$ rpki-client -vvf rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft File: lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft (raw, json) Hash identifier: xkD4bWScKoD7X5t22QgMkeI1+SYmnmNMumYcLJofpzI= Subject key identifier: CA:E3:1C:BE:71:B0:5C:AF:4D:4F:0A:5E:62:F0:6A:E3:E7:32:38:37 Authority key identifier: 96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B Certificate issuer: /CN=A91818BD/serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Certificate serial: 0351 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft Manifest number: 0344 Signing time: Sun 05 Apr 2026 00:45:17 +0000 Manifest this update: Sun 05 Apr 2026 00:45:16 +0000 Manifest next update: Sun 12 Apr 2026 00:45:16 +0000 Files and hashes: 1: lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl (hash: zdL8uBnE3McvTp/gJ24cITYk8Ax/Tz7mRFyZAxUvhpk=) 2: B83B7E0C065511EDB3E94E54C4F9AE02.roa (hash: EaaSXzGz05+ts4EkpTMhP55oUChU6Bk9DAG9srhRaSc=) 3: 481545DEFE8211ECBAB0E13FC4F9AE02.roa (hash: 8dpXRXimhjXqFq8UENKdvQMz2YmohstnkMIHLOtJCy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 849 (0x351) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91818BD, serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Validity Not Before: Apr 5 00:45:16 2026 GMT Not After : Apr 12 00:45:16 2026 GMT Subject: CN=69d1b09c-836e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:05:ef:31:7d:af:0c:56:17:f0:d3:ad:52:d4: b6:13:96:79:47:9b:68:da:e9:ee:8b:09:04:18:82: 33:4a:34:35:2b:90:52:e3:4c:6e:7b:27:31:a4:0c: 21:41:da:2c:50:45:a2:c0:1b:1f:52:61:c3:0e:2f: 25:2a:50:ec:fb:7f:d5:ba:b6:b6:3d:83:81:6e:1b: ca:52:44:3f:f3:4e:f8:23:22:ec:14:b8:53:31:03: 81:3f:05:b0:f6:71:34:71:eb:e3:e0:89:0f:43:50: a6:95:5e:0d:04:49:54:40:9c:2d:8c:e3:25:27:74: 0d:2d:01:e7:8e:47:8d:1b:83:20:e0:53:7c:f9:59: a8:0c:39:14:cc:15:b2:8c:41:17:85:7e:b1:50:01: 12:83:69:ae:fa:9f:c0:48:6f:8b:9f:7f:59:eb:8a: 60:66:af:93:0e:f3:73:e2:76:38:94:23:89:07:78: f6:cf:8e:31:1c:34:06:93:43:36:8e:2b:92:3b:2b: 26:0a:49:d7:eb:6b:db:03:76:8a:6e:17:f4:e0:27: 5e:05:a8:8f:5b:8b:35:dd:f3:e4:76:ca:19:8f:32: ac:3b:2a:72:56:9f:16:91:1d:2a:9a:68:e4:88:d3: ee:32:24:b5:9d:40:59:ab:a1:ed:17:ed:8a:85:94: e5:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:E3:1C:BE:71:B0:5C:AF:4D:4F:0A:5E:62:F0:6A:E3:E7:32:38:37 X509v3 Authority Key Identifier: keyid:96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:02:5d:55:3a:8d:b4:f0:63:d7:3f:6a:4f:41:e2:3e:bb:9a: 51:c9:93:16:94:4e:ca:4a:4d:0d:b2:f1:5f:5d:39:57:01:0e: 7c:50:a5:25:d3:98:6f:a5:52:e0:4c:db:2c:03:bc:0d:03:bb: 28:23:85:6d:6d:ae:78:85:a6:ea:a5:6b:c2:12:e4:22:49:e5: 9b:a8:95:27:d4:26:45:37:cd:e3:7c:c2:89:7a:e6:ee:22:ba: b8:d0:5e:14:54:02:b7:68:59:15:47:46:ea:72:fd:5e:43:4f: df:cf:92:c7:c6:9d:07:8a:b2:ab:78:02:9c:96:55:7b:1d:2d: 00:fa:3d:96:c1:7c:41:fd:05:2c:0a:b4:52:98:5d:cf:d5:12: c7:8b:a8:b4:1c:82:47:5e:5c:6f:63:7e:c8:06:15:13:26:ef: bf:ea:0f:68:e9:28:de:2a:52:c5:6d:4b:b3:42:18:75:89:d9: 5e:18:96:4a:37:e7:f6:8d:ec:3b:76:2e:fe:74:09:d6:e5:17: 00:11:1b:73:3c:9c:94:29:dc:71:43:fa:8d:ac:7a:58:7c:a0: 1b:d2:e3:f1:ef:26:e2:3d:db:6b:a8:0e:51:17:b4:ae:bb:41: 2a:96:d0:e9:cd:ef:2e:97:7a:27:2b:1d:5b:a9:ed:8b:06:7c: 40:49:49:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE4QkQxMTAvBgNVBAUTKDk2QjgwQzM3QzY2MTNEMTRBOTJDREJFQzY2MjgyMTY0 M0U4QUYxMUIwHhcNMjYwNDA1MDA0NTE2WhcNMjYwNDEyMDA0NTE2WjAYMRYwFAYD VQQDEw02OWQxYjA5Yy04MzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwXvMX2vDFYX8NOtUtS2E5Z5R5to2unuiwkEGIIzSjQ1K5BS40xueycxpAwh QdosUEWiwBsfUmHDDi8lKlDs+3/Vura2PYOBbhvKUkQ/8074IyLsFLhTMQOBPwWw 9nE0cevj4IkPQ1CmlV4NBElUQJwtjOMlJ3QNLQHnjkeNG4Mg4FN8+VmoDDkUzBWy jEEXhX6xUAESg2mu+p/ASG+Ln39Z64pgZq+TDvNz4nY4lCOJB3j2z44xHDQGk0M2 jiuSOysmCknX62vbA3aKbhf04CdeBaiPW4s13fPkdsoZjzKsOypyVp8WkR0qmmjk iNPuMiS1nUBZq6HtF+2KhZTlFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMrjHL5x sFyvTU8KXmLwauPnMjg3MB8GA1UdIwQYMBaAFJa4DDfGYT0UqSzb7GYoIWQ+ivEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MThCRC80MTRENUJEQUZF ODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBSU3BMTnZzWmlnaFpENks4 UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xyZ01OOFpoUFJTcExOdnNaaWdoWkQ2SzhScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MThCRC80MTRENUJEQUZFODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBS U3BMTnZzWmlnaFpENks4UnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJQJdVTqNtPBj1z9qT0HiPruaUcmTFpROykpNDbLxX105VwEOfFClJdOYb6VS 4EzbLAO8DQO7KCOFbW2ueIWm6qVrwhLkIknlm6iVJ9QmRTfN43zCiXrm7iK6uNBe FFQCt2hZFUdG6nL9XkNP38+Sx8adB4qyq3gCnJZVex0tAPo9lsF8Qf0FLAq0Uphd z9USx4uotByCR15cb2N+yAYVEybvv+oPaOko3ipSxW1Ls0IYdYnZXhiWSjfn9o3s O3Yu/nQJ1uUXABEbczyclCnccUP6jax6WHygG9Lj8e8m4j3ba6gOURe0rrtBKpbQ 6c3vLpd6JysdW6ntiwZ8QElJQA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:49:04 2026 by rpki-client