$ rpki-client -vvf rpki.apnic.net/member_repository/A917D82E/E73132280B2011F1A2EFC93F3E3D8C67/_5Lsi9gN-r3TbmPJr0ynqG3ealc.mft File: _5Lsi9gN-r3TbmPJr0ynqG3ealc.mft (raw, json) Hash identifier: 8SJKKMDBI2Q0l5TnFo0SBlz4T2UMrV5o2rj5yK+USe8= Subject key identifier: E8:5F:F0:C3:F9:34:01:93:6F:C0:BE:5F:24:0F:36:CA:AA:8C:E4:77 Authority key identifier: FF:92:EC:8B:D8:0D:FA:BD:D3:6E:63:C9:AF:4C:A7:A8:6D:DE:6A:57 Certificate issuer: /CN=A917D82E/serialNumber=FF92EC8BD80DFABDD36E63C9AF4CA7A86DDE6A57 Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5Lsi9gN-r3TbmPJr0ynqG3ealc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D82E/E73132280B2011F1A2EFC93F3E3D8C67/_5Lsi9gN-r3TbmPJr0ynqG3ealc.mft Manifest number: 23 Signing time: Sun 05 Apr 2026 08:15:41 +0000 Manifest this update: Sun 05 Apr 2026 08:15:40 +0000 Manifest next update: Sun 12 Apr 2026 08:15:40 +0000 Files and hashes: 1: _5Lsi9gN-r3TbmPJr0ynqG3ealc.crl (hash: RDj5+IqZBrcWVHU+TbOKo3Hvimwuw5V/wMyaVyL0898=) 2: 472DDE380B2111F19BE0F4953F3D8C67.roa (hash: sCTj5r8qqEXu3bvLoN64PVkesO/DVMq2io4GoK3oYbs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D82E/E73132280B2011F1A2EFC93F3E3D8C67/_5Lsi9gN-r3TbmPJr0ynqG3ealc.crl rsync://rpki.apnic.net/member_repository/A917D82E/E73132280B2011F1A2EFC93F3E3D8C67/_5Lsi9gN-r3TbmPJr0ynqG3ealc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5Lsi9gN-r3TbmPJr0ynqG3ealc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 08:15:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D82E, serialNumber=FF92EC8BD80DFABDD36E63C9AF4CA7A86DDE6A57 Validity Not Before: Apr 5 08:15:40 2026 GMT Not After : Apr 12 08:15:40 2026 GMT Subject: CN=69d21a2c-9296 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:79:a7:ea:5f:f1:ca:7f:0f:a4:c8:a3:53:ed: fa:e6:6a:18:49:98:72:db:82:1a:e7:fc:c6:40:c1: 12:8e:0a:63:2d:f3:34:54:62:89:14:2d:1a:3e:d4: 97:08:ec:2b:df:2d:bc:71:c3:30:9f:bf:ac:a2:43: 8a:76:31:2a:08:11:8f:49:1a:e0:70:69:ef:8d:e3: 1e:b4:e9:48:61:3d:22:e9:0f:be:c2:e3:a7:98:d6: 51:b7:b3:16:ef:b2:14:11:68:a5:0f:79:67:b8:ed: 9f:74:6a:fd:1a:42:dc:c4:12:8e:d0:91:45:1d:43: f3:e0:85:11:67:73:83:96:e2:d4:dd:08:9b:25:5b: 6c:c7:46:ac:43:2f:0d:e7:1e:49:fe:d9:fb:9a:7a: e3:18:8d:96:a6:eb:9d:b1:e6:50:33:fd:62:a8:c8: a8:f4:9c:dc:f1:e7:d0:ba:ed:f7:f7:dc:6b:ac:9b: 66:a3:e7:4a:1b:ee:f1:92:3a:43:9b:75:c5:95:e4: 42:e0:a1:63:c6:54:64:12:7f:71:12:88:54:1a:dc: 53:93:7c:39:5c:c5:83:1e:9f:d6:3a:65:7a:69:46: 0f:a1:e1:aa:04:c4:29:d4:5b:e4:af:27:3f:ca:ef: 8a:b0:d7:3e:5f:dc:88:87:64:90:ca:22:a5:5a:a0: 62:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:5F:F0:C3:F9:34:01:93:6F:C0:BE:5F:24:0F:36:CA:AA:8C:E4:77 X509v3 Authority Key Identifier: keyid:FF:92:EC:8B:D8:0D:FA:BD:D3:6E:63:C9:AF:4C:A7:A8:6D:DE:6A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D82E/E73132280B2011F1A2EFC93F3E3D8C67/_5Lsi9gN-r3TbmPJr0ynqG3ealc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5Lsi9gN-r3TbmPJr0ynqG3ealc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D82E/E73132280B2011F1A2EFC93F3E3D8C67/_5Lsi9gN-r3TbmPJr0ynqG3ealc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:3b:b9:3b:b1:13:f7:53:d7:d1:40:57:cb:68:5f:4d:6a:bf: 7a:83:0a:e6:86:ac:1c:cf:10:71:03:b0:83:57:54:20:d2:c3: b8:d6:b5:98:c0:16:50:91:9f:70:24:60:4a:27:73:75:31:5f: be:b0:06:a4:3a:e6:29:f0:d3:a1:51:00:1d:cc:ee:43:6b:d6: 3a:96:34:f1:65:59:47:cf:51:e4:d0:e4:30:57:34:c2:16:aa: ef:9b:ac:b9:c5:28:29:c9:d3:55:04:fc:4b:6b:82:41:0e:83: 38:d0:fc:7d:42:8f:98:5e:68:9b:d6:bf:9c:63:f5:66:63:c9: 4b:80:c3:57:31:78:c9:17:8b:fa:e4:26:f5:15:fb:16:cc:67: e2:a8:f8:d0:e5:53:00:1d:67:78:d9:4c:cb:fc:0e:3e:ba:e7: 36:a9:54:ba:0c:a4:ba:6c:b3:3a:c9:e7:6e:6e:5c:8b:bf:4c: d3:e8:90:49:32:6d:a2:3a:4a:ae:ff:ae:25:56:ef:68:c9:26: 61:af:69:69:4f:e4:6f:ea:a6:a7:93:11:ea:d0:2c:cd:6d:3b: 00:e5:96:14:81:eb:7b:a8:40:13:c5:37:16:05:0c:f2:8c:32: 76:9d:7c:6b:b8:fa:bd:c1:2c:dd:a0:81:40:fe:42:99:0d:1d: 48:d1:3e:66 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RDgyRTExMC8GA1UEBRMoRkY5MkVDOEJEODBERkFCREQzNkU2M0M5QUY0Q0E3QTg2 RERFNkE1NzAeFw0yNjA0MDUwODE1NDBaFw0yNjA0MTIwODE1NDBaMBgxFjAUBgNV BAMTDTY5ZDIxYTJjLTkyOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6eafqX/HKfw+kyKNT7frmahhJmHLbghrn/MZAwRKOCmMt8zRUYokULRo+1JcI 7CvfLbxxwzCfv6yiQ4p2MSoIEY9JGuBwae+N4x606UhhPSLpD77C46eY1lG3sxbv shQRaKUPeWe47Z90av0aQtzEEo7QkUUdQ/PghRFnc4OW4tTdCJslW2zHRqxDLw3n Hkn+2fuaeuMYjZam652x5lAz/WKoyKj0nNzx59C67ff33Gusm2aj50ob7vGSOkOb dcWV5ELgoWPGVGQSf3ESiFQa3FOTfDlcxYMen9Y6ZXppRg+h4aoExCnUW+SvJz/K 74qw1z5f3IiHZJDKIqVaoGK/AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU6F/ww/k0 AZNvwL5fJA82yqqM5HcwHwYDVR0jBBgwFoAU/5Lsi9gN+r3TbmPJr0ynqG3ealcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEODJFL0U3MzEzMjI4MEIy MDExRjFBMkVGQzkzRjNFM0Q4QzY3L181THNpOWdOLXIzVGJtUEpyMHlucUczZWFs Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvXzVMc2k5Z04tcjNUYm1QSnIweW5xRzNlYWxjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdE ODJFL0U3MzEzMjI4MEIyMDExRjFBMkVGQzkzRjNFM0Q4QzY3L181THNpOWdOLXIz VGJtUEpyMHlucUczZWFsYy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCVO7k7sRP3U9fRQFfLaF9Nar96gwrmhqwczxBxA7CDV1Qg0sO41rWYwBZQkZ9w JGBKJ3N1MV++sAakOuYp8NOhUQAdzO5Da9Y6ljTxZVlHz1Hk0OQwVzTCFqrvm6y5 xSgpydNVBPxLa4JBDoM40Px9Qo+YXmib1r+cY/VmY8lLgMNXMXjJF4v65Cb1FfsW zGfiqPjQ5VMAHWd42UzL/A4+uuc2qVS6DKS6bLM6yedublyLv0zT6JBJMm2iOkqu /64lVu9oySZhr2lpT+Rv6qankxHq0CzNbTsA5ZYUget7qEATxTcWBQzyjDJ2nXxr uPq9wSzdoIFA/kKZDR1I0T5m -----END CERTIFICATE-----Generated at Sun Apr 5 20:58:01 2026 by rpki-client