$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft File: ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft (raw, json) Hash identifier: FSLNvKm63dn4duKnjbCeYMzXY9Aflqsu9TWFBkw861I= Subject key identifier: C4:14:73:A3:F4:F4:E4:9B:09:9D:67:EE:B1:EA:22:04:98:BB:0F:66 Authority key identifier: 82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 Certificate issuer: /CN=A91AC777/serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Certificate serial: 06AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft Manifest number: 06A7 Signing time: Thu 26 Mar 2026 22:15:01 +0000 Manifest this update: Thu 26 Mar 2026 22:15:01 +0000 Manifest next update: Thu 02 Apr 2026 22:15:01 +0000 Files and hashes: 1: ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl (hash: YsBsytwxXYYLTOxX5z9BiqyO6RaLCWJrR9iWfdwKhf8=) 2: 92967BBA78F811ECAF1C286CC4F9AE02.roa (hash: UY+TW+CakUK70O+dQl4u0u6QBrf7eGpruH497eDdUvM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 22:15:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1709 (0x6ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC777, serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Validity Not Before: Mar 26 22:15:01 2026 GMT Not After : Apr 2 22:15:01 2026 GMT Subject: CN=69c5afe5-ff84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b7:92:a8:bc:0d:b4:6a:2f:09:da:51:22:0d: 34:d4:a8:a9:7d:e1:ec:3c:18:55:2e:80:53:66:f3: 43:6a:8e:6d:ae:46:4a:60:ae:9b:7e:8a:d2:de:a6: 00:98:13:27:3a:88:45:fe:34:54:8e:f6:b2:a8:ad: 37:91:92:30:d2:cc:44:fd:93:b6:b3:c4:5e:07:4c: 8c:9d:17:56:f1:d0:fe:9c:75:32:36:e4:b2:48:ed: ef:24:d1:c3:18:35:25:58:da:0a:12:c6:1e:b2:cc: af:98:2a:b9:44:29:01:ad:e8:63:6b:d5:a1:b5:cc: 73:0b:26:97:53:9e:66:e8:38:d9:75:b8:fc:b2:89: d0:51:68:80:50:53:93:9e:bd:28:39:ff:ad:6d:f0: 80:d8:05:7b:4c:bb:52:b5:f5:0d:ec:5e:5a:5b:ec: 18:f3:bd:c0:0f:68:42:74:e5:cb:96:be:85:00:18: 42:3b:2c:28:6e:2f:0a:39:35:5b:35:fc:eb:64:e7: 3a:7d:67:7a:da:82:fa:38:2a:85:f9:ca:b8:46:69: b6:07:54:92:e4:3a:73:66:a8:99:60:69:75:d6:0a: 99:ef:ff:aa:09:aa:3a:29:25:a6:01:8f:92:dd:ce: b7:35:b2:41:89:5b:00:40:c2:d6:2b:bd:2d:ad:ff: 7b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:14:73:A3:F4:F4:E4:9B:09:9D:67:EE:B1:EA:22:04:98:BB:0F:66 X509v3 Authority Key Identifier: keyid:82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:d8:be:39:3c:a3:92:99:09:bb:dc:50:3c:6a:0c:f3:18:4b: b6:3e:52:00:69:cb:a8:47:96:6d:3c:1f:89:cf:2b:2d:e8:32: f8:5f:35:97:01:b5:45:41:09:0a:dc:4d:88:59:ce:6c:5d:0c: 8d:09:c9:0d:c4:4c:2e:1a:49:6f:47:c6:7e:86:59:eb:1c:d6: 9b:51:a9:e5:99:e7:12:94:ab:0d:8e:6b:cc:f3:2b:79:f9:26: 35:33:27:ff:ae:64:68:5d:a5:3c:55:71:29:a7:31:26:cb:63: 28:59:dc:33:3d:07:0d:c8:ef:40:52:3e:e2:48:28:4d:53:bf: 3c:dd:d9:b5:89:8a:a8:c3:06:c8:c7:b2:95:c2:7d:2b:bc:ae: 3e:72:92:7d:72:e5:2d:36:4e:0f:95:b6:92:62:71:63:29:d6: a5:2f:28:e9:84:26:75:84:a2:99:fc:7d:3d:9e:f3:b7:bc:87: 46:c4:00:96:1f:00:7a:c5:b8:0e:3d:83:21:4d:aa:5d:2b:37: 31:ef:de:1d:8d:96:bb:e6:0c:34:dd:b3:a5:6e:93:59:e8:1a: fc:f1:eb:7e:0f:1b:b6:5b:c8:25:d8:41:fb:4b:d7:54:5b:da: c9:98:01:ef:46:78:e2:9e:f3:0e:f2:c2:74:ba:a3:3d:61:5e: 3a:29:ba:7b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3NzcxMTAvBgNVBAUTKDgyMTRGNTFBOTgxNDQxRjE1RkI5MTIyMjVGRDdEMDJG Qjk0M0FFMzUwHhcNMjYwMzI2MjIxNTAxWhcNMjYwNDAyMjIxNTAxWjAYMRYwFAYD VQQDEw02OWM1YWZlNS1mZjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4reSqLwNtGovCdpRIg001KipfeHsPBhVLoBTZvNDao5trkZKYK6bforS3qYA mBMnOohF/jRUjvayqK03kZIw0sxE/ZO2s8ReB0yMnRdW8dD+nHUyNuSySO3vJNHD GDUlWNoKEsYessyvmCq5RCkBrehja9WhtcxzCyaXU55m6DjZdbj8sonQUWiAUFOT nr0oOf+tbfCA2AV7TLtStfUN7F5aW+wY873AD2hCdOXLlr6FABhCOywobi8KOTVb NfzrZOc6fWd62oL6OCqF+cq4Rmm2B1SS5DpzZqiZYGl11gqZ7/+qCao6KSWmAY+S 3c63NbJBiVsAQMLWK70trf97/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMQUc6P0 9OSbCZ1n7rHqIgSYuw9mMB8GA1UdIwQYMBaAFIIU9RqYFEHxX7kSIl/X0C+5Q641 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzc3Ny83Nzk3NjBCQUEz RTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFmRmZ1UklpWDlmUUw3bERy alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doVDFHcGdVUWZGZnVSSWlYOWZRTDdsRHJqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qzc3Ny83Nzk3NjBCQUEzRTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFm RmZ1UklpWDlmUUw3bERyalUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqti+OTyjkpkJu9xQPGoM8xhLtj5SAGnLqEeWbTwfic8rLegy+F81lwG1RUEJ CtxNiFnObF0MjQnJDcRMLhpJb0fGfoZZ6xzWm1Gp5ZnnEpSrDY5rzPMrefkmNTMn /65kaF2lPFVxKacxJstjKFncMz0HDcjvQFI+4kgoTVO/PN3ZtYmKqMMGyMeylcJ9 K7yuPnKSfXLlLTZOD5W2kmJxYynWpS8o6YQmdYSimfx9PZ7zt7yHRsQAlh8AesW4 Dj2DIU2qXSs3Me/eHY2Wu+YMNN2zpW6TWega/PHrfg8btlvIJdhB+0vXVFvayZgB 70Z44p7zDvLCdLqjPWFeOim6ew== -----END CERTIFICATE-----Generated at Sat Mar 28 12:07:32 2026 by rpki-client