$ rpki-client -vvf rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft File: l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft (raw, json) Hash identifier: Omkeq7An0x/9VfRoh1JdZXfCQyne7bgvtR2GIhUAwxo= Subject key identifier: 37:47:94:7E:AC:5C:B4:FA:CC:8C:51:F3:EB:C9:E8:F7:92:26:F5:9D Authority key identifier: 97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 Certificate issuer: /CN=A91E39B4/serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Certificate serial: 0BF1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft Manifest number: 0BCF Signing time: Sat 04 Apr 2026 18:46:26 +0000 Manifest this update: Sat 04 Apr 2026 18:46:25 +0000 Manifest next update: Sat 11 Apr 2026 18:46:25 +0000 Files and hashes: 1: l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl (hash: 9GcJ3IUIPVQFhUgiRP93Rf8umLqzedJeb4Hhn6/OkSw=) 2: 46F57CF8137B11EBA3B47E37C4F9AE02.roa (hash: BQCqQWX54EbT8FYoBvjLqnc/rF1pO4lGjEy8BVDZOX0=) 3: D968823E3DA111EA9A3FD550C4F9AE02.roa (hash: 1gkuDEjoW9bKvN1y3NeSWvvd5mzGWAKNaZO4Fh0ZKKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:46:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3057 (0xbf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E39B4, serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Validity Not Before: Apr 4 18:46:25 2026 GMT Not After : Apr 11 18:46:25 2026 GMT Subject: CN=69d15c82-3424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7f:7c:64:e2:e6:0b:7d:38:67:0a:6e:39:b2: a6:aa:66:90:6b:f0:5e:e9:07:16:49:0e:3c:9c:47: ae:03:b8:41:6f:02:0e:30:7a:8e:6a:3e:66:cc:55: 56:da:e0:5e:71:46:4f:aa:fe:69:61:da:d6:bc:30: cc:97:8a:5a:72:c5:0a:90:6e:68:cf:59:69:e2:d2: b7:b9:ca:b2:c6:0b:cc:6f:d3:98:d4:1b:43:09:c8: 0f:d2:a4:4c:dd:cc:dc:2b:65:0a:c5:2b:89:f7:99: ce:ab:2e:33:cd:58:a7:8f:cf:59:5f:0b:3f:5a:4b: 1a:df:0d:52:81:6b:0d:28:31:7b:5a:7d:cb:ec:06: ce:5f:9d:c1:e7:0a:07:e4:29:c5:a9:d3:7b:91:20: 2c:f1:7f:91:7a:db:15:30:c4:a6:05:c9:5b:60:fc: 76:8f:7f:a9:2e:57:ea:5b:92:4f:29:10:39:e0:4f: a1:26:17:21:8b:4f:a8:3c:d9:7b:96:e6:c4:05:da: 28:91:75:3b:3a:f1:42:0d:ac:b2:ab:8d:fc:99:1f: 95:cf:14:75:a2:e6:6a:3b:06:0d:53:f8:86:1d:cb: 98:20:1b:7f:20:ce:a9:39:63:0b:70:14:9a:cb:4b: db:5c:6c:48:84:a2:f1:88:e1:02:7f:86:3b:6a:6b: d4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:47:94:7E:AC:5C:B4:FA:CC:8C:51:F3:EB:C9:E8:F7:92:26:F5:9D X509v3 Authority Key Identifier: keyid:97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:7e:c9:06:2c:14:12:cc:57:6e:ce:60:93:ca:55:a1:ea:14: 69:57:19:af:69:90:03:90:56:94:fc:9a:63:69:c9:31:42:d1: 35:85:64:16:34:6b:1f:f7:7e:39:16:a8:d7:3a:67:cb:5d:64: ca:65:84:8b:8b:6b:31:e6:f4:75:fe:4b:f6:6d:67:ed:0a:9d: 7e:5f:a2:45:d0:e4:62:df:d1:27:6c:77:1c:de:4c:a8:eb:86: 14:07:93:b3:6e:6e:bd:3d:58:86:7f:41:2c:50:ad:37:f5:65: f5:b2:da:f9:6c:00:e9:1b:15:70:fc:fa:d0:5d:f5:a4:47:1f: 16:4e:c9:fb:5a:46:b5:4e:56:27:84:10:cc:c8:91:33:13:fc: 43:71:a5:0c:8d:bf:16:12:07:98:a1:4c:27:67:45:ed:cd:3b: 96:5b:54:72:e0:86:62:9c:b3:d1:e6:72:fb:63:9a:3e:b4:6a: 74:a8:37:67:53:1b:e0:3c:81:85:a1:23:51:d4:9c:b7:d8:f2: 31:5f:09:23:2b:49:cf:ff:ae:6b:a7:6e:56:c0:0f:5e:0c:aa: 20:c2:2a:8a:6f:99:60:a6:65:d5:26:43:8d:6d:69:5d:3f:35: e9:51:08:3f:ad:14:c8:9a:77:52:69:e9:24:fa:93:e7:26:07: 73:ce:5f:32 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM5QjQxMTAvBgNVBAUTKDk3QjNERDJBQjNDODlCQzhBMkJCQzFEQjgwM0JDRTY4 RUFBNUFBMTIwHhcNMjYwNDA0MTg0NjI1WhcNMjYwNDExMTg0NjI1WjAYMRYwFAYD VQQDEw02OWQxNWM4Mi0zNDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnX98ZOLmC304ZwpuObKmqmaQa/Be6QcWSQ48nEeuA7hBbwIOMHqOaj5mzFVW 2uBecUZPqv5pYdrWvDDMl4pacsUKkG5oz1lp4tK3ucqyxgvMb9OY1BtDCcgP0qRM 3czcK2UKxSuJ95nOqy4zzVinj89ZXws/Wksa3w1SgWsNKDF7Wn3L7AbOX53B5woH 5CnFqdN7kSAs8X+RetsVMMSmBclbYPx2j3+pLlfqW5JPKRA54E+hJhchi0+oPNl7 lubEBdookXU7OvFCDayyq438mR+VzxR1ouZqOwYNU/iGHcuYIBt/IM6pOWMLcBSa y0vbXGxIhKLxiOECf4Y7amvUqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDdHlH6s XLT6zIxR8+vJ6PeSJvWdMB8GA1UdIwQYMBaAFJez3SqzyJvIorvB24A7zmjqpaoS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzlCNC8xRUUxODI5RTNE QTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04aWl1OEhiZ0R2T2FPcWxx aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3UGRLclBJbThpaXU4SGJnRHZPYU9xbHFoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzlCNC8xRUUxODI5RTNEQTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04 aWl1OEhiZ0R2T2FPcWxxaEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYn7JBiwUEsxXbs5gk8pVoeoUaVcZr2mQA5BWlPyaY2nJMULRNYVkFjRrH/d+ ORao1zpny11kymWEi4trMeb0df5L9m1n7Qqdfl+iRdDkYt/RJ2x3HN5MqOuGFAeT s25uvT1Yhn9BLFCtN/Vl9bLa+WwA6RsVcPz60F31pEcfFk7J+1pGtU5WJ4QQzMiR MxP8Q3GlDI2/FhIHmKFMJ2dF7c07lltUcuCGYpyz0eZy+2OaPrRqdKg3Z1Mb4DyB haEjUdSct9jyMV8JIytJz/+ua6duVsAPXgyqIMIqim+ZYKZl1SZDjW1pXT816VEI P60UyJp3UmnpJPqT5yYHc85fMg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:30:49 2026 by rpki-client