$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft File: lKlQswO0aQDdWjBhAwyJpIloA68.mft (raw, json) Hash identifier: WTsfJ9owF0Jdw47APuyNFyB0Yhb/+1JP5iUo9gecloM= Subject key identifier: 9A:F9:0C:EA:06:94:F8:FB:27:FE:66:60:DD:F6:BE:E3:96:F5:40:D0 Authority key identifier: 94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF Certificate issuer: /CN=A91BAD2D/serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Certificate serial: 019E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft Manifest number: 018C Signing time: Sun 05 Apr 2026 04:02:48 +0000 Manifest this update: Sun 05 Apr 2026 04:02:47 +0000 Manifest next update: Sun 12 Apr 2026 04:02:47 +0000 Files and hashes: 1: lKlQswO0aQDdWjBhAwyJpIloA68.crl (hash: zs/DiT1FzgNcxh8Gcbf4+XEO+3nocZY9CYgfcgsWWso=) 2: 10771E5497C211F0A9D40817C4F9AE02.roa (hash: Ih6CUVzbaPRdHejVQvZNcYEMy1tnq4yUXbGOoq+u3g0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:02:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 414 (0x19e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD2D, serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Validity Not Before: Apr 5 04:02:47 2026 GMT Not After : Apr 12 04:02:47 2026 GMT Subject: CN=69d1dee8-b508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:76:0d:68:9e:df:a6:55:7f:45:d3:1d:0a:e3: 13:78:01:25:be:47:31:08:db:53:13:e9:dd:d7:c7: cb:cc:18:51:76:b0:4a:d3:fb:f1:95:6d:f6:a7:a5: 3b:fe:c7:52:e9:94:51:35:31:fa:a8:53:5a:a3:4f: 99:a2:42:b6:38:fe:a7:f2:06:47:82:ab:3a:e5:7e: 4a:eb:76:96:6c:4f:b8:c8:88:56:2e:07:f4:68:d6: 25:5a:25:17:46:78:1b:cc:de:99:b1:e4:ef:10:e8: 0c:cf:26:b5:ca:00:59:b3:d1:93:13:a8:85:5c:6a: 15:bf:31:36:ec:e8:22:b4:61:73:5a:9a:40:6a:1d: fe:36:fb:0f:3f:29:44:6f:76:07:46:94:9f:8d:65: e1:bc:10:6a:64:07:ea:46:0a:be:9f:8f:ad:aa:fa: e4:b4:e7:6f:d7:9b:40:c7:1a:6b:65:03:cd:27:d6: 47:80:ca:3b:6b:91:d5:86:7a:8d:58:e0:aa:66:f7: 28:ec:6a:eb:29:b8:c9:e1:57:cf:fa:46:f4:01:d9: f5:d6:b9:60:ad:d8:2c:79:ff:6f:63:a9:00:a1:24: fd:10:81:7b:a9:41:fa:c0:87:c0:70:59:7a:77:d3: af:b6:cc:50:4f:8b:be:b0:bb:d7:4a:89:f9:ad:0d: 8d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:F9:0C:EA:06:94:F8:FB:27:FE:66:60:DD:F6:BE:E3:96:F5:40:D0 X509v3 Authority Key Identifier: keyid:94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:73:13:67:20:78:01:d3:8a:a6:d8:4c:41:bc:04:cb:fd:a5: f1:77:17:16:89:34:aa:b4:ac:e5:06:71:0c:30:3a:69:75:24: 1b:4a:56:8b:bb:24:d0:98:37:f6:ab:24:74:0f:66:e1:76:0f: 21:ff:cd:0b:c3:0e:ad:e3:00:f2:8b:8e:34:d7:9b:7f:ee:d9: ae:fc:1e:09:8f:9d:5b:c2:41:62:7f:13:60:42:67:ef:d8:66: 3c:5d:e4:a9:6e:4b:66:08:79:02:09:35:e8:b7:06:0a:12:c4: d1:cb:02:a2:3a:cb:26:c0:19:4f:55:43:3b:23:a3:66:9a:11: 4c:1f:55:c8:bc:be:ef:3c:cf:b2:17:a4:e7:7f:05:3f:da:b9: 98:1b:5a:24:38:42:f4:b9:02:45:f9:42:60:80:de:34:3b:03: 26:e9:bd:9c:2a:63:4b:b7:d9:43:64:33:43:80:ba:f0:67:22: 55:66:c5:dd:b8:f3:ac:49:70:84:bb:f6:a7:89:e6:ef:54:4d: f6:d3:25:23:9c:6e:a3:c0:76:c2:63:b0:4c:b9:bc:7b:1f:3a: 3a:1b:a3:66:52:f9:59:e6:d8:34:20:ee:99:01:b0:f3:d8:ab: 61:2b:a1:9e:7d:cb:4a:45:0b:d4:e8:87:8c:3d:70:52:ba:cb: 8b:42:4a:0a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFEMkQxMTAvBgNVBAUTKDk0QTk1MEIzMDNCNDY5MDBERDVBMzA2MTAzMEM4OUE0 ODk2ODAzQUYwHhcNMjYwNDA1MDQwMjQ3WhcNMjYwNDEyMDQwMjQ3WjAYMRYwFAYD VQQDEw02OWQxZGVlOC1iNTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynYNaJ7fplV/RdMdCuMTeAElvkcxCNtTE+nd18fLzBhRdrBK0/vxlW32p6U7 /sdS6ZRRNTH6qFNao0+ZokK2OP6n8gZHgqs65X5K63aWbE+4yIhWLgf0aNYlWiUX RngbzN6ZseTvEOgMzya1ygBZs9GTE6iFXGoVvzE27OgitGFzWppAah3+NvsPPylE b3YHRpSfjWXhvBBqZAfqRgq+n4+tqvrktOdv15tAxxprZQPNJ9ZHgMo7a5HVhnqN WOCqZvco7GrrKbjJ4VfP+kb0Adn11rlgrdgsef9vY6kAoST9EIF7qUH6wIfAcFl6 d9OvtsxQT4u+sLvXSon5rQ2NTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJr5DOoG lPj7J/5mYN32vuOW9UDQMB8GA1UdIwQYMBaAFJSpULMDtGkA3VowYQMMiaSJaAOv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQyRC85MDg4RUU1QUU4 MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFRRGRXakJoQXd5SnBJbG9B NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xLbFFzd08wYVFEZFdqQmhBd3lKcElsb0E2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQyRC85MDg4RUU1QUU4MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFR RGRXakJoQXd5SnBJbG9BNjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP3MTZyB4AdOKpthMQbwEy/2l8XcXFok0qrSs5QZxDDA6aXUkG0pWi7sk0Jg3 9qskdA9m4XYPIf/NC8MOreMA8ouONNebf+7ZrvweCY+dW8JBYn8TYEJn79hmPF3k qW5LZgh5Agk16LcGChLE0csCojrLJsAZT1VDOyOjZpoRTB9VyLy+7zzPshek538F P9q5mBtaJDhC9LkCRflCYIDeNDsDJum9nCpjS7fZQ2QzQ4C68GciVWbF3bjzrElw hLv2p4nm71RN9tMlI5xuo8B2wmOwTLm8ex86OhujZlL5WebYNCDumQGw89irYSuh nn3LSkUL1OiHjD1wUrrLi0JKCg== -----END CERTIFICATE-----Generated at Mon Apr 6 18:50:34 2026 by rpki-client