$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft File: GEMtUeYt2nKdH_G-G4H79VvYs0c.mft (raw, json) Hash identifier: gBMycpQVih+uJu90Tj4vUan8pC9Lzhw4US6zsTZsQtw= Subject key identifier: 05:B4:95:61:3C:06:D6:81:36:1E:51:25:D5:E1:6F:11:40:33:09:20 Authority key identifier: 18:43:2D:51:E6:2D:DA:72:9D:1F:F1:BE:1B:81:FB:F5:5B:D8:B3:47 Certificate issuer: /CN=A91AB1C2/serialNumber=18432D51E62DDA729D1FF1BE1B81FBF55BD8B347 Certificate serial: 30 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft Manifest number: 2D Signing time: Tue 03 Mar 2026 08:25:39 +0000 Manifest this update: Tue 03 Mar 2026 08:25:38 +0000 Manifest next update: Tue 10 Mar 2026 08:25:38 +0000 Files and hashes: 1: GEMtUeYt2nKdH_G-G4H79VvYs0c.crl (hash: 3Bp8enDLwv5A1KpnLgkKw5prXdKBK83clog+pVTpM5o=) 2: D4578CBCE0F811F0841404A85E6F56BC.roa (hash: kVIQF28+VXWQvXZxpxDtZOt5V7kSBnZhEpXWdQv6LfU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.crl rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 08:25:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB1C2, serialNumber=18432D51E62DDA729D1FF1BE1B81FBF55BD8B347 Validity Not Before: Mar 3 08:25:38 2026 GMT Not After : Mar 10 08:25:38 2026 GMT Subject: CN=69a69b03-0cad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a5:21:d6:88:65:b5:a9:4e:1c:2c:48:47:1b: cb:37:b1:d6:a1:31:36:a9:3c:bb:bf:bc:e0:9d:1b: 3e:b4:85:61:43:20:f6:99:55:54:53:c9:5d:e2:56: 07:de:9d:91:f8:56:c7:18:64:d8:25:74:18:3a:27: cb:0d:d8:67:09:69:3f:a8:85:1f:08:3a:9b:91:fe: 55:38:43:1e:8c:5a:57:2d:bf:9f:d3:e0:23:49:33: e0:d2:e5:f6:c5:2d:5e:88:fe:33:77:60:32:b9:90: 27:28:58:2e:8e:d1:0f:fd:28:6d:d5:be:de:dd:03: 89:9c:1d:ba:3b:7d:d2:79:e8:36:ce:02:17:64:c4: c9:e8:b6:6a:1d:df:b1:62:b2:c9:6d:2a:66:93:d0: 41:c4:ea:f5:ab:06:23:ed:5c:67:5a:0f:41:6d:17: c5:65:e6:5c:b8:1b:a5:9e:b4:b5:57:2e:c3:84:60: f1:64:80:21:c0:b2:db:6b:d9:15:51:c3:a0:cf:18: d1:6a:e9:b5:f5:1a:19:3d:8c:39:88:63:b9:08:1e: 68:85:f0:d1:0c:ff:de:3a:26:88:2f:a1:55:29:6f: e6:9c:4d:01:90:ab:a5:6e:9b:11:5c:2c:b0:50:4a: 34:b8:ca:c9:b3:25:a7:7c:fe:f6:4f:c7:1f:0c:c2: 64:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:B4:95:61:3C:06:D6:81:36:1E:51:25:D5:E1:6F:11:40:33:09:20 X509v3 Authority Key Identifier: keyid:18:43:2D:51:E6:2D:DA:72:9D:1F:F1:BE:1B:81:FB:F5:5B:D8:B3:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:d7:43:c7:83:05:4b:ca:eb:37:3f:15:4f:63:86:b4:5c:49: 7f:85:df:4a:d4:0a:84:47:74:18:40:62:81:27:99:9b:18:fa: 06:a4:7d:9a:77:5e:13:23:4e:83:3c:07:62:cc:ec:47:37:b0: 3a:f7:4b:d9:c7:d8:ef:03:ec:cb:91:e3:4c:ad:79:10:23:b9: 04:f2:97:ed:3c:2f:8d:c3:a7:66:e0:36:63:7c:1a:c9:94:97: 12:f4:e7:95:2c:1d:c3:c9:d4:6b:19:06:60:c9:e3:76:68:e6: 4c:31:ee:86:63:a2:b6:67:60:07:75:39:31:2e:51:d8:98:d1: f5:ec:f4:7b:a1:01:e2:2e:cd:02:b1:ff:c1:08:ef:a0:98:19: e4:99:c9:19:e5:41:5a:c3:33:db:d5:97:e2:dd:1e:ad:90:be: 42:db:db:81:e3:38:f6:d1:a7:0d:15:ca:37:05:57:b2:2a:55: 58:6c:19:b6:ba:3d:93:19:d2:66:7c:86:ea:74:9c:9b:36:f1: 91:aa:f6:19:40:98:69:31:38:d3:27:0f:34:54:70:3c:86:fd: d9:2c:6e:2a:a6:4b:41:b3:24:31:31:a2:57:3d:b6:f0:7e:fc: 20:24:8f:d5:02:51:17:ff:50:c9:f4:63:41:d2:0d:36:ba:98: eb:c7:9f:7d -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QjFDMjExMC8GA1UEBRMoMTg0MzJENTFFNjJEREE3MjlEMUZGMUJFMUI4MUZCRjU1 QkQ4QjM0NzAeFw0yNjAzMDMwODI1MzhaFw0yNjAzMTAwODI1MzhaMBgxFjAUBgNV BAMTDTY5YTY5YjAzLTBjYWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGpSHWiGW1qU4cLEhHG8s3sdahMTapPLu/vOCdGz60hWFDIPaZVVRTyV3iVgfe nZH4VscYZNgldBg6J8sN2GcJaT+ohR8IOpuR/lU4Qx6MWlctv5/T4CNJM+DS5fbF LV6I/jN3YDK5kCcoWC6O0Q/9KG3Vvt7dA4mcHbo7fdJ56DbOAhdkxMnotmod37Fi ssltKmaT0EHE6vWrBiPtXGdaD0FtF8Vl5ly4G6WetLVXLsOEYPFkgCHAsttr2RVR w6DPGNFq6bX1Ghk9jDmIY7kIHmiF8NEM/946JogvoVUpb+acTQGQq6VumxFcLLBQ SjS4ysmzJad8/vZPxx8MwmS9AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUBbSVYTwG 1oE2HlEl1eFvEUAzCSAwHwYDVR0jBBgwFoAUGEMtUeYt2nKdH/G+G4H79VvYs0cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFCMUMyLzA1OUY3Q0JDRENB MzExRjA4NUQ2RjE1QjQzNkY1NkJDL0dFTXRVZVl0Mm5LZEhfRy1HNEg3OVZ2WXMw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR0VNdFVlWXQybktkSF9HLUc0SDc5VnZZczBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFC MUMyLzA1OUY3Q0JDRENBMzExRjA4NUQ2RjE1QjQzNkY1NkJDL0dFTXRVZVl0Mm5L ZEhfRy1HNEg3OVZ2WXMwYy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBW10PHgwVLyus3PxVPY4a0XEl/hd9K1AqER3QYQGKBJ5mbGPoGpH2ad14TI06D PAdizOxHN7A690vZx9jvA+zLkeNMrXkQI7kE8pftPC+Nw6dm4DZjfBrJlJcS9OeV LB3DydRrGQZgyeN2aOZMMe6GY6K2Z2AHdTkxLlHYmNH17PR7oQHiLs0Csf/BCO+g mBnkmckZ5UFawzPb1Zfi3R6tkL5C29uB4zj20acNFco3BVeyKlVYbBm2uj2TGdJm fIbqdJybNvGRqvYZQJhpMTjTJw80VHA8hv3ZLG4qpktBsyQxMaJXPbbwfvwgJI/V AlEX/1DJ9GNB0g02upjrx599 -----END CERTIFICATE-----Generated at Wed Mar 4 08:21:06 2026 by rpki-client