$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft File: l7tUs9I8N8PdPgFpypdNJ9up8FA.mft (raw, json) Hash identifier: 9FQkNgpEoXvxW/gzFah+Pf6asC/Vlsvx0N9o0EIyx1M= Subject key identifier: D2:A3:88:21:05:13:8B:8D:F3:FB:4C:12:90:F8:FD:A9:DB:8A:7F:3F Authority key identifier: 97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 Certificate issuer: /CN=A91D51C1/serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Certificate serial: 0671 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft Manifest number: 0666 Signing time: Sat 04 Apr 2026 22:24:19 +0000 Manifest this update: Sat 04 Apr 2026 22:24:18 +0000 Manifest next update: Sat 11 Apr 2026 22:24:18 +0000 Files and hashes: 1: l7tUs9I8N8PdPgFpypdNJ9up8FA.crl (hash: Na6dRIvkFwyEDlrh0tywPTU9hAf4Pt7R8TcvrwLXPpM=) 2: 1E8ADFD0C1F211EBA984726AC4F9AE02.roa (hash: cN1hwE7Kn24tcOs69ZtX9qTJpNy1aheRedD7/deVNQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:24:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1649 (0x671) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51C1, serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Validity Not Before: Apr 4 22:24:18 2026 GMT Not After : Apr 11 22:24:18 2026 GMT Subject: CN=69d18f93-5d8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e0:5a:3f:97:87:3f:d4:0d:bb:9a:d8:ff:51: d4:8f:ba:21:46:bd:e9:dd:c3:27:71:ce:a8:74:d1: 63:f5:46:9c:8e:bc:44:a0:c1:66:fd:86:a0:af:bc: ab:73:c6:9c:96:5d:30:4e:22:b4:3d:90:9d:ac:4c: 6d:4c:e0:f2:fe:b9:bc:1b:56:df:62:2c:84:bc:7e: 40:8e:ed:fe:a1:04:d4:90:0d:ef:02:f1:dc:1f:4b: 19:e5:1c:6f:6e:e8:c9:b2:20:4b:d4:b0:e0:a5:57: 59:ef:58:29:2c:89:c3:bd:a9:04:99:77:50:6f:15: 94:26:87:ce:fb:47:14:e5:2b:84:bf:34:97:94:81: 16:b4:a5:ce:4f:d3:08:50:17:3b:e8:c5:58:f2:5e: 35:d6:f2:c0:53:93:4c:57:e5:82:2d:db:d1:2d:2f: 5b:4b:fb:e2:23:75:ac:59:52:bf:9f:55:21:d7:91: ee:cd:55:56:e9:38:5f:61:7f:43:b2:34:17:2a:b8: cc:a2:3a:0d:69:fb:60:bf:e5:ad:68:e3:f8:90:e3: 01:00:fb:99:61:47:90:4f:e2:71:e2:a1:e9:7b:0f: 92:be:d6:20:ef:f8:9e:a7:e8:2b:29:d7:a7:a7:5a: f9:fd:55:13:6c:f4:03:15:a3:88:79:43:59:06:0a: 35:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:A3:88:21:05:13:8B:8D:F3:FB:4C:12:90:F8:FD:A9:DB:8A:7F:3F X509v3 Authority Key Identifier: keyid:97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:27:46:eb:ff:e6:68:83:94:8e:cf:a2:86:3b:40:4c:6c:ad: c2:5d:25:41:c9:1b:8f:c0:3a:64:10:01:2a:b4:f3:0f:54:92: d9:2e:1d:dc:e7:4f:ae:ac:0d:a4:6d:36:3d:bc:1e:fa:e4:0d: 46:fb:79:bc:08:06:dd:3b:db:3f:fc:0b:a4:1c:b0:1f:99:79: e5:ab:fc:19:e2:eb:06:07:c1:b3:8a:c5:9f:ce:3a:17:2d:33: c3:f8:88:8f:d7:2f:5c:8d:54:aa:64:11:6c:cf:9d:22:6e:81: da:bf:77:11:f2:e8:5e:f6:bb:4c:e6:ba:97:c8:47:a6:bf:21: a2:ec:c8:2c:b3:8c:d2:b2:f2:1d:2d:00:48:9b:45:c7:f7:3a: 58:a1:4e:23:d5:87:a8:10:76:07:1d:6f:97:56:fe:ee:eb:3a: f1:7f:29:d1:13:97:17:00:e8:55:bb:1e:66:d5:d6:02:e2:e5: 72:0f:f7:38:b7:b1:8f:2a:4c:e1:1a:d9:b2:cc:f9:f5:14:36: 3f:de:a0:15:40:68:f3:b3:ae:05:9e:5d:ea:67:dc:df:28:d2: d4:93:1d:b7:68:52:df:96:50:cd:d4:b2:f3:aa:6c:af:80:b1: af:1a:76:27:54:d3:9d:0a:96:7c:4d:ec:d7:b1:c1:7c:19:2d: 85:91:e2:95 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQzExMTAvBgNVBAUTKDk3QkI1NEIzRDIzQzM3QzNERDNFMDE2OUNBOTc0RDI3 REJBOUYwNTAwHhcNMjYwNDA0MjIyNDE4WhcNMjYwNDExMjIyNDE4WjAYMRYwFAYD VQQDEw02OWQxOGY5My01ZDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1OBaP5eHP9QNu5rY/1HUj7ohRr3p3cMncc6odNFj9UacjrxEoMFm/Yagr7yr c8acll0wTiK0PZCdrExtTODy/rm8G1bfYiyEvH5Aju3+oQTUkA3vAvHcH0sZ5Rxv bujJsiBL1LDgpVdZ71gpLInDvakEmXdQbxWUJofO+0cU5SuEvzSXlIEWtKXOT9MI UBc76MVY8l411vLAU5NMV+WCLdvRLS9bS/viI3WsWVK/n1Uh15HuzVVW6ThfYX9D sjQXKrjMojoNaftgv+WtaOP4kOMBAPuZYUeQT+Jx4qHpew+SvtYg7/iep+grKden p1r5/VUTbPQDFaOIeUNZBgo1rwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNKjiCEF E4uN8/tMEpD4/anbin8/MB8GA1UdIwQYMBaAFJe7VLPSPDfD3T4BacqXTSfbqfBQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFDMS9EOTJFNjlBQUMx RUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44UGRQZ0ZweXBkTko5dXA4 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3dFVzOUk4TjhQZFBnRnB5cGROSjl1cDhGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFDMS9EOTJFNjlBQUMxRUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44 UGRQZ0ZweXBkTko5dXA4RkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYidG6//maIOUjs+ihjtATGytwl0lQckbj8A6ZBABKrTzD1SS2S4d3OdPrqwN pG02Pbwe+uQNRvt5vAgG3TvbP/wLpBywH5l55av8GeLrBgfBs4rFn846Fy0zw/iI j9cvXI1UqmQRbM+dIm6B2r93EfLoXva7TOa6l8hHpr8houzILLOM0rLyHS0ASJtF x/c6WKFOI9WHqBB2Bx1vl1b+7us68X8p0ROXFwDoVbseZtXWAuLlcg/3OLexjypM 4RrZssz59RQ2P96gFUBo87OuBZ5d6mfc3yjS1JMdt2hS35ZQzdSy86psr4Cxrxp2 J1TTnQqWfE3s17HBfBkthZHilQ== -----END CERTIFICATE-----Generated at Mon Apr 6 09:53:17 2026 by rpki-client