$ rpki-client -vvf rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft File: lI_4don6lJEW9ffIAOsdcB5l43s.mft (raw, json) Hash identifier: lC+N/N58OQO3yyOKbePgOLbbj6RlQ/3NlY7w4qpYNvo= Subject key identifier: 7A:4F:50:B9:73:A8:A4:8F:E7:4D:AB:35:49:16:F0:66:C6:FD:E9:DB Authority key identifier: 94:8F:F8:76:89:FA:94:91:16:F5:F7:C8:00:EB:1D:70:1E:65:E3:7B Certificate issuer: /CN=A9148EFA/serialNumber=948FF87689FA949116F5F7C800EB1D701E65E37B Certificate serial: 0C16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft Manifest number: 0C0C Signing time: Sat 04 Apr 2026 18:39:11 +0000 Manifest this update: Sat 04 Apr 2026 18:39:10 +0000 Manifest next update: Sat 11 Apr 2026 18:39:10 +0000 Files and hashes: 1: lI_4don6lJEW9ffIAOsdcB5l43s.crl (hash: /hIlgeuTCyzKVUmLYwRj4G7fqLBomiBDXAxb678gU3c=) 2: 160F265C827311EDA56A8F30C4F9AE02.roa (hash: mJ7FNfAsY8ilIUPeznnb6nLSUZbSai5AntD3LtENWkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.crl rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:39:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3094 (0xc16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148EFA, serialNumber=948FF87689FA949116F5F7C800EB1D701E65E37B Validity Not Before: Apr 4 18:39:10 2026 GMT Not After : Apr 11 18:39:10 2026 GMT Subject: CN=69d15acf-3f2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:06:ea:9f:5a:b7:b5:fd:ab:58:22:4b:6f:5c: 1a:cc:79:21:21:03:0c:dd:5f:a2:77:f7:35:88:f8: e3:c6:d3:c3:89:62:0c:8b:46:39:a3:ef:90:c3:da: fe:b6:ec:bb:b2:9c:33:17:cb:20:05:c3:4c:32:06: 64:db:03:a4:e0:f3:84:03:22:1b:59:a1:9a:e8:42: 2e:74:2e:d3:b3:ab:be:ab:0b:cd:bb:02:8d:b3:01: 51:ca:c3:99:78:f0:57:29:49:8c:74:18:7a:5c:d9: 13:57:56:57:1d:1f:a7:92:cf:73:91:a6:84:98:b9: 31:ac:75:2f:7c:45:4a:3a:44:9f:bb:ab:b5:4f:05: c1:06:ad:7f:9b:1b:fd:af:31:10:26:aa:49:60:c3: 9e:33:31:30:f2:18:d6:02:01:66:b7:e2:8d:eb:5a: 37:b6:f9:8a:1d:66:70:77:51:41:45:db:0f:13:19: f3:de:24:85:6c:5e:b5:fe:e7:29:93:fa:42:68:83: f0:28:6b:ab:d9:40:e8:38:a5:87:a3:0e:09:85:0a: eb:60:69:5e:7c:df:52:4b:ef:d1:9d:77:63:d2:43: f2:40:21:aa:64:bf:f5:10:ce:6f:1c:5f:10:6f:0d: 0c:5f:8c:f0:5e:9a:68:b5:c2:0e:5d:e7:fe:05:df: 63:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:4F:50:B9:73:A8:A4:8F:E7:4D:AB:35:49:16:F0:66:C6:FD:E9:DB X509v3 Authority Key Identifier: keyid:94:8F:F8:76:89:FA:94:91:16:F5:F7:C8:00:EB:1D:70:1E:65:E3:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:da:71:0b:fa:ca:b7:bd:75:08:9f:05:dc:ce:30:df:e8:8b: b7:a1:53:f3:97:3c:e3:65:f5:f7:1f:10:30:09:3d:f5:4a:8f: b3:df:ce:21:e8:c2:de:61:72:10:7b:5b:13:27:69:85:3f:9e: 6d:cc:5a:7e:0d:f7:ca:ab:52:40:2b:d8:d1:af:e1:59:38:8f: e6:31:1b:50:06:08:07:52:75:24:d9:10:f5:9f:4e:45:81:77: c6:cb:e9:6a:3a:f8:1b:d8:44:5e:48:e7:00:f2:3a:cb:36:0b: df:d1:f0:a8:3b:a3:f9:4e:b8:5e:90:99:e9:e7:ec:dd:bb:fc: 8e:98:59:86:5d:8a:16:b9:ae:08:ae:ab:af:4a:f7:4c:56:69: ad:3e:57:50:23:0b:8f:3d:9c:6b:3d:90:db:7c:b6:10:91:06: 2e:9d:ef:7e:fa:81:4e:32:14:5a:97:cc:b1:bd:9b:4f:89:64: 96:26:11:f1:b3:4b:ae:5a:2b:65:a3:a9:c4:f2:c7:a8:2d:38: 78:72:62:e2:bd:9e:2f:f6:7f:3a:70:c6:96:bf:a3:17:a9:61: 3e:c8:cb:f1:77:1d:63:26:95:3c:fb:d4:93:d6:a7:82:86:a1: 23:86:ee:8f:b8:e6:27:a3:dd:3c:31:7d:e5:4a:22:d0:a5:75: ff:11:9a:1a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhFRkExMTAvBgNVBAUTKDk0OEZGODc2ODlGQTk0OTExNkY1RjdDODAwRUIxRDcw MUU2NUUzN0IwHhcNMjYwNDA0MTgzOTEwWhcNMjYwNDExMTgzOTEwWjAYMRYwFAYD VQQDEw02OWQxNWFjZi0zZjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQbqn1q3tf2rWCJLb1wazHkhIQMM3V+id/c1iPjjxtPDiWIMi0Y5o++Qw9r+ tuy7spwzF8sgBcNMMgZk2wOk4POEAyIbWaGa6EIudC7Ts6u+qwvNuwKNswFRysOZ ePBXKUmMdBh6XNkTV1ZXHR+nks9zkaaEmLkxrHUvfEVKOkSfu6u1TwXBBq1/mxv9 rzEQJqpJYMOeMzEw8hjWAgFmt+KN61o3tvmKHWZwd1FBRdsPExnz3iSFbF61/ucp k/pCaIPwKGur2UDoOKWHow4JhQrrYGlefN9SS+/RnXdj0kPyQCGqZL/1EM5vHF8Q bw0MX4zwXppotcIOXef+Bd9j8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHpPULlz qKSP502rNUkW8GbG/enbMB8GA1UdIwQYMBaAFJSP+HaJ+pSRFvX3yADrHXAeZeN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEVGQS9FMEM5NTFDRTMw NjkxMUVBQkYwRDk0MkVDNEY5QUUwMi9sSV80ZG9uNmxKRVc5ZmZJQU9zZGNCNWw0 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xJXzRkb242bEpFVzlmZklBT3NkY0I1bDQzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEVGQS9FMEM5NTFDRTMwNjkxMUVBQkYwRDk0MkVDNEY5QUUwMi9sSV80ZG9uNmxK RVc5ZmZJQU9zZGNCNWw0M3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWdpxC/rKt711CJ8F3M4w3+iLt6FT85c842X19x8QMAk99UqPs9/OIejC3mFy EHtbEydphT+ebcxafg33yqtSQCvY0a/hWTiP5jEbUAYIB1J1JNkQ9Z9ORYF3xsvp ajr4G9hEXkjnAPI6yzYL39HwqDuj+U64XpCZ6efs3bv8jphZhl2KFrmuCK6rr0r3 TFZprT5XUCMLjz2caz2Q23y2EJEGLp3vfvqBTjIUWpfMsb2bT4lkliYR8bNLrlor ZaOpxPLHqC04eHJi4r2eL/Z/OnDGlr+jF6lhPsjL8XcdYyaVPPvUk9angoahI4bu j7jmJ6PdPDF95Uoi0KV1/xGaGg== -----END CERTIFICATE-----Generated at Mon Apr 6 09:54:17 2026 by rpki-client