$ rpki-client -vvf rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft File: lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft (raw, json) Hash identifier: V8oMDsi1b5+LGt0+U6/eWweyEcSFfwKhajC7oAqsDJg= Subject key identifier: 98:A4:10:8E:D7:77:38:4C:99:B2:AC:B9:08:EA:68:FA:37:06:E6:15 Authority key identifier: 94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5 Certificate issuer: /CN=A917DD85/serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5 Certificate serial: 01FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft Manifest number: 01ED Signing time: Sun 05 Apr 2026 02:53:37 +0000 Manifest this update: Sun 05 Apr 2026 02:53:37 +0000 Manifest next update: Sun 12 Apr 2026 02:53:37 +0000 Files and hashes: 1: lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl (hash: tO9NeEOc6lKnZpMk/5+xxmYMZZCJrTkHubPk92Xmoc4=) 2: 0A90C738CFEE11F09D36C783C4F9AE02.roa (hash: mUzueILU6DMYRwrPcEFRa5VxiMRJrbIkqI08KQIEvug=) 3: A155911C4BCA11EEBC8C8B82C4F9AE02.roa (hash: ul9EAOzO4X5WSgm0Um4L21nKCG4Fzp+91sYnSwxatf4=) 4: 2B1FE092CFEE11F082935D16C4F9AE02.roa (hash: 6xMDbRG7wBKknxTgsFGsxPPwxSF0IsdgT+T+xByYGfk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:53:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DD85, serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5 Validity Not Before: Apr 5 02:53:37 2026 GMT Not After : Apr 12 02:53:37 2026 GMT Subject: CN=69d1ceb1-59c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5e:e8:b3:db:22:46:c9:b3:a0:c8:7a:b1:a1: f4:06:eb:de:bd:4f:47:4b:a6:3a:ff:d4:6d:48:3c: c4:a6:64:96:03:c1:e2:25:b1:9f:3e:c0:dc:a2:63: 86:1b:0a:2f:0f:f5:59:fc:32:57:9b:ee:1c:11:40: 7e:80:93:7c:c9:ad:43:9e:00:7f:be:24:8e:0a:9e: f1:19:62:f7:cb:93:f8:67:11:1a:b1:c3:5b:ef:a0: 38:1a:b1:2b:7b:d4:4e:d6:fb:c2:cb:6a:79:65:94: a5:56:c1:87:56:b7:e0:88:da:41:e7:86:a3:02:56: 3e:1e:4e:a2:c2:c2:a0:3a:47:df:cb:78:fd:57:8e: 2b:b9:a8:0b:d4:e7:e1:e6:3a:5a:06:73:36:74:7d: 74:d1:c9:96:fa:ae:ac:7d:cc:84:28:6d:df:49:13: 83:1d:73:fa:81:b3:5c:2c:20:70:58:b9:38:b2:01: ad:8d:28:42:22:ba:5f:e4:0d:63:87:c3:77:08:b4: de:cc:ad:13:76:bc:8a:28:fd:e8:9d:5c:72:3e:8c: 57:71:49:98:8f:56:73:a0:ad:56:48:5c:40:2f:ba: 78:36:39:6a:09:e4:b2:24:d7:30:00:51:1a:d4:40: 1b:90:d3:fc:90:c5:61:87:4d:7d:03:32:65:04:9a: 96:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:A4:10:8E:D7:77:38:4C:99:B2:AC:B9:08:EA:68:FA:37:06:E6:15 X509v3 Authority Key Identifier: keyid:94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:f5:5c:03:b6:e6:32:94:57:58:76:68:32:27:51:b2:ae:d7: 73:1b:8f:8f:8d:73:e2:7c:5d:2f:81:99:52:fc:52:72:ca:ca: 42:d1:b2:be:38:b5:fd:7e:40:f5:0d:3e:03:3c:48:09:1d:7f: 92:74:8b:d5:86:94:25:db:9e:bc:36:6e:8d:67:28:23:05:6a: d4:3b:13:0f:0d:f1:48:a9:88:a3:b8:23:a6:66:09:c8:9f:3c: 70:5d:d8:2f:71:d0:6c:eb:ee:d6:d1:db:df:95:96:e9:77:a6: 5a:aa:ec:9f:16:7d:cf:46:25:fd:8f:e4:31:2d:bd:61:cb:ee: 91:4a:73:39:e7:2f:ce:e4:b9:c4:93:17:04:22:f3:2f:61:e5: 52:04:ea:38:54:83:4c:f2:ef:02:4e:51:bd:a4:c1:3b:46:dd: 82:d5:db:e0:ae:9f:da:9d:5a:6d:34:0b:8d:be:aa:3c:94:bd: 53:09:d6:57:86:67:09:90:0b:68:b0:6b:86:8e:4d:b3:23:52: 24:69:5e:27:79:62:20:2d:dd:04:43:9c:21:fc:6f:5a:e4:6c: b2:5f:6c:bb:b1:06:2b:4e:fb:e9:8f:8a:00:97:96:d9:11:0b: 08:76:24:d1:69:4e:7d:bd:54:ed:0f:c6:b3:12:5b:4a:f0:8a: 2e:13:0e:dc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0REODUxMTAvBgNVBAUTKDk0NDM3RUREQ0M4RDA2OTg5RTA5NTAwNTQzQzkxQkRG MEQzRjQ4RTUwHhcNMjYwNDA1MDI1MzM3WhcNMjYwNDEyMDI1MzM3WjAYMRYwFAYD VQQDEw02OWQxY2ViMS01OWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApl7os9siRsmzoMh6saH0BuvevU9HS6Y6/9RtSDzEpmSWA8HiJbGfPsDcomOG GwovD/VZ/DJXm+4cEUB+gJN8ya1DngB/viSOCp7xGWL3y5P4ZxEascNb76A4GrEr e9RO1vvCy2p5ZZSlVsGHVrfgiNpB54ajAlY+Hk6iwsKgOkffy3j9V44ruagL1Ofh 5jpaBnM2dH100cmW+q6sfcyEKG3fSRODHXP6gbNcLCBwWLk4sgGtjShCIrpf5A1j h8N3CLTezK0TdryKKP3onVxyPoxXcUmYj1ZzoK1WSFxAL7p4NjlqCeSyJNcwAFEa 1EAbkNP8kMVhh019AzJlBJqWKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJikEI7X dzhMmbKsuQjqaPo3BuYVMB8GA1UdIwQYMBaAFJRDft3MjQaYnglQBUPJG98NP0jl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REQ4NS84NDZGNEE2ODRC QzMxMUVFOEM2NTczMTlDNEY5QUUwMi9sRU4tM2N5TkJwaWVDVkFGUThrYjN3MF9T T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xFTi0zY3lOQnBpZUNWQUZROGtiM3cwX1NPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REQ4NS84NDZGNEE2ODRCQzMxMUVFOEM2NTczMTlDNEY5QUUwMi9sRU4tM2N5TkJw aWVDVkFGUThrYjN3MF9TT1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcfVcA7bmMpRXWHZoMidRsq7XcxuPj41z4nxdL4GZUvxScsrKQtGyvji1/X5A 9Q0+AzxICR1/knSL1YaUJduevDZujWcoIwVq1DsTDw3xSKmIo7gjpmYJyJ88cF3Y L3HQbOvu1tHb35WW6XemWqrsnxZ9z0Yl/Y/kMS29YcvukUpzOecvzuS5xJMXBCLz L2HlUgTqOFSDTPLvAk5RvaTBO0bdgtXb4K6f2p1abTQLjb6qPJS9UwnWV4ZnCZAL aLBrho5NsyNSJGleJ3liIC3dBEOcIfxvWuRssl9su7EGK0776Y+KAJeW2RELCHYk 0WlOfb1U7Q/GsxJbSvCKLhMO3A== -----END CERTIFICATE-----Generated at Sun Apr 5 19:44:11 2026 by rpki-client