$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft File: lufMd6OOPhgL91JrodlTIYBONeY.mft (raw, json) Hash identifier: XJVkVVmnhWg7VuUnG6wH69BSH6UmY7hcvsPoP5U/UCY= Subject key identifier: CE:6D:2B:CA:72:A4:CC:26:5E:9A:B2:F7:14:C9:F6:5D:58:6D:CE:46 Authority key identifier: 96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 Certificate issuer: /CN=A916C4FA/serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Certificate serial: 0257 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft Manifest number: 0644 Signing time: Sun 05 Apr 2026 00:16:56 +0000 Manifest this update: Sun 05 Apr 2026 00:16:56 +0000 Manifest next update: Sun 12 Apr 2026 00:16:56 +0000 Files and hashes: 1: lufMd6OOPhgL91JrodlTIYBONeY.crl (hash: vu61aPpJtROXV94a4wDdZ7MgBYkYm64M+vUsyoC5/Tk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:16:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 599 (0x257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4FA, serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Validity Not Before: Apr 5 00:16:56 2026 GMT Not After : Apr 12 00:16:56 2026 GMT Subject: CN=69d1a9f8-7a49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:50:9d:51:bf:a2:10:d5:89:b7:34:5e:6f:07: f4:2a:46:0c:6b:99:78:ae:d9:6a:ea:0b:55:6e:91: 6e:a2:49:73:71:4b:85:a8:d4:b0:77:0d:34:f6:45: 15:2b:39:b1:a3:fc:8e:63:16:59:d3:3f:e3:8c:8d: c5:df:e3:68:11:b5:57:c0:68:ba:f0:41:2d:67:72: 9a:d6:33:ef:12:78:fe:37:61:1a:06:d6:77:1f:33: 3d:21:8d:92:76:c5:e8:ce:3f:9e:5d:d0:9f:a0:a0: ec:8d:63:d3:2e:93:d9:9c:b9:93:e1:e5:79:79:78: 4b:f5:8b:c1:9e:a4:4a:d8:b0:75:cf:04:d6:45:0f: 64:54:77:fa:57:87:8e:45:8b:e4:ad:ab:60:28:90: 53:62:c6:23:d0:3e:cb:05:4b:68:6c:63:98:8f:bc: 52:04:ea:a2:2e:8b:22:9a:6b:fe:5c:47:5f:46:ef: 80:dd:bc:52:9c:5a:ff:a6:16:0a:a6:18:40:4c:d4: 04:c1:66:d6:0d:2b:a2:45:d0:e6:33:2c:a2:d6:93: 65:b7:7f:9f:07:42:cd:a1:68:75:f7:c8:d4:c6:67: 18:e1:e9:d4:c8:9f:37:f1:4b:c4:bf:f2:04:83:2c: c4:61:39:c4:34:ea:0b:5a:85:8d:39:54:65:fe:ba: 97:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:6D:2B:CA:72:A4:CC:26:5E:9A:B2:F7:14:C9:F6:5D:58:6D:CE:46 X509v3 Authority Key Identifier: keyid:96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:42:a2:05:9c:fe:07:ab:ce:7a:b5:72:35:ac:14:f4:72:7a: 24:54:59:2c:0f:47:d3:ad:94:a7:2d:a6:13:7c:48:51:f0:c3: ec:71:70:f0:2d:78:a6:a6:b4:de:45:da:4c:4c:4c:68:e1:33: c8:9a:fc:42:87:c8:02:ca:bf:3a:07:01:3c:d6:2b:d8:5e:ce: cc:a2:25:24:4e:cc:d0:00:1f:4f:28:04:00:cc:b7:33:a4:35: c9:28:54:8f:c1:b3:06:85:1b:39:7b:6d:99:53:73:fc:18:44: 50:57:90:73:f8:4b:73:da:b3:e0:98:e7:f2:cc:a5:96:17:55: 7e:5d:25:d4:91:67:93:bd:f2:71:40:a9:f9:a3:07:ac:f0:49: d3:8c:7a:aa:39:7e:a1:79:f6:6f:36:97:f7:e5:a2:36:e3:24: 85:a6:2e:03:94:17:c3:5b:45:c3:2c:8d:e8:86:d6:0a:2d:52: 47:b5:4e:69:79:d1:61:3a:2f:bb:31:71:db:c6:f0:6b:be:a0: fc:ca:b0:b4:d3:40:fd:3b:cc:b3:9d:2d:c9:20:1e:d9:67:02: 94:8d:c4:f5:1b:3f:61:76:1e:82:11:ae:98:2c:30:91:f4:8a: ca:1d:a9:37:37:4f:1a:87:59:d5:25:38:92:bc:c5:69:12:4f: de:4e:ab:a5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0RkExMTAvBgNVBAUTKDk2RTdDQzc3QTM4RTNFMTgwQkY3NTI2QkExRDk1MzIx ODA0RTM1RTYwHhcNMjYwNDA1MDAxNjU2WhcNMjYwNDEyMDAxNjU2WjAYMRYwFAYD VQQDEw02OWQxYTlmOC03YTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1CdUb+iENWJtzRebwf0KkYMa5l4rtlq6gtVbpFuoklzcUuFqNSwdw009kUV Kzmxo/yOYxZZ0z/jjI3F3+NoEbVXwGi68EEtZ3Ka1jPvEnj+N2EaBtZ3HzM9IY2S dsXozj+eXdCfoKDsjWPTLpPZnLmT4eV5eXhL9YvBnqRK2LB1zwTWRQ9kVHf6V4eO RYvkratgKJBTYsYj0D7LBUtobGOYj7xSBOqiLosimmv+XEdfRu+A3bxSnFr/phYK phhATNQEwWbWDSuiRdDmMyyi1pNlt3+fB0LNoWh198jUxmcY4enUyJ838UvEv/IE gyzEYTnENOoLWoWNOVRl/rqXtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM5tK8py pMwmXpqy9xTJ9l1Ybc5GMB8GA1UdIwQYMBaAFJbnzHejjj4YC/dSa6HZUyGATjXm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRGQS9CODlCQ0JGNEJB NkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1BoZ0w5MUpyb2RsVElZQk9O ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1Zk1kNk9PUGhnTDkxSnJvZGxUSVlCT05lWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRGQS9CODlCQ0JGNEJBNkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1Bo Z0w5MUpyb2RsVElZQk9OZVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANUKiBZz+B6vOerVyNawU9HJ6JFRZLA9H062Upy2mE3xIUfDD7HFw8C14pqa0 3kXaTExMaOEzyJr8QofIAsq/OgcBPNYr2F7OzKIlJE7M0AAfTygEAMy3M6Q1yShU j8GzBoUbOXttmVNz/BhEUFeQc/hLc9qz4Jjn8syllhdVfl0l1JFnk73ycUCp+aMH rPBJ04x6qjl+oXn2bzaX9+WiNuMkhaYuA5QXw1tFwyyN6IbWCi1SR7VOaXnRYTov uzFx28bwa76g/MqwtNNA/TvMs50tySAe2WcClI3E9Rs/YXYeghGumCwwkfSKyh2p NzdPGodZ1SU4krzFaRJP3k6rpQ== -----END CERTIFICATE-----Generated at Mon Apr 6 09:53:53 2026 by rpki-client