$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft File: mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft (raw, json) Hash identifier: VK+RV7NtSuKwcYLqw0ah/UBZZOWFSgBV/rNu1jH5Irc= Subject key identifier: 70:69:62:FD:A2:0D:9B:99:C9:72:87:BA:5C:D4:20:5C:7D:B9:5C:18 Authority key identifier: 9A:58:7E:4E:CF:68:EC:77:29:D8:DE:43:5F:FD:AA:DC:EA:5B:49:39 Certificate issuer: /CN=A91E3E80/serialNumber=9A587E4ECF68EC7729D8DE435FFDAADCEA5B4939 Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft Manifest number: A1 Signing time: Sat 18 Apr 2026 09:58:39 +0000 Manifest this update: Sat 18 Apr 2026 09:58:38 +0000 Manifest next update: Sat 25 Apr 2026 09:58:38 +0000 Files and hashes: 1: mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl (hash: Dm00agNOjzsK8jfXqyiy9bzDtpyai4d5C85mCSSOvnY=) 2: 29CA404A3B0D11F18EE2601DA2833773.roa (hash: Jzax6E6Sfv6INltxB8Hf3ktPyBHc/bZL9WLenaL6FpM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 09:58:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E80, serialNumber=9A587E4ECF68EC7729D8DE435FFDAADCEA5B4939 Validity Not Before: Apr 18 09:58:38 2026 GMT Not After : Apr 25 09:58:38 2026 GMT Subject: CN=69e355cf-3e57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:16:19:f7:92:ee:f0:de:49:e3:09:26:c5:b0: b6:3e:0c:2e:16:70:18:90:e5:f1:40:69:63:d2:70: d1:38:22:62:99:69:04:11:00:d0:62:7b:7a:ec:55: 55:7f:f3:da:1f:06:49:4e:1f:1c:bf:d0:42:ac:bd: 57:ea:07:44:53:5a:cc:fa:e8:46:8f:36:af:32:1c: 1f:d6:a0:80:09:55:7d:92:ec:8d:68:3b:c8:7b:df: 05:77:b3:f3:32:91:68:fd:60:06:94:69:57:c6:98: f2:8e:36:ba:2a:fc:72:87:b4:22:3a:95:72:a0:88: df:5b:52:1d:a9:f3:9c:ea:29:4e:f4:c8:f3:42:59: 37:b8:18:7d:26:99:61:da:20:34:90:35:83:51:bc: 9c:96:79:27:1a:68:b8:07:89:b9:54:09:cd:3f:c1: db:6b:00:00:ba:d0:52:2b:da:bb:a2:a0:8b:f3:83: 03:38:37:5a:31:0a:79:5e:66:2f:dd:e2:a2:6e:f9: dd:60:50:8a:00:0d:6c:46:19:b5:0c:86:86:40:45: 47:eb:d0:01:09:ba:d3:fd:69:83:d9:c2:b6:e2:2b: 4f:48:2f:a9:88:02:16:c9:7b:43:92:a4:74:45:9e: 94:e1:bf:33:6a:6d:0e:e0:f6:2d:7a:cd:81:d9:b6: a5:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:69:62:FD:A2:0D:9B:99:C9:72:87:BA:5C:D4:20:5C:7D:B9:5C:18 X509v3 Authority Key Identifier: keyid:9A:58:7E:4E:CF:68:EC:77:29:D8:DE:43:5F:FD:AA:DC:EA:5B:49:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:3c:cf:8a:69:23:43:6f:81:e3:7a:25:b7:43:bb:73:d4:f2: b7:ee:11:dc:fa:ca:d9:42:a2:32:9d:0a:0f:1f:d3:17:62:8b: 02:8c:6c:0d:f8:89:4a:a9:25:e4:d9:93:82:c9:b1:2a:7b:71: 97:bb:34:b7:88:c8:d2:76:77:aa:e0:4a:d3:75:f9:6c:a4:17: a3:75:da:f1:d6:79:e0:c5:a8:2b:23:f2:f8:9d:2f:57:7d:56: 3d:62:2f:9a:95:2a:6c:8b:85:a8:9b:5d:c2:36:36:40:c0:07: 0a:19:15:e3:16:b7:c5:97:41:ca:8e:a6:50:46:ba:2e:59:f0: 19:b3:1e:d7:1d:e9:2e:d5:9a:c3:5b:c6:83:d6:e6:ee:f5:26: c4:e7:fe:73:a6:02:e2:91:2d:bb:1b:3f:fd:fc:c1:3d:69:cf: 5c:40:48:b4:0f:69:b0:70:d3:c5:59:71:33:f4:b6:0a:30:a6: ee:98:63:9c:dd:50:05:e5:90:c9:90:92:f7:bb:e6:88:fb:92: 9e:09:06:32:e5:d8:d7:11:21:45:82:47:db:42:67:0f:bc:34: d6:74:e4:7c:a4:1d:48:b1:04:30:d8:29:fa:2f:d6:b1:df:be: 39:d8:2e:40:04:34:b3:b2:69:f7:c9:78:37:08:96:a9:fb:55: f0:b9:a1:60 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFODAxMTAvBgNVBAUTKDlBNTg3RTRFQ0Y2OEVDNzcyOUQ4REU0MzVGRkRBQURD RUE1QjQ5MzkwHhcNMjYwNDE4MDk1ODM4WhcNMjYwNDI1MDk1ODM4WjAYMRYwFAYD VQQDEw02OWUzNTVjZi0zZTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthYZ95Lu8N5J4wkmxbC2PgwuFnAYkOXxQGlj0nDROCJimWkEEQDQYnt67FVV f/PaHwZJTh8cv9BCrL1X6gdEU1rM+uhGjzavMhwf1qCACVV9kuyNaDvIe98Fd7Pz MpFo/WAGlGlXxpjyjja6Kvxyh7QiOpVyoIjfW1IdqfOc6ilO9MjzQlk3uBh9Jplh 2iA0kDWDUbyclnknGmi4B4m5VAnNP8HbawAAutBSK9q7oqCL84MDODdaMQp5XmYv 3eKibvndYFCKAA1sRhm1DIaGQEVH69ABCbrT/WmD2cK24itPSC+piAIWyXtDkqR0 RZ6U4b8zam0O4PYtes2B2balswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHBpYv2i DZuZyXKHulzUIFx9uVwYMB8GA1UdIwQYMBaAFJpYfk7PaOx3KdjeQ1/9qtzqW0k5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0U4MC8zNTQzM0YyMjRC NjYxMUYwQjg4NTI0MzlDNEY5QUUwMi9tbGgtVHM5bzdIY3AyTjVEWF8ycTNPcGJT VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21saC1UczlvN0hjcDJONURYXzJxM09wYlNUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0U4MC8zNTQzM0YyMjRCNjYxMUYwQjg4NTI0MzlDNEY5QUUwMi9tbGgtVHM5bzdI Y3AyTjVEWF8ycTNPcGJTVGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmzzPimkjQ2+B43olt0O7c9Tyt+4R3PrK2UKiMp0KDx/TF2KLAoxsDfiJSqkl 5NmTgsmxKntxl7s0t4jI0nZ3quBK03X5bKQXo3Xa8dZ54MWoKyPy+J0vV31WPWIv mpUqbIuFqJtdwjY2QMAHChkV4xa3xZdByo6mUEa6LlnwGbMe1x3pLtWaw1vGg9bm 7vUmxOf+c6YC4pEtuxs//fzBPWnPXEBItA9psHDTxVlxM/S2CjCm7phjnN1QBeWQ yZCS97vmiPuSngkGMuXY1xEhRYJH20JnD7w01nTkfKQdSLEEMNgp+i/Wsd++Odgu QAQ0s7Jp98l4NwiWqftV8LmhYA== -----END CERTIFICATE-----Generated at Sat Apr 18 21:00:18 2026 by rpki-client