$ rpki-client -vvf rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft File: lC8l1zULID6onvLRzBULBbF7K4c.mft (raw, json) Hash identifier: JYAPsCwnz9i/aAG+o3TOwzWb9UPKZVwy5+hEk6PX5WA= Subject key identifier: C6:27:49:A1:17:98:47:94:B2:06:DD:F0:4D:EB:40:FF:69:86:87:6E Authority key identifier: 94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 Certificate issuer: /CN=A912FB1D/serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Certificate serial: 3556 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft Manifest number: 353A Signing time: Sat 04 Apr 2026 15:15:50 +0000 Manifest this update: Sat 04 Apr 2026 15:15:50 +0000 Manifest next update: Sat 11 Apr 2026 15:15:50 +0000 Files and hashes: 1: lC8l1zULID6onvLRzBULBbF7K4c.crl (hash: vrVdIYyJERZ1T0yG9kPJjKsuhr0TBLH/tSHfqaeov1k=) 2: C098D762675111E9A0C4BB36C4F9AE02.roa (hash: naU1L3sA/vwcpXLmBU/QE/974IoqN32UsdXdqlCcaP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13654 (0x3556) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FB1D, serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Validity Not Before: Apr 4 15:15:50 2026 GMT Not After : Apr 11 15:15:50 2026 GMT Subject: CN=69d12b26-e6b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b9:80:35:9a:ad:13:33:e7:f6:17:05:7e:03: bc:1f:7b:67:f0:9d:50:62:e6:ce:0f:58:29:b1:1a: f2:ad:5b:f0:a1:83:18:51:03:a2:67:af:05:5a:d1: 49:63:a9:2b:fc:8f:57:f1:24:e4:f5:bb:ae:23:56: 65:4f:fc:6f:5f:e8:dd:51:46:d5:0b:3a:13:ad:ba: 44:a4:6f:28:1f:ea:4e:56:e4:90:d4:be:82:72:1e: 16:aa:3e:a1:58:de:17:a3:60:34:1a:46:d1:10:d8: b2:05:eb:c8:03:b9:93:21:90:d0:17:28:0b:56:02: eb:75:b3:89:e5:98:02:d6:55:b4:0f:9f:8c:af:b3: db:b9:6d:a9:27:d8:22:e3:5b:5a:53:de:06:b2:1e: 68:38:b8:72:19:f5:19:a2:34:dc:94:5f:29:bb:4d: 71:40:fb:76:c2:22:c6:b4:d9:85:22:65:4b:70:bd: 3d:18:31:63:9e:31:ec:46:2a:f3:84:9b:70:f8:b5: ef:be:f1:46:b5:70:ad:ce:81:7b:b9:25:76:ac:fc: 48:7d:4b:29:04:4b:90:df:67:90:51:d6:ae:c8:57: 8f:a4:b5:af:a5:cd:33:1a:3c:4e:66:d5:fb:65:ce: f0:f6:a5:ba:d0:e4:5d:8c:a2:de:ac:13:95:c6:80: 1f:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:27:49:A1:17:98:47:94:B2:06:DD:F0:4D:EB:40:FF:69:86:87:6E X509v3 Authority Key Identifier: keyid:94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:f4:93:ab:3f:04:ca:89:34:58:71:67:dc:75:d0:6d:51:f8: 4b:fd:11:3e:99:72:64:08:46:0f:8c:d6:74:91:66:5b:ec:3a: a0:69:24:e5:41:99:5b:d8:b4:9c:3d:f3:4e:60:36:ca:ac:4d: f4:54:6f:ad:73:3a:55:3c:3e:4c:66:84:63:e4:82:91:1b:a4: 9c:57:bd:92:d7:2d:1b:35:0c:8d:c6:b4:72:a8:4f:0a:70:b6: 9f:99:cc:cc:e5:8e:55:16:e8:70:ce:e7:b5:15:25:22:ce:a7: 58:b9:8b:ab:dc:2d:70:f7:40:92:e2:4f:94:cc:fc:3e:10:09: ae:ae:2a:4b:de:3d:2a:8c:e7:10:88:8c:bf:27:64:9d:eb:22: a8:b4:f8:a1:18:db:59:f7:4a:ce:39:28:1f:a3:6f:61:e3:39: 84:44:8d:96:59:8b:8f:e0:b2:d4:7e:e8:f3:1d:91:b5:77:a4: 6e:ff:ba:28:f4:22:f6:5b:49:21:fb:57:49:43:63:9b:13:8b: 80:c4:7d:86:72:f9:54:c4:a7:e3:4e:ea:35:d4:e3:78:f7:1c: cf:41:8f:23:a4:df:1e:6d:ff:b3:fc:2f:d6:8d:4c:ef:9b:67: dd:20:ea:b2:b1:8c:2f:45:0c:5b:be:4b:73:16:1f:e1:8b:df: 03:ea:f5:ea -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCMUQxMTAvBgNVBAUTKDk0MkYyNUQ3MzUwQjIwM0VBODlFRjJEMUNDMTUwQjA1 QjE3QjJCODcwHhcNMjYwNDA0MTUxNTUwWhcNMjYwNDExMTUxNTUwWjAYMRYwFAYD VQQDEw02OWQxMmIyNi1lNmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn7mANZqtEzPn9hcFfgO8H3tn8J1QYubOD1gpsRryrVvwoYMYUQOiZ68FWtFJ Y6kr/I9X8STk9buuI1ZlT/xvX+jdUUbVCzoTrbpEpG8oH+pOVuSQ1L6Cch4Wqj6h WN4Xo2A0GkbRENiyBevIA7mTIZDQFygLVgLrdbOJ5ZgC1lW0D5+Mr7PbuW2pJ9gi 41taU94Gsh5oOLhyGfUZojTclF8pu01xQPt2wiLGtNmFImVLcL09GDFjnjHsRirz hJtw+LXvvvFGtXCtzoF7uSV2rPxIfUspBEuQ32eQUdauyFePpLWvpc0zGjxOZtX7 Zc7w9qW60ORdjKLerBOVxoAfdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMYnSaEX mEeUsgbd8E3rQP9phoduMB8GA1UdIwQYMBaAFJQvJdc1CyA+qJ7y0cwVCwWxeyuH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkIxRC9DNjg0Q0E5QzFE QUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElENm9udkxSekJVTEJiRjdL NGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDOGwxelVMSUQ2b252TFJ6QlVMQmJGN0s0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkIxRC9DNjg0Q0E5QzFEQUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElE Nm9udkxSekJVTEJiRjdLNGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAyPSTqz8Eyok0WHFn3HXQbVH4S/0RPplyZAhGD4zWdJFmW+w6oGkk5UGZW9i0 nD3zTmA2yqxN9FRvrXM6VTw+TGaEY+SCkRuknFe9ktctGzUMjca0cqhPCnC2n5nM zOWOVRbocM7ntRUlIs6nWLmLq9wtcPdAkuJPlMz8PhAJrq4qS949KoznEIiMvydk nesiqLT4oRjbWfdKzjkoH6NvYeM5hESNllmLj+Cy1H7o8x2RtXekbv+6KPQi9ltJ IftXSUNjmxOLgMR9hnL5VMSn407qNdTjePccz0GPI6TfHm3/s/wv1o1M75tn3SDq srGML0UMW75LcxYf4YvfA+r16g== -----END CERTIFICATE-----Generated at Mon Apr 6 09:54:34 2026 by rpki-client