$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft File: GkhD6J8kRLLN24EYqoovRBgOhJg.mft (raw, json) Hash identifier: IYbEUUpoKHl21QasxgpebiVHde2uaoZsbJEs1uv/Yc0= Subject key identifier: 5F:30:FC:39:50:D8:0B:32:7C:B5:DC:60:5A:41:D3:28:40:E1:B7:A0 Authority key identifier: 1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 Certificate issuer: /CN=A91F5280/serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Certificate serial: 0229 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft Manifest number: 0220 Signing time: Fri 17 Apr 2026 02:36:39 +0000 Manifest this update: Fri 17 Apr 2026 02:36:39 +0000 Manifest next update: Fri 24 Apr 2026 02:36:39 +0000 Files and hashes: 1: GkhD6J8kRLLN24EYqoovRBgOhJg.crl (hash: oehZpGueUsEyFaG9kj8SZ8YEBtwgtDZ8usDILjBoXU0=) 2: B5569B88096311EE9ECB644DC4F9AE02.roa (hash: 4HF0DTPBSH5S3QjwkCb71T/4b+8A54VUugU3EtAjksc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:36:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 553 (0x229) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5280, serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Validity Not Before: Apr 17 02:36:39 2026 GMT Not After : Apr 24 02:36:39 2026 GMT Subject: CN=69e19cb7-0716 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7d:c3:38:12:b4:7e:64:24:52:db:89:82:9e: fd:6f:05:26:6f:d2:0a:32:59:58:d2:c1:2c:79:af: f2:02:cc:97:8b:e1:02:76:7e:1e:ff:9c:ae:12:d5: d4:33:85:df:3d:2b:02:ab:5f:d2:95:23:f5:f1:22: c0:76:a9:41:e7:f2:b2:53:ea:c6:8e:eb:8c:14:1f: ae:f8:3a:dc:fa:57:fa:b4:ff:df:e6:af:e5:d5:24: 2a:77:fb:13:9d:af:66:ad:63:cb:de:fe:3b:df:76: 77:bb:72:44:87:4b:a9:1f:a3:68:84:86:d8:fb:b4: ca:b1:85:1a:14:33:c0:c5:d0:86:2a:03:48:08:45: 52:21:9b:e0:b8:83:05:e0:97:47:21:5e:89:91:5b: ee:c8:e6:fa:13:82:ad:be:14:37:50:e6:c6:a9:ec: 21:fe:46:1e:bf:9a:98:a8:5b:fe:88:e6:9d:d9:55: fa:80:b3:f3:68:90:50:96:85:00:b3:ce:f1:61:c7: 2f:34:d1:ea:a2:d0:88:38:78:b6:62:68:4d:2c:d6: a7:a6:21:1a:1d:fc:3d:13:93:8b:45:89:ec:35:42: cc:53:3a:1e:ca:5b:a7:88:b0:f5:53:60:8e:1d:96: 17:4f:30:b2:2f:15:1d:83:29:ad:9e:a3:9f:99:c4: ea:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:30:FC:39:50:D8:0B:32:7C:B5:DC:60:5A:41:D3:28:40:E1:B7:A0 X509v3 Authority Key Identifier: keyid:1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:f4:c6:7a:96:ed:9e:34:38:83:40:10:78:49:dc:c7:01:db: c9:6c:d8:89:d4:22:56:39:1a:ac:46:e8:9d:94:ac:ca:b3:d7: 8e:34:22:a4:3a:aa:bc:ec:55:12:34:cd:ab:66:da:8e:71:d4: e5:d4:85:05:f0:17:31:c8:61:ac:35:c9:d6:8f:74:21:49:66: 21:7c:75:8e:d0:73:d5:3a:d6:d4:7d:71:57:da:39:2f:8a:55: d5:7b:37:77:03:fb:bc:f2:aa:e7:de:8a:3e:5d:af:2a:1e:fd: 35:4d:7d:cb:ec:3c:88:32:35:0c:a9:d5:fd:f5:ca:cf:95:58: f5:9f:97:8e:64:61:b2:cf:02:b0:99:53:d7:2a:f3:a4:d2:64: ed:8f:c6:3f:8c:fc:18:e6:f4:a9:9e:5f:a2:55:32:b3:11:80: bf:26:94:3a:87:d3:6e:e3:70:90:52:73:5d:54:1d:0d:ca:36: 00:1c:9f:90:d1:67:55:43:56:1f:16:a9:2b:31:28:6b:e8:da: c6:76:42:60:d2:1b:da:c0:f4:ec:d7:77:9b:64:60:01:ef:a0: e3:d8:38:93:8e:2c:c7:f4:41:0e:9b:02:6a:bb:32:a0:ba:d9: 57:e4:ed:ef:dc:78:06:fe:83:a1:b2:3d:a5:7d:d4:5b:5c:96: 24:54:13:23 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyODAxMTAvBgNVBAUTKDFBNDg0M0U4OUYyNDQ0QjJDRERCODExOEFBOEEyRjQ0 MTgwRTg0OTgwHhcNMjYwNDE3MDIzNjM5WhcNMjYwNDI0MDIzNjM5WjAYMRYwFAYD VQQDEw02OWUxOWNiNy0wNzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx33DOBK0fmQkUtuJgp79bwUmb9IKMllY0sEsea/yAsyXi+ECdn4e/5yuEtXU M4XfPSsCq1/SlSP18SLAdqlB5/KyU+rGjuuMFB+u+Drc+lf6tP/f5q/l1SQqd/sT na9mrWPL3v4733Z3u3JEh0upH6NohIbY+7TKsYUaFDPAxdCGKgNICEVSIZvguIMF 4JdHIV6JkVvuyOb6E4KtvhQ3UObGqewh/kYev5qYqFv+iOad2VX6gLPzaJBQloUA s87xYccvNNHqotCIOHi2YmhNLNanpiEaHfw9E5OLRYnsNULMUzoeyluniLD1U2CO HZYXTzCyLxUdgymtnqOfmcTqsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF8w/DlQ 2AsyfLXcYFpB0yhA4begMB8GA1UdIwQYMBaAFBpIQ+ifJESyzduBGKqKL0QYDoSY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTI4MC9DMDRCMUI3NjA5 NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JMTE4yNEVZcW9vdlJCZ09o SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0draEQ2SjhrUkxMTjI0RVlxb292UkJnT2hKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTI4MC9DMDRCMUI3NjA5NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JM TE4yNEVZcW9vdlJCZ09oSmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfPTGepbtnjQ4g0AQeEncxwHbyWzYidQiVjkarEbonZSsyrPXjjQipDqqvOxV EjTNq2bajnHU5dSFBfAXMchhrDXJ1o90IUlmIXx1jtBz1TrW1H1xV9o5L4pV1Xs3 dwP7vPKq596KPl2vKh79NU19y+w8iDI1DKnV/fXKz5VY9Z+XjmRhss8CsJlT1yrz pNJk7Y/GP4z8GOb0qZ5folUysxGAvyaUOofTbuNwkFJzXVQdDco2AByfkNFnVUNW HxapKzEoa+jaxnZCYNIb2sD07Nd3m2RgAe+g49g4k44sx/RBDpsCarsyoLrZV+Tt 79x4Bv6DobI9pX3UW1yWJFQTIw== -----END CERTIFICATE-----Generated at Fri Apr 17 14:07:02 2026 by rpki-client