$ rpki-client -vvf rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft File: 509GTECGWe0lidtmTOjvamxgDEc.mft (raw, json) Hash identifier: MjJTdbBnO0r0uCUZEm9sT9KxrTxrjzjXISt/9axg7Fc= Subject key identifier: 17:87:1A:72:4B:94:EE:C7:03:54:68:86:F8:D7:96:FE:11:5A:54:3E Authority key identifier: E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 Certificate issuer: /CN=A91A06F2/serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Certificate serial: 0BD5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft Manifest number: 0BC6 Signing time: Thu 16 Apr 2026 18:52:53 +0000 Manifest this update: Thu 16 Apr 2026 18:52:52 +0000 Manifest next update: Thu 23 Apr 2026 18:52:52 +0000 Files and hashes: 1: 509GTECGWe0lidtmTOjvamxgDEc.crl (hash: OZJVTfbQvry2YWdwnPmwDq+nZgJRZhlUMa/SN5FeWmM=) 2: 3BFE8CEC3F4911EAA91D9A7FC4F9AE02.roa (hash: yHiEBDvlcyXKE4TpKn114IGYxQdtuGdLDYmaaMzfwkk=) 3: 8B37D2C40D2511EFA2E4D985C4F9AE02.roa (hash: +7Lf6kxVJqd3BCYCOdcg2bt/oX1o6nqQAFJ3/VpyaiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:52:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3029 (0xbd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A06F2, serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Validity Not Before: Apr 16 18:52:52 2026 GMT Not After : Apr 23 18:52:52 2026 GMT Subject: CN=69e13005-de22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fc:e4:64:da:97:21:dd:08:b0:9d:d5:3f:17: 6a:a9:3b:2d:aa:f7:0a:3a:17:61:09:cf:f8:aa:e3: 85:83:22:b2:87:c9:5e:b4:20:e8:23:a5:16:45:dd: 22:17:53:b4:c3:6b:09:05:72:22:1b:da:f0:a3:b1: e9:83:5f:54:63:38:b4:3e:c0:ca:2f:f8:dd:31:d4: 5a:bd:f7:92:f1:04:bc:9a:bc:85:87:27:e3:13:ef: 8f:11:59:d8:69:75:94:66:2c:ff:3d:69:1f:50:c6: c6:35:4b:48:94:cd:32:c3:d7:eb:db:04:65:da:78: 2d:a4:a1:27:6c:8a:3e:68:a0:12:c3:99:19:a6:04: eb:b1:85:1a:83:e5:80:cd:09:90:96:70:ce:27:49: 5b:21:64:b1:07:0e:40:a4:30:ae:00:26:93:e5:45: d1:d0:67:06:6a:a4:ed:87:06:9e:0c:60:99:81:ee: 08:3e:92:60:6a:53:98:14:4c:13:63:06:82:06:94: 22:c1:6f:28:a1:43:8c:c9:fc:a5:02:8e:47:21:e5: a5:1a:70:b6:ba:56:16:94:68:f1:e8:a9:16:f6:dc: 9c:f4:b9:4a:db:4d:d0:6e:cb:de:eb:77:80:b2:b1: 2f:1e:54:42:63:dc:58:a9:39:f2:13:ec:99:3c:17: 56:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:87:1A:72:4B:94:EE:C7:03:54:68:86:F8:D7:96:FE:11:5A:54:3E X509v3 Authority Key Identifier: keyid:E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:1c:19:d6:0a:49:a6:43:0e:39:ec:b5:45:2d:21:78:e3:55: 98:bb:ed:58:c4:ab:0c:7a:bb:76:5e:08:b1:63:ed:cb:25:37: 3c:78:28:7f:9c:e5:e6:af:9d:01:fb:1e:d5:49:f5:2f:40:06: 5d:d3:b2:a3:04:21:27:3a:8b:5b:a9:ce:f8:07:07:22:e1:5e: f0:8c:d8:c6:50:53:ba:79:92:dd:a3:e2:f2:de:75:9f:40:04: e7:e2:17:c6:d5:40:92:21:ba:e9:03:b6:b7:5a:d5:44:8d:1b: 8c:2d:97:4c:24:8f:91:09:69:70:5e:2c:d2:dd:a2:b1:b4:42: 9c:36:75:da:1e:98:88:66:ea:70:15:b9:0e:b0:c7:31:10:b2: 28:4e:9f:e2:37:34:4d:32:8a:f0:87:60:08:c2:f3:b8:4b:56: 30:76:78:f8:0c:b8:b5:f7:df:bb:ab:af:4e:c0:3b:8a:77:ed: 55:d1:de:da:12:32:17:ff:ee:7b:25:2a:97:01:85:6f:a5:f2: 17:33:f1:9b:c8:d9:72:3b:17:fd:65:3d:a9:06:90:04:60:53: b8:36:50:30:51:1a:37:23:0c:cd:52:66:1c:9f:92:c8:8e:63: bf:00:1c:ba:d3:c8:9f:a2:4d:df:90:3e:58:d2:7d:78:c1:0d: 2b:7d:4b:b4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA2RjIxMTAvBgNVBAUTKEU3NEY0NjRDNDA4NjU5RUQyNTg5REI2NjRDRThFRjZB NkM2MDBDNDcwHhcNMjYwNDE2MTg1MjUyWhcNMjYwNDIzMTg1MjUyWjAYMRYwFAYD VQQDEw02OWUxMzAwNS1kZTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPzkZNqXId0IsJ3VPxdqqTstqvcKOhdhCc/4quOFgyKyh8letCDoI6UWRd0i F1O0w2sJBXIiG9rwo7Hpg19UYzi0PsDKL/jdMdRavfeS8QS8mryFhyfjE++PEVnY aXWUZiz/PWkfUMbGNUtIlM0yw9fr2wRl2ngtpKEnbIo+aKASw5kZpgTrsYUag+WA zQmQlnDOJ0lbIWSxBw5ApDCuACaT5UXR0GcGaqTthwaeDGCZge4IPpJgalOYFEwT YwaCBpQiwW8ooUOMyfylAo5HIeWlGnC2ulYWlGjx6KkW9tyc9LlK203Qbsve63eA srEvHlRCY9xYqTnyE+yZPBdWUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBeHGnJL lO7HA1RohvjXlv4RWlQ+MB8GA1UdIwQYMBaAFOdPRkxAhlntJYnbZkzo72psYAxH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDZGMi84QjhDNEREMjNG NDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dlMGxpZHRtVE9qdmFteGdE RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUwOUdURUNHV2UwbGlkdG1UT2p2YW14Z0RFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDZGMi84QjhDNEREMjNGNDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dl MGxpZHRtVE9qdmFteGdERWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnBwZ1gpJpkMOOey1RS0heONVmLvtWMSrDHq7dl4IsWPtyyU3PHgof5zl5q+d Afse1Un1L0AGXdOyowQhJzqLW6nO+AcHIuFe8IzYxlBTunmS3aPi8t51n0AE5+IX xtVAkiG66QO2t1rVRI0bjC2XTCSPkQlpcF4s0t2isbRCnDZ12h6YiGbqcBW5DrDH MRCyKE6f4jc0TTKK8IdgCMLzuEtWMHZ4+Ay4tfffu6uvTsA7inftVdHe2hIyF//u eyUqlwGFb6XyFzPxm8jZcjsX/WU9qQaQBGBTuDZQMFEaNyMMzVJmHJ+SyI5jvwAc utPIn6JN35A+WNJ9eMENK31LtA== -----END CERTIFICATE-----Generated at Fri Apr 17 14:09:06 2026 by rpki-client