$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft File: ldQuwvRot-OPlYyPupMYARfcJuA.mft (raw, json) Hash identifier: VuiXt1XUHT68W2CJDSbWxpchvJuTP8Q7vR0z3fjtQbQ= Subject key identifier: 3D:64:D4:AE:77:CA:6C:81:F3:B8:72:18:E1:6C:F9:81:34:CE:74:EC Authority key identifier: 95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 Certificate issuer: /CN=A91A7F6A/serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft Manifest number: CB Signing time: Sun 05 Apr 2026 06:20:19 +0000 Manifest this update: Sun 05 Apr 2026 06:20:19 +0000 Manifest next update: Sun 12 Apr 2026 06:20:19 +0000 Files and hashes: 1: ldQuwvRot-OPlYyPupMYARfcJuA.crl (hash: +774xqaEVHcR0XzCdaprF3r4vVXN+UuCFaERFiXEvRU=) 2: B3849A9A359311F09B54926FC4F9AE02.roa (hash: 0kw+dyxUcDqZZm6WujoT9zGmaeGJaX2gm6HPIvvdWZI=) 3: 4210D4508CD711F0A2DFAA45C4F9AE02.roa (hash: 3NSD584QPTE2VoYUm/1Xe+49n3Loa2OiOqOtqQcrZ6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:20:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F6A, serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Validity Not Before: Apr 5 06:20:19 2026 GMT Not After : Apr 12 06:20:19 2026 GMT Subject: CN=69d1ff23-69dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:74:d4:5b:53:c5:0c:ae:2e:2c:ac:60:36:ce: 13:00:e9:f5:87:66:6b:7e:ea:77:6b:6a:9d:13:3e: 64:b7:95:27:f8:48:1c:38:56:92:4b:cf:c8:09:a8: 55:dc:ef:94:2f:0d:3d:d9:7b:41:41:ce:02:1f:4a: 2e:11:26:82:b6:dc:32:18:6b:fe:eb:70:a4:2a:cc: ef:b9:1b:d0:e4:7e:e0:d9:66:ad:a3:e5:bc:70:bb: e7:a6:f6:70:cc:96:20:a4:6e:aa:58:df:32:fc:ea: 16:91:43:03:e0:de:51:a1:b5:8a:1f:48:fa:68:bd: 75:55:3b:15:4f:0d:d7:ee:95:61:dc:a3:fb:63:93: 1b:8b:2b:82:82:c3:d6:7a:24:89:82:04:22:ee:5a: 70:c9:94:ba:88:4a:da:07:d4:ac:70:4e:ec:67:e3: fc:98:3f:e6:8c:c2:ea:da:4b:2a:f9:26:b7:e6:61: 25:1c:ba:ac:20:a6:62:59:0c:2e:f7:08:5d:75:7d: c2:2d:98:79:d3:f5:7c:72:e0:cd:74:46:34:ca:e3: cd:67:32:f4:49:7a:2b:66:55:af:cd:76:dd:6f:66: 68:56:3d:f9:08:af:5d:34:0e:a8:70:d2:eb:f6:0a: 7a:46:ea:5e:c8:91:cb:cd:82:25:06:a5:01:30:a0: a0:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:64:D4:AE:77:CA:6C:81:F3:B8:72:18:E1:6C:F9:81:34:CE:74:EC X509v3 Authority Key Identifier: keyid:95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:1b:e0:dd:29:ae:21:4b:26:3f:a8:a4:c5:09:35:7f:2a:5b: 03:11:c6:3e:8e:b8:d7:ff:48:82:9f:56:25:35:cf:05:08:0a: 6b:50:33:49:45:04:a6:a1:af:12:d1:da:92:08:26:8d:f8:67: 31:c7:e6:ab:4e:fe:e5:0b:2b:d2:63:a2:52:bf:d2:a4:3a:00: 8b:f7:b2:1a:d2:44:dd:05:32:af:56:8e:be:4a:6d:da:9e:12: 12:b7:71:eb:0e:a3:ce:40:58:04:65:12:d3:63:56:f4:57:8d: 0b:86:97:d8:44:ac:d7:60:15:2d:9a:79:51:1f:d1:4a:08:ba: c1:33:74:9d:35:82:1a:88:69:50:3d:d7:ba:22:fa:6e:1d:da: 9a:78:7d:3f:e4:bc:4e:9e:07:4c:fd:58:d9:ac:44:52:f5:db: e4:21:57:cd:0e:39:72:3c:8c:ef:38:9d:21:6b:80:99:53:9c: ff:a9:b9:22:bf:56:b2:00:64:50:fe:85:f2:67:cf:14:92:46: 14:6e:87:0b:49:af:2f:3b:bb:ec:d1:b8:3f:34:0e:95:59:c3: 45:32:01:63:aa:26:93:8b:52:6e:7f:ff:21:89:76:bc:68:eb: fc:6c:9b:1a:b6:1f:d8:2b:9a:67:c4:32:0e:e1:7f:6f:29:5f: af:1b:30:32 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdGNkExMTAvBgNVBAUTKDk1RDQyRUMyRjQ2OEI3RTM4Rjk1OEM4RkJBOTMxODAx MTdEQzI2RTAwHhcNMjYwNDA1MDYyMDE5WhcNMjYwNDEyMDYyMDE5WjAYMRYwFAYD VQQDEw02OWQxZmYyMy02OWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXTUW1PFDK4uLKxgNs4TAOn1h2Zrfup3a2qdEz5kt5Un+EgcOFaSS8/ICahV 3O+ULw092XtBQc4CH0ouESaCttwyGGv+63CkKszvuRvQ5H7g2Wato+W8cLvnpvZw zJYgpG6qWN8y/OoWkUMD4N5RobWKH0j6aL11VTsVTw3X7pVh3KP7Y5MbiyuCgsPW eiSJggQi7lpwyZS6iEraB9SscE7sZ+P8mD/mjMLq2ksq+Sa35mElHLqsIKZiWQwu 9whddX3CLZh50/V8cuDNdEY0yuPNZzL0SXorZlWvzXbdb2ZoVj35CK9dNA6ocNLr 9gp6RupeyJHLzYIlBqUBMKCgmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD1k1K53 ymyB87hyGOFs+YE0znTsMB8GA1UdIwQYMBaAFJXULsL0aLfjj5WMj7qTGAEX3Cbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Y2QS83QTUyOTg3NjBB RjAxMUYwODUzMUQ0M0NDNEY5QUUwMi9sZFF1d3ZSb3QtT1BsWXlQdXBNWUFSZmNK dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkUXV3dlJvdC1PUGxZeVB1cE1ZQVJmY0p1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0Y2QS83QTUyOTg3NjBBRjAxMUYwODUzMUQ0M0NDNEY5QUUwMi9sZFF1d3ZSb3Qt T1BsWXlQdXBNWUFSZmNKdUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZBvg3SmuIUsmP6ikxQk1fypbAxHGPo641/9Igp9WJTXPBQgKa1AzSUUEpqGv EtHakggmjfhnMcfmq07+5Qsr0mOiUr/SpDoAi/eyGtJE3QUyr1aOvkpt2p4SErdx 6w6jzkBYBGUS02NW9FeNC4aX2ESs12AVLZp5UR/RSgi6wTN0nTWCGohpUD3XuiL6 bh3amnh9P+S8Tp4HTP1Y2axEUvXb5CFXzQ45cjyM7zidIWuAmVOc/6m5Ir9WsgBk UP6F8mfPFJJGFG6HC0mvLzu77NG4PzQOlVnDRTIBY6omk4tSbn//IYl2vGjr/Gyb GrYf2CuaZ8QyDuF/bylfrxswMg== -----END CERTIFICATE-----Generated at Sun Apr 5 19:39:49 2026 by rpki-client