$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft File: GEMtUeYt2nKdH_G-G4H79VvYs0c.mft (raw, json) Hash identifier: nZ9xQDev5WNI3z/q7TSbOPddJm11q9OaakW6Fb5lAuc= Subject key identifier: B1:23:29:8B:83:3E:11:0D:2C:9A:15:DD:BA:31:A8:2B:33:4D:FF:A4 Authority key identifier: 18:43:2D:51:E6:2D:DA:72:9D:1F:F1:BE:1B:81:FB:F5:5B:D8:B3:47 Certificate issuer: /CN=A91AB1C2/serialNumber=18432D51E62DDA729D1FF1BE1B81FBF55BD8B347 Certificate serial: 46 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft Manifest number: 43 Signing time: Wed 15 Apr 2026 08:03:28 +0000 Manifest this update: Wed 15 Apr 2026 08:03:28 +0000 Manifest next update: Wed 22 Apr 2026 08:03:28 +0000 Files and hashes: 1: GEMtUeYt2nKdH_G-G4H79VvYs0c.crl (hash: zyvJEaDlcGV3ukMHXjhCjeHpiHN3t9SlXdTJR/Iv86E=) 2: D4578CBCE0F811F0841404A85E6F56BC.roa (hash: kVIQF28+VXWQvXZxpxDtZOt5V7kSBnZhEpXWdQv6LfU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.crl rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 08:03:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB1C2, serialNumber=18432D51E62DDA729D1FF1BE1B81FBF55BD8B347 Validity Not Before: Apr 15 08:03:28 2026 GMT Not After : Apr 22 08:03:28 2026 GMT Subject: CN=69df4650-c96c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:38:82:9e:d9:e4:cc:28:1f:5b:67:44:a7:7e: 9e:7f:32:59:67:16:56:9f:58:5b:e9:03:d3:9b:19: 1f:39:24:83:6d:43:c7:19:be:23:8a:20:b8:bf:ef: 15:20:4a:0e:0d:85:96:6a:88:c0:12:b1:9f:81:40: 5b:e8:86:e0:4f:5d:da:81:62:0a:97:23:be:fb:a4: 2d:1f:84:d4:ec:b8:c6:4c:10:62:dc:51:64:57:c6: af:65:3a:06:45:fe:31:0a:1b:23:db:23:14:a5:bb: 26:18:d1:0a:3e:80:03:81:41:c8:e3:cb:59:6c:8b: 38:c8:2f:e6:0f:92:9d:fa:1a:67:a4:6d:ab:62:1d: de:20:8d:53:df:cf:b8:f2:79:ae:cd:e3:44:e1:43: e3:dd:0f:31:e4:da:ae:11:4a:e7:aa:31:63:75:4d: 65:a6:a5:8e:5e:f4:97:a3:87:22:1e:24:0c:15:a9: 7c:87:04:0b:50:bc:31:df:c5:4b:74:db:55:f1:19: a3:b6:7a:ef:48:8c:b4:b6:76:4d:ab:cd:91:91:62: d9:82:2f:16:52:3e:e2:58:07:46:72:55:32:13:82: 79:63:ce:d4:1e:82:fb:de:51:f8:c2:13:55:65:95: 76:6a:69:88:34:7b:a3:bf:63:72:e8:17:6c:25:29: 8e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:23:29:8B:83:3E:11:0D:2C:9A:15:DD:BA:31:A8:2B:33:4D:FF:A4 X509v3 Authority Key Identifier: keyid:18:43:2D:51:E6:2D:DA:72:9D:1F:F1:BE:1B:81:FB:F5:5B:D8:B3:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:b1:67:61:ad:88:55:ae:af:9f:94:ee:dd:1c:2c:73:8d:4c: 79:a5:12:1b:8d:72:e0:da:c7:f9:50:81:ac:69:46:54:b4:56: 10:7c:8a:2d:4e:26:45:ce:fd:94:7f:22:cf:76:13:17:78:3f: 39:94:46:59:ff:fa:3a:d2:0c:45:f8:96:a2:ba:aa:91:5f:52: da:da:1e:94:54:22:39:9b:6c:38:cb:9b:41:0b:9d:15:a8:57: 42:d8:1a:8a:76:ca:37:ea:67:b4:10:8a:26:66:83:1c:29:42: 39:5c:5d:3e:94:89:9f:d7:d9:5b:45:9e:8b:b8:1d:00:4f:6b: d2:4e:5e:fd:07:dc:a7:41:4e:03:54:c4:72:7c:c3:90:e3:60: d1:73:c6:0b:25:87:73:94:c3:da:44:b3:11:50:9d:dc:89:4f: 52:6c:c8:fd:b2:2d:38:4e:6a:bb:e9:1c:d8:28:81:e4:fe:4b: 98:a9:36:e9:40:05:40:c1:5c:04:f6:dc:23:77:5b:15:e1:05: c5:16:7c:e0:ba:de:ad:0f:5a:48:6a:c0:7f:fc:d4:12:41:92: 10:bf:db:48:d0:94:cc:6d:28:97:49:c9:17:d6:af:c6:ba:df: 61:e7:a8:33:8c:27:5f:ba:60:33:bf:86:da:52:47:71:00:97: 26:2d:5b:0b -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QjFDMjExMC8GA1UEBRMoMTg0MzJENTFFNjJEREE3MjlEMUZGMUJFMUI4MUZCRjU1 QkQ4QjM0NzAeFw0yNjA0MTUwODAzMjhaFw0yNjA0MjIwODAzMjhaMBgxFjAUBgNV BAMTDTY5ZGY0NjUwLWM5NmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVOIKe2eTMKB9bZ0Snfp5/MllnFlafWFvpA9ObGR85JINtQ8cZviOKILi/7xUg Sg4NhZZqiMASsZ+BQFvohuBPXdqBYgqXI777pC0fhNTsuMZMEGLcUWRXxq9lOgZF /jEKGyPbIxSluyYY0Qo+gAOBQcjjy1lsizjIL+YPkp36GmekbatiHd4gjVPfz7jy ea7N40ThQ+PdDzHk2q4RSueqMWN1TWWmpY5e9JejhyIeJAwVqXyHBAtQvDHfxUt0 21XxGaO2eu9IjLS2dk2rzZGRYtmCLxZSPuJYB0ZyVTITgnljztQegvveUfjCE1Vl lXZqaYg0e6O/Y3LoF2wlKY4TAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUsSMpi4M+ EQ0smhXdujGoKzNN/6QwHwYDVR0jBBgwFoAUGEMtUeYt2nKdH/G+G4H79VvYs0cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFCMUMyLzA1OUY3Q0JDRENB MzExRjA4NUQ2RjE1QjQzNkY1NkJDL0dFTXRVZVl0Mm5LZEhfRy1HNEg3OVZ2WXMw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR0VNdFVlWXQybktkSF9HLUc0SDc5VnZZczBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFC MUMyLzA1OUY3Q0JDRENBMzExRjA4NUQ2RjE1QjQzNkY1NkJDL0dFTXRVZVl0Mm5L ZEhfRy1HNEg3OVZ2WXMwYy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCXsWdhrYhVrq+flO7dHCxzjUx5pRIbjXLg2sf5UIGsaUZUtFYQfIotTiZFzv2U fyLPdhMXeD85lEZZ//o60gxF+JaiuqqRX1La2h6UVCI5m2w4y5tBC50VqFdC2BqK dso36me0EIomZoMcKUI5XF0+lImf19lbRZ6LuB0AT2vSTl79B9ynQU4DVMRyfMOQ 42DRc8YLJYdzlMPaRLMRUJ3ciU9SbMj9si04Tmq76RzYKIHk/kuYqTbpQAVAwVwE 9twjd1sV4QXFFnzgut6tD1pIasB//NQSQZIQv9tI0JTMbSiXSckX1q/Gut9h56gz jCdfumAzv4baUkdxAJcmLVsL -----END CERTIFICATE-----Generated at Fri Apr 17 07:23:06 2026 by rpki-client