$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json) Hash identifier: cnMtXC6R7cQwve5OMorgJPaMiF3UxLbIw1ybQ167Mpg= Subject key identifier: 8F:C7:97:F3:4C:C7:A4:A8:C8:D0:A0:91:E3:41:45:22:06:F9:24:CC Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Certificate serial: 0487 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft Manifest number: 047A Signing time: Sat 04 Apr 2026 23:52:57 +0000 Manifest this update: Sat 04 Apr 2026 23:52:56 +0000 Manifest next update: Sat 11 Apr 2026 23:52:56 +0000 Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: Deh++6zfzt5ezny93tty0mF2Hya9Ci6JCTrSoVgefnk=) 2: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: 89nb39WeO+2Ub6Nf3O9bYYBJxsIA87zSaSarp1B+j1E=) 3: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: 1pV5x+wzFKlIURLdK4W0ATECc1pPeoL8XQh/coLs8yw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:52:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1159 (0x487) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFC30, serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Validity Not Before: Apr 4 23:52:56 2026 GMT Not After : Apr 11 23:52:56 2026 GMT Subject: CN=69d1a459-8942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:54:1e:5a:46:c6:9b:f3:b3:bb:5d:53:0c:1c: e5:dd:e2:ab:bb:9c:09:0c:2e:20:67:b2:dd:f0:75: 3a:67:d5:53:95:f7:33:ff:84:04:98:97:db:cf:44: 7e:f4:e0:20:8d:63:9c:ec:e4:04:cc:57:31:8d:3b: 8d:8c:08:43:94:cc:15:f3:f1:c0:73:1c:7e:c5:fe: 19:78:97:74:cf:81:6e:14:ae:ba:b4:2d:a5:1b:fb: 96:0a:ae:61:8b:d8:c8:12:07:77:24:7d:01:6d:26: 17:d9:8c:4f:53:19:b2:10:25:98:77:29:30:72:da: b7:3c:4f:b1:1c:84:72:96:e2:24:63:e0:b7:5b:fc: 0b:18:d5:15:70:57:b4:17:8a:41:93:52:7d:48:5c: 9c:2b:55:dc:8a:d0:7a:e5:59:c2:47:64:3e:fb:af: ed:96:2a:2b:93:ed:38:4c:de:c8:db:1f:4d:f7:c2: 13:db:af:29:05:49:7e:7a:f2:e1:fe:e2:eb:a3:d5: 13:ce:0f:fb:06:9d:13:9b:48:22:f7:28:cc:25:cb: 31:1f:d5:21:f0:b6:5c:c6:8c:db:86:49:ee:14:e6: 22:d1:3c:97:4a:b4:09:56:b3:a4:67:ae:5e:13:a8: c2:40:65:4d:51:7f:cf:7d:59:5e:94:17:45:f6:0b: aa:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:C7:97:F3:4C:C7:A4:A8:C8:D0:A0:91:E3:41:45:22:06:F9:24:CC X509v3 Authority Key Identifier: keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:4b:41:f6:00:6d:a8:15:48:8c:7f:7c:1f:a3:bc:e1:02:67: 71:3e:fe:e5:7e:f6:80:8c:dc:cd:9d:af:9c:2e:ff:dc:b8:8e: 39:21:63:1f:64:ac:2c:33:db:6e:43:81:80:da:ca:76:ed:e3: 2f:96:4a:8a:81:68:38:d8:93:fc:c0:94:89:48:82:45:c2:4d: ad:32:61:fe:c8:2a:ca:43:61:c5:ec:fa:e8:c7:67:6b:23:e7: 7e:6c:80:54:0f:b2:94:b2:cc:e2:79:7f:69:f7:c8:5a:76:f6: e3:16:5b:03:27:7f:54:ea:0e:d3:9b:46:85:8a:25:82:1d:0e: c2:25:fb:88:70:28:9f:15:0c:22:a1:3d:93:be:41:ef:eb:6e: 0c:0a:76:98:32:b9:bf:ec:01:76:f4:e9:51:0a:b6:3c:a4:97: cb:6b:2e:fc:8f:69:8b:c6:6d:57:0e:1e:d2:78:ad:19:bb:09: 4e:93:a9:19:f5:5c:3b:37:6d:eb:79:f1:2a:24:67:76:76:3a: 6f:b4:bc:37:bb:30:a2:21:18:ba:9f:f8:19:32:32:a6:03:da: 41:a8:85:11:d2:f8:8e:86:fb:17:d2:11:48:40:fb:e8:0f:c3: ef:96:31:10:09:ca:ec:63:14:8e:d1:b7:b2:c3:e5:79:b2:67: c5:74:89:69 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZDMzAxMTAvBgNVBAUTKDk0N0NCNjc0QTg1OENEOTFBRUE1NTI2QkEzNjY4QTEx RTQ5RUNCOTMwHhcNMjYwNDA0MjM1MjU2WhcNMjYwNDExMjM1MjU2WjAYMRYwFAYD VQQDEw02OWQxYTQ1OS04OTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1QeWkbGm/Ozu11TDBzl3eKru5wJDC4gZ7Ld8HU6Z9VTlfcz/4QEmJfbz0R+ 9OAgjWOc7OQEzFcxjTuNjAhDlMwV8/HAcxx+xf4ZeJd0z4FuFK66tC2lG/uWCq5h i9jIEgd3JH0BbSYX2YxPUxmyECWYdykwctq3PE+xHIRyluIkY+C3W/wLGNUVcFe0 F4pBk1J9SFycK1XcitB65VnCR2Q++6/tliork+04TN7I2x9N98IT268pBUl+evLh /uLro9UTzg/7Bp0Tm0gi9yjMJcsxH9Uh8LZcxozbhknuFOYi0TyXSrQJVrOkZ65e E6jCQGVNUX/PfVlelBdF9guqtQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI/Hl/NM x6SoyNCgkeNBRSIG+STMMB8GA1UdIwQYMBaAFJR8tnSoWM2RrqVSa6NmihHknsuT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkMzMC8xMTJBRjFBQzg1 QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpaR3VwVkpybzJhS0VlU2V5 NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIeTJkS2hZelpHdXBWSnJvMmFLRWVTZXk1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkMzMC8xMTJBRjFBQzg1QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpa R3VwVkpybzJhS0VlU2V5NU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAw0tB9gBtqBVIjH98H6O84QJncT7+5X72gIzczZ2vnC7/3LiOOSFjH2SsLDPb bkOBgNrKdu3jL5ZKioFoONiT/MCUiUiCRcJNrTJh/sgqykNhxez66MdnayPnfmyA VA+ylLLM4nl/affIWnb24xZbAyd/VOoO05tGhYolgh0OwiX7iHAonxUMIqE9k75B 7+tuDAp2mDK5v+wBdvTpUQq2PKSXy2su/I9pi8ZtVw4e0nitGbsJTpOpGfVcOzdt 63nxKiRndnY6b7S8N7swoiEYup/4GTIypgPaQaiFEdL4job7F9IRSED76A/D75Yx EAnK7GMUjtG3ssPlebJnxXSJaQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:26:10 2026 by rpki-client