$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft File: GHotNbr5BXwPC40mLS5dYiajI4I.mft (raw, json) Hash identifier: gM9eP231UVjW0YewzcTZRpM+T5sQveuX04Mala/eVxI= Subject key identifier: A9:E2:26:00:FB:67:C8:D6:C3:5A:81:39:E4:A8:12:81:B6:68:69:96 Authority key identifier: 18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 Certificate issuer: /CN=A91FD1C3/serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Certificate serial: 01EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft Manifest number: 01E7 Signing time: Sun 05 Apr 2026 02:58:37 +0000 Manifest this update: Sun 05 Apr 2026 02:58:37 +0000 Manifest next update: Sun 12 Apr 2026 02:58:37 +0000 Files and hashes: 1: GHotNbr5BXwPC40mLS5dYiajI4I.crl (hash: LvMf1zWsFx6IjSmuK5P+N70Qpl+zH7kBtqL6Qv3KwFM=) 2: 5773966456D011EE9C8F8C56C4F9AE02.roa (hash: V94XCH+V6AH+/jsR1uuPC4R2sBLnX4SmOxfv0adXwxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:58:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD1C3, serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Validity Not Before: Apr 5 02:58:37 2026 GMT Not After : Apr 12 02:58:37 2026 GMT Subject: CN=69d1cfdd-e73d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:32:09:1d:0d:f6:4b:77:7a:c7:c5:90:32:97: c6:ae:6b:5e:50:00:be:30:78:44:cc:ad:cd:f3:f7: 67:ba:d6:99:97:5e:a2:54:6e:b3:c5:21:80:40:00: 85:2f:2e:d0:3e:fe:c9:ba:cf:6d:b6:59:0f:f4:4d: 2f:47:61:e0:b1:c2:26:45:02:0d:22:72:f2:be:a7: 3c:80:e1:43:57:e0:49:2c:3d:27:9c:25:b5:de:58: 2a:5d:83:c1:dd:0b:13:4e:08:6d:09:30:ed:e4:ea: 41:c8:e7:ab:b3:bd:e3:a7:70:45:c7:77:0b:db:2d: 11:84:32:fa:9a:36:14:a8:6b:7c:e5:d6:d0:e2:24: f4:5a:bd:84:e9:63:45:e7:b9:de:59:78:85:7a:9e: 04:94:6c:97:1a:58:9b:69:08:15:c2:2e:c6:2c:dc: 7c:7c:21:cd:82:66:6d:10:27:3a:01:44:32:6d:45: c6:39:e7:da:4c:c1:4a:4e:a0:ea:d7:d5:5e:0a:1c: 35:9c:da:c7:47:08:2f:c1:81:96:eb:b7:6b:f6:cf: 90:3a:ba:52:27:d2:9d:64:c5:ac:1d:45:05:39:11: 39:04:2e:e8:5c:8c:6e:d2:92:3d:e3:4b:82:f7:05: 29:d3:6e:3b:aa:30:7d:44:29:dd:07:6b:f9:f8:8d: dc:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:E2:26:00:FB:67:C8:D6:C3:5A:81:39:E4:A8:12:81:B6:68:69:96 X509v3 Authority Key Identifier: keyid:18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:b1:a6:6d:e1:bb:13:0f:73:f9:cb:6b:50:c4:dd:9f:fb:3a: 1b:0e:d1:27:1f:43:d3:06:2a:1f:b4:53:4b:63:62:66:9e:05: 3e:19:1d:70:fe:9e:c6:00:69:e5:49:66:39:09:45:f3:9f:fa: 3e:ce:e0:04:9d:e5:01:a7:ec:bf:f3:25:56:28:85:9f:ef:f0: c2:e4:1a:44:c8:a7:a7:07:20:1d:c4:69:84:22:c2:45:aa:f2: 51:54:70:68:d7:d1:b8:03:78:de:df:da:ba:83:f0:b5:82:a6: 1b:a2:3f:6a:c6:ab:72:50:19:a5:b6:a2:43:99:c1:a0:e1:5c: 7c:0f:ac:4f:fd:f9:44:c1:22:c2:78:f0:a2:77:84:c8:38:70: 4d:33:bd:4f:8a:f8:7c:80:c3:03:4a:9f:99:c3:88:8b:4c:81: cb:05:87:4d:38:5c:bf:e5:d0:25:ae:2a:93:03:7c:c3:fd:ad: 72:a4:bc:35:0c:a4:4c:0b:4b:2f:2f:28:0c:30:5c:ea:57:75: 14:c5:10:3b:47:05:fa:0a:bc:9d:ec:29:e6:ac:ed:90:b9:fb: 75:7a:5b:cf:2c:13:7e:07:4b:d4:ae:ae:75:ea:ab:83:a5:d6: a9:4d:00:7a:69:06:96:c4:4b:7a:a2:38:cf:8c:74:92:49:e7: 4e:99:9e:b9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQxQzMxMTAvBgNVBAUTKDE4N0EyRDM1QkFGOTA1N0MwRjBCOEQyNjJEMkU1RDYy MjZBMzIzODIwHhcNMjYwNDA1MDI1ODM3WhcNMjYwNDEyMDI1ODM3WjAYMRYwFAYD VQQDEw02OWQxY2ZkZC1lNzNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlzIJHQ32S3d6x8WQMpfGrmteUAC+MHhEzK3N8/dnutaZl16iVG6zxSGAQACF Ly7QPv7Jus9ttlkP9E0vR2HgscImRQINInLyvqc8gOFDV+BJLD0nnCW13lgqXYPB 3QsTTghtCTDt5OpByOers73jp3BFx3cL2y0RhDL6mjYUqGt85dbQ4iT0Wr2E6WNF 57neWXiFep4ElGyXGlibaQgVwi7GLNx8fCHNgmZtECc6AUQybUXGOefaTMFKTqDq 19VeChw1nNrHRwgvwYGW67dr9s+QOrpSJ9KdZMWsHUUFORE5BC7oXIxu0pI940uC 9wUp0247qjB9RCndB2v5+I3c2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKniJgD7 Z8jWw1qBOeSoEoG2aGmWMB8GA1UdIwQYMBaAFBh6LTW6+QV8DwuNJi0uXWImoyOC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDFDMy9GQjcxQzU2NjU2 Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJYd1BDNDBtTFM1ZFlpYWpJ NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dIb3ROYnI1Qlh3UEM0MG1MUzVkWWlhakk0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDFDMy9GQjcxQzU2NjU2Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJY d1BDNDBtTFM1ZFlpYWpJNEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALbGmbeG7Ew9z+ctrUMTdn/s6Gw7RJx9D0wYqH7RTS2NiZp4FPhkdcP6exgBp 5UlmOQlF85/6Ps7gBJ3lAafsv/MlViiFn+/wwuQaRMinpwcgHcRphCLCRaryUVRw aNfRuAN43t/auoPwtYKmG6I/asarclAZpbaiQ5nBoOFcfA+sT/35RMEiwnjwoneE yDhwTTO9T4r4fIDDA0qfmcOIi0yBywWHTThcv+XQJa4qkwN8w/2tcqS8NQykTAtL Ly8oDDBc6ld1FMUQO0cF+gq8newp5qztkLn7dXpbzywTfgdL1K6udeqrg6XWqU0A emkGlsRLeqI4z4x0kknnTpmeuQ== -----END CERTIFICATE-----Generated at Sun Apr 5 19:39:23 2026 by rpki-client