$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft File: Gu-1HeyOsHlip15FnOIQp0ABBPs.mft (raw, json) Hash identifier: vtEapHRUgDM+fB7si8WN2cK4Ydl4WdoTQNf3bJauIC8= Subject key identifier: 02:8A:93:C9:DD:3E:54:EB:E1:02:9C:37:35:52:AB:50:61:50:CD:54 Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 3553 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft Manifest number: 3541 Signing time: Tue 12 May 2026 14:42:07 +0000 Manifest this update: Tue 12 May 2026 14:42:06 +0000 Manifest next update: Tue 19 May 2026 14:42:06 +0000 Files and hashes: 1: Gu-1HeyOsHlip15FnOIQp0ABBPs.crl (hash: NIUks1Hrx0Hx5H/LAjHpfl1TKieKibJqNH3gYm6ECDg=) 2: 232E8BFEFEA411EDBC673B4BC4F9AE02.roa (hash: i/MqTAr3DjQbJ7pM6lK7jVjbcEbd2+i/7IX3vbbjQxw=) 3: 220E32CEFEA411EDBC673B4BC4F9AE02.roa (hash: E2m3GG0CyyLNe3em7BY2AGdLBy8YhmSii0OKLOGYkJg=) 4: 229F27ACFEA411EDBC673B4BC4F9AE02.roa (hash: Qk1zJmgRoPNYf3XvdVSfDLRHp6uM57VNb9FsqRujDlI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:42:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13651 (0x3553) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE, serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: May 12 14:42:06 2026 GMT Not After : May 19 14:42:06 2026 GMT Subject: CN=6a033c3f-9d87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:31:d2:12:6b:a3:62:1d:db:3c:ef:25:3d:57: f0:64:62:c8:13:d1:97:60:14:b2:12:79:a0:a2:b4: 71:58:d2:c8:16:36:a9:22:52:e9:7d:44:ca:07:0a: e1:76:06:fb:74:3f:79:da:c9:bb:8d:f0:a5:4b:38: 50:cb:7e:29:23:8a:96:0d:8a:5a:66:8b:fd:fd:ae: f6:f8:f3:cf:50:c9:5b:a7:31:3b:a7:0a:50:c0:2b: 00:13:89:89:06:60:7a:c7:b9:7c:e6:2f:93:46:ff: 62:81:9a:4c:d1:7c:09:6d:ec:d4:f3:87:f3:24:cd: bf:d8:8f:bc:0c:ae:64:78:03:6f:03:c2:5d:a2:42: e7:f0:09:51:3e:c6:82:8b:91:58:13:6f:33:40:6f: 4c:57:72:c3:77:f8:38:06:1d:5d:0b:55:e1:bb:cd: 6b:52:ea:9a:71:fb:7a:30:56:e3:c5:a5:9e:f2:75: 60:88:c1:bf:3f:4c:10:18:5c:6c:3c:bc:f4:59:4b: 5e:b1:83:ff:d4:65:03:16:f3:da:14:ac:f9:73:2c: 49:fb:fc:cd:17:09:0a:c0:68:41:1e:85:f6:f0:da: a3:cd:95:d3:77:15:64:b8:19:bf:a4:cf:74:84:73: 37:21:fe:77:8e:0f:89:89:e5:c8:35:47:ce:0a:a8: e7:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:8A:93:C9:DD:3E:54:EB:E1:02:9C:37:35:52:AB:50:61:50:CD:54 X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:db:c7:95:b9:c3:ef:b6:c9:99:4c:cb:7e:1b:30:c9:02:f2: c1:34:52:59:d1:ef:a2:4d:4c:18:95:a2:9f:80:e4:00:a6:86: f1:ac:49:9f:ee:5e:39:9d:36:e7:7e:43:ec:33:b0:de:ce:a2: f6:8c:bf:78:ab:d4:ce:bd:fb:e6:cf:86:9b:2d:1d:0b:03:d0: ee:b0:b5:ff:28:c7:b2:73:f6:20:f0:9f:6f:92:bf:3d:e6:48: ca:f9:34:e4:55:71:25:78:cb:ee:ed:c0:12:0f:5e:5f:ad:73: fe:83:6a:10:6f:c8:58:f6:75:f2:2b:b4:de:66:f8:6f:7f:e6: 24:b7:21:95:6d:f7:94:d4:da:b0:90:05:77:69:25:dc:65:8c: 83:5e:73:dc:39:08:51:d0:02:1a:7b:f2:62:55:51:26:18:46: 36:13:33:6a:26:93:7e:f7:5e:20:d6:b8:bb:79:0f:ea:7b:74: 85:77:f9:61:85:34:99:d1:56:bb:83:7c:10:d9:c6:3a:cc:5a: 81:91:71:64:6a:01:e6:5c:df:28:4a:76:23:eb:a2:93:09:03: ee:87:1d:3d:07:f7:d2:49:1d:a3:73:1e:38:14:e8:c6:e0:d4: 7a:9b:45:76:4b:d2:c0:cc:c7:d5:b7:eb:33:ba:b3:8b:7b:80: 86:4f:0b:03 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjYwNTEyMTQ0MjA2WhcNMjYwNTE5MTQ0MjA2WjAYMRYwFAYD VQQDEw02YTAzM2MzZi05ZDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDHSEmujYh3bPO8lPVfwZGLIE9GXYBSyEnmgorRxWNLIFjapIlLpfUTKBwrh dgb7dD952sm7jfClSzhQy34pI4qWDYpaZov9/a72+PPPUMlbpzE7pwpQwCsAE4mJ BmB6x7l85i+TRv9igZpM0XwJbezU84fzJM2/2I+8DK5keANvA8JdokLn8AlRPsaC i5FYE28zQG9MV3LDd/g4Bh1dC1Xhu81rUuqacft6MFbjxaWe8nVgiMG/P0wQGFxs PLz0WUtesYP/1GUDFvPaFKz5cyxJ+/zNFwkKwGhBHoX28NqjzZXTdxVkuBm/pM90 hHM3If53jg+JieXINUfOCqjnOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAKKk8nd PlTr4QKcNzVSq1BhUM1UMB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0RBRS9GRUZCQ0M4RTFEOEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NI bGlwMTVGbk9JUXAwQUJCUHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAD9vHlbnD77bJmUzLfhswyQLywTRSWdHvok1MGJWin4DkAKaG8axJn+5eOZ02 535D7DOw3s6i9oy/eKvUzr375s+Gmy0dCwPQ7rC1/yjHsnP2IPCfb5K/PeZIyvk0 5FVxJXjL7u3AEg9eX61z/oNqEG/IWPZ18iu03mb4b3/mJLchlW33lNTasJAFd2kl 3GWMg15z3DkIUdACGnvyYlVRJhhGNhMzaiaTfvdeINa4u3kP6nt0hXf5YYU0mdFW u4N8ENnGOsxagZFxZGoB5lzfKEp2I+uikwkD7ocdPQf30kkdo3MeOBToxuDUeptF dkvSwMzH1bfrM7qzi3uAhk8LAw== -----END CERTIFICATE-----Generated at Wed May 13 08:59:44 2026 by rpki-client