$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft File: GM0m8vXURLcgxFKoxskgxtCmGAU.mft (raw, json) Hash identifier: 95JgAba1JUmB2eP19ZB+5U4IRuoJeZSFM1MwDSZU/1k= Subject key identifier: C7:5C:0B:DC:AD:4F:D7:C2:A8:EC:50:A6:C2:DC:83:A4:65:9B:FF:05 Authority key identifier: 18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 Certificate issuer: /CN=A91AAF02/serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Certificate serial: 0254 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft Manifest number: 024F Signing time: Sat 18 Apr 2026 17:24:56 +0000 Manifest this update: Sat 18 Apr 2026 17:24:56 +0000 Manifest next update: Sat 25 Apr 2026 17:24:56 +0000 Files and hashes: 1: GM0m8vXURLcgxFKoxskgxtCmGAU.crl (hash: 9nWeDooUyZRAgcw9Byku9URRtjCGAnIGkVmOfWSN0yA=) 2: 65A422A8C3F411EEB1191654C4F9AE02.roa (hash: s3pplahrtkEIiqFvq9bDswEXkbohC1ZEoUg/qiNs0L4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 596 (0x254) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF02, serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Validity Not Before: Apr 18 17:24:56 2026 GMT Not After : Apr 25 17:24:56 2026 GMT Subject: CN=69e3be68-11f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:57:65:33:04:ff:f4:c2:46:0f:30:9c:22:88: c3:54:bb:f2:6d:b7:6a:2b:73:3b:3f:ce:f0:75:17: 96:c8:18:72:5f:bf:da:37:51:36:48:8a:75:a4:77: 46:f6:82:af:55:f3:04:82:1b:2a:5d:50:8d:3a:ea: 99:f8:ba:7c:30:e8:2d:94:22:84:fe:68:2e:6a:ee: b0:9a:14:5d:9d:f5:12:39:bc:db:14:63:d4:fb:36: ce:cd:a8:1a:60:48:ca:29:5a:3b:5c:98:3e:9a:a7: 9d:d7:be:ad:f6:73:c5:8d:1c:9d:d9:84:de:c1:2a: b4:3f:d0:42:fd:21:1e:b7:bc:3f:4e:a9:e8:ad:13: 00:55:d0:33:bc:01:48:b9:cd:f1:07:c1:a4:b4:20: 69:96:bb:b4:50:ba:bd:df:2b:c1:c5:a0:84:ac:a4: 37:39:cd:f6:64:67:a9:25:98:b8:53:f0:14:a8:fa: 38:eb:9d:5b:94:c0:38:74:67:f1:cc:d5:cf:d2:9c: 93:d8:4f:0e:09:b9:2e:73:18:01:a0:49:fc:25:16: 1e:e0:00:bb:a9:e1:01:a6:ee:03:89:07:94:fb:dc: ca:5f:e4:70:36:d3:e2:5c:17:0b:ed:b8:6e:19:5b: ad:83:84:65:f0:33:14:fc:82:1c:10:ad:46:04:3c: c4:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:5C:0B:DC:AD:4F:D7:C2:A8:EC:50:A6:C2:DC:83:A4:65:9B:FF:05 X509v3 Authority Key Identifier: keyid:18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:39:4a:d4:9b:08:88:85:cc:37:c0:9e:20:0f:a2:c4:ef:7e: 1d:01:de:93:ce:09:23:6b:57:08:18:5e:3b:9c:95:5f:d1:ac: de:63:b4:59:c0:3c:dc:ce:3d:de:a3:bc:29:2b:2e:e3:b1:76: bf:d4:f2:71:f2:03:16:ab:02:5f:7d:21:01:71:29:70:f0:8e: 85:ca:34:c7:13:6e:10:b6:32:e5:9d:dc:e1:07:74:bc:e4:cb: 3a:88:1d:24:26:2c:47:ef:55:58:44:c2:60:21:e0:76:ab:61: 14:1d:82:72:4d:07:8a:21:b5:d2:31:1a:a8:b8:73:dd:c4:42: 3f:c7:fd:26:ea:fd:97:02:43:ff:12:86:58:f2:5a:63:2b:ca: ea:65:7f:b3:54:ce:c8:e1:10:b4:d7:ae:96:4b:1f:e1:ad:81: 76:69:b5:57:9c:0f:da:c9:8c:80:92:00:e9:c2:96:06:e6:28: 1c:2a:e3:a3:16:ce:20:ff:65:9c:aa:07:d3:d6:30:ea:bb:2c: 03:93:f2:0d:a1:72:f7:2b:27:68:21:42:9a:d8:1e:45:16:77: f3:d2:ac:59:48:1f:7e:27:aa:e0:77:c1:ba:02:3e:75:01:cb: 8b:a5:0d:c0:06:93:2c:0a:d3:44:4a:e9:f7:76:6f:32:d1:28: a2:aa:aa:e7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGMDIxMTAvBgNVBAUTKDE4Q0QyNkYyRjVENDQ0QjcyMEM0NTJBOEM2QzkyMEM2 RDBBNjE4MDUwHhcNMjYwNDE4MTcyNDU2WhcNMjYwNDI1MTcyNDU2WjAYMRYwFAYD VQQDEw02OWUzYmU2OC0xMWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1dlMwT/9MJGDzCcIojDVLvybbdqK3M7P87wdReWyBhyX7/aN1E2SIp1pHdG 9oKvVfMEghsqXVCNOuqZ+Lp8MOgtlCKE/mguau6wmhRdnfUSObzbFGPU+zbOzaga YEjKKVo7XJg+mqed176t9nPFjRyd2YTewSq0P9BC/SEet7w/TqnorRMAVdAzvAFI uc3xB8GktCBplru0ULq93yvBxaCErKQ3Oc32ZGepJZi4U/AUqPo4651blMA4dGfx zNXP0pyT2E8OCbkucxgBoEn8JRYe4AC7qeEBpu4DiQeU+9zKX+RwNtPiXBcL7bhu GVutg4Rl8DMU/IIcEK1GBDzE8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMdcC9yt T9fCqOxQpsLcg6Rlm/8FMB8GA1UdIwQYMBaAFBjNJvL11ES3IMRSqMbJIMbQphgF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUYwMi8yNjFGMzREOEMx RjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJMY2d4RktveHNrZ3h0Q21H QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0dNMG04dlhVUkxjZ3hGS294c2tneHRDbUdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUYwMi8yNjFGMzREOEMxRjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJM Y2d4RktveHNrZ3h0Q21HQVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYzlK1JsIiIXMN8CeIA+ixO9+HQHek84JI2tXCBheO5yVX9Gs3mO0WcA83M49 3qO8KSsu47F2v9TycfIDFqsCX30hAXEpcPCOhco0xxNuELYy5Z3c4Qd0vOTLOogd JCYsR+9VWETCYCHgdqthFB2Cck0HiiG10jEaqLhz3cRCP8f9Jur9lwJD/xKGWPJa YyvK6mV/s1TOyOEQtNeulksf4a2Bdmm1V5wP2smMgJIA6cKWBuYoHCrjoxbOIP9l nKoH09Yw6rssA5PyDaFy9ysnaCFCmtgeRRZ389KsWUgffieq4HfBugI+dQHLi6UN wAaTLArTRErp93ZvMtEooqqq5w== -----END CERTIFICATE-----Generated at Sat Apr 18 22:23:49 2026 by rpki-client