$ rpki-client -vvf rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft File: G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft (raw, json) Hash identifier: FliMgEYJSwINdmiL9w0YoUxWfXejiYszvhHugS4JU8Y= Subject key identifier: 32:5D:FE:31:2F:45:F6:0D:A8:20:56:2F:FB:1F:D1:D8:CE:EB:A1:69 Authority key identifier: 1B:8A:E7:C7:43:01:72:9D:85:C3:15:95:24:9C:3B:48:F1:B9:15:1E Certificate issuer: /CN=A91340D8/serialNumber=1B8AE7C74301729D85C31595249C3B48F1B9151E Certificate serial: 02ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft Manifest number: 02DC Signing time: Fri 17 Apr 2026 01:15:15 +0000 Manifest this update: Fri 17 Apr 2026 01:15:15 +0000 Manifest next update: Fri 24 Apr 2026 01:15:15 +0000 Files and hashes: 1: G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl (hash: hhSC9p2QCksKvlE6PgrfYeeKkHlP+wB6pUhdmSJ3KLI=) 2: BDDB04B633DC11EF82BB2E27C4F9AE02.roa (hash: dkeJym/v87RKiKKUryyLDWvUYJU8ndSZ66o3idoC4+8=) 3: F2257AC0289011ED8AEEB43CC4F9AE02.roa (hash: vLKPklVP43k6OROJ42PijdvI9ys2gzzUNgh6DMpb1V4=) 4: BE608B1833DC11EF82BB2E27C4F9AE02.roa (hash: yGjZ2qr+BhGngGtcisuW8nAIXic6S3m8loWau7p/bRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:15:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 749 (0x2ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91340D8, serialNumber=1B8AE7C74301729D85C31595249C3B48F1B9151E Validity Not Before: Apr 17 01:15:15 2026 GMT Not After : Apr 24 01:15:15 2026 GMT Subject: CN=69e189a3-a1f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:46:61:ef:0d:83:08:03:07:f6:25:d8:e0:ba: a9:e9:b6:99:e9:4d:e1:d5:af:58:ef:20:fc:53:30: c2:e5:67:aa:e0:e8:a0:75:63:28:e6:dd:35:f7:b6: 53:80:a2:8a:db:8d:16:c9:0c:e8:06:06:a9:44:71: b2:9b:43:a7:1b:43:83:bd:70:8a:60:92:ef:3d:33: 50:af:da:10:56:6a:f9:61:a0:87:a4:fe:7f:8c:06: af:41:c4:d3:b8:a4:30:f3:72:df:bd:bb:88:d2:6f: 80:70:bb:c9:c6:7a:70:9b:ba:9b:08:30:71:a7:d9: a4:47:d2:5d:d8:4c:95:1f:53:4a:22:99:29:8a:a3: bd:ba:bc:6a:45:34:6a:36:89:9c:78:5d:84:9f:ba: 8e:c8:a1:8f:76:20:8f:2b:72:c3:36:15:53:d8:25: 8d:e5:47:b6:db:1e:8a:b4:23:26:4a:29:d1:17:24: 2c:59:27:b3:50:74:44:4e:5f:69:9b:62:86:d2:23: 70:ba:44:8f:87:4c:9e:97:9b:96:a3:3a:28:6b:6e: 45:14:2f:b5:44:03:b4:cd:d8:e7:4c:cf:b0:28:42: 0f:41:5f:91:b1:21:52:e1:66:48:af:8b:ec:9e:a1: 0d:86:5a:51:23:36:86:7c:51:33:95:c1:a3:2a:e4: b2:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:5D:FE:31:2F:45:F6:0D:A8:20:56:2F:FB:1F:D1:D8:CE:EB:A1:69 X509v3 Authority Key Identifier: keyid:1B:8A:E7:C7:43:01:72:9D:85:C3:15:95:24:9C:3B:48:F1:B9:15:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:d7:cc:93:86:e1:01:02:4c:36:3c:22:4e:b9:df:bc:5d:5e: 4d:f3:3b:41:0b:29:fd:70:71:97:40:94:cd:4e:dd:5c:46:c7: 72:c7:74:96:5e:fd:9b:b3:1f:8b:6c:a5:ab:36:77:d7:fc:4f: 47:81:9a:9a:b7:9e:53:56:f8:d9:09:0d:f9:1d:ca:5c:e9:d1: 72:7a:ef:4b:c1:54:e8:01:06:df:77:a4:d1:78:5d:ed:2a:21: 6a:b0:48:e8:ff:45:e9:c3:92:47:1e:5e:b2:d6:4f:cb:46:a1: 03:e4:ce:06:54:fa:fe:17:ab:ef:92:41:52:fa:bd:cd:4f:d5: 53:37:ca:74:d8:35:bf:01:73:d5:ab:bb:3e:f7:8d:03:94:d7: db:12:c4:a3:f6:59:a2:8e:84:08:69:86:15:52:fe:47:fe:bc: 53:1f:88:21:d0:b7:4e:bd:dc:ff:28:01:80:d1:94:c2:95:4f: 87:75:cc:50:45:51:eb:cd:ca:4f:f1:ca:a8:4c:b4:ed:69:a1: e5:7a:c3:6c:b3:82:fb:63:d2:c6:0b:50:dc:5b:f3:c1:40:54: 91:2d:14:b1:18:25:39:04:e3:75:1c:14:6b:a7:51:bc:21:10: 42:d0:c9:04:e9:7e:72:f8:d3:09:14:71:4e:bd:3c:2d:07:d3: c2:35:28:49 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQwRDgxMTAvBgNVBAUTKDFCOEFFN0M3NDMwMTcyOUQ4NUMzMTU5NTI0OUMzQjQ4 RjFCOTE1MUUwHhcNMjYwNDE3MDExNTE1WhcNMjYwNDI0MDExNTE1WjAYMRYwFAYD VQQDEw02OWUxODlhMy1hMWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0Zh7w2DCAMH9iXY4Lqp6baZ6U3h1a9Y7yD8UzDC5Weq4OigdWMo5t0197ZT gKKK240WyQzoBgapRHGym0OnG0ODvXCKYJLvPTNQr9oQVmr5YaCHpP5/jAavQcTT uKQw83LfvbuI0m+AcLvJxnpwm7qbCDBxp9mkR9Jd2EyVH1NKIpkpiqO9urxqRTRq NomceF2En7qOyKGPdiCPK3LDNhVT2CWN5Ue22x6KtCMmSinRFyQsWSezUHRETl9p m2KG0iNwukSPh0yel5uWozooa25FFC+1RAO0zdjnTM+wKEIPQV+RsSFS4WZIr4vs nqENhlpRIzaGfFEzlcGjKuSyAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDJd/jEv RfYNqCBWL/sf0djO66FpMB8GA1UdIwQYMBaAFBuK58dDAXKdhcMVlSScO0jxuRUe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDBEOC9CM0RFNUNFNDI4 OEQxMUVEQTlBNEVBNkZDNEY5QUUwMi9HNHJueDBNQmNwMkZ3eFdWSkp3N1NQRzVG UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0cm54ME1CY3AyRnd4V1ZKSnc3U1BHNUZSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDBEOC9CM0RFNUNFNDI4OEQxMUVEQTlBNEVBNkZDNEY5QUUwMi9HNHJueDBNQmNw MkZ3eFdWSkp3N1NQRzVGUjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAR9fMk4bhAQJMNjwiTrnfvF1eTfM7QQsp/XBxl0CUzU7dXEbHcsd0ll79m7Mf i2ylqzZ31/xPR4GamreeU1b42QkN+R3KXOnRcnrvS8FU6AEG33ek0Xhd7SoharBI 6P9F6cOSRx5estZPy0ahA+TOBlT6/her75JBUvq9zU/VUzfKdNg1vwFz1au7PveN A5TX2xLEo/ZZoo6ECGmGFVL+R/68Ux+IIdC3Tr3c/ygBgNGUwpVPh3XMUEVR683K T/HKqEy07Wmh5XrDbLOC+2PSxgtQ3FvzwUBUkS0UsRglOQTjdRwUa6dRvCEQQtDJ BOl+cvjTCRRxTr08LQfTwjUoSQ== -----END CERTIFICATE-----Generated at Fri Apr 17 07:31:31 2026 by rpki-client