$ rpki-client -vvf rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft File: lCJM-heqoN5UOrYQifwdOdGZDj4.mft (raw, json) Hash identifier: tejIOfX0PQu2IqChAaJb3rpPgl0uWil8GmLDoZiLmHE= Subject key identifier: 3D:07:5A:0E:BC:71:E8:DF:B9:C6:C3:D2:BA:80:B4:EB:63:C6:DC:CE Authority key identifier: 94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E Certificate issuer: /CN=A918B936/serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Certificate serial: 21A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft Manifest number: 21A8 Signing time: Sat 04 Apr 2026 15:50:25 +0000 Manifest this update: Sat 04 Apr 2026 15:50:25 +0000 Manifest next update: Sat 11 Apr 2026 15:50:25 +0000 Files and hashes: 1: lCJM-heqoN5UOrYQifwdOdGZDj4.crl (hash: hA6XpVC2Scy+0ohzofEKlZUjLAg2LEKtDJlVq8NNxBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:50:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8616 (0x21a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B936, serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Validity Not Before: Apr 4 15:50:25 2026 GMT Not After : Apr 11 15:50:25 2026 GMT Subject: CN=69d13341-d56d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:d4:e1:47:a6:93:53:ff:a5:ba:23:e2:4c:ae: a5:7d:2f:05:30:3a:82:fd:91:0d:07:d7:5b:ef:65: 1b:92:6d:e3:1c:99:96:ca:03:b9:2b:17:5d:ac:30: 0a:7f:96:40:51:a4:63:d2:0d:43:79:23:f2:da:ba: bb:4e:33:5b:95:fd:4e:fb:4f:96:60:85:f3:4a:8b: 3a:26:cf:b6:1c:ea:58:c2:c6:da:cd:ec:85:f6:ad: bb:00:8f:af:14:b7:1b:5a:0e:15:3e:e7:99:7f:c8: c7:e0:3b:39:90:4b:dd:e8:c9:ca:79:a3:a2:36:09: e2:0e:5b:de:f8:73:65:f6:de:2c:ae:ea:54:77:47: 51:8a:e1:0a:90:47:20:72:fc:c8:a9:15:21:de:61: 95:5b:d2:e6:05:af:1b:cf:56:80:f5:9c:06:d2:f7: 3c:4c:9a:a6:c6:15:42:b6:72:22:44:37:8f:4d:bc: 32:e1:09:6e:dc:d9:93:2b:80:3c:ae:8d:95:17:d0: 62:80:31:a2:f8:53:87:ae:ee:ac:f2:7e:2d:cf:28: 5f:f2:19:fb:cc:d3:89:b5:21:03:96:c9:de:f3:26: 9e:24:f7:89:e8:b0:4e:62:cb:7d:02:96:b2:41:f4: 18:8c:37:4d:99:74:54:e4:31:04:ea:d9:87:dc:48: a4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:07:5A:0E:BC:71:E8:DF:B9:C6:C3:D2:BA:80:B4:EB:63:C6:DC:CE X509v3 Authority Key Identifier: keyid:94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:d4:1f:90:10:39:ac:f0:34:77:27:e3:18:96:79:3b:fb:03: c0:75:db:2b:4f:46:64:7e:b1:0c:7b:76:a6:1b:cd:3e:cb:f3: f5:2c:b5:9b:38:e4:5d:8a:56:8f:4b:af:b7:7b:a2:8c:4e:d7: a1:11:6a:47:aa:4a:d7:0e:b9:da:af:4d:be:62:bd:4b:13:63: 24:e1:46:42:db:bb:e4:0c:9a:88:40:13:8f:d8:d3:87:8c:6d: 2a:9e:56:73:2a:ba:2d:e8:c4:d9:d5:c0:f9:24:66:1b:27:c5: 98:50:16:a2:1a:90:29:1b:10:d1:37:53:85:82:88:c7:7a:de: 4d:14:fc:9b:63:5c:7a:47:69:ee:a5:78:c5:ac:31:39:02:ed: 0a:7a:c4:4b:1a:d3:6f:37:25:32:45:ee:5a:78:b1:b6:ec:0a: eb:73:ed:fd:b9:15:7a:28:12:bd:c6:d3:28:64:0a:ff:f6:2d: d0:9f:13:1e:17:bd:65:5b:cd:85:28:e6:49:76:f3:a6:bb:06: 35:82:e4:9f:ca:d1:a1:5a:cc:da:a4:2c:72:3c:f8:34:78:87: 69:76:1a:c4:e2:f9:0a:a9:02:e5:5f:7c:e8:a3:4d:0c:d3:60: 99:b6:ce:16:ad:89:d5:0c:43:15:dd:99:66:f8:b1:ea:57:62: 00:9a:f2:13 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI5MzYxMTAvBgNVBAUTKDk0MjI0Q0ZBMTdBQUEwREU1NDNBQjYxMDg5RkMxRDM5 RDE5OTBFM0UwHhcNMjYwNDA0MTU1MDI1WhcNMjYwNDExMTU1MDI1WjAYMRYwFAYD VQQDEw02OWQxMzM0MS1kNTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh9ThR6aTU/+luiPiTK6lfS8FMDqC/ZENB9db72Ubkm3jHJmWygO5KxddrDAK f5ZAUaRj0g1DeSPy2rq7TjNblf1O+0+WYIXzSos6Js+2HOpYwsbazeyF9q27AI+v FLcbWg4VPueZf8jH4Ds5kEvd6MnKeaOiNgniDlve+HNl9t4srupUd0dRiuEKkEcg cvzIqRUh3mGVW9LmBa8bz1aA9ZwG0vc8TJqmxhVCtnIiRDePTbwy4Qlu3NmTK4A8 ro2VF9BigDGi+FOHru6s8n4tzyhf8hn7zNOJtSEDlsne8yaeJPeJ6LBOYst9Apay QfQYjDdNmXRU5DEE6tmH3EikBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD0HWg68 cejfucbD0rqAtOtjxtzOMB8GA1UdIwQYMBaAFJQiTPoXqqDeVDq2EIn8HTnRmQ4+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjkzNi80RUQyMkZEMkYw Q0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9ONVVPcllRaWZ3ZE9kR1pE ajQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDSk0taGVxb041VU9yWVFpZndkT2RHWkRqNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjkzNi80RUQyMkZEMkYwQ0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9O NVVPcllRaWZ3ZE9kR1pEajQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkNQfkBA5rPA0dyfjGJZ5O/sDwHXbK09GZH6xDHt2phvNPsvz9Sy1mzjkXYpW j0uvt3uijE7XoRFqR6pK1w652q9NvmK9SxNjJOFGQtu75AyaiEATj9jTh4xtKp5W cyq6LejE2dXA+SRmGyfFmFAWohqQKRsQ0TdThYKIx3reTRT8m2Ncekdp7qV4xawx OQLtCnrESxrTbzclMkXuWnixtuwK63Pt/bkVeigSvcbTKGQK//Yt0J8THhe9ZVvN hSjmSXbzprsGNYLkn8rRoVrM2qQscjz4NHiHaXYaxOL5CqkC5V986KNNDNNgmbbO Fq2J1QxDFd2ZZvix6ldiAJryEw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:50:33 2026 by rpki-client