$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft File: gYkRn4AeKAprTdViZT7xA2lh0Js.mft (raw, json) Hash identifier: VAA3QKEpiNP+jkNh2UoZKRoCj+ZIOcEPFxqNXi4JUXQ= Subject key identifier: 54:28:7F:58:58:9F:F3:71:DF:F0:FD:8D:90:88:CD:18:29:C2:3C:08 Authority key identifier: 81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B Certificate issuer: /CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Certificate serial: 0528 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft Manifest number: 0521 Signing time: Sat 04 Apr 2026 23:20:56 +0000 Manifest this update: Sat 04 Apr 2026 23:20:55 +0000 Manifest next update: Sat 11 Apr 2026 23:20:55 +0000 Files and hashes: 1: gYkRn4AeKAprTdViZT7xA2lh0Js.crl (hash: VpCJQzb2aP4UgsMGQsDLz2yIKg9/oIkPOeETYh3uJ7s=) 2: D30098F6413111ECB71E086AC4F9AE02.roa (hash: yrbFlXX+Q20ODJMbiysSXJ6ACMYRj3dlttqVySrHsBg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1320 (0x528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CAE, serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Validity Not Before: Apr 4 23:20:55 2026 GMT Not After : Apr 11 23:20:55 2026 GMT Subject: CN=69d19cd7-eb9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:99:8c:31:2a:7d:19:b1:56:5e:bd:89:68:4b: c4:40:54:16:06:4c:93:6c:fe:2a:08:ab:3e:b5:15: a6:7a:ac:c8:14:7a:f8:f6:bf:42:d2:b9:4b:74:40: ff:33:58:31:7c:6b:62:51:8c:1b:f8:52:cf:19:7d: 7c:63:fb:85:fe:f4:f4:80:cc:ea:e7:a4:fa:9a:a8: 1b:bf:43:2c:e5:d6:77:44:27:27:84:90:02:4d:5b: c6:38:e2:37:e1:42:9c:c4:89:74:23:bb:ff:64:dc: 91:22:36:6a:f0:f6:ce:52:f2:10:30:3d:f5:4a:3f: 67:b5:96:e7:46:4e:4f:06:df:88:01:b8:5a:78:a3: ee:af:28:a7:e3:a3:75:f0:86:95:54:31:20:6b:92: 4a:97:dc:2d:2d:e7:2a:1a:9e:37:81:a0:03:92:dd: 28:9c:15:67:58:ab:b6:04:19:22:ae:47:8c:0a:bc: 02:39:1d:d3:79:73:1a:52:d0:52:83:a8:fd:d9:3c: 15:43:2f:e1:a8:a7:f0:4b:9a:99:d9:39:3f:5f:38: 09:2a:89:44:9f:ec:68:c4:5a:02:a1:ba:c8:9d:6a: 36:df:39:1a:89:fd:c8:69:f4:46:d0:a0:10:ad:75: 88:8c:82:4b:ce:0a:a3:e5:1b:71:70:f8:b6:ad:ca: ec:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:28:7F:58:58:9F:F3:71:DF:F0:FD:8D:90:88:CD:18:29:C2:3C:08 X509v3 Authority Key Identifier: keyid:81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:e6:b2:f8:8c:ec:71:98:c6:ab:4b:ed:6b:f4:22:30:ae:36: 15:c4:45:e8:99:da:0f:11:5a:29:18:32:be:5d:51:ae:11:1a: 2c:05:e8:ac:68:6f:1c:ad:66:16:e1:41:9a:a6:36:da:d4:33: d8:16:32:16:5b:48:86:85:b8:f2:8e:60:f9:47:b1:b9:3a:37: 4a:1f:2c:40:fb:67:c2:9b:f6:ef:9a:a2:c8:d4:4d:e3:b0:67: 4b:cc:e0:88:a0:11:94:fe:9e:79:4a:9c:17:e8:ce:b8:0f:ce: db:ef:a2:6f:c1:85:ae:a8:69:4a:f3:b0:16:9e:c8:9e:a8:7a: f7:be:8d:99:e9:b9:d5:ea:4a:da:c9:2e:8f:9a:96:03:01:eb: 91:8e:a7:1e:8d:5d:8b:01:13:4e:70:5f:f1:23:34:6f:e6:5a: 63:b3:8e:c3:6d:1e:c4:38:61:c4:52:41:fc:77:bf:fa:da:eb: 89:b5:04:b5:0c:16:e2:db:34:f5:a1:68:e6:c6:9c:2a:69:58: c5:c1:fb:dc:e5:30:12:f3:ca:09:b9:59:a4:8e:a0:15:32:97: 11:be:50:6b:40:0c:97:be:f9:fe:72:11:fd:a5:12:db:fa:4d: 36:93:37:ad:7c:9c:d4:34:37:69:9f:50:f8:ed:97:96:df:37: fb:40:2a:ad -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQUUxMTAvBgNVBAUTKDgxODkxMTlGODAxRTI4MEE2QjRERDU2MjY1M0VGMTAz Njk2MUQwOUIwHhcNMjYwNDA0MjMyMDU1WhcNMjYwNDExMjMyMDU1WjAYMRYwFAYD VQQDEw02OWQxOWNkNy1lYjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5mMMSp9GbFWXr2JaEvEQFQWBkyTbP4qCKs+tRWmeqzIFHr49r9C0rlLdED/ M1gxfGtiUYwb+FLPGX18Y/uF/vT0gMzq56T6mqgbv0Ms5dZ3RCcnhJACTVvGOOI3 4UKcxIl0I7v/ZNyRIjZq8PbOUvIQMD31Sj9ntZbnRk5PBt+IAbhaeKPuryin46N1 8IaVVDEga5JKl9wtLecqGp43gaADkt0onBVnWKu2BBkirkeMCrwCOR3TeXMaUtBS g6j92TwVQy/hqKfwS5qZ2Tk/XzgJKolEn+xoxFoCobrInWo23zkaif3IafRG0KAQ rXWIjIJLzgqj5RtxcPi2rcrsuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFQof1hY n/Nx3/D9jZCIzRgpwjwIMB8GA1UdIwQYMBaAFIGJEZ+AHigKa03VYmU+8QNpYdCb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBRS9GRUQ1QTJBODQx MkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtBcHJUZFZpWlQ3eEEybGgw SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZa1JuNEFlS0FwclRkVmlaVDd4QTJsaDBKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBRS9GRUQ1QTJBODQxMkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtB cHJUZFZpWlQ3eEEybGgwSnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAR+ay+IzscZjGq0vta/QiMK42FcRF6JnaDxFaKRgyvl1RrhEaLAXorGhvHK1m FuFBmqY22tQz2BYyFltIhoW48o5g+UexuTo3Sh8sQPtnwpv275qiyNRN47BnS8zg iKARlP6eeUqcF+jOuA/O2++ib8GFrqhpSvOwFp7Inqh6976Nmem51epK2skuj5qW AwHrkY6nHo1diwETTnBf8SM0b+ZaY7OOw20exDhhxFJB/He/+trribUEtQwW4ts0 9aFo5sacKmlYxcH73OUwEvPKCblZpI6gFTKXEb5Qa0AMl775/nIR/aUS2/pNNpM3 rXyc1DQ3aZ9Q+O2Xlt83+0AqrQ== -----END CERTIFICATE-----Generated at Mon Apr 6 13:33:56 2026 by rpki-client