$ rpki-client -vvf rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft File: ldG-85ALQWWEFku3RjF3EwIpFog.mft (raw, json) Hash identifier: bq546GPD4hFuH3ZTkebR+BkPz+93f1jyi0fsqvyxHv8= Subject key identifier: DB:5B:65:85:64:D1:3F:37:B2:E1:73:6E:1F:EF:0D:3D:DC:B0:4A:66 Authority key identifier: 95:D1:BE:F3:90:0B:41:65:84:16:4B:B7:46:31:77:13:02:29:16:88 Certificate issuer: /CN=A91577DD/serialNumber=95D1BEF3900B416584164BB74631771302291688 Certificate serial: 354A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft Manifest number: 353B Signing time: Sat 04 Apr 2026 14:49:47 +0000 Manifest this update: Sat 04 Apr 2026 14:49:46 +0000 Manifest next update: Sat 11 Apr 2026 14:49:46 +0000 Files and hashes: 1: ldG-85ALQWWEFku3RjF3EwIpFog.crl (hash: eMsVsqS5cOq/5ksQWufEwXqEEGXtCIiFrdiOFdK78k8=) 2: C2F7AE40C03111EA9777314AC4F9AE02.roa (hash: JsmcN/iHNKGrr5+UdOJwBNNsYsjaqRo1Qt07Gdc3xmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.crl rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 14:49:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13642 (0x354a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91577DD, serialNumber=95D1BEF3900B416584164BB74631771302291688 Validity Not Before: Apr 4 14:49:46 2026 GMT Not After : Apr 11 14:49:46 2026 GMT Subject: CN=69d1250b-b7fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:40:e2:ec:89:79:f8:30:86:b8:8c:c8:18:19: 29:1b:18:e4:3e:ba:cc:68:45:57:b5:03:77:3c:b1: a1:cb:29:50:a6:90:60:30:e5:78:ec:ac:a8:c9:e1: 0a:5c:e0:b6:34:b0:f2:7a:ab:a6:6b:29:7a:dd:1b: 00:7f:39:ef:59:53:ba:f1:e3:23:fd:dc:38:65:d2: ee:4c:18:e8:41:73:8b:ed:88:9a:f7:2b:40:89:fd: 8b:72:54:e1:bf:a9:63:a1:eb:8c:6f:22:69:71:a8: 3b:b8:ee:b0:72:5d:a0:4a:5a:35:f3:e8:59:4f:e2: fb:42:05:be:5a:99:6e:fa:4b:10:83:6f:f0:f0:28: 00:d4:43:72:36:ab:d4:76:f4:c6:d5:da:6a:cc:14: fe:5a:18:2a:28:f1:ee:01:33:8f:96:db:79:ea:9f: ac:d4:ef:74:c9:3e:6a:86:42:e7:01:13:68:84:77: 65:9c:d7:ab:ec:24:a6:ae:54:73:3e:e4:59:ec:c0: 57:38:cd:cd:d5:a3:59:7a:9b:65:24:33:16:d4:a7: c7:1c:b6:0d:e8:0e:7d:00:1b:58:40:44:0e:64:ec: 92:15:35:9d:67:21:24:de:ff:c4:4c:ec:9c:c3:74: 6c:53:57:27:12:7f:89:e3:5a:a1:78:cc:96:e3:b4: 4f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:5B:65:85:64:D1:3F:37:B2:E1:73:6E:1F:EF:0D:3D:DC:B0:4A:66 X509v3 Authority Key Identifier: keyid:95:D1:BE:F3:90:0B:41:65:84:16:4B:B7:46:31:77:13:02:29:16:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:7a:ef:50:d9:c2:15:03:53:b2:01:4c:d4:32:67:9f:cf:b8: 80:b8:88:b8:c8:84:8b:5d:8c:42:21:39:29:19:22:e3:25:9c: d6:90:15:41:50:33:7c:2b:be:4a:71:88:50:8b:11:f9:c6:cc: f8:78:9f:43:b5:c5:7e:a4:a4:fd:16:4d:4e:37:35:f5:5c:ad: b4:aa:f8:23:fa:d3:a0:af:d8:67:c6:81:48:f9:8e:3f:47:7c: d7:e8:4d:bb:b4:1f:9e:f7:45:39:19:41:5f:8f:26:72:5e:9f: 91:03:6b:00:e4:e6:13:39:c4:52:55:a8:da:2b:e5:b9:e0:9e: 9f:0c:67:04:3d:61:f4:8e:b4:88:c5:4b:46:f3:48:62:b2:bf: 82:32:37:a6:01:36:29:30:78:8d:9c:36:3d:0d:1a:89:28:21: 97:52:45:77:bc:76:ba:f5:e3:3a:e9:0a:2f:0f:b8:d0:8a:6c: c9:f8:2c:5b:27:1f:2b:28:00:02:cc:f1:0c:5b:e5:aa:b5:d5: b2:2d:d3:8a:f0:09:aa:c5:f7:94:f5:b5:ac:1e:ad:58:32:d1: 1c:6e:35:52:02:6b:8f:6d:48:d5:b7:06:e1:56:7d:86:aa:43: a3:b0:47:b8:99:07:fb:f4:ef:ef:3a:98:b5:21:5c:09:bf:85: 85:4a:41:27 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3REQxMTAvBgNVBAUTKDk1RDFCRUYzOTAwQjQxNjU4NDE2NEJCNzQ2MzE3NzEz MDIyOTE2ODgwHhcNMjYwNDA0MTQ0OTQ2WhcNMjYwNDExMTQ0OTQ2WjAYMRYwFAYD VQQDEw02OWQxMjUwYi1iN2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo0Di7Il5+DCGuIzIGBkpGxjkPrrMaEVXtQN3PLGhyylQppBgMOV47KyoyeEK XOC2NLDyequmayl63RsAfznvWVO68eMj/dw4ZdLuTBjoQXOL7Yia9ytAif2LclTh v6ljoeuMbyJpcag7uO6wcl2gSlo18+hZT+L7QgW+Wplu+ksQg2/w8CgA1ENyNqvU dvTG1dpqzBT+WhgqKPHuATOPltt56p+s1O90yT5qhkLnARNohHdlnNer7CSmrlRz PuRZ7MBXOM3N1aNZeptlJDMW1KfHHLYN6A59ABtYQEQOZOySFTWdZyEk3v/ETOyc w3RsU1cnEn+J41qheMyW47RPUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNtbZYVk 0T83suFzbh/vDT3csEpmMB8GA1UdIwQYMBaAFJXRvvOQC0FlhBZLt0YxdxMCKRaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzdERC9EMUM1QjAyQTFE OTYxMUUyQTFDQUI0N0YwOEIwMkNEMi9sZEctODVBTFFXV0VGa3UzUmpGM0V3SXBG b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkRy04NUFMUVdXRUZrdTNSakYzRXdJcEZvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzdERC9EMUM1QjAyQTFEOTYxMUUyQTFDQUI0N0YwOEIwMkNEMi9sZEctODVBTFFX V0VGa3UzUmpGM0V3SXBGb2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAd3rvUNnCFQNTsgFM1DJnn8+4gLiIuMiEi12MQiE5KRki4yWc1pAVQVAzfCu+ SnGIUIsR+cbM+HifQ7XFfqSk/RZNTjc19VyttKr4I/rToK/YZ8aBSPmOP0d81+hN u7QfnvdFORlBX48mcl6fkQNrAOTmEznEUlWo2ivlueCenwxnBD1h9I60iMVLRvNI YrK/gjI3pgE2KTB4jZw2PQ0aiSghl1JFd7x2uvXjOukKLw+40IpsyfgsWycfKygA AszxDFvlqrXVsi3TivAJqsX3lPW1rB6tWDLRHG41UgJrj21I1bcG4VZ9hqpDo7BH uJkH+/Tv7zqYtSFcCb+FhUpBJw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:47:28 2026 by rpki-client