$ rpki-client -vvf rpki.apnic.net/member_repository/A91406FF/3969B3CA11FD11F1A466363C133D8C67/l7RGIWN5hXcArWW5-v7sfJIsItg.mft File: l7RGIWN5hXcArWW5-v7sfJIsItg.mft (raw, json) Hash identifier: cLzLnl0nsbk6wm5zBQU4mB70RKMyZ0cssHSZx0kW1y0= Subject key identifier: A4:CF:51:F5:DD:D4:8F:E7:0D:F2:06:4E:F4:E6:83:99:4D:24:02:1F Authority key identifier: 97:B4:46:21:63:79:85:77:00:AD:65:B9:FA:FE:EC:7C:92:2C:22:D8 Certificate issuer: /CN=A91406FF/serialNumber=97B446216379857700AD65B9FAFEEC7C922C22D8 Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/l7RGIWN5hXcArWW5-v7sfJIsItg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406FF/3969B3CA11FD11F1A466363C133D8C67/l7RGIWN5hXcArWW5-v7sfJIsItg.mft Manifest number: 23 Signing time: Tue 21 Apr 2026 08:40:18 +0000 Manifest this update: Tue 21 Apr 2026 08:40:18 +0000 Manifest next update: Tue 28 Apr 2026 08:40:18 +0000 Files and hashes: 1: l7RGIWN5hXcArWW5-v7sfJIsItg.crl (hash: lcwm1+AM8vKesh3/GhrtnjZPgezds1cRPSZpge30OAg=) 2: ECF1FD7E129011F18378F4EA3A3D8C67.roa (hash: DkkIwCU4RqWZKjsDF1eFw5VTmjTzQ2/3+rxMkY3F0Fk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406FF/3969B3CA11FD11F1A466363C133D8C67/l7RGIWN5hXcArWW5-v7sfJIsItg.crl rsync://rpki.apnic.net/member_repository/A91406FF/3969B3CA11FD11F1A466363C133D8C67/l7RGIWN5hXcArWW5-v7sfJIsItg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/l7RGIWN5hXcArWW5-v7sfJIsItg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 08:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406FF, serialNumber=97B446216379857700AD65B9FAFEEC7C922C22D8 Validity Not Before: Apr 21 08:40:18 2026 GMT Not After : Apr 28 08:40:18 2026 GMT Subject: CN=69e737f2-9491 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8a:9a:4b:6b:37:b8:d4:89:60:66:18:c0:26: aa:03:1c:93:29:b4:fb:d1:a8:37:37:0c:1b:1c:8a: 4d:95:7d:5c:4b:48:de:6f:11:c6:76:d1:86:0e:d2: 9f:40:27:10:09:34:a2:a6:c0:cd:90:ac:65:3a:ca: 7a:b1:a2:3a:0b:f2:9c:b2:b0:ec:c4:d0:b7:62:80: 6b:2a:b0:7b:40:98:fd:2c:3a:87:18:5f:0b:a6:01: cf:a6:36:29:b8:04:d2:80:06:8b:fb:43:ca:e7:8e: 38:60:d1:f9:31:76:fa:37:e8:08:b4:4d:d7:b7:7f: 61:f6:8b:6e:e7:96:e3:0d:c8:ef:44:e6:2b:f2:bf: 9b:0b:82:80:92:4d:40:9f:ba:dc:14:e9:42:4f:08: f2:ee:db:88:48:c5:39:7c:22:30:34:99:1c:17:99: c6:94:28:d8:00:6c:98:91:11:0b:bd:6d:f3:92:f2: a3:f1:ed:e2:52:cd:0e:2c:9f:26:7c:c1:ba:f5:29: 12:34:0a:b4:74:89:29:39:7d:25:b6:dc:cd:62:b9: f0:1b:98:6f:d6:aa:1c:9b:b1:99:ba:5a:ce:2d:e6: 34:21:01:30:89:24:18:10:06:a3:fc:2a:fb:02:cc: a0:b5:57:e8:9c:82:c9:d1:df:be:bc:ea:38:cd:ce: cc:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:CF:51:F5:DD:D4:8F:E7:0D:F2:06:4E:F4:E6:83:99:4D:24:02:1F X509v3 Authority Key Identifier: keyid:97:B4:46:21:63:79:85:77:00:AD:65:B9:FA:FE:EC:7C:92:2C:22:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406FF/3969B3CA11FD11F1A466363C133D8C67/l7RGIWN5hXcArWW5-v7sfJIsItg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/l7RGIWN5hXcArWW5-v7sfJIsItg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406FF/3969B3CA11FD11F1A466363C133D8C67/l7RGIWN5hXcArWW5-v7sfJIsItg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:d4:e7:92:44:5a:62:8b:b6:49:cb:0a:60:1a:14:b0:7b:f0: 9d:2c:a6:19:8a:29:6a:48:98:d3:1a:e9:34:03:09:0b:cf:6f: 76:cd:fd:fa:1c:a0:86:80:dd:d5:9c:20:cc:95:df:83:2f:97: 90:f1:8a:ec:e0:45:b5:34:62:85:ed:49:fd:66:7d:11:1d:5d: f8:86:ea:06:5f:3b:b5:be:39:f3:cd:67:2e:ac:55:bd:ec:07: 75:f9:19:77:16:1f:87:62:92:a0:9c:71:ee:6a:b5:f7:3f:2b: a9:2c:fb:88:85:07:81:78:6c:1a:f3:4d:27:4a:ea:6e:f4:3f: cd:da:1f:5f:37:46:33:20:80:b9:ac:2c:12:fd:89:21:7c:19: ea:ab:62:38:ba:54:ca:79:f7:18:30:33:d7:44:9d:66:f7:5a: 36:cc:60:27:4e:60:ea:d7:10:69:5a:37:ee:52:82:4a:88:d2: 92:a8:08:27:52:eb:07:23:11:27:93:ee:af:40:9f:c9:52:6c: df:ca:a1:7f:a0:67:09:b4:8c:c6:ef:03:de:53:ea:aa:7b:a6: cd:89:2e:73:b5:c8:be:3d:fa:37:9d:08:ff:9b:9e:84:6b:a4: cb:ad:0d:89:7c:97:e9:e1:c4:f4:e0:4c:63:89:34:98:7c:6d: 00:ea:37:42 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MDZGRjExMC8GA1UEBRMoOTdCNDQ2MjE2Mzc5ODU3NzAwQUQ2NUI5RkFGRUVDN0M5 MjJDMjJEODAeFw0yNjA0MjEwODQwMThaFw0yNjA0MjgwODQwMThaMBgxFjAUBgNV BAMTDTY5ZTczN2YyLTk0OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzippLaze41IlgZhjAJqoDHJMptPvRqDc3DBscik2VfVxLSN5vEcZ20YYO0p9A JxAJNKKmwM2QrGU6ynqxojoL8pyysOzE0LdigGsqsHtAmP0sOocYXwumAc+mNim4 BNKABov7Q8rnjjhg0fkxdvo36Ai0Tde3f2H2i27nluMNyO9E5ivyv5sLgoCSTUCf utwU6UJPCPLu24hIxTl8IjA0mRwXmcaUKNgAbJiREQu9bfOS8qPx7eJSzQ4snyZ8 wbr1KRI0CrR0iSk5fSW23M1iufAbmG/WqhybsZm6Ws4t5jQhATCJJBgQBqP8KvsC zKC1V+icgsnR37686jjNzszjAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUpM9R9d3U j+cN8gZO9OaDmU0kAh8wHwYDVR0jBBgwFoAUl7RGIWN5hXcArWW5+v7sfJIsItgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQwNkZGLzM5NjlCM0NBMTFG RDExRjFBNDY2MzYzQzEzM0Q4QzY3L2w3UkdJV041aFhjQXJXVzUtdjdzZkpJc0l0 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvbDdSR0lXTjVoWGNBcldXNS12N3NmSklzSXRnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQw NkZGLzM5NjlCM0NBMTFGRDExRjFBNDY2MzYzQzEzM0Q4QzY3L2w3UkdJV041aFhj QXJXVzUtdjdzZkpJc0l0Zy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCe1OeSRFpii7ZJywpgGhSwe/CdLKYZiilqSJjTGuk0AwkLz292zf36HKCGgN3V nCDMld+DL5eQ8Yrs4EW1NGKF7Un9Zn0RHV34huoGXzu1vjnzzWcurFW97Ad1+Rl3 Fh+HYpKgnHHuarX3PyupLPuIhQeBeGwa800nSupu9D/N2h9fN0YzIIC5rCwS/Ykh fBnqq2I4ulTKefcYMDPXRJ1m91o2zGAnTmDq1xBpWjfuUoJKiNKSqAgnUusHIxEn k+6vQJ/JUmzfyqF/oGcJtIzG7wPeU+qqe6bNiS5ztci+Pfo3nQj/m56Ea6TLrQ2J fJfp4cT04ExjiTSYfG0A6jdC -----END CERTIFICATE-----Generated at Tue Apr 21 21:34:38 2026 by rpki-client