$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft File: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft (raw, json) Hash identifier: 21kStHb3ahlF/ip9/75CfOyZt6IOILLAKfZhw/nJRtE= Subject key identifier: B2:E0:77:AD:9B:09:73:8C:2C:FC:F7:82:9C:0C:89:47:3F:C3:4D:B6 Authority key identifier: 82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A Certificate issuer: /CN=A911DF8A/serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Certificate serial: 044A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft Manifest number: 042C Signing time: Fri 27 Mar 2026 00:08:52 +0000 Manifest this update: Fri 27 Mar 2026 00:08:51 +0000 Manifest next update: Fri 03 Apr 2026 00:08:51 +0000 Files and hashes: 1: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl (hash: RvCJ4tU9evw1b+4liF+0DyfAdmvBvZO9UDP79kb7w0U=) 2: 7CA73BD4F7E111F09133AC30656F56BC.roa (hash: lrf8090retSGwJwGuDcCx3aFLrFcPfdjin1o0PlkDcA=) 3: 7D1E4382F7E111F09133AC30656F56BC.roa (hash: zNF2ygfhhND/uBTDhIyFRkeFn/MaMe2JQ58piW9rdw0=) 4: 7C17299AF7E111F09133AC30656F56BC.roa (hash: t296rVU/xx7eKuOhP3U3tbmVD7byq5VC6ECxFEqQnZo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 00:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1098 (0x44a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF8A, serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Validity Not Before: Mar 27 00:08:51 2026 GMT Not After : Apr 3 00:08:51 2026 GMT Subject: CN=69c5ca94-ee5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:7a:d1:71:e2:e1:b5:f3:ad:24:f8:1f:3f:d2: 6e:e7:d4:5b:17:9e:34:6a:75:c5:34:9a:2c:02:cc: ba:7a:42:24:58:a8:4c:2e:e1:94:d9:b2:8c:a4:5b: 89:23:12:15:57:33:45:3c:36:36:04:af:8e:c1:0b: 50:1a:9c:79:d5:be:dc:56:84:37:55:d5:44:77:6e: a8:ed:ae:94:06:c3:39:d7:c4:fe:d2:5b:8f:9e:24: cb:0e:8c:00:61:a7:aa:af:38:43:a0:fb:54:1e:15: ba:4c:54:ca:ae:a4:2f:02:1f:60:39:8b:a3:5e:66: 05:21:55:60:2d:99:60:46:f0:81:bb:c4:1f:88:f6: 88:79:e2:ec:70:59:d4:93:19:a0:41:2b:09:ed:e1: 90:94:5a:9e:33:58:24:21:a6:40:fa:23:39:81:7c: 9b:51:75:96:3c:e3:ca:24:03:92:19:0e:71:44:44: 10:5b:50:2b:ef:71:0b:d8:c9:1f:cf:98:d0:e0:9a: a6:09:0a:ce:2f:b2:6b:86:53:f6:d2:95:39:61:e6: 6e:16:c6:ef:10:73:5f:8c:7c:c2:cc:eb:53:7c:bf: e7:07:cb:36:20:46:99:0f:b7:c7:c0:c2:e9:cd:9f: 46:f3:dc:05:57:82:40:ba:4e:f6:6d:0c:26:32:d4: f1:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:E0:77:AD:9B:09:73:8C:2C:FC:F7:82:9C:0C:89:47:3F:C3:4D:B6 X509v3 Authority Key Identifier: keyid:82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:10:fc:be:91:23:8f:cd:97:0a:5e:8d:84:f5:75:6d:6e:2b: ba:d8:5b:ca:dc:cb:30:d9:57:77:9e:d3:b1:95:85:f0:7e:a2: e7:d5:48:e4:89:5d:89:04:95:3c:fd:a2:42:e7:24:61:3e:a4: 53:b7:64:ad:04:a7:8e:cb:1d:95:d6:5e:42:3d:5c:4e:a1:e2: 9f:a0:4f:c0:32:9b:d3:c9:57:2a:10:9f:31:af:dd:75:9c:e1: b1:ee:4d:a9:e0:8a:6e:30:88:f4:16:09:97:b8:07:ac:26:a0: 69:47:ea:18:ba:b5:8e:cc:02:91:c9:cb:f5:fc:bf:de:c2:f1: 5e:0a:29:6d:b0:1b:2c:97:c4:ce:62:27:11:08:a6:51:df:90: 79:bb:d7:85:b2:42:bc:43:20:a1:ff:34:b6:2a:bc:27:34:d6: 40:35:cc:3e:a1:c4:83:8d:0f:d0:be:46:9c:50:5b:a3:96:a3: 4f:a6:19:9c:09:45:79:b1:62:ed:bb:e6:ed:fc:cd:77:a7:d4: da:bf:0b:0d:77:25:55:7c:ef:c0:89:4d:dc:eb:1d:c1:0b:cc: 6c:fb:a2:d7:19:8c:20:b5:8d:83:85:c7:d5:8d:45:e5:66:c9: 1b:cb:f9:4e:f3:b7:35:f6:30:8b:63:45:85:1c:42:2f:69:0e: 39:75:22:14 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGOEExMTAvBgNVBAUTKDgyNjAwN0E0RTNEMTRCQjBCNTA5QkI5Njk4NDVEMDFF QjgwOUREN0EwHhcNMjYwMzI3MDAwODUxWhcNMjYwNDAzMDAwODUxWjAYMRYwFAYD VQQDEw02OWM1Y2E5NC1lZTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5HrRceLhtfOtJPgfP9Ju59RbF540anXFNJosAsy6ekIkWKhMLuGU2bKMpFuJ IxIVVzNFPDY2BK+OwQtQGpx51b7cVoQ3VdVEd26o7a6UBsM518T+0luPniTLDowA YaeqrzhDoPtUHhW6TFTKrqQvAh9gOYujXmYFIVVgLZlgRvCBu8QfiPaIeeLscFnU kxmgQSsJ7eGQlFqeM1gkIaZA+iM5gXybUXWWPOPKJAOSGQ5xREQQW1Ar73EL2Mkf z5jQ4JqmCQrOL7JrhlP20pU5YeZuFsbvEHNfjHzCzOtTfL/nB8s2IEaZD7fHwMLp zZ9G89wFV4JAuk72bQwmMtTxkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLLgd62b CXOMLPz3gpwMiUc/w022MB8GA1UdIwQYMBaAFIJgB6Tj0UuwtQm7lphF0B64Cd16 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREY4QS8zNTUzQ0ZBQUEz N0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3QzFDYnVXbUVYUUhyZ0oz WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dtQUhwT1BSUzdDMUNidVdtRVhRSHJnSjNYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REY4QS8zNTUzQ0ZBQUEzN0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3 QzFDYnVXbUVYUUhyZ0ozWG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlBD8vpEjj82XCl6NhPV1bW4ruthbytzLMNlXd57TsZWF8H6i59VI5IldiQSV PP2iQuckYT6kU7dkrQSnjssdldZeQj1cTqHin6BPwDKb08lXKhCfMa/ddZzhse5N qeCKbjCI9BYJl7gHrCagaUfqGLq1jswCkcnL9fy/3sLxXgopbbAbLJfEzmInEQim Ud+QebvXhbJCvEMgof80tiq8JzTWQDXMPqHEg40P0L5GnFBbo5ajT6YZnAlFebFi 7bvm7fzNd6fU2r8LDXclVXzvwIlN3OsdwQvMbPui1xmMILWNg4XH1Y1F5WbJG8v5 TvO3NfYwi2NFhRxCL2kOOXUiFA== -----END CERTIFICATE-----Generated at Sat Mar 28 04:45:24 2026 by rpki-client