$ rpki-client -vvf rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft File: GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft (raw, json) Hash identifier: P45inaxc3syF1MexJ+yilZjULSSIFmyFrUNbFiTrros= Subject key identifier: CA:28:E0:5F:6F:3F:CC:05:ED:8C:BD:3F:98:80:05:C0:24:E8:CF:90 Authority key identifier: 19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA Certificate issuer: /CN=A917B83F/serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Certificate serial: 1591 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft Manifest number: 1584 Signing time: Thu 16 Apr 2026 16:42:25 +0000 Manifest this update: Thu 16 Apr 2026 16:42:24 +0000 Manifest next update: Thu 23 Apr 2026 16:42:24 +0000 Files and hashes: 1: GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl (hash: Qge5pvF7y/ySs0Xl+XeYl8qtSC5FgG93Y0r1rqrq1/k=) 2: 0964A56EF35511E8AC1ECA17C4F9AE02.roa (hash: eG2+Dg5b/oCUqgZG7mXNqvSu0hsi4Mr+XueozIi6Lxg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:42:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5521 (0x1591) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B83F, serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Validity Not Before: Apr 16 16:42:24 2026 GMT Not After : Apr 23 16:42:24 2026 GMT Subject: CN=69e11171-7d92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:97:61:1c:bc:d6:73:b2:59:bc:81:be:12:7a: 28:cb:d7:b0:a4:aa:24:17:40:e0:81:bd:b5:8b:bd: df:19:f1:e9:6e:1c:b9:97:6f:9a:17:ea:9f:5f:9a: d6:d3:20:13:16:78:5a:4c:ae:5a:77:9d:d1:e2:37: 56:da:66:82:9a:88:5f:73:3e:a2:1b:3d:81:be:cb: fb:bc:9f:ae:33:07:45:b8:16:e8:f0:b6:57:d0:68: a5:be:6b:a3:07:91:b7:7c:62:d6:63:47:5b:29:3b: e9:c0:04:47:aa:70:fd:2e:21:4b:c7:96:5f:c2:ea: 75:36:3b:40:11:0c:40:37:68:39:46:45:83:f5:57: 68:1b:3c:48:87:86:f1:12:a6:9e:7a:4b:0b:b3:42: 3a:a6:e0:e0:8c:62:5b:46:dd:0b:09:b8:2d:48:1c: 39:8b:04:32:82:15:93:45:fe:dc:c0:69:dc:48:80: 55:a5:d6:5d:59:b3:d6:34:0e:bc:0d:a8:2b:3e:4d: cd:33:b3:42:48:39:c6:7d:f1:9d:8b:70:b0:68:20: d0:d5:18:90:fb:a6:20:98:cf:d5:4f:66:3d:6d:74: 08:00:7a:02:77:1a:6c:28:0e:ca:7e:6d:14:ed:1d: 2b:39:01:9d:f1:08:20:54:10:50:c9:fd:0e:76:d3: 95:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:28:E0:5F:6F:3F:CC:05:ED:8C:BD:3F:98:80:05:C0:24:E8:CF:90 X509v3 Authority Key Identifier: keyid:19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:11:1e:25:3f:91:c2:9b:be:0a:56:25:e2:bd:f4:8f:86:9c: 1c:29:57:d9:bf:58:60:4f:06:77:4b:68:62:56:2a:5b:f1:70: 6b:ff:3a:77:d1:37:2b:c0:bd:6c:80:d2:6e:18:88:fa:ea:b6: f6:f5:74:8e:eb:72:f2:74:5f:dd:74:cf:95:66:a1:76:7c:d2: d8:69:f4:f9:2d:2c:4e:92:a3:59:8c:d6:64:2b:d7:6f:9a:ce: 4f:95:8a:19:35:32:4a:bc:e3:5f:c3:2a:ab:94:44:ba:fd:01: 01:72:4e:14:a0:3e:93:cd:b9:e7:f7:0c:ca:3a:06:6d:2c:34: 1f:53:6c:53:e4:6d:e6:e4:dd:00:46:37:90:86:af:17:a8:9d: b6:3d:e5:2b:db:b0:bd:a7:7b:f5:b1:92:be:03:a7:6d:80:0c: 19:52:d3:5d:d2:d5:68:09:69:29:f9:1c:21:2c:1a:da:ec:84: 69:f9:16:bb:32:01:c0:3d:fd:25:e9:3d:ab:64:9b:5e:d9:10: fe:9e:4c:a5:ce:6f:37:01:7d:55:6f:3f:a0:92:ad:c9:69:5c: b1:f7:63:83:f0:7d:16:82:7f:23:27:93:f6:f5:a9:9f:65:ae: 28:23:4c:34:cf:b5:20:98:0d:76:c6:0e:eb:19:89:ef:64:7d: 0d:5f:8a:d5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I4M0YxMTAvBgNVBAUTKDE5ODAzNTUyOTlCNkMyMjM3QjQyMzUwMDBGNzIzNTk3 QkZFQjMzREEwHhcNMjYwNDE2MTY0MjI0WhcNMjYwNDIzMTY0MjI0WjAYMRYwFAYD VQQDEw02OWUxMTE3MS03ZDkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5dhHLzWc7JZvIG+Enooy9ewpKokF0Dggb21i73fGfHpbhy5l2+aF+qfX5rW 0yATFnhaTK5ad53R4jdW2maCmohfcz6iGz2Bvsv7vJ+uMwdFuBbo8LZX0Gilvmuj B5G3fGLWY0dbKTvpwARHqnD9LiFLx5Zfwup1NjtAEQxAN2g5RkWD9VdoGzxIh4bx EqaeeksLs0I6puDgjGJbRt0LCbgtSBw5iwQyghWTRf7cwGncSIBVpdZdWbPWNA68 DagrPk3NM7NCSDnGffGdi3CwaCDQ1RiQ+6YgmM/VT2Y9bXQIAHoCdxpsKA7Kfm0U 7R0rOQGd8QggVBBQyf0OdtOV/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMoo4F9v P8wF7Yy9P5iABcAk6M+QMB8GA1UdIwQYMBaAFBmANVKZtsIje0I1AA9yNZe/6zPa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjgzRi8zREIzREJFQTU1 NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndpTjdRalVBRDNJMWw3X3JN OW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dZQTFVcG0yd2lON1FqVUFEM0kxbDdfck05by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjgzRi8zREIzREJFQTU1NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndp TjdRalVBRDNJMWw3X3JNOW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiREeJT+Rwpu+ClYl4r30j4acHClX2b9YYE8Gd0toYlYqW/Fwa/86d9E3K8C9 bIDSbhiI+uq29vV0juty8nRf3XTPlWahdnzS2Gn0+S0sTpKjWYzWZCvXb5rOT5WK GTUySrzjX8Mqq5REuv0BAXJOFKA+k8255/cMyjoGbSw0H1NsU+Rt5uTdAEY3kIav F6idtj3lK9uwvad79bGSvgOnbYAMGVLTXdLVaAlpKfkcISwa2uyEafkWuzIBwD39 Jek9q2SbXtkQ/p5Mpc5vNwF9VW8/oJKtyWlcsfdjg/B9FoJ/IyeT9vWpn2WuKCNM NM+1IJgNdsYO6xmJ72R9DV+K1Q== -----END CERTIFICATE-----Generated at Fri Apr 17 12:42:08 2026 by rpki-client