$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft File: lDrZvGF3q4wvjoExwUpUZexClU8.mft (raw, json) Hash identifier: gNfnGLZM1Xd6WXEAUWnvDU2Fv25TvgUVpjKXhgMlZh8= Subject key identifier: C9:A2:5F:D5:FA:C4:0D:73:AC:2B:07:B7:D7:8F:3D:04:7D:56:88:E6 Authority key identifier: 94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F Certificate issuer: /CN=A9158568/serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Certificate serial: 01F2 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft Manifest number: 01DF Signing time: Mon 20 Apr 2026 18:30:44 +0000 Manifest this update: Mon 20 Apr 2026 18:30:44 +0000 Manifest next update: Mon 27 Apr 2026 18:30:44 +0000 Files and hashes: 1: lDrZvGF3q4wvjoExwUpUZexClU8.crl (hash: oP/9xgihAfBV1sWZMKEvk9N2LJnAVpUJy/ZoXq3CXKI=) 2: 203DB338782111EEAFDDBD86C4F9AE02.roa (hash: tSRP0mSyeCxo4ldlJd0x8udwsUTZBLiY2tDABXr5M1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 18:30:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 498 (0x1f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Validity Not Before: Apr 20 18:30:44 2026 GMT Not After : Apr 27 18:30:44 2026 GMT Subject: CN=69e670d4-47bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:12:08:4a:7b:54:10:ff:c0:33:de:a4:d1:c4: 1f:f0:f8:66:06:65:78:ba:43:6e:c6:0b:ae:f6:6f: 9e:65:f1:b8:d1:b5:73:f8:db:4a:96:e3:fb:4d:17: e0:da:04:c0:a6:d3:58:bb:00:cc:71:d2:66:ef:05: c2:5e:04:be:ed:a3:0e:8b:c9:02:0b:b0:ec:0f:7b: 02:db:f7:be:94:68:c2:d7:e4:53:7f:e2:a1:b7:c6: 0b:54:18:e1:d2:d1:cd:6d:a5:bc:47:dc:2b:18:a6: 01:9c:59:f3:cf:97:53:af:ef:8a:d4:fd:e4:94:17: 89:b2:5c:4e:41:15:f5:fd:ce:87:a9:85:09:f7:12: ad:0f:72:97:cd:01:1a:18:c8:78:ba:7c:2c:0c:8e: de:86:70:42:22:6c:d1:27:b2:76:54:3d:4f:67:3b: aa:e2:3f:5b:5e:ac:80:51:9b:c3:a9:e0:22:60:1e: 27:65:01:fa:af:75:a0:95:1d:ee:62:72:a1:13:e3: 9d:28:b4:97:28:cd:04:a5:32:6d:b8:6f:18:62:44: 72:cb:38:24:ac:b8:f7:7b:2a:0e:58:b1:c2:73:b8: 0f:e0:76:0f:91:22:d1:8d:5f:59:30:a8:85:e6:bd: d6:17:85:45:f1:23:14:b4:4b:4d:d8:c0:e2:ac:4f: 33:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:A2:5F:D5:FA:C4:0D:73:AC:2B:07:B7:D7:8F:3D:04:7D:56:88:E6 X509v3 Authority Key Identifier: keyid:94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:6d:30:a1:6b:e5:04:29:d9:78:fc:49:d9:28:f7:9e:bd:1d: 58:39:8f:18:e7:a3:e0:8a:ac:1b:93:71:15:59:c1:73:4c:ee: 47:a5:c6:2d:3a:1c:a5:60:6d:7b:fa:12:0d:74:79:58:74:78: ea:d3:5b:00:45:0b:a4:2a:ca:9a:62:74:64:ab:87:a9:5d:56: 42:b2:c1:6f:51:b8:1a:6b:52:d2:4b:24:76:bb:24:f8:dd:46: 30:93:5a:40:ed:c4:34:3d:24:a7:2a:2b:5e:d7:9d:37:60:33: ac:9b:44:7a:96:ed:61:e0:c7:1b:f0:0c:8b:ca:d0:9d:a6:c8: 43:9e:cb:7d:ed:1a:e8:fd:c9:a9:66:3e:ad:23:ca:8a:5f:ad: 95:99:5e:40:a8:43:ad:70:c1:45:2a:a4:ff:e2:07:6c:79:12: 3b:90:92:50:c2:ed:08:6f:a2:f8:81:36:c4:73:99:60:ab:83: 0c:74:49:19:b0:b9:e5:f7:9e:7b:cb:8b:9f:61:9f:1a:cd:9f: b0:6e:24:27:07:b3:5e:66:53:25:95:74:91:8b:2e:30:35:42: 29:38:ca:0b:c3:f8:1f:f2:2f:42:1b:c3:01:4d:a4:d1:61:eb: a4:03:f2:56:42:85:a1:b5:cd:ac:27:c4:72:45:a0:a2:6f:62: fe:dc:b2:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKDk0M0FEOUJDNjE3N0FCOEMyRjhFODEzMUMxNEE1NDY1 RUM0Mjk1NEYwHhcNMjYwNDIwMTgzMDQ0WhcNMjYwNDI3MTgzMDQ0WjAYMRYwFAYD VQQDEw02OWU2NzBkNC00N2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2hIISntUEP/AM96k0cQf8PhmBmV4ukNuxguu9m+eZfG40bVz+NtKluP7TRfg 2gTAptNYuwDMcdJm7wXCXgS+7aMOi8kCC7DsD3sC2/e+lGjC1+RTf+Kht8YLVBjh 0tHNbaW8R9wrGKYBnFnzz5dTr++K1P3klBeJslxOQRX1/c6HqYUJ9xKtD3KXzQEa GMh4unwsDI7ehnBCImzRJ7J2VD1PZzuq4j9bXqyAUZvDqeAiYB4nZQH6r3WglR3u YnKhE+OdKLSXKM0EpTJtuG8YYkRyyzgkrLj3eyoOWLHCc7gP4HYPkSLRjV9ZMKiF 5r3WF4VF8SMUtEtN2MDirE8zNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMmiX9X6 xA1zrCsHt9ePPQR9VojmMB8GA1UdIwQYMBaAFJQ62bxhd6uML46BMcFKVGXsQpVP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC8zNjE4QUI2RTcy QTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0d3Zqb0V4d1VwVVpleENs VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xEclp2R0YzcTR3dmpvRXh3VXBVWmV4Q2xVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC8zNjE4QUI2RTcyQTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0 d3Zqb0V4d1VwVVpleENsVTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYm0woWvlBCnZePxJ2Sj3nr0dWDmPGOej4IqsG5NxFVnBc0zuR6XGLTocpWBt e/oSDXR5WHR46tNbAEULpCrKmmJ0ZKuHqV1WQrLBb1G4GmtS0kskdrsk+N1GMJNa QO3END0kpyorXtedN2AzrJtEepbtYeDHG/AMi8rQnabIQ57Lfe0a6P3JqWY+rSPK il+tlZleQKhDrXDBRSqk/+IHbHkSO5CSUMLtCG+i+IE2xHOZYKuDDHRJGbC55fee e8uLn2GfGs2fsG4kJwezXmZTJZV0kYsuMDVCKTjKC8P4H/IvQhvDAU2k0WHrpAPy VkKFobXNrCfEckWgom9i/tyyqQ== -----END CERTIFICATE-----Generated at Wed Apr 22 01:44:37 2026 by rpki-client