$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft File: gtgYhh3Upw93CNIF5LiehRTKH2w.mft (raw, json) Hash identifier: k2NSDhmGuOy3iOPRdJb/JGSY7NJyfUu9hHhiD4hzvfs= Subject key identifier: C9:57:F1:A1:DA:EC:87:7B:AA:A7:2A:5D:5D:93:06:21:C1:46:F2:F4 Authority key identifier: 82:D8:18:86:1D:D4:A7:0F:77:08:D2:05:E4:B8:9E:85:14:CA:1F:6C Certificate issuer: /CN=A91C9A8D/serialNumber=82D818861DD4A70F7708D205E4B89E8514CA1F6C Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft Manifest number: 0554 Signing time: Tue 24 Mar 2026 23:46:08 +0000 Manifest this update: Tue 24 Mar 2026 23:46:08 +0000 Manifest next update: Tue 31 Mar 2026 23:46:08 +0000 Files and hashes: 1: gtgYhh3Upw93CNIF5LiehRTKH2w.crl (hash: Q/SMaRzIzLtsiorQGEg7KDBvIwb9L7qfNFn5yJa0oOU=) 2: D2A57AD8DDF111EF969ABC1CC4F9AE02.roa (hash: eoTb51P+t/j4kZh52b3zmJyrvFvaeaq6DjMaAos1Ol0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:46:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=82D818861DD4A70F7708D205E4B89E8514CA1F6C Validity Not Before: Mar 24 23:46:08 2026 GMT Not After : Mar 31 23:46:08 2026 GMT Subject: CN=69c32240-d8a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:0d:ec:53:17:68:13:15:87:49:76:e6:ad:9c: a7:08:94:96:0d:c7:95:61:51:03:c0:d8:03:19:7d: 32:93:76:10:29:b7:3a:96:7d:c3:e0:b2:c6:9e:13: 5c:25:a9:e0:38:05:b4:d6:15:36:af:47:37:98:94: c8:70:3e:cf:11:fb:b2:d1:87:68:38:81:d7:41:2d: 1c:b7:9b:a5:e7:e0:0e:3d:e9:95:e5:54:95:3e:2f: ef:bc:0c:d4:7e:21:ee:22:f6:de:78:03:c7:4d:24: de:c6:bc:74:c1:23:cd:37:2e:7c:81:36:ec:4c:48: d4:d3:47:27:92:3f:64:e4:14:ad:e4:54:3f:69:19: 50:40:a4:21:bb:26:80:44:c5:a0:b2:aa:7c:28:a2: b7:36:a1:5e:50:22:01:3c:6a:9f:06:fa:24:8f:57: e1:d0:3d:0d:46:af:32:e0:34:f5:16:83:a5:97:e2: 9e:54:29:27:6b:13:2d:bc:5f:12:b8:1c:ff:28:0a: 46:22:85:5e:a3:33:f3:5d:2b:f1:ac:7c:83:d9:b4: df:87:60:6e:f0:68:42:89:8b:3b:d9:92:a2:a6:48: 2a:a9:5f:aa:d4:bd:65:08:84:22:92:af:db:76:09: d7:d3:92:28:05:80:0d:46:78:6b:81:96:f5:77:84: cd:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:57:F1:A1:DA:EC:87:7B:AA:A7:2A:5D:5D:93:06:21:C1:46:F2:F4 X509v3 Authority Key Identifier: keyid:82:D8:18:86:1D:D4:A7:0F:77:08:D2:05:E4:B8:9E:85:14:CA:1F:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:84:60:44:98:4f:f5:bd:ac:d9:9c:8f:6f:e2:0f:91:10:0b: 0b:11:5d:85:12:f5:b8:e1:db:cf:9d:34:11:e5:83:e7:c8:55: d8:02:bd:bf:9e:7f:a7:3c:fa:6d:b8:49:10:c0:2a:28:49:dc: fc:b1:f3:cc:5f:de:51:1d:bb:88:e1:19:9f:dd:cc:7e:82:32: 8f:19:c8:89:06:43:c9:6c:c8:ff:61:8d:09:97:2f:2a:78:be: 83:ce:4b:46:cb:0b:c1:1a:7b:57:00:b4:e7:68:41:97:44:ae: f8:67:2a:d6:2c:f8:93:fd:5c:52:92:c7:c3:9b:b9:1e:a4:f9: 0d:0e:09:cf:0d:81:27:91:ad:6a:bc:c9:03:24:1d:19:1e:48: e8:31:bb:62:c4:60:72:df:f7:9f:c6:2d:4c:06:00:0c:ae:a1: 09:d6:2e:e3:20:b8:95:42:45:ef:5e:ce:d0:da:b3:b8:09:63: 88:94:b4:14:17:7b:9f:be:54:75:19:93:47:65:a1:a6:d1:24: 99:05:cc:0b:75:89:14:d9:de:b7:f9:40:ae:0a:c7:60:7d:6a: 04:31:e5:e9:23:c8:08:e6:5a:b6:18:a1:be:48:57:41:9d:b4: 13:8e:d5:0e:42:28:c1:e0:05:cc:9c:78:cb:df:a5:ae:52:d4: 61:c5:04:e2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKDgyRDgxODg2MURENEE3MEY3NzA4RDIwNUU0Qjg5RTg1 MTRDQTFGNkMwHhcNMjYwMzI0MjM0NjA4WhcNMjYwMzMxMjM0NjA4WjAYMRYwFAYD VQQDEw02OWMzMjI0MC1kOGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkA3sUxdoExWHSXbmrZynCJSWDceVYVEDwNgDGX0yk3YQKbc6ln3D4LLGnhNc JangOAW01hU2r0c3mJTIcD7PEfuy0YdoOIHXQS0ct5ul5+AOPemV5VSVPi/vvAzU fiHuIvbeeAPHTSTexrx0wSPNNy58gTbsTEjU00cnkj9k5BSt5FQ/aRlQQKQhuyaA RMWgsqp8KKK3NqFeUCIBPGqfBvokj1fh0D0NRq8y4DT1FoOll+KeVCknaxMtvF8S uBz/KApGIoVeozPzXSvxrHyD2bTfh2Bu8GhCiYs72ZKipkgqqV+q1L1lCIQikq/b dgnX05IoBYANRnhrgZb1d4TNIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMlX8aHa 7Id7qqcqXV2TBiHBRvL0MB8GA1UdIwQYMBaAFILYGIYd1KcPdwjSBeS4noUUyh9s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi9ndGdZaGgzVXB3OTNDTklGNUxpZWhSVEtI MncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d0Z1loaDNVcHc5M0NOSUY1TGllaFJUS0gydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi9ndGdZaGgzVXB3 OTNDTklGNUxpZWhSVEtIMncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdIRgRJhP9b2s2ZyPb+IPkRALCxFdhRL1uOHbz500EeWD58hV2AK9v55/pzz6 bbhJEMAqKEnc/LHzzF/eUR27iOEZn93MfoIyjxnIiQZDyWzI/2GNCZcvKni+g85L RssLwRp7VwC052hBl0Su+Gcq1iz4k/1cUpLHw5u5HqT5DQ4Jzw2BJ5GtarzJAyQd GR5I6DG7YsRgct/3n8YtTAYADK6hCdYu4yC4lUJF717O0NqzuAljiJS0FBd7n75U dRmTR2WhptEkmQXMC3WJFNnet/lArgrHYH1qBDHl6SPICOZathihvkhXQZ20E47V DkIoweAFzJx4y9+lrlLUYcUE4g== -----END CERTIFICATE-----Generated at Thu Mar 26 00:55:43 2026 by rpki-client