$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft File: gtgYhh3Upw93CNIF5LiehRTKH2w.mft (raw, json) Hash identifier: xHg/clvk1K43VkudDFAcbdypLBf1qk0ZL4Bd7IQ6DR0= Subject key identifier: E8:3E:0D:0B:10:27:42:41:72:C1:90:F0:E9:DA:2D:48:95:58:E2:A7 Authority key identifier: 82:D8:18:86:1D:D4:A7:0F:77:08:D2:05:E4:B8:9E:85:14:CA:1F:6C Certificate issuer: /CN=A91C9A8D/serialNumber=82D818861DD4A70F7708D205E4B89E8514CA1F6C Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft Manifest number: 0560 Signing time: Sat 04 Apr 2026 23:51:23 +0000 Manifest this update: Sat 04 Apr 2026 23:51:22 +0000 Manifest next update: Sat 11 Apr 2026 23:51:22 +0000 Files and hashes: 1: gtgYhh3Upw93CNIF5LiehRTKH2w.crl (hash: biz6fRG4kQ31HOFQ/U78A1SNG8pwvS5xBiFeoe1yUA8=) 2: D2A57AD8DDF111EF969ABC1CC4F9AE02.roa (hash: eoTb51P+t/j4kZh52b3zmJyrvFvaeaq6DjMaAos1Ol0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:51:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=82D818861DD4A70F7708D205E4B89E8514CA1F6C Validity Not Before: Apr 4 23:51:22 2026 GMT Not After : Apr 11 23:51:22 2026 GMT Subject: CN=69d1a3fb-b10f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c2:c6:57:2e:22:1f:a7:36:ba:1d:62:07:1a: be:6f:95:fe:66:86:0b:fc:46:2b:44:b6:76:29:f5: d1:9d:8a:1b:f1:51:9b:e6:83:7e:4c:fd:72:d3:93: e8:e6:3c:66:36:d7:9d:cb:24:f0:88:72:0c:7c:dc: e1:d0:43:cf:72:0c:7e:30:22:ff:c2:e0:9c:c1:f5: e4:5d:04:c3:0d:f7:86:c8:e8:9c:9e:04:e8:ea:2a: d7:ec:3b:16:ef:08:28:5e:2a:ec:28:14:19:7f:1c: 5b:73:19:b2:a2:53:a5:dc:20:2b:6c:74:af:d8:94: e0:d9:3d:1b:d3:a1:22:f9:ca:c2:d5:ea:ce:13:a8: 4e:0e:0d:cb:ab:b0:fe:9f:f3:5c:04:71:a2:f8:eb: e4:b3:5f:d2:2b:52:c8:d4:66:d8:77:5f:59:b6:0b: 7b:ca:6e:95:81:50:dd:33:9c:57:97:3b:3a:22:04: 2e:d2:af:4f:30:1a:dd:a3:5e:ab:0d:51:a7:73:38: fe:5c:2a:00:3f:2e:81:36:f3:d0:c0:aa:39:e8:2a: f6:52:3d:00:6a:50:ef:8c:01:e6:c9:59:8e:a5:c0: 6d:03:73:7b:70:38:f6:e9:20:7a:85:cc:f0:d5:07: a7:70:56:5d:08:9f:28:db:fa:ae:54:6d:1e:50:61: f3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:3E:0D:0B:10:27:42:41:72:C1:90:F0:E9:DA:2D:48:95:58:E2:A7 X509v3 Authority Key Identifier: keyid:82:D8:18:86:1D:D4:A7:0F:77:08:D2:05:E4:B8:9E:85:14:CA:1F:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:43:83:28:cb:de:c4:26:1f:b4:d4:62:7d:0d:05:64:78:d1: 77:8b:80:34:eb:1a:e0:22:d7:0a:c0:65:30:50:ac:6e:bc:00: 1d:09:b9:d4:c3:5a:f5:cf:4f:c4:38:0a:53:bd:da:5e:91:31: df:97:a1:80:16:0e:12:0c:cf:82:01:dd:f3:9e:bf:10:a9:88: f4:27:9f:5f:cb:5c:3b:6a:57:e0:86:8c:fc:9c:97:70:b2:94: ac:4d:b9:ef:74:ca:db:e2:e3:99:3f:b6:e7:bd:a2:18:2d:5b: 5f:fa:29:d4:a4:ff:a5:62:6c:f2:af:8e:d7:53:31:04:00:12: b4:e2:78:a9:d1:11:50:1b:60:c4:6e:82:02:0c:9c:48:40:c5: d5:70:b5:ee:1c:0f:25:8a:f2:a4:fb:63:c3:e1:3a:63:f0:4f: 35:32:02:b8:de:58:d5:9b:ec:2e:9c:9c:cf:b2:c0:c0:a5:43: 4d:92:eb:8f:34:41:f6:b5:88:27:e0:15:44:49:62:a6:01:ea: e5:40:b9:cf:ff:ab:e6:45:4d:39:ea:ab:e3:45:10:26:96:4f: d1:f7:8a:90:d8:07:22:2d:74:aa:d8:0c:d6:76:07:55:26:06: c8:21:1a:78:14:08:df:1e:6d:ed:36:10:c9:0a:93:d5:cd:16: 78:0f:6d:b7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKDgyRDgxODg2MURENEE3MEY3NzA4RDIwNUU0Qjg5RTg1 MTRDQTFGNkMwHhcNMjYwNDA0MjM1MTIyWhcNMjYwNDExMjM1MTIyWjAYMRYwFAYD VQQDEw02OWQxYTNmYi1iMTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAocLGVy4iH6c2uh1iBxq+b5X+ZoYL/EYrRLZ2KfXRnYob8VGb5oN+TP1y05Po 5jxmNtedyyTwiHIMfNzh0EPPcgx+MCL/wuCcwfXkXQTDDfeGyOicngTo6irX7DsW 7wgoXirsKBQZfxxbcxmyolOl3CArbHSv2JTg2T0b06Ei+crC1erOE6hODg3Lq7D+ n/NcBHGi+Ovks1/SK1LI1GbYd19Ztgt7ym6VgVDdM5xXlzs6IgQu0q9PMBrdo16r DVGnczj+XCoAPy6BNvPQwKo56Cr2Uj0AalDvjAHmyVmOpcBtA3N7cDj26SB6hczw 1QencFZdCJ8o2/quVG0eUGHzrQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOg+DQsQ J0JBcsGQ8OnaLUiVWOKnMB8GA1UdIwQYMBaAFILYGIYd1KcPdwjSBeS4noUUyh9s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi9ndGdZaGgzVXB3OTNDTklGNUxpZWhSVEtI MncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d0Z1loaDNVcHc5M0NOSUY1TGllaFJUS0gydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi9ndGdZaGgzVXB3 OTNDTklGNUxpZWhSVEtIMncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAEODKMvexCYftNRifQ0FZHjRd4uANOsa4CLXCsBlMFCsbrwAHQm51MNa9c9P xDgKU73aXpEx35ehgBYOEgzPggHd856/EKmI9CefX8tcO2pX4IaM/JyXcLKUrE25 73TK2+LjmT+2572iGC1bX/op1KT/pWJs8q+O11MxBAAStOJ4qdERUBtgxG6CAgyc SEDF1XC17hwPJYrypPtjw+E6Y/BPNTICuN5Y1ZvsLpycz7LAwKVDTZLrjzRB9rWI J+AVRElipgHq5UC5z/+r5kVNOeqr40UQJpZP0feKkNgHIi10qtgM1nYHVSYGyCEa eBQI3x5t7TYQyQqT1c0WeA9ttw== -----END CERTIFICATE-----Generated at Mon Apr 6 10:10:06 2026 by rpki-client