$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft File: LWNAd8yEe1nUBI1D4EszCWmP5jg.mft (raw, json) Hash identifier: 3CJtR1uv770MTWCWpZ0vYtBvwvaV6lyUkR04YGNOstw= Subject key identifier: 46:8F:AA:4E:30:FA:C0:AD:C4:EB:52:99:AD:BF:EB:DF:1C:77:B2:6C Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 03F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft Manifest number: 0350 Signing time: Sun 05 Apr 2026 01:45:46 +0000 Manifest this update: Sun 05 Apr 2026 01:45:45 +0000 Manifest next update: Sun 12 Apr 2026 01:45:45 +0000 Files and hashes: 1: LWNAd8yEe1nUBI1D4EszCWmP5jg.crl (hash: DWU0XcOSuoaNN77Vw7xe5tf0DLK6NEglmBup7YOiIQI=) 2: FECE3C3C855711EF8E79C52BC4F9AE02.roa (hash: NNYpj3betzAmhzyg69sOsd+IkKaVWYtVMEooK8d8Jhg=) 3: 94C13908C4AF11EDBCC55111C4F9AE02.roa (hash: m+YMSjzVUuc73W6hTfDFbMi0+yUuBUpgBYQofvaW6Ow=) 4: FDC6A888AEB111EE9A78E132C4F9AE02.roa (hash: HJTu/QaBBUaGGzi25rXbR60EpAJ8f6RdGFNR0tCCt90=) 5: 430E4E387CC311F0A55B2081C4F9AE02.roa (hash: b357DS6un3095ihmJG/1qzltik8hgTz2G2EsqlSGWDw=) 6: 755E6B82D21C11EEA166891AC4F9AE02.roa (hash: lBUP0TSzebAFXmoSTqeDqtFMO8rYhPyrBUR141U167M=) 7: E879EE7C144111EFB247B936C4F9AE02.roa (hash: ZeAGLGAA4h+CcuwE4PZxgCpOScaMQUl6R6qDfBF+VLY=) 8: 0B7CEEB07CC911F08411627BC4F9AE02.roa (hash: 6jds39GpIYDWTUvVrxm863ItczOC5PjSQTRWLznhaMU=) 9: CA1A46101A5B11EE89B07267C4F9AE02.roa (hash: 2rNOWeXpsmPPeo00gkw3XFog2FCfRkn+qinn6OJcsSU=) 10: F9A864386AAB11EF8FEBE576C4F9AE02.roa (hash: YySN/OEFOesvLCn2GkCFn3w0IA8S3T8IMu+C8KUfxLg=) 11: 90647F2EA14A11ED8FFBA684C4F9AE02.roa (hash: P6k6ZFgyd5A01gmUt+7pAxzOrjslbaS8z1K2UjgCjog=) 12: FD124A14CC5811EDBE5D203FC4F9AE02.roa (hash: neeN01r5VZ4YRUPHtpZwodLJIVHlwzKgdZUXHbEsINA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1009 (0x3f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587, serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Apr 5 01:45:45 2026 GMT Not After : Apr 12 01:45:45 2026 GMT Subject: CN=69d1bec9-45d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:de:b3:b6:31:0f:53:15:45:99:f4:b7:6f:d7: 6c:90:b5:25:b9:dd:b2:c8:4c:74:2c:e4:36:aa:a1: 21:da:17:50:b4:02:26:ca:fa:65:00:0c:f3:24:c8: ac:d5:18:d3:7a:3c:5b:1d:99:ec:a3:33:27:cb:f4: 35:78:5c:fe:33:cd:85:96:17:94:a7:f4:3c:16:e8: 03:2f:f7:75:4a:7a:45:22:d0:77:51:27:69:36:5a: 5d:25:91:04:de:01:84:7f:1c:df:31:bf:02:b9:2f: 1d:a7:b2:df:88:53:e9:d4:65:b6:11:8e:d4:b7:ec: a6:97:e0:a6:0c:f8:e7:41:39:0d:6c:fe:19:4f:8b: 90:8e:84:16:6b:74:89:79:3a:a9:85:7f:dd:0e:89: 26:e2:c7:14:95:02:a6:79:8f:2c:36:d5:81:8f:62: 4c:d5:75:99:28:9a:ba:fa:99:06:82:30:a4:8e:15: 55:48:1e:4d:da:01:7d:88:b1:e1:ba:b1:00:b0:13: 9c:5a:4e:bc:1c:c1:a0:ac:92:6e:ac:2c:2d:b2:f5: 15:3a:c3:0c:42:c8:4a:d3:a3:ac:5f:bb:61:ea:5f: bd:44:96:b3:60:84:97:d9:0b:d7:a5:3b:cf:dd:ae: 5d:6b:db:be:71:38:03:28:0a:5e:0b:bf:8f:56:b8: fc:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:8F:AA:4E:30:FA:C0:AD:C4:EB:52:99:AD:BF:EB:DF:1C:77:B2:6C X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:5d:72:a6:a0:4b:af:5c:31:21:97:bc:fa:c8:27:8c:7e:31: dd:14:78:7a:95:a0:31:5e:86:04:e5:6d:1e:f9:35:9d:c6:17: 38:45:83:3d:e9:10:e8:c3:ab:f9:01:f7:64:7d:97:73:d7:11: d5:ad:1e:32:ce:1c:45:bc:77:f3:14:ef:d7:50:16:d4:98:ad: 39:53:d3:23:57:6e:de:56:1b:3d:bd:69:b8:2e:60:3f:1c:47: b9:71:6d:45:d6:fb:04:e9:07:09:a7:a8:c8:eb:0c:50:8f:e4: 99:dd:9b:0f:cd:98:11:83:df:09:d5:b4:c3:03:55:e5:dc:29: 08:46:9c:40:84:48:90:33:52:b4:ef:37:2e:0e:a7:92:b1:18: 6c:af:dc:c0:b5:25:9c:79:08:1e:7f:28:67:8e:ca:99:95:3e: 0b:f8:5d:1a:35:0c:91:c1:55:56:84:f4:fd:f6:f0:be:06:d9: a4:20:53:31:fb:a7:1c:ed:9a:f7:f2:db:29:a4:2a:aa:70:fe: 31:f6:dd:55:f8:dc:57:20:85:85:bf:4b:e0:15:b1:81:dd:5c: 0c:43:2d:db:13:fc:4e:a8:02:bf:e6:79:da:1a:c8:b5:f8:37: 83:d8:1c:3e:f9:4f:f9:db:2f:44:06:cd:5d:18:e7:3f:6f:2f: 75:07:14:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjYwNDA1MDE0NTQ1WhcNMjYwNDEyMDE0NTQ1WjAYMRYwFAYD VQQDEw02OWQxYmVjOS00NWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtN6ztjEPUxVFmfS3b9dskLUlud2yyEx0LOQ2qqEh2hdQtAImyvplAAzzJMis 1RjTejxbHZnsozMny/Q1eFz+M82FlheUp/Q8FugDL/d1SnpFItB3USdpNlpdJZEE 3gGEfxzfMb8CuS8dp7LfiFPp1GW2EY7Ut+yml+CmDPjnQTkNbP4ZT4uQjoQWa3SJ eTqphX/dDokm4scUlQKmeY8sNtWBj2JM1XWZKJq6+pkGgjCkjhVVSB5N2gF9iLHh urEAsBOcWk68HMGgrJJurCwtsvUVOsMMQshK06OsX7th6l+9RJazYISX2QvXpTvP 3a5da9u+cTgDKApeC7+PVrj8zQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEaPqk4w +sCtxOtSma2/698cd7JsMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjU4Ny80MTdENzFCNDkxODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUx blVCSTFENEVzekNXbVA1amcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAH11ypqBLr1wxIZe8+sgnjH4x3RR4epWgMV6GBOVtHvk1ncYXOEWDPekQ6MOr +QH3ZH2Xc9cR1a0eMs4cRbx38xTv11AW1JitOVPTI1du3lYbPb1puC5gPxxHuXFt Rdb7BOkHCaeoyOsMUI/kmd2bD82YEYPfCdW0wwNV5dwpCEacQIRIkDNStO83Lg6n krEYbK/cwLUlnHkIHn8oZ47KmZU+C/hdGjUMkcFVVoT0/fbwvgbZpCBTMfunHO2a 9/LbKaQqqnD+MfbdVfjcVyCFhb9L4BWxgd1cDEMt2xP8TqgCv+Z52hrItfg3g9gc PvlP+dsvRAbNXRjnP28vdQcUsg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:49:00 2026 by rpki-client