$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft File: gYkRn4AeKAprTdViZT7xA2lh0Js.mft (raw, json) Hash identifier: d+ye1xj2i9OtXxywhOVtuI7/tk1aKtLL/V6zjcvL968= Subject key identifier: D8:37:73:03:A1:B3:D9:CF:2C:CA:E0:37:5A:85:EB:75:EE:1A:C1:28 Authority key identifier: 81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B Certificate issuer: /CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Certificate serial: 052F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft Manifest number: 0528 Signing time: Sat 18 Apr 2026 23:27:14 +0000 Manifest this update: Sat 18 Apr 2026 23:27:13 +0000 Manifest next update: Sat 25 Apr 2026 23:27:13 +0000 Files and hashes: 1: gYkRn4AeKAprTdViZT7xA2lh0Js.crl (hash: 833ETvUh0709u7ADeNMxKCEStTPd61lUkVRIR+9nXac=) 2: D30098F6413111ECB71E086AC4F9AE02.roa (hash: yrbFlXX+Q20ODJMbiysSXJ6ACMYRj3dlttqVySrHsBg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 23:27:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1327 (0x52f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CAE, serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Validity Not Before: Apr 18 23:27:13 2026 GMT Not After : Apr 25 23:27:13 2026 GMT Subject: CN=69e41352-765a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c0:1f:ed:c5:0e:e6:9d:69:45:99:44:be:6f: c9:a2:70:78:0c:61:37:e9:c2:f3:67:67:07:3a:f4: 1e:d6:2f:47:e7:e8:20:98:89:8a:ad:82:a8:92:88: 9c:ce:53:85:30:70:77:f0:a5:b8:f9:01:80:dc:c2: bd:b0:58:db:73:83:08:3c:95:08:21:4e:3e:c7:34: 08:76:71:86:93:01:38:a5:89:f1:52:31:fd:4d:ca: 8d:42:3e:31:c3:25:86:e4:3e:b6:fd:91:d4:42:45: a5:c6:4c:a9:c1:ea:bc:ad:61:f9:23:f3:d8:42:4a: f7:c5:6b:6a:2b:d9:7b:b8:7b:16:1e:64:b2:c6:6a: 42:b7:7f:8c:69:85:a8:fe:f5:89:9a:4c:7c:41:03: bd:af:c8:7b:c2:b9:77:9d:3b:fb:84:c6:b9:d8:80: 0f:09:d6:7a:08:4a:60:9d:f9:94:53:d8:9a:67:e5: eb:c3:45:19:dd:c8:86:a2:a0:49:40:70:76:1c:6d: 54:04:ea:fa:ec:dc:41:39:cd:4b:50:5c:26:ec:74: 51:cb:ff:a0:1c:02:d0:11:0a:16:32:6a:dc:0e:9c: 88:3f:1e:b7:7b:94:b2:ec:26:72:90:07:fc:10:b1: 2b:f3:e5:f9:ba:55:d1:cb:15:ae:8f:6d:3f:86:55: f1:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:37:73:03:A1:B3:D9:CF:2C:CA:E0:37:5A:85:EB:75:EE:1A:C1:28 X509v3 Authority Key Identifier: keyid:81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:c5:00:56:7e:40:96:7a:36:5c:44:cc:48:d7:58:d1:f1:9f: a9:23:1a:fd:1d:91:3f:26:53:af:b3:ed:d2:35:13:6b:0f:32: c4:aa:90:94:6e:db:58:cf:f9:e8:7c:a0:53:38:62:af:13:e1: f9:b6:38:7a:51:05:6b:8d:3e:5b:d2:f3:20:c3:72:a8:a0:22: 14:19:18:84:cd:58:54:49:9f:1f:53:09:f9:d7:1a:02:da:93: f5:4d:ba:78:9b:64:55:9c:f0:4b:b8:39:39:4b:88:8b:80:4d: 3d:60:b4:53:92:8f:53:11:65:fa:49:17:c4:85:6b:b6:47:78: 34:e6:90:a3:ec:d9:b5:e2:5c:14:d4:64:20:58:ec:b2:c2:f5: 66:b5:bd:20:f8:ff:af:47:6e:c9:d2:cb:d7:97:02:ec:a2:ea: 51:55:52:1f:44:b6:3e:6e:d3:7c:db:9f:74:f3:53:b4:a1:c7: 29:a0:62:40:fa:52:23:5b:77:f8:79:67:fb:ea:00:7d:46:72: 6b:eb:b5:30:73:42:6e:4f:70:3f:f5:e5:77:7b:be:de:5a:f5: e7:8e:0d:c8:31:33:02:88:e6:a1:ed:09:9f:58:5f:65:fd:d3: 95:7b:6e:07:9d:5d:ba:a1:ff:d9:d1:34:9b:c6:b1:fa:ed:c4: ff:86:46:07 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQUUxMTAvBgNVBAUTKDgxODkxMTlGODAxRTI4MEE2QjRERDU2MjY1M0VGMTAz Njk2MUQwOUIwHhcNMjYwNDE4MjMyNzEzWhcNMjYwNDI1MjMyNzEzWjAYMRYwFAYD VQQDEw02OWU0MTM1Mi03NjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcAf7cUO5p1pRZlEvm/JonB4DGE36cLzZ2cHOvQe1i9H5+ggmImKrYKokoic zlOFMHB38KW4+QGA3MK9sFjbc4MIPJUIIU4+xzQIdnGGkwE4pYnxUjH9TcqNQj4x wyWG5D62/ZHUQkWlxkypweq8rWH5I/PYQkr3xWtqK9l7uHsWHmSyxmpCt3+MaYWo /vWJmkx8QQO9r8h7wrl3nTv7hMa52IAPCdZ6CEpgnfmUU9iaZ+Xrw0UZ3ciGoqBJ QHB2HG1UBOr67NxBOc1LUFwm7HRRy/+gHALQEQoWMmrcDpyIPx63e5Sy7CZykAf8 ELEr8+X5ulXRyxWuj20/hlXxMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNg3cwOh s9nPLMrgN1qF63XuGsEoMB8GA1UdIwQYMBaAFIGJEZ+AHigKa03VYmU+8QNpYdCb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBRS9GRUQ1QTJBODQx MkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtBcHJUZFZpWlQ3eEEybGgw SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZa1JuNEFlS0FwclRkVmlaVDd4QTJsaDBKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBRS9GRUQ1QTJBODQxMkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtB cHJUZFZpWlQ3eEEybGgwSnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWsUAVn5Alno2XETMSNdY0fGfqSMa/R2RPyZTr7Pt0jUTaw8yxKqQlG7bWM/5 6HygUzhirxPh+bY4elEFa40+W9LzIMNyqKAiFBkYhM1YVEmfH1MJ+dcaAtqT9U26 eJtkVZzwS7g5OUuIi4BNPWC0U5KPUxFl+kkXxIVrtkd4NOaQo+zZteJcFNRkIFjs ssL1ZrW9IPj/r0duydLL15cC7KLqUVVSH0S2Pm7TfNufdPNTtKHHKaBiQPpSI1t3 +Hln++oAfUZya+u1MHNCbk9wP/Xld3u+3lr1544NyDEzAojmoe0Jn1hfZf3TlXtu B51duqH/2dE0m8ax+u3E/4ZGBw== -----END CERTIFICATE-----Generated at Sun Apr 19 08:21:12 2026 by rpki-client