$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft File: lpDF1gn85ELDW5kW1WP58Ye2itQ.mft (raw, json) Hash identifier: vmP4Bopxt5fiMRFNifG2BgfQguwml4DZdZh8F5/qvNg= Subject key identifier: 43:3E:A6:F5:2F:0D:E2:F1:90:11:7E:07:DF:9A:B7:5F:A2:D4:80:4D Authority key identifier: 96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 Certificate issuer: /CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Certificate serial: 0EE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft Manifest number: 0ED6 Signing time: Sat 04 Apr 2026 17:32:00 +0000 Manifest this update: Sat 04 Apr 2026 17:32:00 +0000 Manifest next update: Sat 11 Apr 2026 17:32:00 +0000 Files and hashes: 1: lpDF1gn85ELDW5kW1WP58Ye2itQ.crl (hash: 19KGo5v2sHO+muDGXS5YTztcM0cCx2yKedIueXZ0nyU=) 2: 6C153768CE5511EB9DD80C30C4F9AE02.roa (hash: 8GXHkMu5QhzxhDcgK/hTob055OzXskK4SzGbgPUovhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3808 (0xee0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8E2C, serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Validity Not Before: Apr 4 17:32:00 2026 GMT Not After : Apr 11 17:32:00 2026 GMT Subject: CN=69d14b10-ff8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:52:4b:d4:1b:ec:51:2d:2e:bd:f6:51:0c:c6: b7:3a:3b:53:49:84:99:4e:41:1b:31:1e:db:b8:27: 61:23:ab:c8:f0:e4:5b:0e:ab:13:69:ec:c4:89:09: 83:40:f1:91:d7:a2:7e:46:0b:85:4b:ef:8d:af:da: d9:4f:74:07:fd:fe:35:19:51:85:d6:54:b0:00:65: 0b:cd:76:af:40:11:6e:fc:79:74:77:81:fe:8a:76: d1:36:e1:cf:75:0c:e9:a3:54:4d:77:90:02:c3:79: 23:e3:88:04:2a:65:ae:35:2a:09:25:9a:b6:31:3f: a1:42:a5:e3:d6:a8:9e:75:0b:8e:6f:12:ff:1e:05: 52:20:e8:cc:7f:f3:a4:0a:c2:fe:0e:51:9d:00:48: f6:e7:cd:45:81:7b:2d:6f:3e:48:a4:41:00:73:c0: bc:62:9f:91:68:70:cf:b3:79:9b:af:ee:0b:93:b8: d2:5b:45:60:69:db:63:49:0a:b2:69:a0:55:04:57: e7:c6:68:99:cc:cb:81:eb:fe:15:c0:3b:20:b4:0d: 2e:96:3f:bc:09:a7:0b:da:c6:0d:98:33:26:07:32: 09:cf:7e:9f:43:f4:ea:52:cb:bb:cd:2c:77:31:aa: 4d:2c:1c:94:b0:f6:13:67:f8:dc:5f:5b:73:87:cd: 9b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:3E:A6:F5:2F:0D:E2:F1:90:11:7E:07:DF:9A:B7:5F:A2:D4:80:4D X509v3 Authority Key Identifier: keyid:96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:e9:7b:f3:88:bc:92:e8:cd:a9:91:86:8a:dd:f8:b2:56:4c: 4a:20:52:c4:55:ec:25:b4:92:70:5c:0c:ee:00:a1:35:19:43: ea:08:51:18:a3:8b:e9:01:05:1b:5d:1d:fb:86:c3:1a:94:19: 28:77:b6:3c:58:ea:48:6b:78:a5:c3:f0:f7:01:b0:c0:14:65: f8:6f:ec:b7:c4:8a:ce:41:de:54:92:3c:1c:23:b8:0f:03:b0: a0:19:59:a5:68:05:13:c3:7d:b8:64:98:52:c8:04:35:75:40: 84:b9:bf:4f:bf:86:9b:ed:50:37:58:b3:92:b3:ea:5f:4c:b1: 02:01:9f:2d:b6:3a:5d:bd:63:a0:ea:58:99:52:dd:cb:61:d6: 98:65:47:05:e4:97:d3:e7:06:e8:00:89:5e:1d:b2:da:5c:af: a0:fd:0c:56:87:3c:17:8e:80:fa:ec:5e:6f:e3:78:da:ba:96: c0:b6:60:60:2b:e9:80:e8:96:1f:b7:62:c0:c6:25:48:b4:91: b2:b0:cd:cc:76:c5:5a:57:87:16:1b:26:b9:bd:8a:cf:6b:fb: 88:38:26:d9:08:f5:f2:7e:49:2d:a3:77:28:73:bd:2b:25:fb: 46:de:a5:61:b2:dd:92:13:79:5a:28:da:b6:a7:72:d4:f5:c9: de:86:f8:df -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFMkMxMTAvBgNVBAUTKDk2OTBDNUQ2MDlGQ0U0NDJDMzVCOTkxNkQ1NjNGOUYx ODdCNjhBRDQwHhcNMjYwNDA0MTczMjAwWhcNMjYwNDExMTczMjAwWjAYMRYwFAYD VQQDEw02OWQxNGIxMC1mZjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVJL1BvsUS0uvfZRDMa3OjtTSYSZTkEbMR7buCdhI6vI8ORbDqsTaezEiQmD QPGR16J+RguFS++Nr9rZT3QH/f41GVGF1lSwAGULzXavQBFu/Hl0d4H+inbRNuHP dQzpo1RNd5ACw3kj44gEKmWuNSoJJZq2MT+hQqXj1qiedQuObxL/HgVSIOjMf/Ok CsL+DlGdAEj2581FgXstbz5IpEEAc8C8Yp+RaHDPs3mbr+4Lk7jSW0VgadtjSQqy aaBVBFfnxmiZzMuB6/4VwDsgtA0ulj+8CacL2sYNmDMmBzIJz36fQ/TqUsu7zSx3 MapNLByUsPYTZ/jcX1tzh82bgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEM+pvUv DeLxkBF+B9+at1+i1IBNMB8GA1UdIwQYMBaAFJaQxdYJ/ORCw1uZFtVj+fGHtorU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEUyQy8wRkUxRUQwNkEy RkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVFTERXNWtXMVdQNThZZTJp dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xwREYxZ244NUVMRFc1a1cxV1A1OFllMml0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEUyQy8wRkUxRUQwNkEyRkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVF TERXNWtXMVdQNThZZTJpdFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJ+l784i8kujNqZGGit34slZMSiBSxFXsJbSScFwM7gChNRlD6ghRGKOL6QEF G10d+4bDGpQZKHe2PFjqSGt4pcPw9wGwwBRl+G/st8SKzkHeVJI8HCO4DwOwoBlZ pWgFE8N9uGSYUsgENXVAhLm/T7+Gm+1QN1izkrPqX0yxAgGfLbY6Xb1joOpYmVLd y2HWmGVHBeSX0+cG6ACJXh2y2lyvoP0MVoc8F46A+uxeb+N42rqWwLZgYCvpgOiW H7diwMYlSLSRsrDNzHbFWleHFhsmub2Kz2v7iDgm2Qj18n5JLaN3KHO9KyX7Rt6l YbLdkhN5Wijatqdy1PXJ3ob43w== -----END CERTIFICATE-----Generated at Sun Apr 5 19:39:46 2026 by rpki-client