$ rpki-client -vvf rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft File: GLHIjO5o9jwhzWoMsbgx1db11s8.mft (raw, json) Hash identifier: AU5VmAas8cVKcA0hya4eCvYd5NhgVK9NZExbjT5ZA8M= Subject key identifier: 2F:E5:10:4D:FF:56:D0:F7:DC:FA:0E:87:B3:2A:28:63:6A:B6:51:71 Authority key identifier: 18:B1:C8:8C:EE:68:F6:3C:21:CD:6A:0C:B1:B8:31:D5:D6:F5:D6:CF Certificate issuer: /CN=A91DAFA2/serialNumber=18B1C88CEE68F63C21CD6A0CB1B831D5D6F5D6CF Certificate serial: 1CAD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft Manifest number: 1C9F Signing time: Sat 04 Apr 2026 16:05:09 +0000 Manifest this update: Sat 04 Apr 2026 16:05:09 +0000 Manifest next update: Sat 11 Apr 2026 16:05:09 +0000 Files and hashes: 1: GLHIjO5o9jwhzWoMsbgx1db11s8.crl (hash: b15jIeedx/zI0DRaGLBlFQ6K0iExDZ8C4zyJJJ0hueo=) 2: 02FB1DCAEF6A11E69A4AD551C4F9AE02.roa (hash: 2yvcCZV+pN9jEg/q9+iV+9Rfav7HZxuqjuwplpogEBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.crl rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 16:05:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7341 (0x1cad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DAFA2, serialNumber=18B1C88CEE68F63C21CD6A0CB1B831D5D6F5D6CF Validity Not Before: Apr 4 16:05:09 2026 GMT Not After : Apr 11 16:05:09 2026 GMT Subject: CN=69d136b5-dc05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9f:5f:47:7a:df:f1:90:1c:c3:b8:eb:f7:9f: 1a:46:08:f6:bd:ad:95:61:3e:df:0f:ec:c1:c2:c7: 73:ec:19:77:38:da:50:e0:b4:3f:66:ec:4f:c8:45: 6b:82:43:98:f7:82:25:fc:7f:31:95:b3:7e:4b:6b: 1a:21:4c:16:61:17:3d:2d:5b:4e:f4:ef:89:0d:25: 0d:98:ca:02:ba:80:47:d8:2d:5f:53:64:02:cb:4a: f8:30:f6:62:59:83:a0:4a:47:2b:91:4d:41:63:d2: 21:94:af:50:65:94:2a:d2:38:ed:a7:7a:09:bf:14: 19:6e:fc:a5:75:23:cc:2d:93:80:52:e7:ac:99:40: 3e:3d:28:63:e9:ce:39:74:ea:f2:9d:64:48:97:50: c1:da:42:43:b6:ed:a4:3f:52:fc:ba:f8:e0:bf:83: 1a:65:b1:3d:2c:f7:f8:7c:64:ea:5b:38:40:b8:53: 3b:a6:1b:c8:14:35:02:42:4d:4d:1b:02:49:69:79: 50:64:d3:ae:38:11:f9:2d:c9:a4:0d:6f:2a:30:d3: 27:ff:ef:66:de:59:6a:c8:be:01:49:41:cf:dd:cf: 4f:6c:09:6a:4b:e3:59:20:74:32:db:df:75:4e:3b: 4f:8a:a5:b7:a2:12:64:15:e7:67:30:42:7f:0f:cd: 5d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:E5:10:4D:FF:56:D0:F7:DC:FA:0E:87:B3:2A:28:63:6A:B6:51:71 X509v3 Authority Key Identifier: keyid:18:B1:C8:8C:EE:68:F6:3C:21:CD:6A:0C:B1:B8:31:D5:D6:F5:D6:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:7a:9d:92:58:f3:69:ae:04:59:47:c6:16:15:4b:98:63:38: 1c:e9:db:24:df:7c:45:46:c1:18:e6:9d:b4:34:35:d4:e1:8f: d5:06:d8:b3:9a:4c:b5:13:ba:7a:ed:56:8b:95:8f:93:1c:b4: 44:77:7d:cd:91:69:97:5c:a6:f0:e6:3e:5b:8d:6d:91:00:6a: ae:c1:d8:60:96:4f:49:50:b0:fe:f2:8f:c3:7e:17:71:83:e8: d5:7e:74:18:35:6b:aa:7c:31:1f:12:ff:5f:48:c4:44:40:aa: 57:24:e7:1f:9a:00:ba:9e:7a:b6:e4:a3:a8:99:1b:f7:f4:73: a6:62:64:f3:d0:35:cc:22:5b:b6:b6:6c:13:2b:df:1a:79:87: 29:da:06:4f:84:ee:58:db:9e:e9:01:32:b5:63:c9:f9:dc:30: bc:de:df:b4:fd:9f:8b:fc:41:51:01:61:27:ac:14:40:dc:1d: fd:0f:0b:d1:e1:71:af:05:99:66:80:b5:51:18:42:cb:4a:8a: 9c:11:31:27:56:ac:e8:9c:e8:90:de:ae:de:fd:e7:7f:63:d2: 42:0c:52:2c:fe:09:bb:11:68:4b:84:17:b6:a4:c9:9d:4c:2e: e6:d0:e0:a0:c0:fc:9e:ff:da:74:df:0c:02:75:8d:4e:dd:0c: 4b:3c:4d:9a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REFGQTIxMTAvBgNVBAUTKDE4QjFDODhDRUU2OEY2M0MyMUNENkEwQ0IxQjgzMUQ1 RDZGNUQ2Q0YwHhcNMjYwNDA0MTYwNTA5WhcNMjYwNDExMTYwNTA5WjAYMRYwFAYD VQQDEw02OWQxMzZiNS1kYzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJ9fR3rf8ZAcw7jr958aRgj2va2VYT7fD+zBwsdz7Bl3ONpQ4LQ/ZuxPyEVr gkOY94Il/H8xlbN+S2saIUwWYRc9LVtO9O+JDSUNmMoCuoBH2C1fU2QCy0r4MPZi WYOgSkcrkU1BY9IhlK9QZZQq0jjtp3oJvxQZbvyldSPMLZOAUuesmUA+PShj6c45 dOrynWRIl1DB2kJDtu2kP1L8uvjgv4MaZbE9LPf4fGTqWzhAuFM7phvIFDUCQk1N GwJJaXlQZNOuOBH5LcmkDW8qMNMn/+9m3llqyL4BSUHP3c9PbAlqS+NZIHQy2991 TjtPiqW3ohJkFednMEJ/D81dtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC/lEE3/ VtD33PoOh7MqKGNqtlFxMB8GA1UdIwQYMBaAFBixyIzuaPY8Ic1qDLG4MdXW9dbP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQUZBMi9CN0I2Nzc2MEVG NjkxMUU2QkQ3M0M2NTFDNEY5QUUwMi9HTEhJak81bzlqd2h6V29Nc2JneDFkYjEx czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dMSElqTzVvOWp3aHpXb01zYmd4MWRiMTFzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QUZBMi9CN0I2Nzc2MEVGNjkxMUU2QkQ3M0M2NTFDNEY5QUUwMi9HTEhJak81bzlq d2h6V29Nc2JneDFkYjExczgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAonqdkljzaa4EWUfGFhVLmGM4HOnbJN98RUbBGOadtDQ11OGP1QbYs5pMtRO6 eu1Wi5WPkxy0RHd9zZFpl1ym8OY+W41tkQBqrsHYYJZPSVCw/vKPw34XcYPo1X50 GDVrqnwxHxL/X0jERECqVyTnH5oAup56tuSjqJkb9/RzpmJk89A1zCJbtrZsEyvf GnmHKdoGT4TuWNue6QEytWPJ+dwwvN7ftP2fi/xBUQFhJ6wUQNwd/Q8L0eFxrwWZ ZoC1URhCy0qKnBExJ1as6JzokN6u3v3nf2PSQgxSLP4JuxFoS4QXtqTJnUwu5tDg oMD8nv/adN8MAnWNTt0MSzxNmg== -----END CERTIFICATE-----Generated at Mon Apr 6 09:02:36 2026 by rpki-client