$ rpki-client -vvf rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft File: LDTzNZTMO-PAfo54N2v8QzJjFUg.mft (raw, json) Hash identifier: rWx0D10IUUHh45LE4PtvbzK9iwx0AZu6yA+GBKPxHzc= Subject key identifier: 52:FF:37:A4:C2:84:42:CD:55:87:E3:35:07:CC:BA:F0:27:F3:FE:BB Authority key identifier: 2C:34:F3:35:94:CC:3B:E3:C0:7E:8E:78:37:6B:FC:43:32:63:15:48 Certificate issuer: /CN=A914ADD8/serialNumber=2C34F33594CC3BE3C07E8E78376BFC4332631548 Certificate serial: 3528 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDTzNZTMO-PAfo54N2v8QzJjFUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft Manifest number: 3527 Signing time: Sat 04 Apr 2026 14:29:01 +0000 Manifest this update: Sat 04 Apr 2026 14:29:01 +0000 Manifest next update: Sat 11 Apr 2026 14:29:01 +0000 Files and hashes: 1: LDTzNZTMO-PAfo54N2v8QzJjFUg.crl (hash: 3YPJ3f+QLhrGn5HuO6zlIXkwybPwvdwt/HUNsDFk7Rs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.crl rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDTzNZTMO-PAfo54N2v8QzJjFUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 14:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13608 (0x3528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ADD8, serialNumber=2C34F33594CC3BE3C07E8E78376BFC4332631548 Validity Not Before: Apr 4 14:29:01 2026 GMT Not After : Apr 11 14:29:01 2026 GMT Subject: CN=69d1202d-e5de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b9:7f:2a:c9:c9:09:db:f7:d8:3c:6d:25:bc: cd:a3:53:cf:d2:0d:84:cb:ec:91:5a:2b:18:11:76: 81:48:3e:00:89:a8:f4:24:31:3e:2d:a4:a9:e6:9b: e4:5b:a7:a7:d8:98:0b:81:a6:48:91:8b:92:d1:c4: 29:0c:20:ea:80:51:3a:55:b3:be:9e:6b:2e:68:9e: 9a:13:7e:af:0c:a0:5d:54:d2:ca:5d:6a:2a:d1:ae: aa:10:a5:ea:32:e4:46:0c:5b:0c:fc:dc:6d:44:0b: 25:13:a9:8e:72:d9:99:73:19:f6:95:4f:3c:41:78: 01:d6:bd:02:ac:1c:d9:c3:f5:44:27:43:de:22:a0: 76:ae:ad:81:35:63:c3:21:64:a0:a1:a7:32:29:e6: 8a:4d:cd:e6:53:08:2d:93:00:5d:c3:47:2d:f4:0b: be:0e:24:12:0c:c6:23:da:e1:ad:cc:e2:66:40:c9: 86:bd:39:b5:a0:01:88:12:21:60:d0:74:b1:da:7b: 08:8a:ed:92:5a:66:ae:cc:1d:9c:15:d7:0d:2c:e2: bb:2a:1b:87:ba:54:c4:da:8b:51:e1:90:43:a8:eb: a0:74:3c:31:0b:b5:0a:8d:44:3c:22:10:88:a2:0d: 1a:e4:f2:a4:42:13:3e:ee:94:0f:a3:78:8e:4f:b8: 55:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:FF:37:A4:C2:84:42:CD:55:87:E3:35:07:CC:BA:F0:27:F3:FE:BB X509v3 Authority Key Identifier: keyid:2C:34:F3:35:94:CC:3B:E3:C0:7E:8E:78:37:6B:FC:43:32:63:15:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDTzNZTMO-PAfo54N2v8QzJjFUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:01:8e:d4:a8:56:30:b9:c2:f7:85:36:95:d8:db:63:44:4f: 93:7d:6f:83:ad:88:48:d7:d8:5b:02:a8:f0:ee:ff:ca:ae:f8: ff:8b:b8:19:9e:63:04:ee:09:35:dc:c2:66:b0:a0:67:f1:34: 93:72:1d:71:46:d7:42:5f:86:b7:f6:c1:41:0d:2f:5d:9d:0d: 57:83:91:76:cd:d5:e4:e7:77:63:70:74:6e:90:6d:df:c6:d3: f5:fb:70:49:49:54:3c:89:a1:58:56:64:35:4e:6b:c8:4f:51: 83:a4:7d:1e:c2:4a:20:2a:69:fa:4e:49:67:d8:18:45:e2:24: 1c:06:13:88:9a:03:b6:38:f3:bf:93:1d:4c:7b:54:80:14:7e: 73:45:9a:14:70:9f:d0:e0:7d:72:1e:3b:6a:65:29:d4:d4:00: 38:79:f7:02:2c:ac:34:38:e9:55:b1:a5:09:77:35:3f:53:c1: 56:4f:cd:09:1f:8a:4b:84:4f:63:35:c4:76:f2:00:e7:40:ae: 13:1c:8e:3c:d1:2f:a8:f9:a7:f3:37:3e:d9:6f:eb:02:55:a6: 53:d3:6e:63:6a:81:6b:a6:df:e5:01:58:2f:dc:45:9e:2e:5b: e4:9c:89:22:83:f8:dd:fd:a3:e7:6d:ab:01:05:8c:4b:51:08: e7:b1:d7:90 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFERDgxMTAvBgNVBAUTKDJDMzRGMzM1OTRDQzNCRTNDMDdFOEU3ODM3NkJGQzQz MzI2MzE1NDgwHhcNMjYwNDA0MTQyOTAxWhcNMjYwNDExMTQyOTAxWjAYMRYwFAYD VQQDEw02OWQxMjAyZC1lNWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbl/KsnJCdv32DxtJbzNo1PP0g2Ey+yRWisYEXaBSD4Aiaj0JDE+LaSp5pvk W6en2JgLgaZIkYuS0cQpDCDqgFE6VbO+nmsuaJ6aE36vDKBdVNLKXWoq0a6qEKXq MuRGDFsM/NxtRAslE6mOctmZcxn2lU88QXgB1r0CrBzZw/VEJ0PeIqB2rq2BNWPD IWSgoacyKeaKTc3mUwgtkwBdw0ct9Au+DiQSDMYj2uGtzOJmQMmGvTm1oAGIEiFg 0HSx2nsIiu2SWmauzB2cFdcNLOK7KhuHulTE2otR4ZBDqOugdDwxC7UKjUQ8IhCI og0a5PKkQhM+7pQPo3iOT7hVIwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFL/N6TC hELNVYfjNQfMuvAn8/67MB8GA1UdIwQYMBaAFCw08zWUzDvjwH6OeDdr/EMyYxVI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUREOC9BNEQ4MTA0RTFE ODcxMUUyODM0Q0I5REYwOEIwMkNEMi9MRFR6TlpUTU8tUEFmbzU0TjJ2OFF6SmpG VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEVHpOWlRNTy1QQWZvNTROMnY4UXpKakZVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUREOC9BNEQ4MTA0RTFEODcxMUUyODM0Q0I5REYwOEIwMkNEMi9MRFR6TlpUTU8t UEFmbzU0TjJ2OFF6SmpGVWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWwGO1KhWMLnC94U2ldjbY0RPk31vg62ISNfYWwKo8O7/yq74/4u4GZ5jBO4J NdzCZrCgZ/E0k3IdcUbXQl+Gt/bBQQ0vXZ0NV4ORds3V5Od3Y3B0bpBt38bT9ftw SUlUPImhWFZkNU5ryE9Rg6R9HsJKICpp+k5JZ9gYReIkHAYTiJoDtjjzv5MdTHtU gBR+c0WaFHCf0OB9ch47amUp1NQAOHn3AiysNDjpVbGlCXc1P1PBVk/NCR+KS4RP YzXEdvIA50CuExyOPNEvqPmn8zc+2W/rAlWmU9NuY2qBa6bf5QFYL9xFni5b5JyJ IoP43f2j522rAQWMS1EI57HXkA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:52:25 2026 by rpki-client