$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft File: GxesPclsojRSUCPv02J-ks2IR0g.mft (raw, json) Hash identifier: Y5wjODXOJS7iQvkAtC8EtUYpfFqNiYzIbYGwytUTtTQ= Subject key identifier: A5:7D:95:E9:A7:38:56:4D:3E:43:7F:5D:C0:D9:99:BB:6C:42:5C:05 Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1DFB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft Manifest number: 1DA7 Signing time: Sun 26 Apr 2026 16:03:01 +0000 Manifest this update: Sun 26 Apr 2026 16:03:01 +0000 Manifest next update: Sun 03 May 2026 16:03:01 +0000 Files and hashes: 1: GxesPclsojRSUCPv02J-ks2IR0g.crl (hash: Hub/dF7JW08EOoiKwO2DIOtIB9d2x9TJnjmKY93Jync=) 2: 8A1AF86E94BC11EC9E49DB41C4F9AE02.roa (hash: YuvkBqlEeFCoXBaOZasT0zM29UlrwmymL5NE2blVSiE=) 3: C2EECBA0E85C11EBA2171A25C4F9AE02.roa (hash: 3ijGtnKRZtAGtvocDeUrSBYus200G7y6Dr0KE05wtXM=) 4: C154DA14E85C11EBA2171A25C4F9AE02.roa (hash: IPxwuDAs+rs/dWI7IwZQIjs7sZfbx/rQmmj734bJ2/s=) 5: 4D609E86FF3B11EB910E8847C4F9AE02.roa (hash: WhkLj0w45a5YtVE3jvzrZ8Dxr8O2vOWWoHPkacPIXzA=) 6: 907B9B20E8AD11EBAA895D0AC4F9AE02.roa (hash: BRkeotXr+WaPofrhA/ccsuUEV0af6klyrqasow7IzzQ=) 7: 89654CDAB83B11EFAA80DD09C4F9AE02.roa (hash: Y2B9BXK6GgEUgrdOgkuvUr+OvwRamCav5yIYFYLKyOo=) 8: 4E2669F4FF3B11EB910E8847C4F9AE02.roa (hash: hsIMVES/RshZRMg/IYSKfaC8xNA1Vhhbh6ui/TW2WWo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 16:03:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7675 (0x1dfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2, serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Validity Not Before: Apr 26 16:03:01 2026 GMT Not After : May 3 16:03:01 2026 GMT Subject: CN=69ee3735-105e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:3d:7e:c1:02:40:f4:3c:4b:33:66:9e:59:1b: 3b:dd:80:12:b4:93:9a:a5:ac:e9:44:7b:e4:7a:7b: 16:b6:e5:6f:1e:0c:44:6e:a1:e3:53:5c:8c:87:f6: e3:8e:9e:ee:23:58:41:c6:d9:6b:1c:85:ed:ad:0d: bd:7b:2c:46:c0:47:b1:53:f2:e1:d4:e2:2c:18:81: de:80:48:46:3b:13:71:fd:07:ca:5d:91:0a:a4:d5: 00:54:3a:21:9c:df:67:60:75:1e:e7:fe:3a:55:1e: 52:fc:b5:d9:21:e2:ba:8c:66:d7:fe:48:81:c0:18: 3b:25:07:2f:a6:bb:e6:04:67:48:b9:da:cb:91:b7: bd:f4:bd:10:9a:f6:99:d7:7b:c8:2f:05:c9:6e:77: 19:51:27:66:c8:eb:58:f6:7c:88:fb:ed:3b:4d:d2: 22:83:34:1e:9d:7a:90:cb:5a:0a:cb:e9:18:3a:28: 7c:67:cd:0f:9c:aa:85:d9:64:be:9c:c3:74:f8:67: 80:ff:0b:a4:9a:9e:f2:77:5e:30:95:1e:fc:7e:b7: 50:0b:13:e0:d5:06:45:00:40:81:97:c0:c0:3c:92: de:aa:e3:81:ae:7b:08:c9:4c:9e:88:70:c2:01:db: 13:56:73:11:f7:f8:50:51:8e:58:46:7d:82:1c:e0: 88:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:7D:95:E9:A7:38:56:4D:3E:43:7F:5D:C0:D9:99:BB:6C:42:5C:05 X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:39:14:39:71:b5:3b:97:58:7c:6f:36:96:e2:20:7d:de:ab: 61:7c:2a:00:5c:1a:1b:1e:7e:79:c5:96:8a:69:73:fc:7d:55: 9a:47:f4:3c:eb:d1:5c:1f:ca:1a:aa:36:b8:3d:fb:0f:38:80: 3f:17:d8:d8:72:03:09:74:1f:b7:9f:c4:a8:35:1b:f1:8d:35: 7a:f0:42:c0:8b:a9:92:80:0c:af:a0:f7:a4:f5:bc:9b:8e:92: 81:70:2d:4f:e7:d1:bd:08:68:cf:97:ca:28:47:ca:04:b8:95: 09:42:15:3b:e4:ab:68:4b:33:ef:99:c3:5c:5a:88:f7:45:12: 60:8f:37:a6:5c:e9:1a:98:39:93:40:a1:f9:ec:2b:0d:64:ac: a0:5d:cd:98:c2:d3:94:db:8e:77:e3:03:db:b7:74:c0:b5:3a: 6b:03:67:d3:d0:e1:33:12:1a:64:ae:3d:1d:5f:0b:90:e0:8b: 3f:07:c8:7b:0f:23:97:d6:ae:e5:6d:cd:38:68:01:94:2f:59: 9d:fc:ff:69:a7:d8:a6:cd:ff:34:79:70:3e:6b:9b:db:4d:e9: 44:12:f8:2f:15:37:76:9d:2b:a0:9e:f9:ee:8f:79:65:8d:6e: cb:e7:1a:ff:95:2b:6b:b4:8d:54:29:ea:cb:de:e8:64:6c:f4: a1:d2:67:5f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjYwNDI2MTYwMzAxWhcNMjYwNTAzMTYwMzAxWjAYMRYwFAYD VQQDEw02OWVlMzczNS0xMDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsT1+wQJA9DxLM2aeWRs73YAStJOapazpRHvkensWtuVvHgxEbqHjU1yMh/bj jp7uI1hBxtlrHIXtrQ29eyxGwEexU/Lh1OIsGIHegEhGOxNx/QfKXZEKpNUAVDoh nN9nYHUe5/46VR5S/LXZIeK6jGbX/kiBwBg7JQcvprvmBGdIudrLkbe99L0QmvaZ 13vILwXJbncZUSdmyOtY9nyI++07TdIigzQenXqQy1oKy+kYOih8Z80PnKqF2WS+ nMN0+GeA/wukmp7yd14wlR78frdQCxPg1QZFAECBl8DAPJLequOBrnsIyUyeiHDC AdsTVnMR9/hQUY5YRn2CHOCI0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKV9lemn OFZNPkN/XcDZmbtsQlwFMB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REJGMi9FMzQ0NTAxNkMyRjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29q UlNVQ1B2MDJKLWtzMklSMGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdzkUOXG1O5dYfG82luIgfd6rYXwqAFwaGx5+ecWWimlz/H1Vmkf0POvRXB/K Gqo2uD37DziAPxfY2HIDCXQft5/EqDUb8Y01evBCwIupkoAMr6D3pPW8m46SgXAt T+fRvQhoz5fKKEfKBLiVCUIVO+SraEsz75nDXFqI90USYI83plzpGpg5k0Ch+ewr DWSsoF3NmMLTlNuOd+MD27d0wLU6awNn09DhMxIaZK49HV8LkOCLPwfIew8jl9au 5W3NOGgBlC9Znfz/aafYps3/NHlwPmub203pRBL4LxU3dp0roJ757o95ZY1uy+ca /5Ura7SNVCnqy97oZGz0odJnXw== -----END CERTIFICATE-----Generated at Tue Apr 28 04:31:01 2026 by rpki-client