$ rpki-client -vvf rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft File: lAmAjIoyxYSU2uV00F1rsiJyw1o.mft (raw, json) Hash identifier: ZeCpWVzZea/MOIvLe3ZqwFL6z35hAELjZIxApX8azqk= Subject key identifier: 6B:25:64:5B:BC:3F:40:B2:B6:34:C0:2B:94:22:87:72:5C:C2:9A:77 Authority key identifier: 94:09:80:8C:8A:32:C5:84:94:DA:E5:74:D0:5D:6B:B2:22:72:C3:5A Certificate issuer: /CN=A919C77D/serialNumber=9409808C8A32C58494DAE574D05D6BB22272C35A Certificate serial: 1F26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft Manifest number: 1F13 Signing time: Sat 04 Apr 2026 15:57:06 +0000 Manifest this update: Sat 04 Apr 2026 15:57:06 +0000 Manifest next update: Sat 11 Apr 2026 15:57:06 +0000 Files and hashes: 1: lAmAjIoyxYSU2uV00F1rsiJyw1o.crl (hash: l52SGk/4gE5ltf1QGnWv++O6SzPR9KLurtezr6hN3wE=) 2: C7D60D34CC0611EC93451840C4F9AE02.roa (hash: +fZGu9m+t5+n3HjUJy2+wwWicgTs8Cgi/026y2ValQg=) 3: 45865ED62B7411EF9E28ED19C4F9AE02.roa (hash: LXCs5H8ayP8U4VLda9FlTsXXVH9LMBByE+ju0x7bNlw=) 4: 4664F7042B7411EF9E28ED19C4F9AE02.roa (hash: YRe4dhrAYbqhxJ+2f8KQ9ibzjn7cIMA1n6tPyhea2m4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.crl rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:57:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7974 (0x1f26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C77D, serialNumber=9409808C8A32C58494DAE574D05D6BB22272C35A Validity Not Before: Apr 4 15:57:06 2026 GMT Not After : Apr 11 15:57:06 2026 GMT Subject: CN=69d134d2-e75b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:97:61:b1:56:f2:75:6f:61:1a:d4:c2:ae:8c: 5b:d7:18:32:25:00:5a:8c:7b:0d:de:8d:c5:29:36: 59:fe:8b:e6:bf:ac:26:75:9c:0f:2a:e3:53:e9:4d: af:7a:1e:be:c3:1b:3a:84:cf:44:ce:f1:35:19:45: f1:b3:35:db:ac:f6:81:28:26:e8:6e:f2:94:6e:a8: 10:64:7d:a2:6a:5b:95:b1:a3:98:89:13:39:48:77: bf:4a:c3:95:05:04:53:34:33:86:9f:9a:54:ab:3b: ca:f6:83:9d:bd:eb:a4:ec:e2:4c:d8:c8:1e:78:cb: b9:3a:9f:1e:5b:0b:22:b8:18:2a:76:85:57:0a:47: b2:cc:9d:1e:c7:39:84:dd:a5:7c:de:39:9f:c7:64: 73:56:17:f6:1f:85:d3:5f:02:13:2f:da:5a:49:6e: 42:40:c7:69:d7:48:ac:9f:d7:ed:f6:9d:2e:f9:14: 6f:50:82:02:d5:49:5a:6a:55:f1:c4:62:80:c2:ae: 22:85:36:87:f2:e2:15:2e:ec:af:34:c1:50:c7:67: 73:4d:5a:88:e2:e8:c3:84:8f:13:8e:86:bb:1f:83: 4e:06:b6:d7:29:89:b1:cc:2e:8c:d1:cf:5d:07:8e: 36:d1:d6:6c:d9:e4:7a:2e:0d:e1:91:9d:7b:54:df: 1c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:25:64:5B:BC:3F:40:B2:B6:34:C0:2B:94:22:87:72:5C:C2:9A:77 X509v3 Authority Key Identifier: keyid:94:09:80:8C:8A:32:C5:84:94:DA:E5:74:D0:5D:6B:B2:22:72:C3:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:b4:8e:b3:7e:21:8c:b2:36:d6:48:1f:ae:f5:ec:01:1c:94: cf:30:8f:06:19:3c:af:b5:20:c7:64:fa:bf:4c:d1:50:bc:f6: b1:4c:59:1b:9c:1b:2e:63:54:fe:a8:3e:45:24:e7:73:50:58: 11:e0:e8:c2:8f:7e:d0:eb:08:ce:41:73:04:71:6d:40:80:91: 15:9b:99:ab:4a:db:a1:e4:ec:30:71:45:82:80:fe:d4:4b:57: 61:11:f7:db:97:a7:09:0f:03:90:ad:7f:0b:bd:a8:1c:86:27: ee:1a:b0:c8:5b:92:0b:d4:2d:77:31:ab:6f:6b:9c:b8:13:55: 0f:8c:32:36:8d:9c:fb:a4:79:74:81:cb:38:60:d7:ab:8d:c0: e2:1a:15:82:06:5a:91:32:da:17:58:93:ff:23:ea:9b:7a:fd: f4:cd:43:26:0d:0a:9c:fc:91:17:cc:5d:57:c9:76:e2:88:66: 4e:72:01:2d:ab:15:81:ea:6a:04:51:61:60:9c:39:cb:ba:13: 87:90:9e:45:04:4f:2a:d3:fe:10:c2:bd:84:99:46:93:d2:d3: 45:86:6d:c3:e5:c6:7f:5f:24:28:ff:cb:a0:e1:1e:f6:b9:f0: 57:00:a3:c0:16:86:9c:db:66:dd:78:2f:a7:f7:dd:f3:3f:73: e6:0b:ac:ca -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHyYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM3N0QxMTAvBgNVBAUTKDk0MDk4MDhDOEEzMkM1ODQ5NERBRTU3NEQwNUQ2QkIy MjI3MkMzNUEwHhcNMjYwNDA0MTU1NzA2WhcNMjYwNDExMTU1NzA2WjAYMRYwFAYD VQQDEw02OWQxMzRkMi1lNzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwpdhsVbydW9hGtTCroxb1xgyJQBajHsN3o3FKTZZ/ovmv6wmdZwPKuNT6U2v eh6+wxs6hM9EzvE1GUXxszXbrPaBKCbobvKUbqgQZH2ialuVsaOYiRM5SHe/SsOV BQRTNDOGn5pUqzvK9oOdveuk7OJM2MgeeMu5Op8eWwsiuBgqdoVXCkeyzJ0exzmE 3aV83jmfx2RzVhf2H4XTXwITL9paSW5CQMdp10isn9ft9p0u+RRvUIIC1UlaalXx xGKAwq4ihTaH8uIVLuyvNMFQx2dzTVqI4ujDhI8Tjoa7H4NOBrbXKYmxzC6M0c9d B4420dZs2eR6Lg3hkZ17VN8cMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGslZFu8 P0CytjTAK5Qih3Jcwpp3MB8GA1UdIwQYMBaAFJQJgIyKMsWElNrldNBda7IicsNa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Qzc3RC83RDRCRkUwNjc0 OTkxMUU2QjAyNTJCODRDNEY5QUUwMi9sQW1BaklveXhZU1UydVYwMEYxcnNpSnl3 MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBbUFqSW95eFlTVTJ1VjAwRjFyc2lKeXcxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Qzc3RC83RDRCRkUwNjc0OTkxMUU2QjAyNTJCODRDNEY5QUUwMi9sQW1BaklveXhZ U1UydVYwMEYxcnNpSnl3MW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUrSOs34hjLI21kgfrvXsARyUzzCPBhk8r7Ugx2T6v0zRULz2sUxZG5wbLmNU /qg+RSTnc1BYEeDowo9+0OsIzkFzBHFtQICRFZuZq0rboeTsMHFFgoD+1EtXYRH3 25enCQ8DkK1/C72oHIYn7hqwyFuSC9QtdzGrb2ucuBNVD4wyNo2c+6R5dIHLOGDX q43A4hoVggZakTLaF1iT/yPqm3r99M1DJg0KnPyRF8xdV8l24ohmTnIBLasVgepq BFFhYJw5y7oTh5CeRQRPKtP+EMK9hJlGk9LTRYZtw+XGf18kKP/LoOEe9rnwVwCj wBaGnNtm3Xgvp/fd8z9z5gusyg== -----END CERTIFICATE-----Generated at Mon Apr 6 14:00:41 2026 by rpki-client