$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft File: lSamckeK-nVEXY0H3MV8BYlm7-I.mft (raw, json) Hash identifier: 6jw2O/v4NbuwR+Sa0lsfAH81/FcCU0JpYHAA0ZO/ir4= Subject key identifier: 57:8C:55:2C:D9:D8:A4:D0:44:13:75:1B:E2:E2:E9:F2:CC:C4:D8:EC Authority key identifier: 95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2 Certificate issuer: /CN=A91FA1BE/serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2 Certificate serial: 02D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft Manifest number: 02C6 Signing time: Sun 05 Apr 2026 01:08:44 +0000 Manifest this update: Sun 05 Apr 2026 01:08:43 +0000 Manifest next update: Sun 12 Apr 2026 01:08:43 +0000 Files and hashes: 1: lSamckeK-nVEXY0H3MV8BYlm7-I.crl (hash: y9GhADtvOVUM7aBlyHHFvGGAr/qKuIb1rFb874xivAk=) 2: 6F46908C2D3411ED92165562C4F9AE02.roa (hash: UPDUd4t5zx8UFYbNLzFGnvRhyMjEHl7Tb9rUHZFXp40=) 3: 6E98B3182D3411ED92165562C4F9AE02.roa (hash: 7/ANmUusyhHaIQ0U3dh4piILL1EQvQjyTLSsoXWQ5XU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 722 (0x2d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA1BE, serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2 Validity Not Before: Apr 5 01:08:43 2026 GMT Not After : Apr 12 01:08:43 2026 GMT Subject: CN=69d1b61b-c506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:47:6e:40:fa:70:da:fb:4f:43:f1:c7:f1:28: fb:db:85:31:4e:d2:04:39:9e:b0:9c:2c:f7:5e:9f: 0b:b4:3b:0e:52:95:e4:25:02:20:86:7b:05:87:74: 89:cf:06:e8:04:0a:0f:d7:9c:b7:e4:37:05:f4:1e: fb:5a:f7:08:a8:4e:fb:db:1a:f1:95:a4:8a:53:f2: cc:20:92:77:d3:33:5f:c7:4f:a7:39:70:de:6e:72: 0d:67:36:68:85:2c:9a:fb:25:9a:0c:99:4d:7d:82: a5:2b:db:3a:75:bb:74:7f:ba:b0:5c:75:b2:68:c2: 9e:3b:26:d2:ab:7a:b4:71:66:ae:af:ff:1d:85:e1: 20:19:31:0e:a3:28:0e:87:02:fb:71:02:06:0b:81: ae:ef:dc:14:52:9d:a9:41:4f:17:15:37:11:e4:dd: 10:d0:05:73:de:06:7d:bb:7e:27:cb:5e:c9:ef:9b: ee:d0:fb:81:3f:b6:08:57:b8:87:6f:a4:d1:00:e7: 7f:bd:f3:23:dd:28:1d:2a:c0:a8:88:93:67:97:7f: 64:0d:4f:d4:49:77:5f:27:c9:49:e8:8c:00:5f:48: e9:63:ac:a5:30:2a:ec:f4:a2:e8:25:69:ab:df:7a: 05:e1:82:96:45:03:9c:71:44:0e:aa:48:a2:2c:50: 5f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:8C:55:2C:D9:D8:A4:D0:44:13:75:1B:E2:E2:E9:F2:CC:C4:D8:EC X509v3 Authority Key Identifier: keyid:95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:1d:f5:fa:b7:e9:da:dc:17:44:d6:85:c0:b6:69:64:47:4a: 7a:b4:ad:c9:aa:3a:d4:23:50:7b:21:4f:8f:95:6d:5c:12:68: 2b:1f:e9:dd:05:6e:22:a2:7e:c9:53:3f:5c:9d:58:ea:9c:c5: b8:66:46:ba:e0:97:3a:ee:5b:a6:3c:26:7d:f0:28:fc:b4:c4: 81:2f:df:77:3a:9b:57:e7:49:6e:f9:e9:cd:aa:8b:2d:42:2d: 2c:61:d5:4e:45:8d:65:d6:58:b3:78:3b:5c:15:1b:6b:cd:3b: 1f:1e:25:e0:26:a5:ae:da:76:ca:9a:42:73:3f:f2:85:62:81: f1:3f:6e:c5:75:00:9a:bf:53:1e:f1:b8:ee:a7:25:fc:c3:c7: 8b:7c:3f:d6:c0:00:dc:91:2d:05:b7:9f:76:54:ef:f4:4d:90: cb:ba:b6:83:30:1e:9b:3e:2a:09:d2:92:d9:40:05:ce:d2:13: 9c:ed:08:f2:bf:52:32:49:d0:ec:e7:e7:41:73:aa:57:eb:08: 45:65:05:d3:7a:d4:bb:e7:f1:de:db:14:68:5b:6f:49:dc:1b: 82:ec:e4:16:2f:8b:e1:bf:d4:93:1f:22:e7:1e:f2:8e:5d:e6: ea:70:d0:3d:d8:4b:73:4a:e0:4f:ca:32:6a:fd:f3:25:69:68: 17:50:f6:90 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkExQkUxMTAvBgNVBAUTKDk1MjZBNjcyNDc4QUZBNzU0NDVEOEQwN0RDQzU3QzA1 ODk2NkVGRTIwHhcNMjYwNDA1MDEwODQzWhcNMjYwNDEyMDEwODQzWjAYMRYwFAYD VQQDEw02OWQxYjYxYi1jNTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5EduQPpw2vtPQ/HH8Sj724UxTtIEOZ6wnCz3Xp8LtDsOUpXkJQIghnsFh3SJ zwboBAoP15y35DcF9B77WvcIqE772xrxlaSKU/LMIJJ30zNfx0+nOXDebnINZzZo hSya+yWaDJlNfYKlK9s6dbt0f7qwXHWyaMKeOybSq3q0cWaur/8dheEgGTEOoygO hwL7cQIGC4Gu79wUUp2pQU8XFTcR5N0Q0AVz3gZ9u34ny17J75vu0PuBP7YIV7iH b6TRAOd/vfMj3SgdKsCoiJNnl39kDU/USXdfJ8lJ6IwAX0jpY6ylMCrs9KLoJWmr 33oF4YKWRQOccUQOqkiiLFBf2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFeMVSzZ 2KTQRBN1G+Li6fLMxNjsMB8GA1UdIwQYMBaAFJUmpnJHivp1RF2NB9zFfAWJZu/i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTFCRS80MTY4RkY3NjJE MzIxMUVEOTJCOEI3NjFDNEY5QUUwMi9sU2FtY2tlSy1uVkVYWTBIM01WOEJZbG03 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTYW1ja2VLLW5WRVhZMEgzTVY4QllsbTctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTFCRS80MTY4RkY3NjJEMzIxMUVEOTJCOEI3NjFDNEY5QUUwMi9sU2FtY2tlSy1u VkVYWTBIM01WOEJZbG03LUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhh31+rfp2twXRNaFwLZpZEdKerStyao61CNQeyFPj5VtXBJoKx/p3QVuIqJ+ yVM/XJ1Y6pzFuGZGuuCXOu5bpjwmffAo/LTEgS/fdzqbV+dJbvnpzaqLLUItLGHV TkWNZdZYs3g7XBUba807Hx4l4Calrtp2yppCcz/yhWKB8T9uxXUAmr9THvG47qcl /MPHi3w/1sAA3JEtBbefdlTv9E2Qy7q2gzAemz4qCdKS2UAFztITnO0I8r9SMknQ 7OfnQXOqV+sIRWUF03rUu+fx3tsUaFtvSdwbguzkFi+L4b/Ukx8i5x7yjl3m6nDQ PdhLc0rgT8oyav3zJWloF1D2kA== -----END CERTIFICATE-----Generated at Sun Apr 5 19:41:07 2026 by rpki-client