$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft File: 1lqglKUeKDl1O1khC2zyxUkVwB4.mft (raw, json) Hash identifier: Jl+9IgpNnaCAu7aUQj+VlpYkesK3OWkpXbxf50BtVLU= Subject key identifier: 9A:C8:9C:F0:0B:CC:A2:31:2C:7E:D9:26:33:A3:93:C6:2E:59:66:38 Authority key identifier: D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E Certificate issuer: /CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Certificate serial: 0A7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft Manifest number: 0A72 Signing time: Sat 04 Apr 2026 19:24:06 +0000 Manifest this update: Sat 04 Apr 2026 19:24:05 +0000 Manifest next update: Sat 11 Apr 2026 19:24:05 +0000 Files and hashes: 1: 1lqglKUeKDl1O1khC2zyxUkVwB4.crl (hash: lALaC/GoQNUqHg/Hyay9ve5ZUZiU/e2gcponzj8MCgU=) 2: 220853047F2211EA8E730F35C4F9AE02.roa (hash: dvtbQl9WFxEalnHzoaHQdlGL9o00cBASyRMK3uXNSHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:24:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2682 (0xa7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1AA, serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Validity Not Before: Apr 4 19:24:05 2026 GMT Not After : Apr 11 19:24:05 2026 GMT Subject: CN=69d16556-b48d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:b8:27:8b:42:b3:91:fb:fc:46:04:2b:d5:f3: 16:58:f4:31:8d:99:c8:4c:9f:b0:8f:f3:a0:0e:63: 79:28:4f:79:66:28:ac:fe:0a:a0:42:44:d2:81:ef: 59:39:2a:17:48:92:c8:2b:8a:15:c9:de:15:a5:40: 4d:e8:a3:24:ba:bf:b2:26:79:64:9a:80:0c:74:74: c1:73:d2:26:11:30:0b:81:27:22:08:3a:7d:87:02: 6b:39:33:8a:b8:95:d8:f4:be:73:bf:25:75:97:e7: fb:1a:7b:5e:a2:12:40:eb:f3:6b:8f:f9:18:ef:a7: f2:d0:1d:d1:9a:f3:41:cd:38:00:8d:f3:88:4b:20: 75:70:9c:c7:b1:22:2d:80:9d:91:8d:91:3b:b3:f4: 7d:ab:d6:bb:23:cb:a2:52:26:d6:1a:6e:ab:e0:90: 40:b4:2a:63:56:93:65:fb:a8:2b:80:20:df:97:a6: 67:d6:1f:97:3d:5d:96:3e:2b:b7:90:d1:93:5b:e2: 42:ed:a9:f6:16:3e:e4:3e:6e:bc:ce:98:7b:c6:a7: 5b:fb:cb:4f:ce:3a:8d:98:73:91:be:39:eb:2f:91: a9:ea:11:57:00:fb:02:a3:af:59:ec:b6:52:da:20: 88:a5:d0:b9:b7:93:1e:24:ba:45:d1:76:c3:33:7b: 14:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:C8:9C:F0:0B:CC:A2:31:2C:7E:D9:26:33:A3:93:C6:2E:59:66:38 X509v3 Authority Key Identifier: keyid:D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:ff:e8:0b:37:1f:2a:75:a8:dc:d9:d8:31:3d:70:dc:11:44: be:99:2c:3c:3a:aa:92:4d:ec:a1:49:6e:11:b2:42:ce:b3:b1: c6:c1:99:ec:f6:a6:b3:2a:97:c1:25:51:b9:54:42:29:80:fd: ac:7c:f7:d8:54:4c:c8:d4:94:c7:41:5f:7e:b5:a0:0a:de:f8: 93:1a:b6:6d:1a:d1:49:ca:fc:ed:3c:e3:c5:27:5b:40:4a:26: 72:40:f9:58:38:ea:d1:8c:ef:d1:fa:0b:47:3c:3a:33:63:d4: a9:b6:d4:34:88:cb:f0:57:8d:fd:8a:b7:12:90:7a:64:eb:30: 57:15:3b:18:48:89:6b:70:34:bd:67:18:25:0f:af:27:fe:a1: bd:32:04:da:f4:19:9d:32:c7:eb:4b:99:b7:b7:54:60:d7:31: 0c:be:f8:5c:26:da:16:5b:e7:86:64:5f:01:6d:2a:86:b2:a9: 02:92:3b:3b:0a:d7:2e:02:a0:9d:e6:39:22:f2:f3:8e:ac:ca: 93:a3:47:f3:48:ed:47:8a:a3:73:4e:7d:8c:65:7e:f2:34:94: af:d3:bf:20:c6:58:08:15:3d:be:d2:88:9f:ea:ba:60:8e:f7: b9:ae:17:e7:41:15:94:83:98:94:eb:62:ad:1f:bb:73:ff:16: 7c:ed:b7:b6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxQUExMTAvBgNVBAUTKEQ2NUFBMDk0QTUxRTI4Mzk3NTNCNTkyMTBCNkNGMkM1 NDkxNUMwMUUwHhcNMjYwNDA0MTkyNDA1WhcNMjYwNDExMTkyNDA1WjAYMRYwFAYD VQQDEw02OWQxNjU1Ni1iNDhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5bgni0Kzkfv8RgQr1fMWWPQxjZnITJ+wj/OgDmN5KE95Ziis/gqgQkTSge9Z OSoXSJLIK4oVyd4VpUBN6KMkur+yJnlkmoAMdHTBc9ImETALgSciCDp9hwJrOTOK uJXY9L5zvyV1l+f7GnteohJA6/Nrj/kY76fy0B3RmvNBzTgAjfOISyB1cJzHsSIt gJ2RjZE7s/R9q9a7I8uiUibWGm6r4JBAtCpjVpNl+6grgCDfl6Zn1h+XPV2WPiu3 kNGTW+JC7an2Fj7kPm68zph7xqdb+8tPzjqNmHORvjnrL5Gp6hFXAPsCo69Z7LZS 2iCIpdC5t5MeJLpF0XbDM3sUVQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJrInPAL zKIxLH7ZJjOjk8YuWWY4MB8GA1UdIwQYMBaAFNZaoJSlHig5dTtZIQts8sVJFcAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFBQS82QzlEMjYzMDdG MjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtEbDFPMWtoQzJ6eXhVa1Z3 QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFscWdsS1VlS0RsMU8xa2hDMnp5eFVrVndCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFBQS82QzlEMjYzMDdGMjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtE bDFPMWtoQzJ6eXhVa1Z3QjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqP/oCzcfKnWo3NnYMT1w3BFEvpksPDqqkk3soUluEbJCzrOxxsGZ7PamsyqX wSVRuVRCKYD9rHz32FRMyNSUx0FffrWgCt74kxq2bRrRScr87TzjxSdbQEomckD5 WDjq0Yzv0foLRzw6M2PUqbbUNIjL8FeN/Yq3EpB6ZOswVxU7GEiJa3A0vWcYJQ+v J/6hvTIE2vQZnTLH60uZt7dUYNcxDL74XCbaFlvnhmRfAW0qhrKpApI7OwrXLgKg neY5IvLzjqzKk6NH80jtR4qjc059jGV+8jSUr9O/IMZYCBU9vtKIn+q6YI73ua4X 50EVlIOYlOtirR+7c/8WfO23tg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:52:00 2026 by rpki-client