$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft File: GxesPclsojRSUCPv02J-ks2IR0g.mft (raw, json) Hash identifier: MHmlDa+go83yqMjxllE/8vIBKamLLQAMMTdFjSvpAVw= Subject key identifier: C4:88:82:A4:7E:02:6A:0A:93:F9:0C:20:97:7D:63:BD:A2:36:55:7F Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1DEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft Manifest number: 1D96 Signing time: Tue 24 Mar 2026 16:03:00 +0000 Manifest this update: Tue 24 Mar 2026 16:03:00 +0000 Manifest next update: Tue 31 Mar 2026 16:03:00 +0000 Files and hashes: 1: GxesPclsojRSUCPv02J-ks2IR0g.crl (hash: Rjrviq7nLKOgBXGuCs962n2FzEgKULPaBCvBo55RP2E=) 2: 89654CDAB83B11EFAA80DD09C4F9AE02.roa (hash: Y2B9BXK6GgEUgrdOgkuvUr+OvwRamCav5yIYFYLKyOo=) 3: 4D609E86FF3B11EB910E8847C4F9AE02.roa (hash: WhkLj0w45a5YtVE3jvzrZ8Dxr8O2vOWWoHPkacPIXzA=) 4: 8A1AF86E94BC11EC9E49DB41C4F9AE02.roa (hash: YuvkBqlEeFCoXBaOZasT0zM29UlrwmymL5NE2blVSiE=) 5: 4E2669F4FF3B11EB910E8847C4F9AE02.roa (hash: hsIMVES/RshZRMg/IYSKfaC8xNA1Vhhbh6ui/TW2WWo=) 6: C154DA14E85C11EBA2171A25C4F9AE02.roa (hash: IPxwuDAs+rs/dWI7IwZQIjs7sZfbx/rQmmj734bJ2/s=) 7: C2EECBA0E85C11EBA2171A25C4F9AE02.roa (hash: 3ijGtnKRZtAGtvocDeUrSBYus200G7y6Dr0KE05wtXM=) 8: 907B9B20E8AD11EBAA895D0AC4F9AE02.roa (hash: BRkeotXr+WaPofrhA/ccsuUEV0af6klyrqasow7IzzQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:02:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7658 (0x1dea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2, serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Validity Not Before: Mar 24 16:03:00 2026 GMT Not After : Mar 31 16:03:00 2026 GMT Subject: CN=69c2b5b4-e510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:26:cf:27:11:76:96:1d:88:72:fb:40:42:7d: 90:1d:a1:88:5c:51:bf:77:04:60:93:ea:1e:0c:5e: 1d:ea:e6:c7:fa:4c:80:b5:aa:5a:ca:75:ee:54:fe: 69:62:04:94:e2:74:16:30:a2:77:75:89:14:22:ea: 58:0a:0c:8e:5e:48:ce:32:e1:98:ec:ac:06:a2:c5: 39:6c:80:d5:69:84:43:ef:61:63:46:0b:fc:b8:db: 09:9e:87:5d:2e:6d:02:d6:ed:99:15:fa:49:60:03: 36:2b:0e:fe:6a:dd:43:5c:e7:1f:63:bf:bd:df:87: 29:61:3e:53:be:39:ac:a7:a6:30:81:61:4d:a7:45: de:ce:19:5f:e6:02:bf:09:3e:99:54:5e:aa:03:16: 42:65:b6:3a:1c:e5:a7:a5:9b:d5:25:82:10:ca:72: c2:16:51:63:f3:7f:85:99:00:d4:5f:aa:9a:70:3d: 0a:ef:dd:d6:2f:4d:54:74:98:16:6c:62:a7:f1:db: 3a:64:e6:57:0b:3c:6c:51:53:f5:4b:f5:58:ad:b0: ec:f6:37:13:4d:8a:97:0b:3b:e0:4f:95:83:a4:91: b6:96:95:b6:96:ef:72:81:51:00:f5:c0:21:12:b9: c0:9b:17:3e:de:42:1b:77:a9:80:9a:7d:20:09:9e: 34:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:88:82:A4:7E:02:6A:0A:93:F9:0C:20:97:7D:63:BD:A2:36:55:7F X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:bb:e8:44:01:6d:f1:4a:eb:9b:4e:bb:be:3b:62:cf:db:34: ae:35:f8:79:60:ad:ef:40:3b:1b:76:63:37:30:e9:b8:95:36: 11:5a:1f:6d:bd:14:16:b9:09:df:9d:69:93:4b:13:ad:df:34: 41:05:ba:df:f9:2f:92:0f:1e:c3:51:67:f5:70:ab:be:ab:65: 0e:ea:58:f0:53:2e:bc:b5:22:37:32:31:fa:74:65:be:f2:8b: 57:d6:21:73:cc:5d:5a:10:8b:14:b8:f3:2a:94:77:0d:03:e2: 35:e8:44:0d:7a:78:49:87:a9:18:04:dc:e6:83:f1:3e:af:95: b3:2d:45:10:78:98:3b:ce:23:a6:70:ac:60:99:61:a5:30:c5: cd:39:56:fc:83:67:7a:96:ea:e3:a0:d3:7e:72:94:da:59:fc: 73:18:d0:ac:c9:5b:78:43:c6:af:3d:50:69:b0:10:8f:03:6a: 04:30:61:04:5b:30:f5:a4:a7:ae:11:b2:2a:56:f6:54:c5:91: 53:1f:2e:ee:c5:5c:2e:45:b2:ed:2d:00:3b:c1:3e:43:2d:20: 1d:f8:1b:4e:ac:ce:e0:be:b8:c9:e7:8a:ec:e0:9c:32:aa:bc: e0:9f:17:8e:6d:39:71:12:cb:43:e6:f0:dd:ee:51:54:64:1d: 07:72:fa:9b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjYwMzI0MTYwMzAwWhcNMjYwMzMxMTYwMzAwWjAYMRYwFAYD VQQDEw02OWMyYjViNC1lNTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySbPJxF2lh2IcvtAQn2QHaGIXFG/dwRgk+oeDF4d6ubH+kyAtapaynXuVP5p YgSU4nQWMKJ3dYkUIupYCgyOXkjOMuGY7KwGosU5bIDVaYRD72FjRgv8uNsJnodd Lm0C1u2ZFfpJYAM2Kw7+at1DXOcfY7+934cpYT5Tvjmsp6YwgWFNp0Xezhlf5gK/ CT6ZVF6qAxZCZbY6HOWnpZvVJYIQynLCFlFj83+FmQDUX6qacD0K793WL01UdJgW bGKn8ds6ZOZXCzxsUVP1S/VYrbDs9jcTTYqXCzvgT5WDpJG2lpW2lu9ygVEA9cAh ErnAmxc+3kIbd6mAmn0gCZ404wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMSIgqR+ AmoKk/kMIJd9Y72iNlV/MB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REJGMi9FMzQ0NTAxNkMyRjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29q UlNVQ1B2MDJKLWtzMklSMGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhLvoRAFt8Urrm067vjtiz9s0rjX4eWCt70A7G3ZjNzDpuJU2EVofbb0UFrkJ 351pk0sTrd80QQW63/kvkg8ew1Fn9XCrvqtlDupY8FMuvLUiNzIx+nRlvvKLV9Yh c8xdWhCLFLjzKpR3DQPiNehEDXp4SYepGATc5oPxPq+Vsy1FEHiYO84jpnCsYJlh pTDFzTlW/INnepbq46DTfnKU2ln8cxjQrMlbeEPGrz1QabAQjwNqBDBhBFsw9aSn rhGyKlb2VMWRUx8u7sVcLkWy7S0AO8E+Qy0gHfgbTqzO4L64yeeK7OCcMqq84J8X jm05cRLLQ+bw3e5RVGQdB3L6mw== -----END CERTIFICATE-----Generated at Thu Mar 26 09:52:32 2026 by rpki-client