$ rpki-client -vvf rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft File: GF_2ZH4elndQE3e1UVR5uelGEGc.mft (raw, json) Hash identifier: t9IQXpPINfZfTnBBO/vjj97v/sr6287QOrck0pttsso= Subject key identifier: B3:C2:D8:CF:32:DE:15:6A:C8:76:13:AD:D4:17:90:9C:94:64:0F:C9 Authority key identifier: 18:5F:F6:64:7E:1E:96:77:50:13:77:B5:51:54:79:B9:E9:46:10:67 Certificate issuer: /CN=A9193C85/serialNumber=185FF6647E1E9677501377B5515479B9E9461067 Certificate serial: 124B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft Manifest number: 123D Signing time: Tue 12 May 2026 17:08:40 +0000 Manifest this update: Tue 12 May 2026 17:08:39 +0000 Manifest next update: Tue 19 May 2026 17:08:39 +0000 Files and hashes: 1: GF_2ZH4elndQE3e1UVR5uelGEGc.crl (hash: XK+ssw+rxv9U+HWVddAFy1i9tHJ8pB7CaSKh3yrxQYI=) 2: A1E87910832A11ECA409521EC4F9AE02.roa (hash: dQ31DGysxuRcz8IXxZUTh7NYyP9e4QqCfC6Tluzrj9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.crl rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:08:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4683 (0x124b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193C85, serialNumber=185FF6647E1E9677501377B5515479B9E9461067 Validity Not Before: May 12 17:08:39 2026 GMT Not After : May 19 17:08:39 2026 GMT Subject: CN=6a035e97-8917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:96:d8:6f:16:fc:39:a6:b0:47:3e:a3:aa:9a: 33:ea:16:65:26:e9:bc:58:4c:78:3f:aa:2f:d4:be: 74:17:fa:6e:38:98:d5:82:42:ab:a0:b2:02:2b:2a: 53:c6:df:fe:7c:6c:d7:c9:78:1a:3a:69:34:e2:d8: 83:ff:db:91:f0:c2:45:c1:4e:5f:63:a5:98:46:e0: 39:97:be:b4:47:b9:a6:ef:9a:39:38:73:de:a6:f0: a5:e8:00:33:58:df:aa:88:27:06:bf:52:12:73:90: ce:67:81:67:63:85:83:7f:ad:21:61:4e:40:97:9f: cc:2e:09:5d:e3:b4:10:4f:86:a3:0c:66:8b:2a:e8: 3a:e9:4f:b9:9e:a5:39:db:20:19:51:7b:2c:7b:61: ac:37:14:bb:8e:cb:fa:22:90:78:ec:ae:53:4f:d2: 31:9b:46:ab:b1:85:b0:8b:c2:86:26:61:b7:9b:49: be:10:ff:cb:f9:1a:3b:30:d1:d2:55:b5:a4:c3:17: 91:e8:1c:50:4b:d0:6d:63:aa:c7:ae:d5:a3:d8:0e: 90:e3:38:e0:b6:30:09:75:64:8d:f3:90:86:48:ea: be:5a:52:6e:ad:fa:79:6a:11:7e:32:10:5f:41:3e: fe:5b:29:e0:7f:2d:24:b1:fa:c7:6f:53:ad:4d:6c: 2d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:C2:D8:CF:32:DE:15:6A:C8:76:13:AD:D4:17:90:9C:94:64:0F:C9 X509v3 Authority Key Identifier: keyid:18:5F:F6:64:7E:1E:96:77:50:13:77:B5:51:54:79:B9:E9:46:10:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:5a:25:f8:70:c3:fa:6c:9d:1b:9f:d5:46:7f:1f:80:2d:5e: 4f:7f:6c:ee:2e:cc:09:2d:17:4b:d9:8c:4a:6c:55:1d:b7:0e: 7d:46:42:b6:bc:fb:45:b4:0b:35:4a:91:5b:09:cf:18:7a:ce: 0c:e8:ba:16:f2:55:ff:3b:22:86:a2:ca:28:0d:94:45:5d:19: b3:e9:d7:04:a3:df:02:b4:73:ae:e4:2e:82:c8:2d:59:cc:ec: 14:08:89:1e:18:29:61:cf:50:e5:bf:0a:e5:c5:b6:69:23:76: 3f:e9:e4:3e:58:87:3a:c6:23:ef:20:39:64:5d:ec:75:fd:4f: 46:55:ea:9f:37:64:1b:cd:85:6e:38:3f:86:38:8c:6d:6d:4e: b5:82:24:d3:af:b8:03:af:af:a2:e0:dc:93:b1:00:87:64:e4: 9d:ca:62:37:33:72:87:95:df:da:83:61:e3:29:d3:95:36:ec: 71:d8:cf:65:98:f5:d6:34:eb:6d:fa:ec:bd:ef:8e:e4:7d:b9: 7c:3e:91:c7:53:98:8b:04:75:93:5c:ad:98:95:45:c7:d1:62: 4e:cf:2b:29:ee:aa:27:fb:19:3d:31:83:01:97:89:07:0e:64: 03:db:13:7e:6a:28:6e:93:80:2d:48:80:60:c2:01:b5:d2:ca: 2a:24:a0:7e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNDODUxMTAvBgNVBAUTKDE4NUZGNjY0N0UxRTk2Nzc1MDEzNzdCNTUxNTQ3OUI5 RTk0NjEwNjcwHhcNMjYwNTEyMTcwODM5WhcNMjYwNTE5MTcwODM5WjAYMRYwFAYD VQQDEw02YTAzNWU5Ny04OTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZbYbxb8OaawRz6jqpoz6hZlJum8WEx4P6ov1L50F/puOJjVgkKroLICKypT xt/+fGzXyXgaOmk04tiD/9uR8MJFwU5fY6WYRuA5l760R7mm75o5OHPepvCl6AAz WN+qiCcGv1ISc5DOZ4FnY4WDf60hYU5Al5/MLgld47QQT4ajDGaLKug66U+5nqU5 2yAZUXsse2GsNxS7jsv6IpB47K5TT9Ixm0arsYWwi8KGJmG3m0m+EP/L+Ro7MNHS VbWkwxeR6BxQS9BtY6rHrtWj2A6Q4zjgtjAJdWSN85CGSOq+WlJurfp5ahF+MhBf QT7+Wyngfy0ksfrHb1OtTWwt6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLPC2M8y 3hVqyHYTrdQXkJyUZA/JMB8GA1UdIwQYMBaAFBhf9mR+HpZ3UBN3tVFUebnpRhBn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0M4NS80RkY0Q0I3MkZE RTAxMUU4OEVERTQ1MTNDNEY5QUUwMi9HRl8yWkg0ZWxuZFFFM2UxVVZSNXVlbEdF R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dGXzJaSDRlbG5kUUUzZTFVVlI1dWVsR0VHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 M0M4NS80RkY0Q0I3MkZERTAxMUU4OEVERTQ1MTNDNEY5QUUwMi9HRl8yWkg0ZWxu ZFFFM2UxVVZSNXVlbEdFR2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP1ol+HDD+mydG5/VRn8fgC1eT39s7i7MCS0XS9mMSmxVHbcOfUZCtrz7RbQL NUqRWwnPGHrODOi6FvJV/zsihqLKKA2URV0Zs+nXBKPfArRzruQugsgtWczsFAiJ HhgpYc9Q5b8K5cW2aSN2P+nkPliHOsYj7yA5ZF3sdf1PRlXqnzdkG82Fbjg/hjiM bW1OtYIk06+4A6+vouDck7EAh2TkncpiNzNyh5Xf2oNh4ynTlTbscdjPZZj11jTr bfrsve+O5H25fD6Rx1OYiwR1k1ytmJVFx9FiTs8rKe6qJ/sZPTGDAZeJBw5kA9sT fmoobpOALUiAYMIBtdLKKiSgfg== -----END CERTIFICATE-----Generated at Wed May 13 09:35:46 2026 by rpki-client