$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft File: G4nCebixZmmNK-SGc-zMKwgTPjk.mft (raw, json) Hash identifier: SoOXfYPOxZ5z5vc+Uh1TVD2GL5Ys953QUf92zDM5B2w= Subject key identifier: 71:D4:B6:92:4F:53:55:78:E0:39:99:9C:7F:81:4D:12:F7:48:76:14 Authority key identifier: 1B:89:C2:79:B8:B1:66:69:8D:2B:E4:86:73:EC:CC:2B:08:13:3E:39 Certificate issuer: /CN=A91FCEB1/serialNumber=1B89C279B8B166698D2BE48673ECCC2B08133E39 Certificate serial: 07AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4nCebixZmmNK-SGc-zMKwgTPjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft Manifest number: 28DE Signing time: Thu 16 Apr 2026 15:53:31 +0000 Manifest this update: Thu 16 Apr 2026 15:53:30 +0000 Manifest next update: Thu 23 Apr 2026 15:53:30 +0000 Files and hashes: 1: G4nCebixZmmNK-SGc-zMKwgTPjk.crl (hash: HcbxRVqgJItObTA8oM+/AI809SHYH1wz7N92+xoC7k0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4nCebixZmmNK-SGc-zMKwgTPjk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1964 (0x7ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=1B89C279B8B166698D2BE48673ECCC2B08133E39 Validity Not Before: Apr 16 15:53:30 2026 GMT Not After : Apr 23 15:53:30 2026 GMT Subject: CN=69e105fb-9208 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:aa:0d:e2:ed:61:4b:a0:d0:60:d0:a7:68:2e: 50:3e:0b:1d:eb:f8:ba:2a:1a:97:b4:4f:9f:6a:a3: 3b:29:e8:99:9c:f5:5a:20:29:e5:31:97:44:50:f6: 44:76:f6:f7:2e:ca:f9:17:45:2d:12:ff:c3:19:2b: 66:0c:43:89:24:df:e7:ed:30:20:9f:b6:3b:88:72: b4:ce:48:2a:8d:ec:ed:9c:ab:c5:ff:41:78:2b:6c: 77:15:1a:d3:76:d9:00:b4:26:7e:38:4d:33:85:29: c4:2f:c8:93:57:bd:9b:35:e5:36:3a:4c:5a:6f:50: 41:0d:f0:0e:4d:4a:3c:57:54:e3:49:de:27:8e:13: 10:73:c5:c4:ca:49:32:e4:b1:ca:84:02:7f:7c:e4: 79:b5:aa:e7:f4:00:10:61:ca:04:f0:b5:9d:fd:3e: 40:72:f5:77:3a:2a:2c:5f:ba:cc:81:46:96:c2:fa: 0d:9d:68:37:93:54:17:42:97:8f:e1:29:ff:52:36: 7c:9f:11:a2:3d:13:df:1c:0a:52:3c:e9:d2:a4:4f: b3:6e:9c:be:2f:aa:c7:d0:a6:42:59:5c:7a:6c:a6: f0:1b:54:64:88:97:50:63:1e:a4:81:96:b1:92:30: ec:fd:a1:63:e2:46:86:ec:48:b9:96:82:da:76:bc: 85:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:D4:B6:92:4F:53:55:78:E0:39:99:9C:7F:81:4D:12:F7:48:76:14 X509v3 Authority Key Identifier: keyid:1B:89:C2:79:B8:B1:66:69:8D:2B:E4:86:73:EC:CC:2B:08:13:3E:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4nCebixZmmNK-SGc-zMKwgTPjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:89:3b:14:69:d5:ec:6b:ef:63:78:9e:ee:59:df:c2:aa:83: 63:6c:01:8b:65:61:d3:c1:24:d9:12:7b:59:3c:2d:8f:06:44: 3b:b6:a5:b8:52:e3:e2:ea:39:01:4b:02:36:64:2a:93:5b:1f: d7:98:e8:b6:ae:89:7d:b5:fb:0b:4a:51:fc:3c:5b:01:3f:bc: 94:3f:57:3e:d0:7c:27:fc:ff:d3:54:cf:26:2e:a9:6d:ef:6a: 00:0f:68:74:b9:78:d0:76:78:9a:24:25:ab:18:a4:61:77:ab: 10:83:3f:8e:b6:53:a7:9d:b8:b2:d0:90:6c:4f:2c:3c:89:9d: 5b:37:89:a7:fd:0e:b8:68:b8:b8:2c:e3:db:9c:97:5b:39:15: 05:1c:05:1a:0c:56:fa:36:42:2d:a6:2d:28:02:ff:e5:fe:bf: 0f:53:85:cf:2d:2c:57:40:5f:53:bf:c9:f9:7a:5c:19:b8:ff: 82:36:f5:47:cc:19:bc:39:47:01:b4:eb:e5:ea:38:df:bb:ed: 90:aa:89:37:75:69:92:7c:f2:89:60:52:54:33:2b:a8:c9:cb: 55:ec:47:34:c9:7f:02:6d:d0:63:c5:c7:7f:2c:2c:25:f4:45: 21:dc:a7:72:1f:27:de:cc:4c:32:e6:50:53:ff:95:2d:67:1b: a4:ed:1a:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKDFCODlDMjc5QjhCMTY2Njk4RDJCRTQ4NjczRUNDQzJC MDgxMzNFMzkwHhcNMjYwNDE2MTU1MzMwWhcNMjYwNDIzMTU1MzMwWjAYMRYwFAYD VQQDEw02OWUxMDVmYi05MjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqoN4u1hS6DQYNCnaC5QPgsd6/i6KhqXtE+faqM7KeiZnPVaICnlMZdEUPZE dvb3Lsr5F0UtEv/DGStmDEOJJN/n7TAgn7Y7iHK0zkgqjeztnKvF/0F4K2x3FRrT dtkAtCZ+OE0zhSnEL8iTV72bNeU2Okxab1BBDfAOTUo8V1TjSd4njhMQc8XEykky 5LHKhAJ/fOR5tarn9AAQYcoE8LWd/T5AcvV3OiosX7rMgUaWwvoNnWg3k1QXQpeP 4Sn/UjZ8nxGiPRPfHApSPOnSpE+zbpy+L6rH0KZCWVx6bKbwG1RkiJdQYx6kgZax kjDs/aFj4kaG7Ei5loLadryFMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHHUtpJP U1V44DmZnH+BTRL3SHYUMB8GA1UdIwQYMBaAFBuJwnm4sWZpjSvkhnPszCsIEz45 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS9FRkI4NzVDODA4 QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9HNG5DZWJpeFptbU5LLVNHYy16TUt3Z1RQ amsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0bkNlYml4Wm1tTkstU0djLXpNS3dnVFBqay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS9FRkI4NzVDODA4QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9HNG5DZWJpeFpt bU5LLVNHYy16TUt3Z1RQamsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnYk7FGnV7GvvY3ie7lnfwqqDY2wBi2Vh08Ek2RJ7WTwtjwZEO7aluFLj4uo5 AUsCNmQqk1sf15jotq6JfbX7C0pR/DxbAT+8lD9XPtB8J/z/01TPJi6pbe9qAA9o dLl40HZ4miQlqxikYXerEIM/jrZTp524stCQbE8sPImdWzeJp/0OuGi4uCzj25yX WzkVBRwFGgxW+jZCLaYtKAL/5f6/D1OFzy0sV0BfU7/J+XpcGbj/gjb1R8wZvDlH AbTr5eo437vtkKqJN3VpknzyiWBSVDMrqMnLVexHNMl/Am3QY8XHfywsJfRFIdyn ch8n3sxMMuZQU/+VLWcbpO0ayw== -----END CERTIFICATE-----Generated at Fri Apr 17 15:53:38 2026 by rpki-client