$ rpki-client -vvf rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft File: ghhST3oWtYwNm3OUAxk5fuT8pv0.mft (raw, json) Hash identifier: 45M68WxZJnO32kffAMIkWZF18UFA8l6PIB7F7JpcRnU= Subject key identifier: B8:40:63:E8:47:7E:BA:80:22:51:B8:B3:7F:55:40:E5:AC:37:E7:B1 Authority key identifier: 82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD Certificate issuer: /CN=A9179EE2/serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Certificate serial: 0897 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft Manifest number: 0879 Signing time: Sun 26 Apr 2026 20:35:02 +0000 Manifest this update: Sun 26 Apr 2026 20:35:01 +0000 Manifest next update: Sun 03 May 2026 20:35:01 +0000 Files and hashes: 1: ghhST3oWtYwNm3OUAxk5fuT8pv0.crl (hash: zxRjEic6lOZa1RqZ7eMtJ3JaogVSDDcd6XyECnq9b+Q=) 2: FD10505CC75011EFBA3D195BC4F9AE02.roa (hash: o4pPobBwjt8OFkaZBIgV8zZzFKBhPJBPQIzcgJ7nHNM=) 3: 431106B2125611ED9FB5292EC4F9AE02.roa (hash: HC1HlngI6XYoexa+iP3Lsv/hSItkWBl0CdvwYSY1Yh0=) 4: 81E94F18F57311EA86849119C4F9AE02.roa (hash: o7hslMVigOY231eahjNEQ0NYOJaFI9mq6NC5ziX7dQc=) 5: 816A256CF57311EA86849119C4F9AE02.roa (hash: 0r9XfnUOK88lrdHrVj5W9qn3Uab5Rf0RHHQdbv15M8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 20:35:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2199 (0x897) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179EE2, serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Validity Not Before: Apr 26 20:35:01 2026 GMT Not After : May 3 20:35:01 2026 GMT Subject: CN=69ee76f6-3f8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:60:2a:e4:30:21:e5:4c:d8:fc:70:43:95:44: 91:3d:b4:4e:02:00:e4:b8:05:d1:d0:ab:84:94:f0: 8c:a2:56:9c:c5:ba:95:98:70:5e:68:a5:cc:72:c7: 0c:04:60:c2:fa:dd:77:7a:27:77:c1:f9:48:a0:11: 71:a2:23:a9:ba:bf:a5:96:53:55:88:ee:84:06:ad: 58:e5:5e:89:1a:16:37:2c:60:3a:d6:e5:de:9b:0a: ab:e7:6f:20:ed:38:9a:12:51:2e:e4:bf:c3:fb:c5: 1d:14:61:90:2e:59:dd:96:a9:18:15:fc:a1:4b:60: fb:8c:46:3f:0d:f1:a6:28:05:db:a1:13:fb:1c:18: 49:d4:c3:ce:11:53:e3:70:d3:1a:25:d2:1d:71:d2: b2:53:30:38:3b:4f:db:82:77:08:23:00:db:a8:c9: 44:6f:13:5f:c1:74:77:d7:84:0c:7c:bd:a5:c7:ca: c3:98:bd:5f:05:b0:34:4c:ff:63:31:3e:a0:78:90: 45:bd:1b:1c:6a:75:0c:f1:29:fd:f9:bf:4b:f5:6c: bf:3f:c9:3b:5e:95:fd:03:e4:cc:ee:3a:a9:2e:c3: 3d:d6:0e:89:06:77:8f:5d:7f:34:01:a4:1f:43:de: e3:3a:3c:44:43:54:4c:b0:f5:ef:97:00:58:52:33: b6:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:40:63:E8:47:7E:BA:80:22:51:B8:B3:7F:55:40:E5:AC:37:E7:B1 X509v3 Authority Key Identifier: keyid:82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:ab:b4:c3:70:6e:28:3d:74:e5:62:dd:53:50:89:96:ff:28: b2:fb:f3:43:98:5e:f6:67:93:74:7e:89:36:f5:81:ae:59:f3: 10:35:38:33:14:b1:30:f1:cd:bc:3f:39:63:12:dd:1d:3c:7e: f2:3e:27:d5:a1:bf:75:2d:16:6a:9a:b5:47:94:64:38:60:60: 2f:96:ad:8d:25:e2:00:eb:07:ab:b4:dc:33:22:f0:72:0e:b3: f5:6f:58:4f:c9:a1:58:5a:e6:7c:7c:f1:d0:84:a5:b3:08:74: 93:06:90:b6:90:c4:92:93:c5:69:22:b3:d4:10:9a:94:fa:50: 54:50:7c:72:3e:68:a8:b2:ef:b1:40:f1:0b:4e:ab:36:99:b4: 24:5e:f0:7c:2d:5a:c5:79:64:d2:5c:3a:62:59:4a:c1:bc:7d: 8e:02:fb:b1:58:92:dc:10:3c:6f:b2:49:90:a2:4c:95:af:3c: b9:e1:7a:c8:ab:72:8f:7f:a1:8b:5b:32:28:39:02:60:8b:da: 93:51:f1:dc:04:06:91:27:c1:4d:3f:7f:35:41:e0:e6:1b:c2: 66:ff:72:42:15:f3:b7:7b:5c:89:63:8b:a0:d6:77:ed:5c:b3: f4:87:8e:b8:ff:32:79:60:91:aa:8a:d2:84:d2:bd:34:62:33: 41:27:87:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlFRTIxMTAvBgNVBAUTKDgyMTg1MjRGN0ExNkI1OEMwRDlCNzM5NDAzMTkzOTdF RTRGQ0E2RkQwHhcNMjYwNDI2MjAzNTAxWhcNMjYwNTAzMjAzNTAxWjAYMRYwFAYD VQQDEw02OWVlNzZmNi0zZjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAimAq5DAh5UzY/HBDlUSRPbROAgDkuAXR0KuElPCMolacxbqVmHBeaKXMcscM BGDC+t13eid3wflIoBFxoiOpur+lllNViO6EBq1Y5V6JGhY3LGA61uXemwqr528g 7TiaElEu5L/D+8UdFGGQLlndlqkYFfyhS2D7jEY/DfGmKAXboRP7HBhJ1MPOEVPj cNMaJdIdcdKyUzA4O0/bgncIIwDbqMlEbxNfwXR314QMfL2lx8rDmL1fBbA0TP9j MT6geJBFvRscanUM8Sn9+b9L9Wy/P8k7XpX9A+TM7jqpLsM91g6JBnePXX80AaQf Q97jOjxEQ1RMsPXvlwBYUjO2nwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLhAY+hH frqAIlG4s39VQOWsN+exMB8GA1UdIwQYMBaAFIIYUk96FrWMDZtzlAMZOX7k/Kb9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUVFMi8wMkIyNzM4OEY1 NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZd05tM09VQXhrNWZ1VDhw djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doaFNUM29XdFl3Tm0zT1VBeGs1ZnVUOHB2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUVFMi8wMkIyNzM4OEY1NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZ d05tM09VQXhrNWZ1VDhwdjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI6u0w3BuKD105WLdU1CJlv8osvvzQ5he9meTdH6JNvWBrlnzEDU4MxSxMPHN vD85YxLdHTx+8j4n1aG/dS0Wapq1R5RkOGBgL5atjSXiAOsHq7TcMyLwcg6z9W9Y T8mhWFrmfHzx0ISlswh0kwaQtpDEkpPFaSKz1BCalPpQVFB8cj5oqLLvsUDxC06r Npm0JF7wfC1axXlk0lw6YllKwbx9jgL7sViS3BA8b7JJkKJMla88ueF6yKtyj3+h i1syKDkCYIvak1Hx3AQGkSfBTT9/NUHg5hvCZv9yQhXzt3tciWOLoNZ37Vyz9IeO uP8yeWCRqorShNK9NGIzQSeHdQ== -----END CERTIFICATE-----Generated at Mon Apr 27 14:42:27 2026 by rpki-client