$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft File: Gu-1HeyOsHlip15FnOIQp0ABBPs.mft (raw, json) Hash identifier: GDckQBacRmauDDJaQnXYSyqhGHPQLg7/CdtedLEy7+g= Subject key identifier: 37:90:DE:1D:BD:94:5E:37:F4:DB:B2:8A:65:DF:5D:36:60:20:D8:7E Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 3546 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft Manifest number: 3534 Signing time: Thu 16 Apr 2026 14:40:58 +0000 Manifest this update: Thu 16 Apr 2026 14:40:58 +0000 Manifest next update: Thu 23 Apr 2026 14:40:58 +0000 Files and hashes: 1: Gu-1HeyOsHlip15FnOIQp0ABBPs.crl (hash: Ne3W/51tJ4ZMXqeB9z4nF8/YwzZuXTaLB8+/cm+YJJY=) 2: 232E8BFEFEA411EDBC673B4BC4F9AE02.roa (hash: i/MqTAr3DjQbJ7pM6lK7jVjbcEbd2+i/7IX3vbbjQxw=) 3: 229F27ACFEA411EDBC673B4BC4F9AE02.roa (hash: Qk1zJmgRoPNYf3XvdVSfDLRHp6uM57VNb9FsqRujDlI=) 4: 220E32CEFEA411EDBC673B4BC4F9AE02.roa (hash: E2m3GG0CyyLNe3em7BY2AGdLBy8YhmSii0OKLOGYkJg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13638 (0x3546) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE, serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: Apr 16 14:40:58 2026 GMT Not After : Apr 23 14:40:58 2026 GMT Subject: CN=69e0f4fa-5f33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:61:7b:f0:5b:4e:6e:ea:84:18:88:fc:5d:5b: f7:e5:8f:2e:6c:c4:01:c5:41:83:a0:36:e8:68:c7: 99:25:94:ff:8f:f9:d8:24:f8:5e:5b:11:46:6b:02: e3:ec:02:7c:cc:48:47:13:0b:2c:6b:8b:aa:f6:bb: 75:89:e6:c7:3e:13:90:1b:2a:b5:85:47:8e:cc:1c: 55:07:f4:0a:56:45:cf:9d:f4:de:4c:84:29:ed:ed: ff:41:9a:81:56:65:b2:99:da:89:2a:a0:2e:76:ef: 24:72:41:b2:37:4b:b4:15:0d:53:29:66:76:63:fa: 3b:6e:bc:22:30:17:a5:d1:48:fc:d8:0b:a4:d2:b0: d7:2b:d3:5c:7b:e5:a1:f0:0f:f0:ae:40:5d:0c:66: 08:f6:e2:36:c9:96:21:82:f7:ae:6e:77:42:99:50: 30:8d:dd:a1:9c:3d:26:88:f2:15:cd:53:40:46:9a: 05:2e:77:e7:86:99:2f:4b:ed:72:1d:25:2f:2b:4b: 13:ce:dd:25:81:40:49:b7:56:a5:7c:aa:aa:c5:26: 84:ab:53:2d:a6:5d:b7:de:30:d6:7a:c2:4a:ff:c9: 69:ea:b6:be:de:86:17:f7:da:27:23:8e:c6:d5:08: c2:7b:9f:f7:b8:ac:3b:df:4f:76:20:0b:8e:e0:91: 80:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:90:DE:1D:BD:94:5E:37:F4:DB:B2:8A:65:DF:5D:36:60:20:D8:7E X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:ff:d4:53:e9:71:d8:2a:60:d2:a5:e1:1b:61:e6:cc:7c:1d: eb:3a:cc:20:26:3b:30:34:be:de:37:ea:64:56:17:7c:6f:45: c5:b6:d1:0a:0d:4c:b8:a6:fe:e4:07:8f:df:0b:d0:83:e2:09: e5:85:5f:e2:08:10:da:9a:e0:d2:44:b6:7e:18:e1:21:c4:54: db:9a:05:51:49:74:58:be:68:14:86:26:8e:d9:a9:a0:48:87: c2:9d:15:a8:a2:81:f2:cd:78:ba:41:35:89:4a:70:1c:d9:68: 64:55:4d:ec:63:bb:58:33:b4:e0:8e:6f:b6:75:20:fd:40:af: 12:62:d4:2f:db:ae:d8:dd:c7:07:3d:db:a7:2d:23:24:05:d7: 2c:d7:f8:26:70:7a:5a:6a:7c:9f:0f:e2:00:80:e1:0c:ed:4d: 0d:a1:78:da:54:4c:e3:b0:3c:4a:7d:83:cb:7d:17:54:2a:a6: ca:4e:e0:8f:68:4e:b3:d8:00:62:2e:13:97:a1:d9:2c:8a:38: ab:19:93:62:ba:d0:18:2a:3f:73:73:e9:67:65:bc:6d:87:fb: 3e:c7:4b:78:7b:a1:f6:57:ed:f3:07:d8:14:fe:a0:28:44:37: 26:bf:f7:59:73:e3:37:cb:3e:10:7a:36:33:e6:d3:58:7a:0b: 94:6d:78:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjYwNDE2MTQ0MDU4WhcNMjYwNDIzMTQ0MDU4WjAYMRYwFAYD VQQDEw02OWUwZjRmYS01ZjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42F78FtObuqEGIj8XVv35Y8ubMQBxUGDoDboaMeZJZT/j/nYJPheWxFGawLj 7AJ8zEhHEwssa4uq9rt1iebHPhOQGyq1hUeOzBxVB/QKVkXPnfTeTIQp7e3/QZqB VmWymdqJKqAudu8kckGyN0u0FQ1TKWZ2Y/o7brwiMBel0Uj82Auk0rDXK9Nce+Wh 8A/wrkBdDGYI9uI2yZYhgveubndCmVAwjd2hnD0miPIVzVNARpoFLnfnhpkvS+1y HSUvK0sTzt0lgUBJt1alfKqqxSaEq1Mtpl233jDWesJK/8lp6ra+3oYX99onI47G 1QjCe5/3uKw73092IAuO4JGAqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDeQ3h29 lF439NuyimXfXTZgINh+MB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0RBRS9GRUZCQ0M4RTFEOEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NI bGlwMTVGbk9JUXAwQUJCUHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIP/UU+lx2Cpg0qXhG2HmzHwd6zrMICY7MDS+3jfqZFYXfG9FxbbRCg1MuKb+ 5AeP3wvQg+IJ5YVf4ggQ2prg0kS2fhjhIcRU25oFUUl0WL5oFIYmjtmpoEiHwp0V qKKB8s14ukE1iUpwHNloZFVN7GO7WDO04I5vtnUg/UCvEmLUL9uu2N3HBz3bpy0j JAXXLNf4JnB6Wmp8nw/iAIDhDO1NDaF42lRM47A8Sn2Dy30XVCqmyk7gj2hOs9gA Yi4Tl6HZLIo4qxmTYrrQGCo/c3PpZ2W8bYf7PsdLeHuh9lft8wfYFP6gKEQ3Jr/3 WXPjN8s+EHo2M+bTWHoLlG14Ww== -----END CERTIFICATE-----Generated at Fri Apr 17 10:43:41 2026 by rpki-client