$ rpki-client -vvf rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft File: l_lzn2QJyHWu4cSbtpqnQ882YRs.mft (raw, json) Hash identifier: BxJkiDqPiR5hEUCs1NGDeuoQUm0dTHRiowKhjHCXjQw= Subject key identifier: B7:D8:B6:6F:92:60:05:5D:38:45:80:86:D3:72:DB:46:EE:F3:7D:FC Authority key identifier: 97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B Certificate issuer: /CN=A917047F/serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Certificate serial: 0EEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft Manifest number: 0EEB Signing time: Sat 04 Apr 2026 17:32:09 +0000 Manifest this update: Sat 04 Apr 2026 17:32:09 +0000 Manifest next update: Sat 11 Apr 2026 17:32:09 +0000 Files and hashes: 1: l_lzn2QJyHWu4cSbtpqnQ882YRs.crl (hash: 8WRtHMbrvoHp5VSoXA0xM7JXAzwF+pkuoqEO/mWv+RA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3820 (0xeec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917047F, serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Validity Not Before: Apr 4 17:32:09 2026 GMT Not After : Apr 11 17:32:09 2026 GMT Subject: CN=69d14b19-1279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:41:fc:f8:1a:6a:25:47:ec:46:e4:d9:b0:4d: 7c:64:3e:eb:67:cc:4b:47:43:2f:29:c3:ae:90:e2: 2e:3f:e5:0e:df:29:76:88:d2:db:04:e6:ea:34:c1: 80:6d:a8:c4:e7:60:a2:60:45:b9:16:d8:a8:a5:69: 51:b4:d2:25:73:a5:f3:51:e3:91:b2:91:47:33:3c: 7e:4d:60:50:42:40:85:0a:03:7d:67:0c:7e:48:cd: 34:e7:23:2a:e6:4f:3f:a8:83:99:3d:47:bf:70:b7: db:9a:78:c1:8c:94:f8:58:31:30:93:17:b9:f0:0a: 18:f5:0d:f4:17:42:d9:5c:db:21:55:d3:03:15:01: cb:ad:50:7a:60:b6:9b:2f:ff:47:5e:a3:84:14:17: a1:6d:94:22:73:21:6e:a1:d5:56:0a:a3:b5:6a:68: 58:35:17:8a:c3:27:83:b1:ef:54:02:36:90:2f:20: 3a:fe:70:e5:6d:38:65:7b:f0:fd:75:8e:44:82:18: 2c:4d:6d:cd:5a:84:69:94:3c:5e:b8:27:55:d0:d7: 43:42:9c:70:e4:21:7a:78:ce:4c:61:5f:eb:ea:1e: a1:1f:0b:4b:45:9f:b1:f8:ae:cc:ce:30:e3:cd:dc: 39:1a:a6:d7:19:4f:7c:8e:67:a1:cb:34:5e:d1:0c: 22:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:D8:B6:6F:92:60:05:5D:38:45:80:86:D3:72:DB:46:EE:F3:7D:FC X509v3 Authority Key Identifier: keyid:97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:0a:68:a6:aa:9d:50:45:90:8b:1d:37:bf:10:10:be:7b:34: 7c:c8:7a:27:7f:d7:8b:37:88:27:15:08:d5:ff:a9:41:25:de: f9:46:12:3a:f7:06:7a:0c:8c:72:99:43:5e:39:79:8d:41:bf: 60:f3:ca:86:22:eb:fc:94:e3:23:18:6b:ea:25:d5:da:e7:9b: cd:95:44:57:99:94:ea:32:82:b7:eb:8a:13:9e:69:49:6b:5c: de:90:f3:11:34:d1:4b:84:e9:3a:99:62:66:26:35:ce:76:bf: a7:6e:9c:6c:16:d2:84:80:cb:12:58:2b:6e:56:ab:dc:bc:a5: 32:37:58:2c:75:27:61:2a:70:0f:fe:7c:a5:4e:9e:29:c1:43: 2e:cc:11:8c:03:1e:d5:18:09:40:a4:b9:95:51:30:3f:f1:4b: a1:8a:92:3d:cf:ba:23:59:0c:20:20:30:65:8b:e3:a0:47:2b: 4c:f8:a0:a3:5a:a5:c8:86:e9:b2:be:25:8d:87:30:42:22:55: e5:12:9e:c8:fd:c2:33:40:30:63:db:94:97:65:00:04:f7:96: 5e:cd:ab:0e:47:e5:56:3e:0b:98:2d:15:4f:62:62:fe:73:b2: 31:6e:63:00:3f:1d:a9:bc:e4:01:f2:bb:d3:62:5f:fb:75:85: ac:9e:3a:63 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA0N0YxMTAvBgNVBAUTKDk3Rjk3MzlGNjQwOUM4NzVBRUUxQzQ5QkI2OUFBNzQz Q0YzNjYxMUIwHhcNMjYwNDA0MTczMjA5WhcNMjYwNDExMTczMjA5WjAYMRYwFAYD VQQDEw02OWQxNGIxOS0xMjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0H8+BpqJUfsRuTZsE18ZD7rZ8xLR0MvKcOukOIuP+UO3yl2iNLbBObqNMGA bajE52CiYEW5FtiopWlRtNIlc6XzUeORspFHMzx+TWBQQkCFCgN9Zwx+SM005yMq 5k8/qIOZPUe/cLfbmnjBjJT4WDEwkxe58AoY9Q30F0LZXNshVdMDFQHLrVB6YLab L/9HXqOEFBehbZQicyFuodVWCqO1amhYNReKwyeDse9UAjaQLyA6/nDlbThle/D9 dY5EghgsTW3NWoRplDxeuCdV0NdDQpxw5CF6eM5MYV/r6h6hHwtLRZ+x+K7MzjDj zdw5GqbXGU98jmehyzRe0QwiFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLfYtm+S YAVdOEWAhtNy20bu8338MB8GA1UdIwQYMBaAFJf5c59kCch1ruHEm7aap0PPNmEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDQ3Ri9GRDcyREUxNEEz QTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlIV3U0Y1NidHBxblE4ODJZ UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfbHpuMlFKeUhXdTRjU2J0cHFuUTg4MllScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDQ3Ri9GRDcyREUxNEEzQTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlI V3U0Y1NidHBxblE4ODJZUnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGwpopqqdUEWQix03vxAQvns0fMh6J3/XizeIJxUI1f+pQSXe+UYSOvcGegyM cplDXjl5jUG/YPPKhiLr/JTjIxhr6iXV2uebzZVEV5mU6jKCt+uKE55pSWtc3pDz ETTRS4TpOpliZiY1zna/p26cbBbShIDLElgrblar3LylMjdYLHUnYSpwD/58pU6e KcFDLswRjAMe1RgJQKS5lVEwP/FLoYqSPc+6I1kMICAwZYvjoEcrTPigo1qlyIbp sr4ljYcwQiJV5RKeyP3CM0AwY9uUl2UABPeWXs2rDkflVj4LmC0VT2Ji/nOyMW5j AD8dqbzkAfK702Jf+3WFrJ46Yw== -----END CERTIFICATE-----Generated at Sun Apr 5 19:49:16 2026 by rpki-client