$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft File: GEMtUeYt2nKdH_G-G4H79VvYs0c.mft (raw, json) Hash identifier: VnBVrs7yCbiC32tBpI7vBaUPzuP0qJlkYf1O15OTLZ8= Subject key identifier: AD:06:12:39:FC:66:EE:DC:CF:3E:00:07:63:EA:0B:33:9E:35:DF:4E Authority key identifier: 18:43:2D:51:E6:2D:DA:72:9D:1F:F1:BE:1B:81:FB:F5:5B:D8:B3:47 Certificate issuer: /CN=A91AB1C2/serialNumber=18432D51E62DDA729D1FF1BE1B81FBF55BD8B347 Certificate serial: 2F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft Manifest number: 2C Signing time: Sun 01 Mar 2026 10:14:47 +0000 Manifest this update: Sun 01 Mar 2026 10:14:47 +0000 Manifest next update: Sun 08 Mar 2026 10:14:47 +0000 Files and hashes: 1: GEMtUeYt2nKdH_G-G4H79VvYs0c.crl (hash: qwVm0DjM19baRN/vYhzAQ+MzVAqR8apsDYjb9JM5U84=) 2: D4578CBCE0F811F0841404A85E6F56BC.roa (hash: kVIQF28+VXWQvXZxpxDtZOt5V7kSBnZhEpXWdQv6LfU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.crl rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:14:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB1C2, serialNumber=18432D51E62DDA729D1FF1BE1B81FBF55BD8B347 Validity Not Before: Mar 1 10:14:47 2026 GMT Not After : Mar 8 10:14:47 2026 GMT Subject: CN=69a41197-bd6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:2c:fb:d7:41:25:74:1a:90:e5:1e:4e:13:de: 83:67:2f:11:56:84:f4:ed:59:c5:0c:9b:81:8e:46: 6b:6d:fa:66:b0:1c:21:16:d7:27:80:02:80:2a:24: 3d:75:b1:5e:64:16:8b:e5:4c:54:1e:99:55:60:4e: 93:9e:d5:68:47:16:bd:94:56:aa:33:df:07:2f:a5: 55:3d:41:d7:04:83:ae:95:a2:b2:aa:63:7f:a3:cf: 9b:92:55:14:8c:8c:e4:85:28:67:cf:f8:9f:5b:7e: 5a:b6:67:43:a8:b7:b6:31:da:ce:c6:6e:8b:0e:aa: 44:b6:bd:7f:fe:e2:b1:eb:05:5a:2a:43:fd:9c:f6: 47:0d:22:03:58:82:cb:fc:61:b3:ab:6f:f8:9e:40: d9:0b:7f:e3:67:1f:fb:d9:39:5b:79:5a:39:c8:3a: 38:55:bb:85:50:fa:b6:ee:f9:a9:9f:ed:ba:ea:a8: ae:1c:35:c8:08:d9:dc:53:4b:34:d8:45:cc:6d:81: 8b:44:6e:4e:a0:38:82:2e:0b:07:2d:ae:64:c7:49: bc:f4:08:c8:23:bf:94:6f:9a:7a:ac:02:72:59:54: bd:88:93:19:a1:14:15:11:49:a0:e3:dd:30:f3:17: a3:99:b9:e9:cf:2f:b6:21:0f:51:ba:ef:8a:33:1b: 6e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:06:12:39:FC:66:EE:DC:CF:3E:00:07:63:EA:0B:33:9E:35:DF:4E X509v3 Authority Key Identifier: keyid:18:43:2D:51:E6:2D:DA:72:9D:1F:F1:BE:1B:81:FB:F5:5B:D8:B3:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:db:0a:9d:16:51:bf:e3:15:28:83:26:66:f7:4b:55:df:de: b9:3a:9e:8a:54:d0:fe:13:1d:98:a7:33:dc:fe:1c:c6:2c:f7: 38:33:dd:d3:25:2c:48:6d:da:a7:10:7e:32:56:2a:5d:b0:70: de:04:80:bf:98:35:e6:06:20:f3:37:67:bc:72:af:34:77:75: 6a:b2:50:b0:71:57:27:bc:0b:2a:f0:67:b3:2b:c9:64:e1:b6: 94:56:53:28:f3:09:cf:81:41:b6:f8:90:dc:b7:7b:e0:35:6a: 43:5c:aa:e5:d6:81:af:b5:56:1c:f5:0c:3a:f0:48:dd:22:c0: 29:48:dd:36:e1:d0:92:e9:3c:e8:7c:99:66:3f:4f:68:a7:67: 23:b6:09:0a:0a:21:7f:76:13:32:57:93:5c:8d:cd:a2:35:d0: 94:89:e4:75:c1:9a:29:af:1c:e0:cb:76:5d:f1:af:aa:48:08: ba:05:c4:13:d4:a2:20:df:20:6c:9c:f2:36:4e:ed:da:14:d5: ad:a4:15:e6:50:5e:a6:9b:58:6d:75:34:da:59:e0:5e:03:df: bb:44:9c:4a:5e:84:dd:b9:3f:fa:f0:4e:b0:c3:18:f1:28:bd: 4a:19:16:8c:76:b8:55:08:ae:28:0a:99:c4:f3:a3:b3:a3:53: aa:ab:ef:bc -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QjFDMjExMC8GA1UEBRMoMTg0MzJENTFFNjJEREE3MjlEMUZGMUJFMUI4MUZCRjU1 QkQ4QjM0NzAeFw0yNjAzMDExMDE0NDdaFw0yNjAzMDgxMDE0NDdaMBgxFjAUBgNV BAMTDTY5YTQxMTk3LWJkNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD0LPvXQSV0GpDlHk4T3oNnLxFWhPTtWcUMm4GORmtt+mawHCEW1yeAAoAqJD11 sV5kFovlTFQemVVgTpOe1WhHFr2UVqoz3wcvpVU9QdcEg66VorKqY3+jz5uSVRSM jOSFKGfP+J9bflq2Z0Oot7Yx2s7GbosOqkS2vX/+4rHrBVoqQ/2c9kcNIgNYgsv8 YbOrb/ieQNkLf+NnH/vZOVt5WjnIOjhVu4VQ+rbu+amf7brqqK4cNcgI2dxTSzTY RcxtgYtEbk6gOIIuCwctrmTHSbz0CMgjv5RvmnqsAnJZVL2IkxmhFBURSaDj3TDz F6OZuenPL7YhD1G674ozG27jAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUrQYSOfxm 7tzPPgAHY+oLM541304wHwYDVR0jBBgwFoAUGEMtUeYt2nKdH/G+G4H79VvYs0cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFCMUMyLzA1OUY3Q0JDRENB MzExRjA4NUQ2RjE1QjQzNkY1NkJDL0dFTXRVZVl0Mm5LZEhfRy1HNEg3OVZ2WXMw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR0VNdFVlWXQybktkSF9HLUc0SDc5VnZZczBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFC MUMyLzA1OUY3Q0JDRENBMzExRjA4NUQ2RjE1QjQzNkY1NkJDL0dFTXRVZVl0Mm5L ZEhfRy1HNEg3OVZ2WXMwYy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAA2wqdFlG/4xUogyZm90tV3965Op6KVND+Ex2YpzPc/hzGLPc4M93TJSxIbdqn EH4yVipdsHDeBIC/mDXmBiDzN2e8cq80d3VqslCwcVcnvAsq8GezK8lk4baUVlMo 8wnPgUG2+JDct3vgNWpDXKrl1oGvtVYc9Qw68EjdIsApSN024dCS6TzofJlmP09o p2cjtgkKCiF/dhMyV5Ncjc2iNdCUieR1wZoprxzgy3Zd8a+qSAi6BcQT1KIg3yBs nPI2Tu3aFNWtpBXmUF6mm1htdTTaWeBeA9+7RJxKXoTduT/68E6wwxjxKL1KGRaM drhVCK4oCpnE86Ozo1Oqq++8 -----END CERTIFICATE-----Generated at Mon Mar 2 04:12:04 2026 by rpki-client