$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft File: GxesPclsojRSUCPv02J-ks2IR0g.mft (raw, json) Hash identifier: 7T0IQNp1qVS0V8o+df99Q57xjiNM70z0DfCU0/irogg= Subject key identifier: 64:44:C4:D6:6B:1A:02:DD:03:E5:C2:69:27:2F:74:58:AA:C5:85:5A Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1DE4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft Manifest number: 1D90 Signing time: Thu 12 Mar 2026 16:01:53 +0000 Manifest this update: Thu 12 Mar 2026 16:01:52 +0000 Manifest next update: Thu 19 Mar 2026 16:01:52 +0000 Files and hashes: 1: GxesPclsojRSUCPv02J-ks2IR0g.crl (hash: mhV3c0TYAjfr3C1PRNJroivWb5Q6r1pkJpA+hoUipSk=) 2: 4E2669F4FF3B11EB910E8847C4F9AE02.roa (hash: hsIMVES/RshZRMg/IYSKfaC8xNA1Vhhbh6ui/TW2WWo=) 3: C154DA14E85C11EBA2171A25C4F9AE02.roa (hash: IPxwuDAs+rs/dWI7IwZQIjs7sZfbx/rQmmj734bJ2/s=) 4: 907B9B20E8AD11EBAA895D0AC4F9AE02.roa (hash: BRkeotXr+WaPofrhA/ccsuUEV0af6klyrqasow7IzzQ=) 5: 8A1AF86E94BC11EC9E49DB41C4F9AE02.roa (hash: YuvkBqlEeFCoXBaOZasT0zM29UlrwmymL5NE2blVSiE=) 6: C2EECBA0E85C11EBA2171A25C4F9AE02.roa (hash: 3ijGtnKRZtAGtvocDeUrSBYus200G7y6Dr0KE05wtXM=) 7: 89654CDAB83B11EFAA80DD09C4F9AE02.roa (hash: Y2B9BXK6GgEUgrdOgkuvUr+OvwRamCav5yIYFYLKyOo=) 8: 4D609E86FF3B11EB910E8847C4F9AE02.roa (hash: WhkLj0w45a5YtVE3jvzrZ8Dxr8O2vOWWoHPkacPIXzA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 16:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7652 (0x1de4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2, serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Validity Not Before: Mar 12 16:01:52 2026 GMT Not After : Mar 19 16:01:52 2026 GMT Subject: CN=69b2e371-2280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9b:bc:89:ab:e1:9f:8f:01:a9:95:87:fd:47: aa:c0:90:7d:9b:d4:30:d5:c8:ab:8c:e5:55:33:56: e1:a3:c8:24:18:10:40:02:1a:b7:66:19:5d:e3:6c: 43:13:2e:05:1b:c0:06:a9:68:ef:bc:a2:a8:c0:1d: 33:a3:d5:34:98:39:65:0c:8c:72:31:76:6a:15:88: c3:97:66:db:7a:45:fb:35:d6:32:68:5d:8d:f8:ea: 0c:a1:ca:2a:89:4f:1c:16:8f:dc:56:49:2c:cc:f1: 6f:00:42:5e:fb:63:97:a9:6a:0c:cd:75:82:97:e6: 86:c5:79:48:33:3d:8b:3a:e8:2a:dc:b4:5f:69:8a: ee:e2:9f:87:78:35:2f:26:c5:5c:ae:c8:9d:41:4a: d1:65:8c:b2:2e:3d:97:4f:0d:80:d6:bf:0b:2c:52: 1c:1d:b9:da:89:ac:a4:6d:20:a0:22:31:fb:7f:91: fb:11:7f:8f:69:25:f7:88:55:fb:b1:fd:c3:43:83: c6:53:82:89:81:10:81:3b:0b:1f:27:01:d8:fa:0b: e5:22:fa:ea:74:69:b9:1e:23:17:84:66:90:8a:6a: 61:c0:01:23:21:5b:31:37:c1:75:5c:7a:53:de:09: 07:c2:93:ac:e9:4b:e4:e9:c9:e6:f3:24:dc:99:f0: 11:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:44:C4:D6:6B:1A:02:DD:03:E5:C2:69:27:2F:74:58:AA:C5:85:5A X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:9d:a4:80:75:24:0d:35:69:80:34:f6:e8:1d:69:eb:15:db: 5c:5e:51:1e:20:47:de:8c:96:bb:04:fa:4a:34:3e:94:a1:59: b7:9f:49:cc:d2:64:79:b5:4f:56:e0:a9:29:41:a3:1a:79:85: e7:bd:fc:0f:59:70:31:1e:96:15:30:7a:54:ef:33:7b:91:ca: ab:f6:6f:a4:a0:18:c8:d9:33:cf:d6:68:1d:ea:ca:fe:ed:42: d1:b3:23:b7:5d:5f:2f:ae:b3:2f:33:78:96:f8:a7:29:2e:3c: 28:84:09:7e:86:f1:ce:cf:11:ee:92:4b:c9:70:b0:fe:8c:5a: f4:66:52:64:25:5b:dd:d7:70:99:74:74:17:14:da:d9:2a:9a: ae:8a:49:0b:a1:82:78:2f:83:fc:ae:e0:bc:78:de:dc:5e:4b: 48:66:6a:97:83:0d:ee:d3:53:08:41:81:d1:d1:5b:a9:f8:af: c0:fe:7a:3e:8d:7f:a8:e9:0c:09:9a:8a:5b:bd:2e:cc:d1:56: 68:08:f7:13:c7:d4:fd:14:4c:98:79:11:72:db:c5:9f:15:55: fd:24:00:25:61:f6:f4:07:c0:e6:05:8b:a3:99:3c:a1:98:6e: 28:2f:29:02:8c:71:5d:47:8e:82:e2:69:10:1b:cc:53:db:02: 5b:8a:99:e8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjYwMzEyMTYwMTUyWhcNMjYwMzE5MTYwMTUyWjAYMRYwFAYD VQQDEw02OWIyZTM3MS0yMjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpu8iavhn48BqZWH/UeqwJB9m9Qw1cirjOVVM1bho8gkGBBAAhq3Zhld42xD Ey4FG8AGqWjvvKKowB0zo9U0mDllDIxyMXZqFYjDl2bbekX7NdYyaF2N+OoMocoq iU8cFo/cVkkszPFvAEJe+2OXqWoMzXWCl+aGxXlIMz2LOugq3LRfaYru4p+HeDUv JsVcrsidQUrRZYyyLj2XTw2A1r8LLFIcHbnaiaykbSCgIjH7f5H7EX+PaSX3iFX7 sf3DQ4PGU4KJgRCBOwsfJwHY+gvlIvrqdGm5HiMXhGaQimphwAEjIVsxN8F1XHpT 3gkHwpOs6Uvk6cnm8yTcmfARYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGRExNZr GgLdA+XCaScvdFiqxYVaMB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REJGMi9FMzQ0NTAxNkMyRjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29q UlNVQ1B2MDJKLWtzMklSMGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAE52kgHUkDTVpgDT26B1p6xXbXF5RHiBH3oyWuwT6SjQ+lKFZt59JzNJkebVP VuCpKUGjGnmF5738D1lwMR6WFTB6VO8ze5HKq/ZvpKAYyNkzz9ZoHerK/u1C0bMj t11fL66zLzN4lvinKS48KIQJfobxzs8R7pJLyXCw/oxa9GZSZCVb3ddwmXR0FxTa 2SqaropJC6GCeC+D/K7gvHje3F5LSGZql4MN7tNTCEGB0dFbqfivwP56Po1/qOkM CZqKW70uzNFWaAj3E8fU/RRMmHkRctvFnxVV/SQAJWH29AfA5gWLo5k8oZhuKC8p AoxxXUeOguJpEBvMU9sCW4qZ6A== -----END CERTIFICATE-----Generated at Fri Mar 13 03:47:16 2026 by rpki-client