$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft File: lAiiAfAOWP6SWY7gOTkHi673d5U.mft (raw, json) Hash identifier: fffaM68tcXkAHJpp/o9AVPk6N/gnwfty7Ax2SgSCWj0= Subject key identifier: 7E:72:F8:E3:55:71:86:40:46:39:77:9A:DA:CC:D7:EC:71:3E:4F:D9 Authority key identifier: 94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 Certificate issuer: /CN=A91A6F68/serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft Manifest number: E8 Signing time: Tue 21 Apr 2026 06:16:06 +0000 Manifest this update: Tue 21 Apr 2026 06:16:05 +0000 Manifest next update: Tue 28 Apr 2026 06:16:05 +0000 Files and hashes: 1: lAiiAfAOWP6SWY7gOTkHi673d5U.crl (hash: hX9dJJtrgxJuF/DYayhisNMzIqnx5WZINaF8D1N6L5s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 06:16:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F68, serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Validity Not Before: Apr 21 06:16:05 2026 GMT Not After : Apr 28 06:16:05 2026 GMT Subject: CN=69e71626-b4b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:65:03:89:1c:a6:0b:9d:16:db:ce:78:90:06: c7:6b:b5:72:d9:a3:2e:64:87:59:29:e1:d3:9b:67: 98:d1:ec:5d:ee:57:88:15:ef:02:2e:f6:cc:30:10: 21:eb:74:f5:36:fb:18:df:ab:77:5b:81:d8:77:04: 74:8d:e9:76:05:13:90:60:49:af:f0:b9:fd:88:a4: 96:6b:d9:53:90:01:eb:17:9e:46:7b:71:2d:ce:11: 7a:3c:88:e2:4b:b7:b0:81:5d:d5:c2:d3:e9:86:8b: 00:f5:f8:03:0e:57:dd:ea:bc:86:62:98:cb:86:cb: 6b:90:d2:40:b7:d3:2d:10:2a:23:3c:b5:fd:eb:8b: 14:bf:6a:30:0b:4e:f5:0b:a1:5c:e7:ea:8e:f9:09: cc:09:ff:2a:c2:78:6a:1e:17:d2:88:1f:97:25:6e: ed:63:53:40:35:a4:e1:01:f5:91:78:77:fe:3b:88: 85:88:84:71:20:cd:02:82:b0:f2:a1:3e:7c:ee:00: a6:2b:96:3c:ce:fa:34:14:c0:ad:07:48:3a:f7:06: ee:a3:da:b9:23:f4:4d:5c:79:1b:31:ea:49:a7:6e: d1:f7:50:6f:41:ad:a6:3c:7d:99:6b:88:68:8e:1c: 40:14:f6:85:c5:5d:68:8a:d6:42:ac:b4:d7:9b:c2: cf:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:72:F8:E3:55:71:86:40:46:39:77:9A:DA:CC:D7:EC:71:3E:4F:D9 X509v3 Authority Key Identifier: keyid:94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:44:fb:50:9d:88:22:9d:c3:4a:b7:d1:43:b7:37:62:65:9b: 3e:c3:bf:a4:7d:f8:a0:5d:58:2b:b5:93:63:f2:1d:76:e0:17: ac:e9:1a:c6:5c:2f:5e:6d:57:fe:a0:e3:48:c5:a6:83:f3:f9: 2e:57:ae:51:cc:dc:94:06:72:67:b4:1f:1a:a7:ec:b4:c7:a3: 08:b9:26:bd:21:a2:d8:74:c5:cf:aa:c6:1f:75:41:dc:b5:9a: 80:2b:c4:b9:96:83:7a:a3:a4:c0:0b:45:b4:b9:32:15:ad:35: cb:fd:fd:5b:24:b3:56:1c:ee:f0:d9:47:98:c7:22:20:38:2d: b0:35:66:62:29:f0:00:f4:24:a4:00:61:b1:0c:f8:fb:ba:96: f2:a6:8a:f6:fd:72:4a:26:5e:fa:e5:51:8d:27:11:1d:20:fb: 31:5a:1c:ed:50:16:f4:60:a3:f2:1b:7c:b6:39:a0:62:b5:46: 47:56:78:c5:58:cc:d3:c3:76:38:b3:4b:93:95:90:71:fa:d4: 31:2b:72:75:ea:65:c0:ce:63:5b:dd:44:46:64:9a:23:6d:93: 4b:ce:d4:b3:de:f0:67:96:0e:b4:55:6d:8e:98:f1:4a:c2:f3: 57:82:e9:51:8b:c0:b5:95:e2:7e:bd:65:c1:43:24:38:5d:fd: 1f:ef:0c:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGNjgxMTAvBgNVBAUTKDk0MDhBMjAxRjAwRTU4RkU5MjU5OEVFMDM5MzkwNzhC QUVGNzc3OTUwHhcNMjYwNDIxMDYxNjA1WhcNMjYwNDI4MDYxNjA1WjAYMRYwFAYD VQQDEw02OWU3MTYyNi1iNGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWUDiRymC50W2854kAbHa7Vy2aMuZIdZKeHTm2eY0exd7leIFe8CLvbMMBAh 63T1NvsY36t3W4HYdwR0jel2BROQYEmv8Ln9iKSWa9lTkAHrF55Ge3EtzhF6PIji S7ewgV3VwtPphosA9fgDDlfd6ryGYpjLhstrkNJAt9MtECojPLX964sUv2owC071 C6Fc5+qO+QnMCf8qwnhqHhfSiB+XJW7tY1NANaThAfWReHf+O4iFiIRxIM0CgrDy oT587gCmK5Y8zvo0FMCtB0g69wbuo9q5I/RNXHkbMepJp27R91BvQa2mPH2Za4ho jhxAFPaFxV1oitZCrLTXm8LPKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH5y+ONV cYZARjl3mtrM1+xxPk/ZMB8GA1UdIwQYMBaAFJQIogHwDlj+klmO4Dk5B4uu93eV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkY2OC9CQTU2NUY1Q0RG MjExMUVGODMzRjRGMkNDNEY5QUUwMi9sQWlpQWZBT1dQNlNXWTdnT1RrSGk2NzNk NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xBaWlBZkFPV1A2U1dZN2dPVGtIaTY3M2Q1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkY2OC9CQTU2NUY1Q0RGMjExMUVGODMzRjRGMkNDNEY5QUUwMi9sQWlpQWZBT1dQ NlNXWTdnT1RrSGk2NzNkNVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZUT7UJ2IIp3DSrfRQ7c3YmWbPsO/pH34oF1YK7WTY/IdduAXrOkaxlwvXm1X /qDjSMWmg/P5LleuUczclAZyZ7QfGqfstMejCLkmvSGi2HTFz6rGH3VB3LWagCvE uZaDeqOkwAtFtLkyFa01y/39WySzVhzu8NlHmMciIDgtsDVmYinwAPQkpABhsQz4 +7qW8qaK9v1ySiZe+uVRjScRHSD7MVoc7VAW9GCj8ht8tjmgYrVGR1Z4xVjM08N2 OLNLk5WQcfrUMStydeplwM5jW91ERmSaI22TS87Us97wZ5YOtFVtjpjxSsLzV4Lp UYvAtZXifr1lwUMkOF39H+8MQA== -----END CERTIFICATE-----Generated at Tue Apr 21 21:33:16 2026 by rpki-client