$ rpki-client -vvf rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft File: GhpArZOkpDB-1yZNR9JSyvYt7_0.mft (raw, json) Hash identifier: QvBnIWVcngYg9LmmkP4bFVixZQ40lmxQqqTY3Qy+YhQ= Subject key identifier: 52:8C:58:BC:C9:3A:92:B5:93:8D:79:BC:29:78:AE:3F:54:E0:6A:BF Authority key identifier: 1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD Certificate issuer: /CN=A911D75C/serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD Certificate serial: 0DB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft Manifest number: 0D56 Signing time: Sat 04 Apr 2026 18:08:35 +0000 Manifest this update: Sat 04 Apr 2026 18:08:34 +0000 Manifest next update: Sat 11 Apr 2026 18:08:34 +0000 Files and hashes: 1: GhpArZOkpDB-1yZNR9JSyvYt7_0.crl (hash: Bmag8gaXFNkagDGxriNsth+w6dkz0qXhM6hq0YLewMk=) 2: 566800AE193C11F094773636C4F9AE02.roa (hash: n+6S6drduflW8vmKudlFPF0ZyDGO0es3RyPNjv25FYY=) 3: 0D341A3005A911F19E018F8D063D8C67.roa (hash: y4m6yYrzdqqRXHW2Z2qtJIcDrcsI0TGTykZNYjDl5pA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3505 (0xdb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D75C, serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD Validity Not Before: Apr 4 18:08:34 2026 GMT Not After : Apr 11 18:08:34 2026 GMT Subject: CN=69d153a2-0349 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:82:62:1b:de:22:3e:68:42:a7:ed:bf:e8:dc: 0f:c3:bd:4d:cd:5e:2d:c2:27:24:99:99:c0:9f:c4: b9:f6:c9:4a:4a:cd:19:35:76:09:83:a4:14:90:10: 1d:70:84:fb:ee:22:89:7f:8a:c2:18:4b:b7:db:eb: 17:4d:5a:04:77:b7:27:4b:53:b6:7f:e8:b5:3d:21: 05:42:1d:99:89:e4:b3:09:6b:1c:52:c5:06:01:3a: 75:ff:ac:a2:7a:16:03:a9:4d:d7:99:8e:70:97:60: a3:3e:ea:ca:b1:f5:60:3e:29:69:e4:44:ec:82:5e: d9:09:80:e0:42:66:4a:d4:a3:9f:6c:56:5f:cc:d3: f6:2c:00:39:86:6c:ff:19:04:4a:b8:3f:e2:ff:53: 09:1a:5f:e4:b4:1c:71:28:ed:ef:c1:72:d6:36:74: 47:d7:a5:58:3a:44:1c:ac:09:8d:6a:8a:44:f1:26: f7:0b:2f:0f:92:54:4f:ae:d2:e7:e0:fa:c8:e7:86: 3f:9f:7a:6d:41:0d:c0:ab:26:52:65:a3:73:d7:cc: cd:2c:33:ee:0f:80:2a:b2:fd:3d:67:72:f4:d1:3a: eb:fb:73:da:6a:15:04:c4:b5:29:aa:80:9c:34:e3: b1:8f:a0:3e:81:85:2d:d3:9a:d9:49:fe:b3:d0:05: 15:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:8C:58:BC:C9:3A:92:B5:93:8D:79:BC:29:78:AE:3F:54:E0:6A:BF X509v3 Authority Key Identifier: keyid:1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:c0:fd:97:97:63:7b:f4:af:97:9a:e2:1e:ba:8f:9e:87:06: 2a:15:93:13:a4:38:b4:76:63:f2:82:24:af:73:03:dd:19:5e: b0:70:c1:29:1f:ba:b3:e2:5b:28:f8:bf:4f:2f:05:86:1e:d5: e6:68:9f:87:1f:04:3f:ac:27:37:04:5e:e9:87:6c:78:0c:b7: 95:41:77:85:71:d6:53:ef:bc:f6:f5:40:44:a4:54:cf:e6:d5: c0:93:37:9c:fb:47:00:c3:c9:9f:4a:1f:f3:c4:14:5c:88:fe: 01:ad:bd:68:38:ff:b8:70:bd:87:ad:8d:51:b0:41:dd:c4:d3: e4:63:85:89:22:e9:0c:8b:bb:59:70:08:16:77:ac:c8:71:b0: b3:ac:dd:01:dc:b4:ef:91:b2:00:d3:2e:db:e4:13:5d:6c:fd: 95:20:27:c9:5c:6b:4f:5c:92:11:8a:09:d3:15:d9:6f:6e:fa: 27:cf:79:34:47:d2:d2:76:55:c4:f7:75:26:ac:89:6c:68:c2: e4:44:ad:02:e7:80:73:cf:81:81:6e:f0:ff:60:82:09:ab:82: e6:d1:5e:7d:38:3b:93:26:8c:0c:3a:b0:6e:51:02:d3:6e:06: 13:de:54:50:44:02:fc:80:53:70:24:ab:05:00:b7:39:12:41: 2a:6a:36:e3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ3NUMxMTAvBgNVBAUTKDFBMUE0MEFEOTNBNEE0MzA3RUQ3MjY0RDQ3RDI1MkNB RjYyREVGRkQwHhcNMjYwNDA0MTgwODM0WhcNMjYwNDExMTgwODM0WjAYMRYwFAYD VQQDEw02OWQxNTNhMi0wMzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoJiG94iPmhCp+2/6NwPw71NzV4twickmZnAn8S59slKSs0ZNXYJg6QUkBAd cIT77iKJf4rCGEu32+sXTVoEd7cnS1O2f+i1PSEFQh2ZieSzCWscUsUGATp1/6yi ehYDqU3XmY5wl2CjPurKsfVgPilp5ETsgl7ZCYDgQmZK1KOfbFZfzNP2LAA5hmz/ GQRKuD/i/1MJGl/ktBxxKO3vwXLWNnRH16VYOkQcrAmNaopE8Sb3Cy8PklRPrtLn 4PrI54Y/n3ptQQ3AqyZSZaNz18zNLDPuD4Aqsv09Z3L00Trr+3PaahUExLUpqoCc NOOxj6A+gYUt05rZSf6z0AUV+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFKMWLzJ OpK1k415vCl4rj9U4Gq/MB8GA1UdIwQYMBaAFBoaQK2TpKQwftcmTUfSUsr2Le/9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDc1Qy8yQkM1RkQ0MDA2 QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BEQi0xeVpOUjlKU3l2WXQ3 XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0docEFyWk9rcERCLTF5Wk5SOUpTeXZZdDdfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDc1Qy8yQkM1RkQ0MDA2QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BE Qi0xeVpOUjlKU3l2WXQ3XzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA2cD9l5dje/Svl5riHrqPnocGKhWTE6Q4tHZj8oIkr3MD3RlesHDBKR+6s+Jb KPi/Ty8Fhh7V5mifhx8EP6wnNwRe6YdseAy3lUF3hXHWU++89vVARKRUz+bVwJM3 nPtHAMPJn0of88QUXIj+Aa29aDj/uHC9h62NUbBB3cTT5GOFiSLpDIu7WXAIFnes yHGws6zdAdy075GyANMu2+QTXWz9lSAnyVxrT1ySEYoJ0xXZb276J895NEfS0nZV xPd1JqyJbGjC5EStAueAc8+BgW7w/2CCCauC5tFefTg7kyaMDDqwblEC024GE95U UEQC/IBTcCSrBQC3ORJBKmo24w== -----END CERTIFICATE-----Generated at Sun Apr 5 19:43:54 2026 by rpki-client