$ rpki-client -vvf rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft File: gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft (raw, json) Hash identifier: g0ARV8ZSBXbapK5pX4hx4+xA62xnb83fKONu1WTiOAQ= Subject key identifier: 6B:D1:DF:9E:5E:79:12:8B:D8:1E:59:FE:02:45:DB:45:B4:34:CB:8B Authority key identifier: 80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51 Certificate issuer: /CN=A9155D1E/serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51 Certificate serial: 0312 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft Manifest number: 030D Signing time: Sun 05 Apr 2026 00:57:11 +0000 Manifest this update: Sun 05 Apr 2026 00:57:11 +0000 Manifest next update: Sun 12 Apr 2026 00:57:11 +0000 Files and hashes: 1: gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl (hash: Ki1GISu9YuaQZUj6WZ4rHZjgH6ChXcRHGUs2ALBfJGI=) 2: C003531C10EB11ED9C882A38C4F9AE02.roa (hash: G98a/yKjk3/fMfcC59qOzM27evCHqgjnLoiIvg8e5p0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:57:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 786 (0x312) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155D1E, serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51 Validity Not Before: Apr 5 00:57:11 2026 GMT Not After : Apr 12 00:57:11 2026 GMT Subject: CN=69d1b367-461f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:1e:37:2d:16:d4:50:03:cc:51:95:1c:3c:a5: 84:5b:14:fb:4e:57:7d:6e:c6:09:c3:6a:ba:d5:5e: 16:17:c7:6b:09:c2:61:e7:fe:76:bb:34:c7:87:a2: 08:3b:e1:70:05:8b:cb:82:a6:20:31:1e:33:d0:3e: 02:66:13:a6:6c:d0:af:99:3a:ff:51:50:2b:e4:de: a9:97:65:a0:4a:5a:1e:4c:59:ab:34:4e:f1:ef:0b: f0:a0:af:18:a7:c2:29:a6:65:95:e6:18:4b:31:30: a5:55:97:56:43:c4:fa:5d:a2:7c:d4:96:b4:ae:dc: f2:93:a5:61:7f:09:dc:2e:83:8a:cf:70:94:10:8c: 70:35:bb:77:c7:72:a6:6f:ad:56:ea:e1:81:63:f2: dd:9a:e1:d3:91:5e:0d:16:41:50:b8:77:f7:db:ec: ae:91:0c:dd:12:32:5f:63:5b:f0:e8:87:05:66:8c: 7e:ae:5b:cb:0c:61:99:35:48:b6:b4:e3:f9:18:0c: db:21:2d:c6:58:0a:59:48:e3:ca:47:62:66:db:f9: 3e:3c:9f:66:6f:43:35:f4:83:54:61:0a:de:1e:93: 83:cc:4c:9f:4b:bb:01:0b:29:c1:9a:68:b4:9a:a3: 81:1f:2d:8e:46:e1:4d:64:41:bc:f8:80:61:26:70: 39:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:D1:DF:9E:5E:79:12:8B:D8:1E:59:FE:02:45:DB:45:B4:34:CB:8B X509v3 Authority Key Identifier: keyid:80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:9c:67:45:1d:5b:03:4e:85:be:aa:26:7e:ef:5d:70:d2:af: 68:30:f0:8c:1f:5e:94:6d:d9:43:00:55:43:ec:0c:af:f0:40: 33:94:5a:6b:eb:f6:ed:48:ee:7b:9c:e7:2c:48:04:58:8a:16: f1:7b:b2:14:28:5f:8d:30:fe:07:23:a7:a0:b7:84:48:ad:34: 92:a6:90:2d:92:08:30:c4:73:9e:d3:0a:6c:76:31:4c:60:20: f6:25:0d:69:99:4a:3f:36:da:91:08:8c:2f:2e:ef:e8:13:de: d5:0c:3a:35:b8:c1:f2:f3:6c:fd:39:cf:1b:a4:f6:c4:a9:21: a2:a3:0c:ff:b1:88:00:92:3a:08:f6:cf:de:e4:6d:77:64:a3: e7:b5:1d:1f:51:00:29:89:99:e9:97:e3:16:bf:71:f7:40:a5: 2a:0c:7e:7a:51:3f:ce:a2:3c:cf:07:82:09:b7:39:ea:87:88: 8b:98:8b:c6:ac:43:a9:34:47:11:91:f0:5c:95:1d:7c:99:c2: f7:3d:cc:16:de:88:1e:54:60:59:48:46:6d:90:19:07:d3:59: 7b:de:27:48:07:2e:43:6a:e7:78:e6:9d:bd:29:c8:67:a8:c8: cd:c6:16:fd:5f:ff:8e:71:13:a3:b2:28:c6:bb:7d:b9:6d:d8: f7:a7:9e:67 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVEMUUxMTAvBgNVBAUTKDgwQTRCOEZDQUVDRDAxMUU4MkFBNEUyRDcyMTczQ0E2 M0U5QzRFNTEwHhcNMjYwNDA1MDA1NzExWhcNMjYwNDEyMDA1NzExWjAYMRYwFAYD VQQDEw02OWQxYjM2Ny00NjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArh43LRbUUAPMUZUcPKWEWxT7Tld9bsYJw2q61V4WF8drCcJh5/52uzTHh6II O+FwBYvLgqYgMR4z0D4CZhOmbNCvmTr/UVAr5N6pl2WgSloeTFmrNE7x7wvwoK8Y p8IppmWV5hhLMTClVZdWQ8T6XaJ81Ja0rtzyk6VhfwncLoOKz3CUEIxwNbt3x3Km b61W6uGBY/LdmuHTkV4NFkFQuHf32+yukQzdEjJfY1vw6IcFZox+rlvLDGGZNUi2 tOP5GAzbIS3GWApZSOPKR2Jm2/k+PJ9mb0M19INUYQreHpODzEyfS7sBCynBmmi0 mqOBHy2ORuFNZEG8+IBhJnA5iQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGvR355e eRKL2B5Z/gJF20W0NMuLMB8GA1UdIwQYMBaAFICkuPyuzQEegqpOLXIXPKY+nE5R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUQxRS9BOEQ4ODNFQTEw RTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFSNkNxazR0Y2hjOHBqNmNU bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dLUzRfSzdOQVI2Q3FrNHRjaGM4cGo2Y1RsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NUQxRS9BOEQ4ODNFQTEwRTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFS NkNxazR0Y2hjOHBqNmNUbEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAU5xnRR1bA06Fvqomfu9dcNKvaDDwjB9elG3ZQwBVQ+wMr/BAM5Raa+v27Uju e5znLEgEWIoW8XuyFChfjTD+ByOnoLeESK00kqaQLZIIMMRzntMKbHYxTGAg9iUN aZlKPzbakQiMLy7v6BPe1Qw6NbjB8vNs/TnPG6T2xKkhoqMM/7GIAJI6CPbP3uRt d2Sj57UdH1EAKYmZ6ZfjFr9x90ClKgx+elE/zqI8zweCCbc56oeIi5iLxqxDqTRH EZHwXJUdfJnC9z3MFt6IHlRgWUhGbZAZB9NZe94nSAcuQ2rneOadvSnIZ6jIzcYW /V//jnETo7Ioxrt9uW3Y96eeZw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:54:01 2026 by rpki-client