$ rpki-client -vvf rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft File: GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft (raw, json) Hash identifier: MU/btuM3U+QKWYY1e25yI3/34XKdwkKJVAmH+7cfUtY= Subject key identifier: C8:68:6E:AB:B5:35:6F:CF:61:D7:24:31:B6:66:18:FF:FD:54:5E:AB Authority key identifier: 19:E0:5A:FD:1E:6B:36:25:4A:5C:B1:50:36:39:38:4B:6A:22:A8:26 Certificate issuer: /CN=A9120656/serialNumber=19E05AFD1E6B36254A5CB1503639384B6A22A826 Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GeBa_R5rNiVKXLFQNjk4S2oiqCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft Manifest number: 5E Signing time: Sun 05 Apr 2026 07:28:21 +0000 Manifest this update: Sun 05 Apr 2026 07:28:20 +0000 Manifest next update: Sun 12 Apr 2026 07:28:20 +0000 Files and hashes: 1: GeBa_R5rNiVKXLFQNjk4S2oiqCY.crl (hash: ZBQeHIJy3BJIOvNxqhdUsoEmMwEgdN3QR0WNHZib9jE=) 2: 6D5A36FCB2FB11F0861C2754C4F9AE02.roa (hash: HwzcTj+6E2of2zeq8O1Ng/ngV7Rw888FF8/vBEBckro=) 3: CD4FE5A2B2F611F08EC41B1EC4F9AE02.roa (hash: JcAxzRv81BEK8q/J7k6ROwCVG10hKzG1+sw20R/B8ek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.crl rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GeBa_R5rNiVKXLFQNjk4S2oiqCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 07:28:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120656, serialNumber=19E05AFD1E6B36254A5CB1503639384B6A22A826 Validity Not Before: Apr 5 07:28:20 2026 GMT Not After : Apr 12 07:28:20 2026 GMT Subject: CN=69d20f15-3f12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:80:2c:c6:89:cc:16:2e:b1:43:7b:e7:8e:b9: dc:ec:8e:1f:36:33:cf:b1:54:86:14:6b:d5:5a:83: da:95:fc:41:2a:f9:26:93:b6:d1:8f:50:d5:15:6a: 71:91:66:a3:f5:76:c1:be:88:0d:09:df:1a:f2:e0: 32:31:31:3c:86:76:c1:99:42:fa:74:12:7d:17:75: 9f:c3:25:2e:25:f3:0b:a2:df:39:c3:68:18:89:e9: 58:c8:f5:a2:69:50:f0:7e:68:13:8a:38:da:73:ea: e3:37:58:73:87:81:66:ac:50:bc:88:c8:dc:76:e4: 4d:28:9d:8a:f7:f9:92:f4:68:0c:46:7e:62:71:12: 64:60:ac:ad:b4:a7:fd:8a:20:cf:ee:f8:70:34:d5: 92:b2:ac:36:8c:33:2d:5b:ab:ca:4f:dc:7f:42:a6: c4:b8:cd:e0:48:b0:12:1b:3a:c7:1c:e4:04:02:ca: fb:cb:8d:dc:69:ba:5a:63:e5:ad:8f:f3:c7:11:dc: 89:06:05:3c:e1:ba:86:8a:11:ec:95:c4:51:a3:95: 4d:c6:2a:aa:b0:cf:78:fc:46:5d:00:0d:40:12:b5: 25:56:16:ff:a3:92:cd:0c:50:4e:13:68:2a:8c:d0: bf:bd:26:84:fa:97:6b:fe:2f:0d:58:6e:57:ea:d2: 48:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:68:6E:AB:B5:35:6F:CF:61:D7:24:31:B6:66:18:FF:FD:54:5E:AB X509v3 Authority Key Identifier: keyid:19:E0:5A:FD:1E:6B:36:25:4A:5C:B1:50:36:39:38:4B:6A:22:A8:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GeBa_R5rNiVKXLFQNjk4S2oiqCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:43:eb:43:d8:8f:1d:a9:54:d8:5b:03:7a:2a:f8:45:6d:79: d4:b8:2e:a0:af:f2:f8:48:9c:f8:c5:c4:34:16:8c:5e:9c:fb: 6e:fb:42:81:56:ec:a4:82:40:20:11:72:c0:a6:f3:1c:66:d9: e4:0b:49:11:01:ce:89:68:fd:b2:ac:7c:2e:7e:b4:35:97:66: d9:17:18:78:99:4d:42:fb:c7:20:33:90:cc:32:68:74:59:2f: 56:a7:93:2d:29:10:c1:d3:f8:4f:28:79:ec:12:bc:fc:08:24: 56:1a:14:1c:5f:ab:bc:36:33:f9:d9:9d:57:37:38:df:9e:bf: cb:94:4b:b5:df:ce:79:40:a9:72:6d:68:de:21:14:76:95:da: 54:b1:8a:43:26:3a:6d:b7:5b:de:1e:0b:6a:4e:c5:79:86:2c: de:02:db:69:d7:65:b6:fa:4e:6b:a9:4c:7e:60:44:71:35:db: 16:c1:f6:2e:24:e3:5e:ce:0a:46:1e:a2:48:c1:e6:2a:b9:0a: 60:be:94:1e:da:9c:40:e1:9e:9d:13:b5:bb:f4:37:37:2b:3c: 7a:03:5b:91:13:cf:cd:fb:83:4e:e2:15:41:89:c6:18:46:e4: 77:13:4a:9e:2d:f5:90:2c:aa:0e:ff:f8:d2:8d:b0:c0:95:b5: 36:26:3a:34 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MDY1NjExMC8GA1UEBRMoMTlFMDVBRkQxRTZCMzYyNTRBNUNCMTUwMzYzOTM4NEI2 QTIyQTgyNjAeFw0yNjA0MDUwNzI4MjBaFw0yNjA0MTIwNzI4MjBaMBgxFjAUBgNV BAMTDTY5ZDIwZjE1LTNmMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIgCzGicwWLrFDe+eOudzsjh82M8+xVIYUa9Vag9qV/EEq+SaTttGPUNUVanGR ZqP1dsG+iA0J3xry4DIxMTyGdsGZQvp0En0XdZ/DJS4l8wui3znDaBiJ6VjI9aJp UPB+aBOKONpz6uM3WHOHgWasULyIyNx25E0onYr3+ZL0aAxGfmJxEmRgrK20p/2K IM/u+HA01ZKyrDaMMy1bq8pP3H9CpsS4zeBIsBIbOscc5AQCyvvLjdxpulpj5a2P 88cR3IkGBTzhuoaKEeyVxFGjlU3GKqqwz3j8Rl0ADUAStSVWFv+jks0MUE4TaCqM 0L+9JoT6l2v+Lw1Yblfq0kgfAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUyGhuq7U1 b89h1yQxtmYY//1UXqswHwYDVR0jBBgwFoAUGeBa/R5rNiVKXLFQNjk4S2oiqCYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIwNjU2LzRBNzA5NTY0QjAw RDExRjA4REU0RUQ3QkM0RjlBRTAyL0dlQmFfUjVyTmlWS1hMRlFOams0UzJvaXFD WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR2VCYV9SNXJOaVZLWExGUU5qazRTMm9pcUNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIw NjU2LzRBNzA5NTY0QjAwRDExRjA4REU0RUQ3QkM0RjlBRTAyL0dlQmFfUjVyTmlW S1hMRlFOams0UzJvaXFDWS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQC2Q+tD2I8dqVTYWwN6KvhFbXnUuC6gr/L4SJz4xcQ0FoxenPtu+0KBVuykgkAg EXLApvMcZtnkC0kRAc6JaP2yrHwufrQ1l2bZFxh4mU1C+8cgM5DMMmh0WS9Wp5Mt KRDB0/hPKHnsErz8CCRWGhQcX6u8NjP52Z1XNzjfnr/LlEu13855QKlybWjeIRR2 ldpUsYpDJjptt1veHgtqTsV5hizeAttp12W2+k5rqUx+YERxNdsWwfYuJONezgpG HqJIweYquQpgvpQe2pxA4Z6dE7W79Dc3Kzx6A1uRE8/N+4NO4hVBicYYRuR3E0qe LfWQLKoO//jSjbDAlbU2Jjo0 -----END CERTIFICATE-----Generated at Mon Apr 6 14:45:39 2026 by rpki-client