowVkg0tvGkcZWtl+ugsYZM pUSP+4ZsY4MVRuW9MQU2lG/wK9zf9Ga4BukzeY5QZk9/VNh+sYc5KXJAp4vP8fOQ q649SFKQ3Is0kRNC78onIS+jZ39C6wSN1p/EOMS+rnHahFRzPNxr1WrwAx4vAMGB n7+UjRLz4gRi81V3itmPhfBYWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBe8pU7t 1BzyOVtdqvFmRNgYqeBKMB8GA1UdIwQYMBaAFIIYUk96FrWMDZtzlAMZOX7k/Kb9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUVFMi8wMkIyNzM4OEY1 NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZd05tM09VQXhrNWZ1VDhw djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doaFNUM29XdFl3Tm0zT1VBeGs1ZnVUOHB2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUVFMi8wMkIyNzM4OEY1NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZ d05tM09VQXhrNWZ1VDhwdjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIBcNo0PS/pXCDV8xtzprdbOZUKMGIUUmfu3bieaWosOOB9hbEzK07BjUN7eB XReoSC/vsdQfIugWUKPM8WjcPZFZp/njbf8Ta74oUqup50wUXRhY0MdtYqCVnWWe ZKg0tJFyI0P2fKQwkFo1rMpR1FgUIIepcwk+L5MQ3azZ3qBRj5075XeHmAXWBtxu 5VXL+qp8ZvqitKHLIda9Sc1ZbblTMqamr47FPPfHhXVWUQzkTEhC9g9GLcQcVfHA mtNos4S1sePZod/GlwYbplnRamkE96w7etwGufC+4tgvC4QmbIsitCAoeqd+K23r F4vi6dMyZOyAhaZQCsdJk9VY/g== -----END CERTIFICATE-----Generated at Thu Mar 26 13:00:21 2026 by rpki-client