$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft File: GEMtUeYt2nKdH_G-G4H79VvYs0c.mft (raw, json) Hash identifier: TRrkLbyLrf7BT9v5km983vw77Djb49Zq162gvr8PnI0= Subject key identifier: 14:C5:57:7D:C7:7D:72:F7:90:1F:F0:32:75:F6:70:A4:F4:1A:64:6E Authority key identifier: 18:43:2D:51:E6:2D:DA:72:9D:1F:F1:BE:1B:81:FB:F5:5B:D8:B3:47 Certificate issuer: /CN=A91AB1C2/serialNumber=18432D51E62DDA729D1FF1BE1B81FBF55BD8B347 Certificate serial: 47 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft Manifest number: 44 Signing time: Fri 17 Apr 2026 08:10:36 +0000 Manifest this update: Fri 17 Apr 2026 08:10:35 +0000 Manifest next update: Fri 24 Apr 2026 08:10:35 +0000 Files and hashes: 1: GEMtUeYt2nKdH_G-G4H79VvYs0c.crl (hash: nbl1hsNbEG4F7VXeaJ4tL4rpWl0er0bZG/t3Uwa/qzw=) 2: D4578CBCE0F811F0841404A85E6F56BC.roa (hash: kVIQF28+VXWQvXZxpxDtZOt5V7kSBnZhEpXWdQv6LfU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.crl rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:10:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB1C2, serialNumber=18432D51E62DDA729D1FF1BE1B81FBF55BD8B347 Validity Not Before: Apr 17 08:10:35 2026 GMT Not After : Apr 24 08:10:35 2026 GMT Subject: CN=69e1eafb-f477 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:03:a0:3a:36:55:4f:07:ab:8d:d1:6e:d9:7d: 8b:71:06:12:4a:53:7b:4e:68:9d:2d:59:7e:b5:ff: 0a:a9:c8:69:42:54:d3:a9:1a:66:f6:79:69:d4:1f: 57:c0:8b:dc:66:4b:6d:b0:dd:92:ca:cb:64:3c:75: 42:43:e4:62:b3:76:fe:b0:6c:76:79:0c:80:3c:ab: 95:6f:57:68:22:a3:16:cd:ba:d3:1b:1d:99:f6:3a: ef:91:dd:1b:e6:92:da:3c:e9:5c:6d:fd:61:db:be: ea:cb:68:35:9e:68:f4:e5:e4:1c:b2:51:ed:20:d5: 93:bb:af:d2:d1:c2:23:28:35:72:06:6b:4a:ef:5f: 49:85:75:df:3d:19:3f:d8:f3:13:6a:f0:13:af:85: cb:61:33:dc:df:d6:f1:1c:da:ad:20:24:5c:26:39: 59:78:34:c6:04:65:5c:c5:6c:1e:fa:b3:ea:ca:24: d5:ae:61:01:35:3e:d2:40:1f:b2:24:10:76:99:db: 0c:a3:d6:96:0c:b0:95:ee:a1:7d:34:bd:91:89:4f: b9:a4:3d:e0:e5:90:e9:e5:e4:1d:a8:57:d3:51:d4: be:8a:2f:a0:f9:9f:f8:4a:5a:7d:13:34:45:37:e9: dc:b5:f0:78:64:40:1c:6e:53:f3:f8:05:6d:c7:65: 9d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:C5:57:7D:C7:7D:72:F7:90:1F:F0:32:75:F6:70:A4:F4:1A:64:6E X509v3 Authority Key Identifier: keyid:18:43:2D:51:E6:2D:DA:72:9D:1F:F1:BE:1B:81:FB:F5:5B:D8:B3:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:73:65:2d:d9:d7:20:85:06:30:c7:02:b5:15:f4:7c:b9:31: c8:5b:95:a6:64:26:e4:97:57:27:35:97:46:b5:2c:07:7f:74: f1:a9:78:08:8f:6f:f4:9a:7c:9f:28:95:f1:18:a1:f6:02:0f: f1:86:5a:60:5a:83:82:7f:9b:64:79:d9:85:a5:ca:aa:7d:8a: 33:cc:5e:b2:8b:cb:41:e4:1b:5b:4d:bd:8c:1b:fe:40:21:99: 2f:e5:28:b3:a1:2c:75:bf:64:a5:8f:44:47:83:f3:aa:0e:8b: ce:62:60:eb:6b:b9:c8:c4:45:b7:25:bf:3b:4e:91:e1:7f:f7: 54:b5:9e:41:18:63:6f:59:fb:73:41:0e:85:2b:8b:24:3e:6a: 89:86:a9:67:38:a3:19:8f:04:cb:ad:73:cd:55:0c:d7:db:22: 05:c9:47:2f:ee:21:48:75:0f:22:f2:1e:9d:16:9c:8d:96:51: 1c:8a:ee:96:7b:32:7a:73:31:e4:6b:a5:c4:e0:5d:f7:13:e9: 63:0e:5f:c9:50:e2:5e:38:4a:78:d2:0c:21:4c:da:63:e4:b3: f2:d2:95:c3:64:31:49:fd:a5:41:f2:8e:0c:41:01:5b:1a:9a: 40:80:06:0b:7f:2c:6d:66:76:1b:d2:3f:63:25:6c:1f:37:49: f6:7c:4d:9a -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QjFDMjExMC8GA1UEBRMoMTg0MzJENTFFNjJEREE3MjlEMUZGMUJFMUI4MUZCRjU1 QkQ4QjM0NzAeFw0yNjA0MTcwODEwMzVaFw0yNjA0MjQwODEwMzVaMBgxFjAUBgNV BAMTDTY5ZTFlYWZiLWY0NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCDA6A6NlVPB6uN0W7ZfYtxBhJKU3tOaJ0tWX61/wqpyGlCVNOpGmb2eWnUH1fA i9xmS22w3ZLKy2Q8dUJD5GKzdv6wbHZ5DIA8q5VvV2gioxbNutMbHZn2Ou+R3Rvm kto86Vxt/WHbvurLaDWeaPTl5ByyUe0g1ZO7r9LRwiMoNXIGa0rvX0mFdd89GT/Y 8xNq8BOvhcthM9zf1vEc2q0gJFwmOVl4NMYEZVzFbB76s+rKJNWuYQE1PtJAH7Ik EHaZ2wyj1pYMsJXuoX00vZGJT7mkPeDlkOnl5B2oV9NR1L6KL6D5n/hKWn0TNEU3 6dy18HhkQBxuU/P4BW3HZZ21AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUFMVXfcd9 cveQH/AydfZwpPQaZG4wHwYDVR0jBBgwFoAUGEMtUeYt2nKdH/G+G4H79VvYs0cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFCMUMyLzA1OUY3Q0JDRENB MzExRjA4NUQ2RjE1QjQzNkY1NkJDL0dFTXRVZVl0Mm5LZEhfRy1HNEg3OVZ2WXMw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR0VNdFVlWXQybktkSF9HLUc0SDc5VnZZczBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFC MUMyLzA1OUY3Q0JDRENBMzExRjA4NUQ2RjE1QjQzNkY1NkJDL0dFTXRVZVl0Mm5L ZEhfRy1HNEg3OVZ2WXMwYy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCTc2Ut2dcghQYwxwK1FfR8uTHIW5WmZCbkl1cnNZdGtSwHf3TxqXgIj2/0mnyf KJXxGKH2Ag/xhlpgWoOCf5tkedmFpcqqfYozzF6yi8tB5BtbTb2MG/5AIZkv5Siz oSx1v2Slj0RHg/OqDovOYmDra7nIxEW3Jb87TpHhf/dUtZ5BGGNvWftzQQ6FK4sk PmqJhqlnOKMZjwTLrXPNVQzX2yIFyUcv7iFIdQ8i8h6dFpyNllEciu6WezJ6czHk a6XE4F33E+ljDl/JUOJeOEp40gwhTNpj5LPy0pXDZDFJ/aVB8o4MQQFbGppAgAYL fyxtZnYb0j9jJWwfN0n2fE2a -----END CERTIFICATE-----Generated at Sat Apr 18 21:06:57 2026 by rpki-client