$ rpki-client -vvf rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.mft File: lAjp17bOuDTKkJAeRXhgEMBpwys.mft (raw, json) Hash identifier: buWBp2YrfCgZbvzud984JV73mtIllQ2yETuM+WcAINg= Subject key identifier: CD:FE:8B:8C:C3:34:D1:26:EF:B1:67:A9:36:42:B8:C2:6A:42:CB:9C Authority key identifier: 94:08:E9:D7:B6:CE:B8:34:CA:90:90:1E:45:78:60:10:C0:69:C3:2B Certificate issuer: /CN=A91A394B/serialNumber=9408E9D7B6CEB834CA90901E45786010C069C32B Certificate serial: 01DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAjp17bOuDTKkJAeRXhgEMBpwys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.mft Manifest number: 01D8 Signing time: Sun 05 Apr 2026 03:03:11 +0000 Manifest this update: Sun 05 Apr 2026 03:03:10 +0000 Manifest next update: Sun 12 Apr 2026 03:03:10 +0000 Files and hashes: 1: lAjp17bOuDTKkJAeRXhgEMBpwys.crl (hash: 5ERw7sVOlVthbJPSqQoVxmQ/bbGkhWK9OuyBDsaKcyM=) 2: 6015E82861B411EEBAA6AD59C4F9AE02.roa (hash: UORe/0TZF8IoRoAarwALcIbpOxjo7QBKBArFHjwhFB4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.crl rsync://rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAjp17bOuDTKkJAeRXhgEMBpwys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:03:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 478 (0x1de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A394B, serialNumber=9408E9D7B6CEB834CA90901E45786010C069C32B Validity Not Before: Apr 5 03:03:10 2026 GMT Not After : Apr 12 03:03:10 2026 GMT Subject: CN=69d1d0ef-7898 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:98:1a:bf:ae:5b:54:b8:5e:ea:bf:2a:5e:f2: 2d:31:54:f6:5d:ee:42:98:7d:24:43:98:35:7a:12: a6:b5:22:57:d4:b9:69:3a:39:8c:16:9a:b6:b1:ad: c0:ee:2a:f2:cb:77:38:e4:7b:4d:79:64:8c:5b:72: 34:a5:34:d0:05:3f:4e:80:51:ed:f9:05:2d:22:d1: 20:fa:13:7f:50:2e:e6:d8:2e:83:b7:0d:98:6c:3c: 12:31:96:f6:48:93:bc:fd:b5:14:3f:bf:24:a6:c9: 99:f7:c6:19:d4:c1:5c:f7:94:a1:68:ce:e0:29:18: d5:fb:41:50:3c:51:8d:5d:5b:a5:9a:b8:91:b3:2c: dc:df:57:02:90:0e:3a:38:4e:16:ca:02:5d:6d:92: 31:ba:72:9a:48:3e:24:d8:25:a6:b7:13:71:eb:70: 6d:04:dd:21:38:d8:ce:69:16:8e:4e:28:4e:aa:12: 84:b6:8e:25:97:75:ad:3a:ca:4e:cc:0b:b1:fd:cc: c3:cb:09:68:b2:19:6a:a0:38:ec:4b:88:e3:f4:f7: cc:3d:58:2a:52:22:9c:5f:47:28:91:9d:59:10:b9: 9a:36:2d:7b:7f:94:58:54:ab:8a:7c:79:e3:8f:14: b4:f7:27:a0:81:2a:4e:6e:f8:e6:c8:9c:84:e8:6f: 29:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:FE:8B:8C:C3:34:D1:26:EF:B1:67:A9:36:42:B8:C2:6A:42:CB:9C X509v3 Authority Key Identifier: keyid:94:08:E9:D7:B6:CE:B8:34:CA:90:90:1E:45:78:60:10:C0:69:C3:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAjp17bOuDTKkJAeRXhgEMBpwys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:40:8b:20:b4:0f:22:0b:04:c9:a8:5a:cf:92:9f:d3:2b:28: 0c:b3:a2:90:e1:bf:90:a9:b2:59:5c:06:10:df:8a:a9:f1:40: 10:52:a0:23:74:4f:9f:5c:e2:38:b8:0b:85:e2:f8:82:3a:be: 7a:64:a4:68:fa:c8:7c:29:65:2e:2b:c4:3e:d9:65:7d:f8:8c: 3d:f6:71:85:6b:40:69:20:94:88:2e:f9:3a:40:a6:e1:f0:d4: d6:c9:13:f8:9e:8d:06:b6:e5:04:7c:2e:1a:da:1a:64:4b:b8: 52:a9:f7:cd:b9:9c:4b:1b:66:15:88:a9:70:bb:c6:b4:d2:a8: 9c:67:ab:9c:33:f8:dc:c1:92:cc:b7:c6:25:3b:75:9c:59:c1: 79:f9:47:6f:0f:7e:89:c6:ef:97:90:96:34:a0:31:b8:5e:46: 9f:6f:3f:35:2b:6b:8d:5f:a6:7d:99:c5:c1:e0:5c:42:53:ad: 03:67:a7:39:8c:7f:c4:aa:3e:2a:98:aa:b5:23:21:3b:c4:b6: 0f:7d:02:14:f2:64:75:1d:2e:4a:ec:b9:d2:f9:7e:70:ec:a4: ac:4f:5e:0f:30:3c:ad:33:69:75:86:e7:cd:bb:5c:02:e5:d0: a1:a5:29:39:f0:07:d5:6b:10:c3:35:03:03:3d:d7:c9:6d:9f: ba:c6:57:25 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NEIxMTAvBgNVBAUTKDk0MDhFOUQ3QjZDRUI4MzRDQTkwOTAxRTQ1Nzg2MDEw QzA2OUMzMkIwHhcNMjYwNDA1MDMwMzEwWhcNMjYwNDEyMDMwMzEwWjAYMRYwFAYD VQQDEw02OWQxZDBlZi03ODk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJgav65bVLhe6r8qXvItMVT2Xe5CmH0kQ5g1ehKmtSJX1LlpOjmMFpq2sa3A 7iryy3c45HtNeWSMW3I0pTTQBT9OgFHt+QUtItEg+hN/UC7m2C6Dtw2YbDwSMZb2 SJO8/bUUP78kpsmZ98YZ1MFc95ShaM7gKRjV+0FQPFGNXVulmriRsyzc31cCkA46 OE4WygJdbZIxunKaSD4k2CWmtxNx63BtBN0hONjOaRaOTihOqhKEto4ll3WtOspO zAux/czDywloshlqoDjsS4jj9PfMPVgqUiKcX0cokZ1ZELmaNi17f5RYVKuKfHnj jxS09yeggSpObvjmyJyE6G8paQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM3+i4zD NNEm77FnqTZCuMJqQsucMB8GA1UdIwQYMBaAFJQI6de2zrg0ypCQHkV4YBDAacMr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk0Qi8xMEFDQUIwQTYx QjQxMUVFODBDRTE4NDZDNEY5QUUwMi9sQWpwMTdiT3VEVEtrSkFlUlhoZ0VNQnB3 eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBanAxN2JPdURUS2tKQWVSWGhnRU1CcHd5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzk0Qi8xMEFDQUIwQTYxQjQxMUVFODBDRTE4NDZDNEY5QUUwMi9sQWpwMTdiT3VE VEtrSkFlUlhoZ0VNQnB3eXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAA0CLILQPIgsEyahaz5Kf0ysoDLOikOG/kKmyWVwGEN+KqfFAEFKgI3RPn1zi OLgLheL4gjq+emSkaPrIfCllLivEPtllffiMPfZxhWtAaSCUiC75OkCm4fDU1skT +J6NBrblBHwuGtoaZEu4Uqn3zbmcSxtmFYipcLvGtNKonGernDP43MGSzLfGJTt1 nFnBeflHbw9+icbvl5CWNKAxuF5Gn28/NStrjV+mfZnFweBcQlOtA2enOYx/xKo+ KpiqtSMhO8S2D30CFPJkdR0uSuy50vl+cOykrE9eDzA8rTNpdYbnzbtcAuXQoaUp OfAH1WsQwzUDAz3XyW2fusZXJQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:33:12 2026 by rpki-client