$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft File: L9JLb9eYBEVzVDhmYs4w3aOyALU.mft (raw, json) Hash identifier: nRetzTQzCyhCbW6+JEoEtSZm0x9bCtKm/vL+KrzL4sw= Subject key identifier: B5:3B:A4:A1:5A:2D:DF:82:49:4A:EF:AE:D3:76:E3:36:4D:E8:73:63 Authority key identifier: 2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 Certificate issuer: /CN=A91A29DA/serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft Manifest number: 018C Signing time: Fri 17 Apr 2026 04:07:33 +0000 Manifest this update: Fri 17 Apr 2026 04:07:32 +0000 Manifest next update: Fri 24 Apr 2026 04:07:32 +0000 Files and hashes: 1: L9JLb9eYBEVzVDhmYs4w3aOyALU.crl (hash: Bz9dNMqbvUl02X8JsTY+uK/qbST9H7maFJJQ8SJhATI=) 2: AE2FD9C4DA5411EE83E9E67EC4F9AE02.roa (hash: YD6V2HI2hUFrH/8EXeFP7xfUl76wgNpHMjQUF10dCIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:07:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA, serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Validity Not Before: Apr 17 04:07:32 2026 GMT Not After : Apr 24 04:07:32 2026 GMT Subject: CN=69e1b204-7766 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:20:19:c5:34:c3:81:11:0f:5c:f4:80:4e:0e: cb:43:5f:1c:8e:12:d6:e9:49:92:62:0d:4a:8c:11: a7:af:2f:70:11:d8:00:45:c2:dc:fe:0a:a3:3a:d4: c3:20:fe:77:8c:37:c4:09:1e:a5:b5:a4:af:7b:e5: 9f:d7:f5:aa:2b:6c:4e:a1:d7:ed:21:ae:a1:de:48: 29:38:53:68:96:e4:c2:00:47:9b:1f:cf:08:03:8f: 91:35:03:c9:9a:d0:01:3a:03:c1:ac:e2:f9:1d:ce: de:0d:7c:26:b2:cc:b9:ee:ab:7c:6d:9c:f9:ff:6e: ae:45:0e:e7:ed:9c:f5:79:38:b5:d9:f5:03:51:32: 47:f9:01:63:00:6c:92:13:e0:e2:36:ce:16:bc:76: 8b:88:2b:ab:58:04:bd:de:6a:3e:2a:24:e3:a7:32: 61:a8:40:82:cc:b9:e0:69:77:61:e0:c4:ca:08:18: b5:5a:c1:68:56:28:48:d8:1f:54:3a:09:7e:ae:91: bd:48:cb:0c:ce:0b:76:60:77:c8:fa:c0:8b:e6:92: c2:e8:84:ec:6d:cc:b5:25:ce:26:f8:af:78:66:50: f2:8a:4c:68:9d:d5:ed:5f:da:73:53:5a:bd:0b:9e: 54:3b:1e:ea:f6:05:58:20:b0:ee:d0:42:df:22:65: ca:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:3B:A4:A1:5A:2D:DF:82:49:4A:EF:AE:D3:76:E3:36:4D:E8:73:63 X509v3 Authority Key Identifier: keyid:2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:7e:47:36:89:48:98:ed:82:7c:d7:34:c6:26:2b:48:03:47: 1f:54:74:c7:02:91:e1:c4:8a:af:a7:18:1f:86:f2:cc:c5:0a: 41:99:63:b7:d4:66:90:45:cc:a4:29:0f:3d:21:7a:b9:d5:f5: 0a:ca:56:a4:ba:1b:e5:d9:8a:47:a9:d8:c5:dc:9f:48:6a:d2: 80:11:06:e1:fa:60:db:b5:fb:f8:54:cc:fc:8e:e6:33:8a:90: 6c:51:8f:76:01:9a:94:1d:3b:7e:71:f7:f0:d8:ce:7c:c8:00: c8:78:e8:88:e5:b7:1c:46:39:1d:bc:65:59:73:ab:21:f0:d4: 36:e2:7c:c7:6d:06:7a:71:9a:80:a7:0b:94:36:4d:5e:0d:8e: 9d:0a:a7:3b:4f:41:64:70:31:78:0a:6b:65:7f:42:09:93:d6: 29:bd:45:51:5a:71:03:17:04:55:e1:33:db:69:4a:d5:2f:f9: d7:60:06:a3:f7:d9:77:bd:ec:90:0e:01:d8:fb:f7:13:32:03: e8:30:76:e4:d1:8d:6a:73:a5:ff:72:2c:70:20:c4:8f:53:4d: 33:2c:a5:86:e1:49:f6:16:c2:89:6b:47:6c:cd:0d:11:07:46: 1f:f3:96:16:29:3b:06:c9:9d:42:78:fa:9e:c5:bf:f2:44:da: b0:c8:ea:26 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDJGRDI0QjZGRDc5ODA0NDU3MzU0Mzg2NjYyQ0UzMERE QTNCMjAwQjUwHhcNMjYwNDE3MDQwNzMyWhcNMjYwNDI0MDQwNzMyWjAYMRYwFAYD VQQDEw02OWUxYjIwNC03NzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1SAZxTTDgREPXPSATg7LQ18cjhLW6UmSYg1KjBGnry9wEdgARcLc/gqjOtTD IP53jDfECR6ltaSve+Wf1/WqK2xOodftIa6h3kgpOFNoluTCAEebH88IA4+RNQPJ mtABOgPBrOL5Hc7eDXwmssy57qt8bZz5/26uRQ7n7Zz1eTi12fUDUTJH+QFjAGyS E+DiNs4WvHaLiCurWAS93mo+KiTjpzJhqECCzLngaXdh4MTKCBi1WsFoVihI2B9U Ogl+rpG9SMsMzgt2YHfI+sCL5pLC6ITsbcy1Jc4m+K94ZlDyikxondXtX9pzU1q9 C55UOx7q9gVYILDu0ELfImXKPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLU7pKFa Ld+CSUrvrtN24zZN6HNjMB8GA1UdIwQYMBaAFC/SS2/XmARFc1Q4ZmLOMN2jsgC1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zNEI1QjUxNERB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJFVnpWRGhtWXM0dzNhT3lB TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0w5SkxiOWVZQkVWelZEaG1ZczR3M2FPeUFMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjlEQS8zNEI1QjUxNERBNTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJF VnpWRGhtWXM0dzNhT3lBTFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAi35HNolImO2CfNc0xiYrSANHH1R0xwKR4cSKr6cYH4byzMUKQZljt9RmkEXM pCkPPSF6udX1CspWpLob5dmKR6nYxdyfSGrSgBEG4fpg27X7+FTM/I7mM4qQbFGP dgGalB07fnH38NjOfMgAyHjoiOW3HEY5HbxlWXOrIfDUNuJ8x20GenGagKcLlDZN Xg2OnQqnO09BZHAxeAprZX9CCZPWKb1FUVpxAxcEVeEz22lK1S/512AGo/fZd73s kA4B2Pv3EzID6DB25NGNanOl/3IscCDEj1NNMyylhuFJ9hbCiWtHbM0NEQdGH/OW Fik7BsmdQnj6nsW/8kTasMjqJg== -----END CERTIFICATE-----Generated at Sat Apr 18 21:06:56 2026 by rpki-client